The Password Attacks Of 2023 Lessons Learned And Next Steps
It should take more than eight characters to bring a business to a halt. However, the relentless onslaught of password-based...
News
Crypto Scammers Abuse Twitter Feature To Impersonate High Profile Accounts
Cryptocurrency scammers are abusing a legitimate Twitter "feature" to promote scams, fake giveaways, and fraudulent Telegram channels used to steal...
Google Fixes 8th Chrome Zero Day Exploited In Attacks This Year
Google has released emergency updates to fix another Chrome zero-day vulnerability exploited in the wild, the eighth patched since the...
Xfinity Discloses Data Breach Impacting Nearly 36 Million
Comcast Cable’s Xfinity brand has revealed a major data breach impacting 35.9 million customers, that resulted from exploitation of a...
Global Police Seize $300m Linked to Online Scams
An international policing operation has led to the arrest of 3500 suspects and the seizure of assets worth $300m in...
BlackCat Rises: Infamous Ransomware Gang Defies Law Enforcement
Despite law enforcement efforts to take down the notorious ALPHV/BlackCat ransomware gang, the cybercriminals are not going down without a...
Cyber Incident Costs Surge 11% as Budgets Remain Muted
The average direct cost of a serious cybersecurity incident increased by 11% year-on-year to reach $1.7m in 2023, according to...
Hospitality Industry Faces New Password-Stealing Malware
Cybersecurity researchers have uncovered a novel targeted malspam operation deploying password-stealing malware.The campaign was discovered by Sophos X-Ops and described...
New Report: 85% Firms Face Cyber Incidents, 11% From Shadow IT
Over the past two years, 85% of companies globally have experienced cyber incidents, with 11% attributed to the unauthorized use...
Atomic Stealer Distributed To Mac Users Via Fake Browser Updates
Atomic Stealer, also known as AMOS, is a popular stealer for Mac OS. Back in September, we described how malicious...
Credit Card Skimming On The Rise For The Holiday Shopping Season
As we head into shopping season, customers aren’t the only ones getting excited. More online shopping means more opportunities for...
Malvertiser Copies Pc News Site To Deliver Infostealer
The majority of malvertising campaigns delivering malicious utilities that we have tracked so far typically deceive victims with pages that...
Ransomware Review November 2023
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Pikabot Distributed Via Malicious Ads
During this past year, we have seen an increase in the use of malicious ads (malvertising) and specifically those via...
New Metastealer Malvertising Campaigns
MetaStealer is a popular piece of malware that came out in 2022, levering previous code base from RedLine. Stealers have...
Associated Press Espn Cbs Among Top Sites Serving Fake Virus Alerts
ScamClub is a threat actor who’s been involved in malvertising activities since 2018. Chances are you probably ran into one...
Malvertisers Zoom In On Cryptocurrencies And Initial Access
During the past month, we have observed an increase in the number of malicious ads on Google searches for “Zoom”,...
Ransomware Review December 2023
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Xfinity Discloses Data Breach Affecting Over 35 Million People
Comcast Cable Communications, doing business as Xfinity, disclosed on Monday that attackers who breached one of its Citrix servers in...
Terrapin Attacks Can Downgrade Security Of Openssh Connections
Academic researchers developed a new attack called Terrapin that manipulates sequence numbers during the handshake process to breaks the SSH...
New Web Injections Campaign Steals Banking Data From 50 000 People
A new malware campaign that emerged in March 2023 used JavaScript web injections to try to steal the banking data...
Fbi Disrupts Blackcat Ransomware Operation Creates Decryption Tool
Update added below about the unseizing of the data leak site and a message from the ransomware gang. The Department...
How The Fbi Seized Blackcat Alphv Ransomwares Servers
An unsealed FBI search warrant revealed how law enforcement hijacked the ALPHV/BlackCat ransomware operations websites and seized the associated URLs....
Fbi Alphv Ransomware Raked In 300 Million From Over 1 000 Victims
The ALPHV/BlackCat ransomware gang has made over $300 million in ransom payments from more than 1,000 victims worldwide as of September 2023,...
