Category Added in a WPeMatico Campaign
April 13, 2022 Google on Monday disclosed that it’s taking legal action against a nefarious actor who has been spotted operating fraudulent websites to defraud unsuspecting people into buying non-existent puppies. “The actor used a network of fraudulent websites that claimed to sell basset hound puppies — with alluring photos and fake customer testimonials — …
Google Sues Scammer for Running ‘Puppy Fraud Scheme’ Website Read More »
April 13, 2022 The mass adoption of cloud infrastructure is fully justified by innumerable advantages. As a result, today, organizations’ most sensitive business applications, workloads, and data are in the cloud. Hackers, good and bad, have noticed that trend and effectively evolved their attack techniques to match this new tantalizing target landscape. With threat actors’ …
April 12, 2022 Microsoft last week announced that it intends to make generally available a feature called Autopatch as part of Windows Enterprise E3 in July 2022. “This service will keep Windows and Office software on enrolled endpoints up-to-date automatically, at no additional cost,” said Lior Bela, senior product marketing manager at Microsoft, in a post last …
Microsoft’s New Autopatch Feature to Help Businesses Keep Their Systems Up-to-Date Read More »
April 12, 2022 Cybersecurity researchers are warning of two different information-stealing malware, named FFDroider and Lightning Stealer, that are capable of siphoning data and launching further attacks. “Designed to send stolen credentials and cookies to a Command & Control server, FFDroider disguises itself on victim’s machines to look like the instant messaging application ‘Telegram,’” Zscaler ThreatLabz Article posted …
Researchers warn of FFDroider and Lightning info-stealers targeting users in the wild Read More »
April 10, 2022 The recently disclosed critical Spring4Shell vulnerability is being actively exploited by threat actors to execute the Mirai botnet malware, particularly in the Singapore region since the start of April 2022. “The exploitation allows threat actors to download the Mirai sample to the ‘/tmp’ folder and execute them after permission change using ‘chmod,’” …
Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware Read More »
April 9, 2022 Microsoft on Thursday disclosed that it obtained a court order to take control of seven domains used by APT28, a state-sponsored group operated by Russia’s military intelligence service, with the goal of neutralizing its attacks on Ukraine. “We have since re-directed these domains to a sinkhole controlled by Microsoft, enabling us to …
Microsoft Obtains Court Order to Take Down Domains Used to Target Ukraine Read More »
April 9, 2022 A 32-year-old Ukrainian national has been sentenced to five years in prison in the U.S. for the individual’s criminal work as a “high-level hacker” in the financially motivated group FIN7. Denys Iarmak, who worked as a penetration tester for the cartel from November 2016 through November 2018, had been previously arrested in Bangkok, Thailand …
Ukrainian FIN7 Hacker Gets 5-Year Sentence in the United States Read More »
April 9, 2022 Cybersecurity researchers have uncovered further links between BlackCat (aka AlphaV) and BlackMatter ransomware families, the former of which emerged as a replacement following international scrutiny last year. “At least some members of the new BlackCat group have links to the BlackMatter group, because they modified and reused a custom exfiltration tool […] and which …
Researchers Connect BlackCat Ransomware with Past BlackMatter Malware Activity Read More »
April 9, 2022 China-linked adversaries have been attributed to an ongoing onslaught against Indian power grid organizations, one year after a concerted campaign targeting critical infrastructure in the country came to light. Most of the intrusions involved a modular backdoor named ShadowPad, according to Recorded Future’s Insikt Group, a sophisticated remote access trojan which has been dubbed a “masterpiece Article …
Chinese Hacker Groups Continue to Target Indian Power Grid Assets Read More »
April 9, 2022 A number of rogue Android apps that have been cumulatively installed from the official Google Play Store more than 50,000 times are being used to target banks and other financial entities. The rental banking trojan, dubbed Octo, is said to be a rebrand of another Android malware called ExobotCompact, which, in turn, is …
New Octo Banking Trojan Spreading via Fake Apps on Google Play Store Read More »
