A new rootkit comes to an ATM near you
It’s not unusual to hear about malware created to affect automated teller machines (ATMs). Malware can be planted at the...
threatintel
Globant suffers network breach due to LAPSUS$ compromise
Globant, an IT and software development firm with offices all around the globe, admitted in a press statement Wednesday that...
Apple’s child safety features are coming to a Messages app near you
Apple will soon be rolling out its promised child safety features in the Messages app for users in Australia, Canada,...
Emotet fixes bug in code, resumes spam campaign
Emotet threat actors resumed their email spam campaign on Monday after stopping it late last week to fix a bug....
Karakurt extortion group: Threat profile
The FBI (Federal Bureau of Investigation), together with CISA (Cybersecurity and Infrastructure Security Agency) and other federal agencies, recently released...
Threat profile: RansomHouse makes extortion work without ransomware
Cybersecurity is an industry known for many hats: white hats, black hats, and grey hats. White hats refer to “the...
Email compromise leads to healthcare data breach at Kaiser Permanente
At least 69,000 people have been impacted by a data breach at Kaiser Permanente, a long-running managed healthcare consortium. The...
Record breaking HTTPS DDoS attack
Last week, Cloudflare blocked the largest HTTPS DDoS attack on record. The attack amassed some 26 million requests per second...
Malicious apps continue to spread through the Google Play Store
Researchers at antivirus firm Dr. Web discovered malware in the Google Play Store that was downloaded two million times. An...
Was this really an attempt by the Chinese?
Last weekend, during President Trump’s visit to the Mar-a-Lago resort, a 23-year-old Chinese woman attempted to gain access to the...
Skimmer acts as payment service provider via rogue iframe
Criminals continue to target online stores to steal payment details from unaware customers at a rapid pace. There are many...
Sophisticated threats plague ailing healthcare industry
The healthcare industry is no longer circling the drain, but it’s still in critical condition. While many organizations in healthcare...
Keeping ransomware cash away from your business
A ransomware gang has made headlines for donating a big chunk of stolen funds to two charities. Two separate donations...
Emotet returns just in time for Christmas
Emotet is a threat we have been tracking very closely throughout the year thanks to its large email distribution campaigns....
Pow! Emotet’s down. Is it out?
In a coordinated action, multiple law enforcement agencies have seized control of the Emotet botnet. Agencies from eight countries worked...
Watch out! Android Flubot spyware is spreading fast
Using a proven method of text messages about missed deliveries, an old player on the Android malware stage has returned...
Emotet fixes bug in code, resumes spam campaign
Emotet threat actors resumed their email spam campaign on Monday after stopping it late last week to fix a bug....
Bizarro: a banking Trojan full of nasty tricks
Researchers have discovered a new banking Trojan that has been found targeting customers of European and South American banks. They...
How much does access to corporate infrastructure cost?
Division of labor Money has been and remains the main motivator for cybercriminals. The most widespread techniques of monetizing cyberattacks...
Hertzbleed Side-Channel Attack allows to remotely steal encryption keys from AMD and Intel chips
Hertzbleed attack: Researchers discovered a new vulnerability in modern Intel and AMD chips that could allow attackers to steal encryption...
Cobalt Stike Beacon Detected – 121[.]36[.]26[.]172:6443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]175[.]124[.]151:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 114[.]41[.]120[.]123:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 192[.]161[.]48[.]14:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
