Researchers Uncover Batavia Windows Spyware Stealing Documents from Russian Firms

Russian organizations have been targeted as part of an ongoing campaign that delivers a previously undocumented Windows spyware called Batavia. The activity, per cybersecurity vendor Kaspersky, has been active since July 2024. "The targeted attack begins with bait emails containing malicious link...

PayPal phishing campaign goes after more than just your login credentials

A new phishing campaign targeting PayPal users aims to get extensive data from potential victims. The data its after includes government documents like passport, as well as selfie photos. In a nutshell, its an extensive form of information theft, the likes of which could result in someones identi...

RedCurl Corporate Espionage Hackers Return With Updated Hacking Tools

A corporate cyber-espionage hacker group has resurfaced after a seven-month hiatus with new intrusions targeting four companies this year, including one of the largest wholesale stores in Russia, while simultaneously making tactical improvements to its toolset in an attempt to thwart analysis. "I...

Researchers Discover UEFI Bootkit Targeting Windows Computers Since 2012

Cybersecurity researchers on Tuesday revealed details of a previously undocumented UEFI Unified Extensible Firmware Interface bootkit that has been put to use by threat actors to backdoor Windows systems as early as 2012 by modifying a legitimate Windows Boot Manager binary to achieve persistence...

Spam and phishing in Q3 2019

Quarterly highlights Amazon Prime In Q3, we registered numerous scam mailings related to Amazon Prime. Most of the phishing emails with a link to a fake Amazon login page offered new prices or rewards for buying things, or reported problems with membership, etc. Against the backdrop of September'...

Kaspersky revealed "Kimsuky" Cyber Espionage campaign targeting South Korea

Russian Security Firm Kaspersky Lab has revealed that it has been following a sustained attack on South Korea by hackers seemingly based in North Korea., This new Cyber Espionage campaign dubbed "Kimsuky" has targeted several South Korean think tanks. Researchers believe the Kimsuky malware is mo...

Old-School Attack Nabs Joint UK-French Drone Plans

Forget about data stealing trojans. Unidentified thieves got a hold of top secret plans for a joint French-British drone aircraft project the old fashioned way: by snatching an executive’s briefcase at a Paris train station. An executive from the French defense contractor Dassault Aviation had th...

Xiang Dong ("Mike") Yu (Ford Motor)

Yu was a Product Engineer and ten-year veteran of U.S. automaker Ford Motor Company who admitted to copying around 4,000 confidential Ford documents to an external hard drive and passing them to Beijing Automotive Company with whom he hadtaken a job. The design documents have been valued at aroun...

White House E-Card Scam Part of Larger Zeus-Related Attack !

The simplistic spam campaign that hit around Christmas and purported to be a holiday greeting from the White House not only included a piece of Zeus-related malware that searches hard drives for documents and uploads them to a remote server, but also appears to be connected to a similar attack fr...

blackboardLS.txt

Advisory: Blackboard Learning System - Stealing documents out of the digital dropbox ========================================================================== Blackboard ---------- The Blackboard Learning System is a Web-based server software platform that offers course management. More...

Blackboard Learning System - Stealing documents out of the digital dropbox

Advisory: Blackboard Learning System - Stealing documents out of the digital dropbox ========================================================================== Blackboard ---------- The Blackboard Learning System is a Web-based server software platform that offers course management. More...