US DoS offers a reward of up to $10M for leaders of REvil ransomware gang
The U.S. government offers up to $10 million for identifying or locating leaders in the REvil/Sodinokibi ransomware operation The Department...
News
Ukrainian REvil affiliate charged with Ransomware Attack on Kaseya
The US DoJ has charged a REvil ransomware affiliate that is suspected to have orchestrated the attack on Kaseya MSP...
DDoS attacks in Q3 2021
News overview Q3 2021 brought two new DDoS attack vectors, potentially posing a serious threat, including for major web resources....
Multiple video games break after domain name snafu
We’ve seen quite a few complaints from gamers this past weekend, unable to load up and play games on the...
US-CERT Bulletin (SB21-312):Vulnerability Summary for the Week of November 1, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Ransomware attack disrupted store operations in the Netherlands and Germany
Electronics retail giant MediaMarkt was hit by a ransomware attack that disrupted store operations in the Netherlands and Germany. Electronics retail...
Why we fail at getting the cybersecurity basics right, with Jess Dodson: Lock and Code S02E21
The cybersecurity basics should be just that—basic. Easy to do, agreed-upon, and adopted at a near 100 percent rate by...
Healthcare – Patient or Perpetrator? – The Cybercriminals Within
The healthcare industry might be known for the work it does to treat patients. But it is also a prime...
Operation Cyclone targets Clop Ransomware affiliates
Operation Cyclone – Six alleged affiliates with the Clop ransomware operation were arrested in an international joint law enforcement operation...
A week in security (Nov 1 – Nov 7)
Last week on Malwarebytes Labs Celebrity jewelry house Graff falls victim to ransomwareLessons from a real-life ransomware attackIs Apple’s Safari...
Nation-state actors target critical sectors by exploiting the CVE-2021-40539 flaw
Experts warn of an ongoing hacking campaign that already compromised at least nine organizations worldwide from critical sectors by exploiting...
Hungarian official confirms Hungary used NSO Group Pegasus spyware
A Hungarian government official confirmed that his government has bought and used the controversial NSO Group’s Pegasus spyware. Lajos Kosa,...
FBI warns of fraudulent schemes using cryptocurrency ATMs and QR for payments
The FBI warns of an increase of fraudulent schemes leveraging cryptocurrency ATMs and QR Codes to facilitate payment. The FBI...
Experts spotted a phishing campaign impersonating security firm Proofpoint
Threat actors are impersonating cybersecurity firm Proofpoint to trick victims into providing Microsoft Office 365 and Gmail credentials. Cybercriminals are...
New Magecart group uses an e-Skimmer that avoids VMs and sandboxes
A new Magecart group leverages a browser script to evade virtualized environments and sandboxes used by researchers. Malwarebytes researchers have...
Security Affairs newsletter Round 339
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Casinos of tribal communities are losing millions in Ransomware attacks
The FBI issued a private industry notification (PIN) to warn of ransomware attacks that hit several tribal-owned casinos last year....
Threat actors stole $55 million worth of cryptocurrency from bZx DeFi platform
DeFi platforms are a privileged target for crooks, threat actors have stolen $55 million from bZx DeFi platform. Threat actors...
Philips Tasy EMR healthcare infomatics solution vulnerable to SQL injection
The Philips Tasy EMR comprehensive healthcare informatics solution is affected by two critical SQL injection vulnerabilities. The Philips Tasy EMR...
White hat hackers earn over $1 Million at Pwn2Own Austin 2021
The Zero Day Initiative’s Pwn2Own Austin 2021 hacking contest has ended, and participants earned $1,081,250 for 61 zero-day flaws. Trend...
A drone was modified to disrupt U.S. Power Grid, says intelligence bulletin
US officials believe that a drone was employed in an attempted attack on a power substation in Pennsylvania last year. US...
US defense contractor Electronic Warfare Associates discloses data breach
US defense contractor Electronic Warfare Associates (EWA) was hit by a cyber attack, threat actors stole personal information from its...
Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group
Ukraine’s premier law enforcement and counterintelligence revealed the real identities of five FSB members behind the Gamaredon cyberespionage group. Ukraine’s...
Wanted! US offers $10m bounty for ransomware kingpins
The US State Department is offering a massive $10 million reward if you can help bring DarkSide to justice. The...
