ATM bombing suspect blew himself up while filming tutorial
The incident took place while the suspect was recording himself for a tutorial on how to bomb ATM (Automatic Teller Machines). In April 2021, the Dutch and German law enforcement
Facebook Outage Drags Down Instagram, WhatsApp, Messenger, Oculus VR
They were all flat on their faces for hours on Monday, throwing off DNS error messages or other server-related errors. As of Monday afternoon, Facebook had been flat on its
Encrypted & Fileless Malware Sees Big Growth
An analysis of second-quarter malware trends shows that threats are becoming stealthier. A full 91.5 percent of malware was delivered using HTTPS-encrypted connections in the second quarter, researchers said, making
Facebook down with Messenger, Instagram, WhatsApp service disruption
Facebook down? Yes, Facebook is down along with Messenger, Instagram, WhatsApp, and Oculus VR. You are not alone; the social media giant Facebook along with its subsidiaries including Messenger, Instagram,
Ex-army admin jailed for 12 years over US military health data theft
Frederick Brown, a medical data technician & administrator associated with the 65th Medical Brigade of the US Army caused millions of dollars in losses Frederick Brown, a 40-year-old resident of
Transnational Fraud Ring Bilks U.S. Military Service Members Out of Millions
A former medical records tech stole PII that was then used to fraudulently claim DoD and VA benefits, particularly targeting disabled veterans. More than 3,300 U.S. military service members, military
Staking Protocol Compound Users Mistakenly Receive $90M
Last week, Compound Labs users have been surprised to see that they have received money from the company. They later found out that DeFi staking protocol Compound has accidentally given
Why healthcare IoT requires stronger healthcare cybersecurity
The healthcare industry has gone through a dramatic technological transformation, one that has been accelerated by COVID. Internet-connected devices (collectively known as the Internet of Things, or IoT devices), once
Sandhills Shut Down by Ransomware Attack
Sandhills Global is a privately held information processing firm based in the United States that creates a wide range of products and services, ranging from well-known trade magazines and websites
Biden Administration Gathers 30 Countries for a Meeting on Cybercrime and Ransomware
In a statement released on Friday, U.S. President Joe Biden declared that this month the White House will convoke a 30-country meeting in order to try to jointly fight against cybercrime and
Former Army Contractor Received 12.5 Years Sentence for Fraud Scheme
A former U.S. Army contractor identified as Fredrick Brown got sentenced to 12.5 years months in prison. He admitted to having played an important role in a conspiracy that targeted
Cybersecurity’s next phase: Cyber-deterrence
Padlokr – Can we reduce the likelihood of digital attacks? Digital defense via shutterstock.com Dorothy Denning, Naval Postgraduate School Cyberattackers pose many threats to a wide range of targets. Russia,
IoT:It’s far too easy for abusers to exploit smart toys and trackers
Padlokr – JpegPhotographer/Shutterstock Saheli Datta Burton, UCL and Madeline Carr, UCL The wearable technology market is booming, with half a billion wearables sold globally in 2020. Apps on these devices,
Android flubot malware installs itself by faking security update
The security update is obviously phony but looks authentic that can deceive users into installing Flubot malware on their devices. New Zealand’s Computer Emergency Response Team (Cert NZ) has issued
Hackers exploit 2FA flaw to steal crypto from 6,000 Coinbase users
Coinbase is working to reimburse the customers for the funds they have lost and help them regain control of their accounts. Coinbase Global Inc. has sent a breach notification letter
MFA Glitch Leads to 6K+ Coinbase Customers Getting Robbed
Coinbase suspects phishing led to attackers getting personal details needed to access wallets but also blamed a flaw in its SMS-based 2FA. The accounts of at least 6,000 Coinbase customers
Anonymous leaks more EPIK host data; ‘larger than previous leak’
The latest EPIK data leak, according to Anonymous hackers involves bootable disk images, API tokens, over 500,000 private keys, etc. – All in plain-text format. Hacktivist group Anonymous has published
3.1M Neiman Marcus Customer Card Details Breached
Experts say the detection delay of 17 months is a colossal security blunder by the retailer. Dallas-based Neiman Marcus Group is known worldwide as the go-to luxury retailer for the
Google pushes emergency update for Chrome zero-days, the latest in a hectic year for vulnerabilities
Written by Tim Starks Oct 1, 2021 | CYBERSCOOP Google Chrome has issued emergency updates for two zero-day flaws that attackers are exploiting, the second pair for the browser in
Flubot Malware Targets Androids With Fake Security Updates
The banking trojan keeps switching up its lies, trying to fool Android users into clicking on a fake Flubot-deleting app or supposedly uploaded photos of recipients. The Flubot banking trojan
JVCKenwood Suffers Ransomware Attack
This week, the ransomware threat actors made a new victim. The Japan-based organization JVCKenwood has recently revealed it suffered a ransomware attack conducted by the Conti ransomware group. What Data
Apple AirTags can be used as trojan for credential hacking
According to security researcher Bobby Raunch, the attack exploits the way Lost Mode of AirTags is set up. Although Apple’s Bluetooth-enabled item trackers called AirTags are pretty helpful as you
New Pegasus Scanner Used to Infect Windows
The spyware mimics the behavior pattern of a real antivirus program designed to check the system for Pegasus traces and remove them. Sarwent-based assaults have been active since at least
New APT ChamelGang Targets Russian Energy, Aviation Orgs
First appearing in March, the group has been leveraging ProxyShell against targets in 10 countries and employs a variety of malware to steal data from compromised networks. A new APT
Unwanted Gift: Ransomware, Supply Chain Attacks, and How to Prevent Them
Now more than ever, supply chains are attracting threat actor attention. As evidenced by attacks like the one which recently targeted the IT services provider Kaseya and over 1,500 of
Vulnerabilities in QNAP Fixed
Multiple patches were released by the Taiwan-based network-attached storage (NAS). In this way, they addressed the vulnerabilities that could enable attackers to inject and execute malicious code and commands remotely
GhostEmperor Campaign Targets Asian Countries Abusing Microsoft Vulnerabilities
Cybersecurity researchers have recently disclosed details of the Chinese-based threat actor GhostEmperor who allegedly targeted several south-east Asian countries for more than a year. According to Kaspersky specialists Mark Lechtik,
Ryuk Ransomware: Origins, Operation Mode, Mitigation
What is Ryuk Ransomware? Widely known for targeting governments, academia, healthcare, manufacturing, and technology organizations’ cybersystems, Ryuk is a ransomware-as-a-service (RaaS) group that’s been active since August 2018. It typically encrypts data
Google Emergency Update Fixes Two Chrome Zero Days
This is the second pair of zero days that Google’s fixed this month, all four of which have been actively exploited in the wild. Google has pushed out an emergency
GriftHorse Android malware hit 10 millions devices in 70 countries
GriftHorse malware uses malicious apps to subscribe victims to premium services that cost them $42 (£30 –€36) per month. The IT security researchers at Zimperium Labs have reported an Android
Military’s RFID Tracking of Guns May Endanger Troops
RFID gun tags leave the military exposed to tracking, sniffing and spoofing attacks, experts say. Reports that the military has started outfitting firearms with RFID tags for tracking have raised
Tips & Tricks for Unmasking Ghoulish API Behavior
Jason Kent, hacker-in-residence at Cequence Security, discusses how to track user-agent connections to mobile and desktop APIs, to spot malicious activity. I was analyzing one of my customer’s API traffic
Baby’s Death Alleged to Be Linked to Ransomware
Access to heart monitors disabled by the attack allegedly kept staff from spotting blood & oxygen deprivation that led to the baby’s death. A U.S. hospital paralyzed by ransomware in
Innovative Proxy Phantom ATO Fraud Ring Haunts eCommerce Accounts
The group uses millions of password combos at the rate of nearly 2,700 login attempts per minute with new techniques that push the ATO envelope. A sophisticated fraud ring, dubbed
Apple Pay with Visa Hacked to Make Payments via Locked iPhones
Researchers have demonstrated that someone could use a stolen, locked iPhone to pay for thousands of dollars of goods or services, no authentication needed. An attacker who steals a locked
Apple Pay with Visa Hacked to Make Payments via Unlocked iPhones
Researchers have demonstrated that someone could use a stolen, unlocked iPhone to pay for thousands of dollars of goods or services, no authentication needed. An attacker who steals a locked
Watch Out! GriftHorse Malware Delivered via Play Store Impacted 10M Android Devices in Over 70 Countries
Cybersecurity specialists have discovered a new malware that affects Android phones. The new Android trojan dubbed GriftHorse was spread via the Google Play store as well as some third-party app
Cybersecurity Firm CEO Arrested on Suspicion of High Treason
Group-IB originated in Russia but relocated its headquarters to Singapore. Since 2015, they’ve provided information, knowledge, and statistical data to law enforcement agencies (Europol and Interpol) to aid in the
Hackers posed as Amnesty International, promising anti-spyware tool that actually collects passwords
Written by Tonya Riley Sep 30, 2021 | CYBERSCOOP Fraudsters are posing as human rights group Amnesty International to trick individuals into downloading malicious software, researchers at Cisco’s threat intelligence
The Top Ransomware Threats Aren’t Who You Think
Move over REvil, Ragnar Locker, BlackMatter, Conti et al: Three lesser-known gangs account for the vast majority of ransomware attacks in the U.S. and globally. While there seem to be
Thousands of University Wi-Fi Networks Expose Log-In Credentials
Certificate misconfigurations of the EAP protocol in Eduroam (and likely other networks globally) threaten Android and Windows users. Multiple configuration flaws in a free Wi-Fi network used by numerous universities
Apple Pay with VISA Allows Malicious Actors to Force Payments on Locked iPhone Devices
The researchers from the University of Birmingham and the University of Surrey discovered the fact that iPhone devices are able to confirm transactions under certain conditions. Unfortunately, it can be
Forward Air Corporation Recently Disclosed Data Theft Following a Ransomware Attack
The Tennessee-based company Forward Air has revealed a data breach following a ransomware incident that occurred last year. During the attack, cybercriminals managed to access and steal confidential information belonging
North Korea targeted cybersecurity researchers using a blend of hacking and espionage
Padlokr – North Korea has a long history of hacking targets in the U.S. Chris Price/Flickr, CC BY-ND Paulo Shakarian, Arizona State University North Korean hackers have staged an audacious
Hackers could shut down satellites – or turn them into weapons
Padlokr – Two CubeSats, part of a constellation built and operated by Planet Labs Inc. to take images of Earth, were launched from the International Space Station on May 17,
A cyberattack could wreak destruction comparable to a nuclear weapon
Padlokr – Digital attacks can cause havoc in different places all at the same time. Pushish Images/Shutterstock.com Jeremy Straub, North Dakota State University People around the world may be worried
Domain name fraud: is the global Internet in danger?
Padlokr – A spider’s web is secure, and ours? Robert Anasch/Unsplash, CC BY Hervé Debar, Télécom SudParis – Institut Mines-Télécom In late February 2019, the Internet Corporation for Assigned Names and
Aerial threat: why drone hacking could be bad news for the military
Padlokr – Are military drones a security threat to their own operators? Gorodenkoff/Shutterstock Mohiuddin Ahmed, Edith Cowan University and Paul Haskell-Dowland, Edith Cowan University Unmanned aerial vehicles, more commonly called