Cisa Urges Tech Manufacturers To Stop Using Default Passwords
Today, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) urged technology manufacturers to stop providing software and devices with default...
News
Ex Amazon Engineer Pleads Guilty To Hacking Crypto Exchanges
Former Amazon security engineer Shakeeb Ahmed pleaded guilty this week to hacking and stealing over $12.3 million from two cryptocurrency...
The Week In Ransomware December 15th 2023 Ransomware Drama
Today's column brings you two weeks of information on the latest ransomware attacks and research after we skipped last week's...
Ransomware Gang Behind Threats To Fred Hutch Cancer Patients
The Hunters International ransomware gang claimed to be behind a cyberattack on the Fred Hutchinson Cancer Center (Fred Hutch) that...
Delta Dental Of California Data Breach Exposed Info Of 7 Million People
Delta Dental of California and its affiliates are warning almost seven million patients that they suffered a data breach after personal...
Four Charged in Connection With $80m Pig Butchering Scheme
Four US residents have been charged with a series of money laundering offenses connected to a major “pig butchering” fraud...
UK Plans Tough New Security Rules For Datacenters
The UK government has proposed new rules designed to regulate the datacenter sector, in a bid to improve baseline cybersecurity and...
Over 45,000 Employees Hit By Nuclear Research Lab Breach
Tens of thousands of current and former employees of a leading US cybersecurity and nuclear research laboratory were impacted by...
New NKAbuse Malware Exploits NKN Blockchain Tech for DDoS Attacks
A novel multi-platform threat called NKAbuse has been discovered using a decentralized, peer-to-peer network connectivity protocol known as NKN (short...
Bug or Feature? Hidden Web Application Vulnerabilities Uncovered
Web Application Security consists of a myriad of security controls that ensure that a web application: Functions as expected. Cannot...
Active Exploitation of Critical Vulnerability in JetBrains TeamCity On-Premises
JetBrains has released updates addressing a critical vulnerability (CVE-2023-42793) in their TeamCity On-Premises. The vulnerability is reportedly being actively exploited...
Hong Kong Residents Targeted In Malvertising Campaigns For Whatsapp Telegram
Malvertising is a powerful malware or scam delivery mechanism that makes it easy to target specific geographies or even users....
Malvertising Via Dynamic Search Ads Delivers Malware Bonanza
Most, if not all malvertising incidents result from a threat actor either injecting code within an existing ad, or intentionally...
Malvertiser Copies Pc News Site To Deliver Infostealer
The majority of malvertising campaigns delivering malicious utilities that we have tracked so far typically deceive victims with pages that...
Credit Card Skimming On The Rise For The Holiday Shopping Season
As we head into shopping season, customers aren’t the only ones getting excited. More online shopping means more opportunities for...
Atomic Stealer Distributed To Mac Users Via Fake Browser Updates
Atomic Stealer, also known as AMOS, is a popular stealer for Mac OS. Back in September, we described how malicious...
Malvertisers Zoom In On Cryptocurrencies And Initial Access
During the past month, we have observed an increase in the number of malicious ads on Google searches for “Zoom”,...
Ransomware Review December 2023
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Associated Press Espn Cbs Among Top Sites Serving Fake Virus Alerts
ScamClub is a threat actor who’s been involved in malvertising activities since 2018. Chances are you probably ran into one...
Ransomware Review November 2023
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
New Nkabuse Malware Abuses Nkn Blockchain For Stealthy Comms
A new Go-based multi-platform malware identified as 'NKAbuse' is the first malware abusing NKN (New Kind of Network) technology for...
Ledger Dapp Supply Chain Attack Steals 600k From Crypto Wallets
Ledger is warnings users not to use web3 dApps after a supply chain attack on the 'Ledger dApp Connect Kit'...
Microsoft Disrupts Cybercrime Gang Behind 750 Million Fraudulent Accounts
Microsoft's Digital Crimes Unit seized multiple domains used by a Vietnam-based cybercrime group (Storm-1152) that registered over 750 million fraudulent...
Ten New Android Banking Trojans Targeted 985 Bank Apps In 2023
This year has seen the emergence of ten new Android banking malware families, which collectively target 985 bank and fintech/trading...
