Tag: malware
Hamas hijacks dead hostages’ smartphones for cyber-strikes
Terrorist group Hamas, which was responsible for the recent atrocities committed in Israel, is reported to be using the smartphones of dead and captured Israeli hostages as entry points to monitor Israeli citizens in preparation for forthcoming cyber-strikes on Israel.
Stealthy malware with ‘spy’ abilities makes headlines – October 19th
A stealthy malware known as SpyNote has made headlines because of its ability to steal data, record calls and access the cameras of devices it has infected. The malware disguises itself as a phone operating system update, fooling targeted victims into allowing it access privileges
Massive hike in phishing and malware attacks in Q3 – October 18th
Reports show that phishing and malware attacks have spiked by 173% and 110% respectively in the third quarter of this year, compared with the second quarter of the year. A staggering 493.2 million phishing attacks and 125.7 million malware attacks were logged during this period.
Discord called a ‘hotbed’ of malware activity – October 17th
Discord continues to be used by threat actors to launch malware attacks. Researchers have warned the online platform continues to be used to distribute malware and exfiltrate data. Three ways threat actors have been using Discord include stealing passwords, abusing webhooks, and stealing passwords.
Q3-2023 shows ransomware attacks have doubled since last year – October 16th
The Q3-2023 Ransomware Report of cyber threat intelligence company Cyble has shown that ransomware attacks have doubled over the past year. The reports also show the healthcare sector to be the most targeted in these attacks, and the US as being the most targeted area.
Google responds to increase in malware-related money theft – October 13th
Google has warned users of Android devices to take specific precautionary measures to prevent malware infection. This warning comes after a reported increase in malware aimed at stealing information and money. Precautionary measures advised by the service provider include turning on Google Play Protect, updating software, and removing untrusted apps.
Senior citizens targeted in Phantom Hacker scam – October 12th
State security in Pennsylvania, US has warned against a new hacker scam targeting senior citizens, called Phantom Hacker. The scam artists attempt to convince senior citizens that their accounts holding financial details have been hacked. They then suggest transferring money into an 'alias' account under the guise of being federal agency officials.
LockBit threatens another major data leakage – October 11th
The LockBit ransomware gang has threatened to release data stolen from CDW Corp, a major IT reseller and services provider in the US, UK, and Canada after discussions over the ransom fee for the data commenced. The notorious ransomware gang demanded $80 million, with CDW offering just $1.1 million as their ransom counteroffer.
Ancestry data sold by threat actors online – October 10th
Ancestry site 23andMe with nearly 1M users has acknowledged a hacker leak, with hackers listing stolen data relating to family genetics online for sale. The hackers seemed to have targeted users of Ashkenazi Jewish heritage. The data includes the last name, sex, and 23andMe’s evaluation of where their ancestors came from. This is now being investigated, to find out who the threat actors are, along with the motive of the attack.
Google to adapt email sender guidelines for heightened security – October 4th
In response to the increasingly hostile cyber environment, Google will tighten bulk email sending regulations next year. Reports say that the server plans to send new email sender guidelines in February, which will require senders of bulk email to authenticate their emails and adhere to stricter spam regulations.
BunnyLoader is up for sale in the cyber underground market – October 3rd
A new malware threat, identified as BunnyLoader, is being sold in the cyber underground market. This Malware-as-a-Service (MaaS) threat has various capabilities, including stealing browser credentials, and system information as well as executing a second-stage payload.
New malware payload evades detection – October 2nd
Crypto firms have been warned about the new Lazarus malware payload, called 'LightlessCan', which easily evades detection. The malware variant has since been used in fake job scams. The 'LightlessCan' malware was discovered on 29 September, while researchers were investigating a fake employment scam attack leveled against a Spanish aerospace firm.