U.S., allies warn of rising recent and future attacks on managed service providers

Written by AJ Vicens May 11, 2022 | CYBERSCOOP Cybersecurity authorities in the U.S., U.K., Australia, Canada and New Zealand released a joint advisory Wednesday warning that they “expect malicious…

North Korea aims 'TraderTraitor' malware at cryptocurrency workers

Written by Tonya Riley Apr 19, 2022 | CYBERSCOOP North Korean state-backed hackers are phishing cryptocurrency company employees in order to gain access to systems that allow them to make…

Microsoft seizes internet domains linked to GRU cyberattacks against Ukraine

Written by Joe Warminsky Apr 8, 2022 | CYBERSCOOP Microsoft says it has shut down internet infrastructure that Russian state-backed hackers used to attack the networks of organizations in Ukraine…

Sandworm-linked botnet has another piece of hardware in its sights

Written by Joe Warminsky Mar 17, 2022 | CYBERSCOOP Botnet activity that drew loud warnings last month from U.S. and U.K. cybersecurity agencies has expanded to a second type of…

Russia-linked Sandworm reportedly has retooled with 'Cyclops Blink'

Written by Joe Warminsky Feb 23, 2022 | CYBERSCOOP A long-running hacking group associated with Russian intelligence has developed a new set of tools to replace malware that was disrupted…

Red Cross attributes hack to nation-state actor

Written by Tonya Riley Feb 16, 2022 | CYBERSCOOP The International Committee of the Red Cross has concluded that a nation-state hacker was behind a cyberattack on its servers discovered…

Russia-linked Gamaredon shows signs of possible recent activity in Ukraine, researchers say

Written by AJ Vicens Feb 4, 2022 | CYBERSCOOP A series of cyberattacks on Ukrainian institutions over the past few weeks — including website defacement, computer-wiping malware and phishing campaigns…

Conversation with a top Ukrainian cyber official: What we know, what we don't, what it means

Written by AJ Vicens Jan 31, 2022 | CYBERSCOOP Cybersecurity officials in Ukraine issued a warning Monday about yet another phishing attack using either compromised or spoofed government email addresses,…

‘PseudoManuscrypt’ Mass Spyware Campaign Targets 35K Systems

It’s similar to Lazarus’s Manuscrypt malware, but the new spyware is splattering itself onto government organizations and ICS in a non-Lazarus-like, untargeted wave of attacks. Researchers have tracked new spyware…

Suspected Iranian hackers target airline with new backdoor

A suspected, state-sponsored Iranian threat group has attacked an airline with a never-before-seen backdoor.  On Wednesday, cybersecurity researchers from IBM Security X-Force said an Asian airline was the subject of…