FIN7 Lures Unwitting Security Pros to Carry Out Ransomware Attacks

The infamous Carbanak operator is moving is looking to juice its ransomware game by recruiting IT staff to its fake Bastion Secure ‘pen-testing’ company. The financially motivated cybercrime gang behind…

Malicious Accounts that Targeted Security Researches Were Suspended by Twitter

Two malicious accounts used by threat actors in a seemingly North Korean cyber-espionage campaign were suspended by Twitter. The accounts under discussion are @lagal1990 and @shiftrows13 working as bait for…

Twitter Suspends Accounts Used to Snare Security Researchers

The accounts were used to catfish security researchers into downloading malware in a long-running cyber-espionage campaign attributed to North Korea. Twitter has shuttered two accounts – @lagal1990 and @shiftrows13 –…

Google: We're sending out lots more phishing and malware attack warnings – here's why

Google’s policy to send alerts to people with Google Accounts that are targeted by suspected state-sponsored hackers is getting a full work out in 2021. The company says it has…

DDoS Operator Arrested by the Ukrainian Police

As my colleague Cezarina explained in a previous article, a botnet is a network of infected computers or other internet-connected devices, that communicate with each other in order to perform the…

Ukraine Police Cuff Botnet Herder Who Controlled 100K Machines

Ukraine Police Cuff Botnet Herder Who Controlled 100K Machines Ukrainian law enforcers have arrested a suspected botnet herder responsible for controlling an automated network of around 100,000 compromised machines to…

Vidar Stealer Returns and Has a New Target: Mastodon

Vidar stealer is back and has a new target: this time, the Mastodon social media network is being abused in a fresh malicious campaign. The goal is C2 configuration achievement…

Telegram Bots Stealing One-Time Passwords

So far two Telegram bots called SMSRanger and BloodOTPbot have been found taking part in this malicious campaign. Intel 471 researchers report that Telegram-powered bots are the hot favorites of…

Threat Actors Weaponize Telegram Bots to Compromise PayPal Accounts

A campaign is stealing one-time password tokens to gain access to PayPal, Apple Pay and Google Pay, among others. Cybercriminals are using Telegram bots to steal one-time password tokens (OTPs)…

New BloodyStealer malware steals data from gamers on EA, Epic, Stream

The BloodyStealer malware is being sold on Russian hacking forums while its capabilities include stealing gaming logs, login credentials, and much more. On Monday 27th, the IT security researchers at…