VirusTotal hacking – Hackers can access trove of stolen credentials on VirusTotal

Dubbed VirusTotal Hacking; the attack allowed researchers to access 1,000,000 login credentials exfiltrated by unencrypted crypto wallets and different types of malware. Security researchers at SafeBreach have discovered a way…

Destructive Wiper Targeting Ukraine Aimed at Eroding Trust, Experts Say

Disruptive malware attacks on Ukrainian organizations (posing as ransomware attacks) are very likely part of Russia’s wider effort to undermine Ukraine’s sovereignty, according to analysts. Russia is positioned for a…

Guardio Review: Can This Browser Extension Really Protect You From Cybercrime?

From leaked passwords to stolen identities, cybercrime has been steadily increasing over the past ten years, with 2020 seeing record numbers of money lost to fraudulent activities based on stolen…

FBI – Malicious QR codes stealing login and financial data

The FBI has issued an alert urging users to refrain from scanning anonymous QR codes as cybercriminals are using these QR codes to steal login credentials, financial information, and funds.…

Will 2022 Be the Year of the Software Bill of Materials?

Praise be & pass the recipe for the software soup: There’s too much scrambling to untangle vulnerabilities and dependencies, say a security experts roundtable. Here, have a can of soup.…

Cybercriminals Actively Target VMware vSphere with Cryptominers

VMware’s container-based application development environment has become attractive to cyberattackers. Organizations running sophisticated virtual networks with VMware’s vSphere service are actively being targeted by cryptojackers, who have figured out how…

QR codes can eat your lunch, FBI warns

Written by Joe Warminsky Jan 18, 2022 | CYBERSCOOP QR codes are among the few “winners” of the coronavirus pandemic, the joke goes, because restaurants and other businesses have deployed…

‘White Rabbit’ Ransomware May Be FIN8 Tool

It’s a double-extortion play that uses the command-line password ‘KissMe’ to hide its nasty acts and adorns its ransom note with cutesy ASCII bunny art. A new ransomware family, White…

Critical ManageEngine Desktop Server Bug Opens Orgs to Malware

Zoho’s comprehensive endpoint-management platform suffers from an authentication-bypass bug (CVE-2021-44757) that could lead to remote code execution. A critical security vulnerability in the Zoho ManageEngine Desktop Central and Desktop Central…

International effort takes down VPN service, VPNLab, used for criminal activity

Written by AJ Vicens Jan 18, 2022 | CYBERSCOOP A virtual private network service used for malware distribution, ransomware operations and other cybercrime activities was taken offline Monday as law…