‘PseudoManuscrypt’ Mass Spyware Campaign Targets 35K Systems

It’s similar to Lazarus’s Manuscrypt malware, but the new spyware is splattering itself onto government organizations and ICS in a non-Lazarus-like, untargeted wave of attacks. Researchers have tracked new spyware…

Actively Exploited Microsoft Zero-Day Allows App Spoofing, Malware Delivery

December’s Patch Tuesday updates address six publicly known bugs and seven critical security vulnerabilities. Microsoft has addressed a zero-day vulnerability that was exploited in the wild to deliver Emotet, Trickbot…

‘Seedworm’ Attackers Target Telcos in Asia, Middle East

The focused attacks aimed at cyberespionage and lateral movement appear to hint at further ambitions by the group, including supply-chain threats. Attackers targeting telcos across the Middle East and Asia…

Police Arrest Suspected Ransomware Actor in Romania

Police Arrest Suspected Ransomware Actor in Romania European and US law enforcers have joined forces to arrest a suspected ransomware affiliate member who targeted firms in an IT supply chain…

Ransomware suspect arrested over attacks on 'high-profile' organisations

Europol’s European Cybercrime Centre has worked with the Romanian National Police and FBI on the arrest of a suspected ransomware affiliate who is alleged to have targeted high-profile organisations and…

Romanian ransomware suspect arrested in joint Europol, FBI operation

Written by AJ Vicens Dec 13, 2021 | CYBERSCOOP A Romanian man accused of using ransomware to target “high-profile” organizations and companies was arrested Monday as part of a joint…

Vulnerabilities Exploited for Monero Mining Malware Delivered via GitHub, Netlify

Trend Micro – Trend Micro – Vulnerabilities Exploited for Monero Mining Malware Delivered via GitHub, Netlify We looked into exploitation attempts we observed in the wild and the abuse of…

Colorado energy company loses 25 years of data after cyberattack, still rebuilding network

Colorado’s Delta-Montrose Electric Association (DMEA) is still struggling to recover from a devastating cyberattack last month that took down 90% of its internal systems and caused 25 years of historic…

Toss a Coin to your Helper (Part 2 of 2)

Avast –  Avast –  In the first posting of this series, we looked at a clipboard stealer belonging to the MyKings botnet. In this second part of the blog series,…

Lloyd’s Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks

The insurer won’t pay for ‘acts of cyber-war’ or nation-state retaliation attacks.    Fallout from nation-state sponsored cyberattacks will no longer be covered under cyber-insurance policies issued by famed insurer…