Avoslocker ransomware gang targets US critical infrastructure
The Federal Bureau of Investigation (FBI) reported that AvosLocker ransomware is being used in attacks targeting US critical infrastructure. The Federal...
News
Crooks claims to have stolen 4TB of data from TransUnion South Africa
TransUnion South Africa discloses a data breach, threat actors who stolen sensitive data, demanded a ransom payment not to release...
Exotic Lily initial access broker works with Conti gang
Google’s Threat Analysis Group (TAG) uncovered a new initial access broker, named Exotic Lily, that is closely affiliated with the Conti ransomware...
Emsisoft releases free decryptor for the victims of the Diavol ransomware
Cybersecurity firm Emsisoft released a free decryptor that allows the victims of the Diavol ransomware to recover their files without...
Beware of this bogus (and phishy) “Instagram Support” email
Recently, a fake Instagram email successfully bypassed Google’s email filters and made it into hundreds of employee inboxes used by...
This Week in Security News – March 18, 2022
Global Cyberattacks: Navigating New Frontiers: Trend Micro 2021 Annual Cybersecurity Report, and US Has 'Significant' Cyber Vulnerabilities, But A Sweeping...
How to Secure AWS Serverless API(s)
Discover how to easily enhance security of your container-based AWS serverless API to protect against known and unknown vulnerabilities. If...
Meet Exotic Lily, access broker for ransomware and other malware peddlers
The Google Threat Analysis Group (TAG) has shared their observations about a group of cybercriminals called Exotic Lily. This group...
Double header: IsaacWiper and CaddyWiper
As war in Ukraine rages, new destructive malware continues to be discovered. In this short blog post, we will review...
China-linked threat actors are targeting the government of Ukraine
Google’s TAG team revealed that China-linked APT groups are targeting Ukraine ’s government for intelligence purposes. Google’s Threat Analysis Group...
How to protect RDP
You didn’t really think that the ransomware wave was coming to an end, did you? You may be tempted to...
Caketap, a new Unix rootkit used to siphon ATM banking data
Experts spotted a new Unix rootkit, called Caketap, that was used to steal ATM banking data. Mandiant researchers discovered a...
Online Safety Bill’s provisions for “legal but harmful” content described as “censor’s charter”
The UK’s Online Safety Bill, a landmark piece of legislation that that aims to regulate the country’s online content, has...
Deepfake Zelenskyy video surfaces on compromised websites
It’s been a long time coming. The worry over deepfake technology being used during times of major upheaval has been...
Red TIM Research (RTR) team discovers a bug on Ericsson Network Manager
TIM Red Team Research (RTR) researchers discovered a new flaw on Ericsson Network Manager, aka Ericsson flagship network product. TIM...
Russia-linked Cyclops Blink botnet targeting ASUS routers
The recently discovered Cyclops Blink botnet, which is believed to be a replacement for the VPNFilter botnet, is now targeting the ASUS...
Microsoft releases open-source tool for checking MikroTik Routers compromise
Microsoft released an open-source tool to secure MikroTik routers and check for indicators of compromise for Trickbot malware infections. Microsoft...
node-ipc NPM Package sabotage to protest Ukraine invasion
The developer behind the popular “node-ipc” NPM package uploaded a destructive version to protest Russia’s invasion of Ukraine. RIAEvangelist, the...
Cyclops Blink Sets Sights on Asus Routers
This report discusses the technical capabilities of this Cyclops Blink malware variant that targets ASUS routers and includes a list...
Attacks Abound in Tricky Threat Terrain: 2021 Annual Cybersecurity Report
The digital transformations that had enabled many enterprises to stay afloat amid the Covid-19 health crisis also brought about major...
Anonymous continues to support Ukraine against the Russia
The collective Anonymous and its affiliated groups continue to target the Russian government and private organizations. The collective Anonymous, and...
SolarWinds Warns of Attacks Targeting Web Help Desk Users
SolarWinds warns customers of potential cyberattacks targeting unpatched installs of its Web Help Desk (WHD) product. SolarWinds has published a...
Gh0stCringe RAT makes database servers squeal for protection
Researchers have found that the Gh0stCringe RAT is infecting Microsoft SQL and MySQL, and seems to focus on servers with...
Clouding the issue: what cloud threats lie in wait in 2022?
As more services move ever cloud-wards, so too do thoughts by attackers as to how best exploit them. With all...
