The BlackCat ransomware gang is now using the Sphynx encryptor to target Azure cloud storage. The Spynx variant was discovered in March this year in an investigation of a data breach that shared similarities with another attack described in an IBM-Xforce report.
BlackCat continues to be one of the most high-profile, sophisticated threat actor groups, owing to the gang’s ability to continuously refine and adapt its tactics.
A new phishing attack campaign using DarkGate Loader malware has been identified, with Microsoft Teams users being urged to exercise caution.
This malware is specifically a ‘loader malware’ meaning that it is able to download and execute other malware programs on the infected device. The additional malware then downloads in the infected device’s memory structure, making it hard to detect since it isn’t in the device’s file system.
A malicious malware attack targeting Asia’s power grid has been reported.
Called ShadowPad or PoisonPlug the malware allows for credential theft. Reports allege the malware to be the work of novel threat operation RedFly.
Dunghill Leak group claims responsibility for Sabre attack The Dunghill Leak group has claimed responsibility for the cyberattack on travel booking giant Sabre which left its files exposed on a dark web leak site. The company is investigating the claims by the threat actors. New scholarship launched in response to increasing cyber threats The SANS […]
New RAT variant gives control over Android devices The Indian government has warned of a malware attacking Android users through social media. Called DogeRAT, the new malware is able to access sensitive data, such as contacts, messages, and bank credentials, and grant hackers control over infected Android devices. New Chaes malware variant displays ‘significant transformations’ […]
In today’s roundup; Russian threat actors target the Ukranian Military, browser-hacking malware found on the phones of Xiaomi users, and a LockBit data leak.
In this roundup; experts warn of new ‘polyglot’ malware, AI neutralizes trillions of IT events, and Northern Ireland data breach suspects have been arrested.
The China-backed hacking group referred to as RedHotel has been linked to attacks in 17 countries during a three-year espionage campaign. According to cybersecurity firm Recorded Future, RedHotel has been infiltrating sectors such as academia, aerospace, government, media, telecoms, and research while operating across the US, Europe, and Asia.
In today’s roundup; a Chinese cyberespionage group deploys malware, new Android malware, MMRat, unlocks phones, and DreamBus malware targets RocketMS servers.
New updated KmsdBot now targets Internet of Things (IoT) An updated version of KmsdBot now includes support for Telnet scanning and more CPU architectures, making it more destructive than before. As a result of its increased capabilities, the updated botnet malware is now targeting the Internet of Things (IoT). Main 2023 malware culprits identified Malware […]
The malicious threat actor behind CypherRAT and CraxsRAT malware has been unmasked as the Syrian threat actor, EVLF. These RATS allow an attacker to control a victim’s device’s location, camera, and microphone.
In today’s roundup; XLoader, OfficeNote copycat hides malicious code, hosting firm refuses to pay ransom, and Cybersmart announces $15 million series B funding.
According to the Wall Street Journal, a trio of major cyber companies announced layoffs, further highlighting a slowdown in the sector, which though resilient, is starting to feel the impact of a wider downturn. Rapid 7, a Boston-based company, announced layoffs affecting 400 people, while Atlanta’s Secureworks cut 300, and Dragos let go of 50.
In an exclusive interview with Cyber Intelligence, Ido Naor, Co-founder and CEO of Security Joes, a cybersecurity firm specializing in incident response and crisis management services, explains why gambling is the latest sector to be targeted by cybercrime.
The rapid growth of online gambling that began during pandemic lockdowns has made the online gambling industry a honeypot for cybercrime. At the same time, research conducted by the UK Gambling Commission showed that online gamblers were spending more and were unlikely to change their gambling habits once the lockdown ended.
“There has been a big rise in gambling cybercrime ever since the pandemic lockdowns, when gamblers, including many high-stakes players, were forced to play online. Many players have since been reluctant to return to physical casinos, preferring online gambling, leaving the door open to fraud,” says Ido Naor, Co-founder and CEO of cybersecurity firm Security Joes.
Boyd Wilson
