105 matches found
APT trends report Q1 2022
For five years, the Global Research and Analysis Team GReAT at Kaspersky has been publishing quarterly summaries of advanced persistent threat APT activity. These summaries are based on our threat intelligence research; and they provide a representative snapshot of what we have published and...
Finland Faces Blizzard of Flubot-Spreading Text Messages
The Flubot banking trojan is blanketing Finland, spreading via Android phones that are sending millions of malicious text messages. On Friday, the National Cyber Security Centre NCSC-FI at the Finnish Transport and Communications Agency posted a “severe” alert about the malware blizzard, which it...
A New Wave of Malware Attack Targeting Organizations in South America
A spam campaign delivering spear-phishing emails aimed at South American organizations has retooled its techniques to include a wide range of commodity remote access trojans RATs and geolocation filtering to avoid detection, according to new research. Cybersecurity firm Trend Micro attributed the...
Malware Attack on Aviation Sector Uncovered After Going Unnoticed for 2 Years
A targeted phishing campaign aimed at the aviation industry for two years may be spearheaded by a threat actor operating out of Nigeria, highlighting how attackers can carry out small-scale cyber offensives for extended periods of time while staying under the radar. Cisco Talos dubbed the malware...
How to Reduce Exchange Server Downtime in Case of a Disaster?
Exchange Server downtime may occur at any point in time due to several reasons, such as malware attack, server crash, database corruption, and hardware or software-related issues/incompatibility. However, downtime can impact productivity and lead to data loss that can have severe implications on...
Malware Attack on South Korean Entities Was Work of Andariel Group
A malware campaign targeting South Korean entities that came to light earlier this year has been attributed to a North Korean nation-state hacking group called Andariel, once again indicating that Lazarus attackers are following the trends and their arsenal is in constant development. "The way...
Canada Post discloses data breach after malware attack
By Waqas According to Canada Post, sensitive information of over 950,000 customers and 44 of its large business clients has been exposed in the malware attack. This is a post from HackRead.com Read the original post: Canada Post discloses data breach after malware attack...
Microsoft shares details of malware attack on aerospace, travel sector
By Habiba Rashid The malware allows attackers to steal credentials, take screenshots, webcam data, browser, clipboard data, system, and network info. This is a post from HackRead.com Read the original post: Microsoft shares details of malware attack on aerospace, travel sector...
Apple kept mum about XcodeGhost malware attack against 128M users
By Deeba Ahmed Apparently, nearly 128 million iOS users downloaded apps containing the XcodeGhost malware but Apple did not inform users about the attack. This is a post from HackRead.com Read the original post: Apple kept mum about XcodeGhost malware attack against 128M users...
Gamers targeted in new malware attack with games cheat codes
By Habiba Rashid The malware used in this attack is XtremeRat ExtRat which is a commercially available remote access trojan RAT. Here's what we know so far. This is a post from HackRead.com Read the original post: Gamers targeted in new malware attack with games cheat codes...
Operation Dianxun Cyberespionage Campaign Targeting Telecommunication Companies
ARCHIVED STORY Operation Diànxùn: Cyberespionage Campaign Targeting Telecommunication Companies By Thomas Roccia · MAR 16, 2021 In this report the McAfee Advanced Threat Research ATR Strategic Intelligence team details an espionage campaign, targeting telecommunication companies, dubbed Operation...
Valentine’s Day Malware Attack Mimics Flower Store
With Valentine’s Day approaching this weekend, several people have received “recent order” email confirmations for flowers or lingerie. These emails are actually part of a spear-phishing attack, which ultimately leads recipients to a malicious document that executes the BazaLoader malware. The...
OpenMage: Very long names on demo.openmage.org could redirect victim users to malicious url redirects via email contacts.
Summary: We found that the maximum length of the first and last name fields was not set to 32 characters at registration and to 1000 characters when using the profile update form. The attacker can use this method as a malware attack, the user will redirect to a website that contains malware or...
Nextcloud: [nextcloud.com] Control character allowed in Submit Question
Issue descriptions We found that the maximum length of the first and last name fields was not set to 32 characters at registration and to 1000 characters when using the profile update form. The attacker can use this method as a malware attack, the user will redirect to a website that contains...
Feds Pinpoint Russia as ‘Likely’ Culprit Behind SolarWinds Attack
The U.S. government has identified Russia as the “likely” culprit behind the widespread SolarWinds cyberattack that has so far affected multiple federal agencies and private-sector companies. Cyberespionage is cited as the motivation behind the attack, which the feds characterized as ongoing. In ...
COVID-19 Antigen Firm Hit by Malware Attack
Over the past two weeks, global biotech firm Miltenyi has been battling a malware attack on its IT infrastructure, the company said in a recent disclosure to its customers. Miltenyi, which has been working on treatments for COVID-19, is still wrestling with phone and email communications in the...
SMB cybersecurity posture weakened by COVID-19, Labs report finds
In August, Malwarebytes Labs analyzed the damage caused by COVID-19 to business cybersecurity. Because of immediate, mandated transitions to working from home WFH, businesses across the United States suffered more data breaches, lost more dollars, and increased their overall attack surfaces, all...
EncroChat system eavesdropped on by law enforcement
Due to the level of sophistication of the attack, and the malware code, we can no longer guarantee the security of your device. This text caused a lot of aggravation, worries, and sleepless nights. No one wants to hear the security of their device has been compromised by a malware attack. The goo...
UCSF Pays $1.14M After NetWalker Ransomware Attack
The University of California, San Francisco UCSF has paid a $1.14 million ransom to recover data related to “important” academic work. The data was encrypted after the NetWalker ransomware reportedly hit the UCSF medical school. The UCSF, which includes a medical school and a medical center UCSF...
EncroChat encrypted communication provider quits after malware attack
By Waqas Encrypted communication network EncroChat has announced to shut down its services for good. This is a post from HackRead.com Read the original post: EncroChat encrypted communication provider quits after malware attack...