cybercrime

Invoice ZLoader campaign hides within encrypted Excel docs
Malware in code
malware

Invoice ZLoader campaign hides within encrypted Excel docs

Emails use fake new IRS taxation rules to lure victims
8 Mar 2021
Monero miners target cloud-native development environments
Bitcoin cryptocurrency mining
cryptocurrencies

Monero miners target cloud-native development environments

Hackers behind the heist could be Russian
5 Mar 2021
AOL users are the target of a new phishing campaign
Email sign with a fish hook on blue digital background
phishing

AOL users are the target of a new phishing campaign

Cyber criminals are targeting AOL users because they’re an older demographic and may find it too complicated to switch to newer services
1 Mar 2021
FedEx and DHL phishing emails target Microsoft users
FedEx envelopes stacked messily on top of one another
phishing

FedEx and DHL phishing emails target Microsoft users

The campaign aims to steal credentials using spoof phishing pages hosted on legitimate domains
24 Feb 2021
Hackers are using Google Alerts to help spread malware
The Adobe Flash Player website as seen on a browser
hacking

Hackers are using Google Alerts to help spread malware

Fake news gives rise to fake alerts that install phony Adobe Flash updates
22 Feb 2021
North Korea expected to increase cyber attacks due to COVID struggles
North Korean cyber criminal in action
hacking

North Korea expected to increase cyber attacks due to COVID struggles

CrowdStrike also expects an increase in the number of cyber attacks targeting health care institutions
22 Feb 2021
Sontiq's Intelligent Identity Security platform will combat online fraud
Sontiq corporate image on a blue-green background
Security

Sontiq's Intelligent Identity Security platform will combat online fraud

Sontiq’s resolution specialists team will deliver ‘white glove’ security resolutions
16 Feb 2021
Multiple TCP/IP stack flaws could leave millions of devices open to attack
padlock on a binary code background
vulnerability

Multiple TCP/IP stack flaws could leave millions of devices open to attack

The stacks are susceptible to Mitnick attacks
10 Feb 2021
'BendyBear' APT malware linked to Chinese government hackers
Malware in code
malware

'BendyBear' APT malware linked to Chinese government hackers

Security researchers warn that the malware’s anti-analysis techniques make it exceptionally difficult to detect
9 Feb 2021
Hacking campaigns reveal Iranian attacks on dissidents
three blocks in front of falling binary code
cyber security

Hacking campaigns reveal Iranian attacks on dissidents

Iran-backed groups are targeting peoples’ mobile phones and PCs with sophisticated spyware
8 Feb 2021
Israeli hackers breach KKK-affiliated website
Hacker overlooking a city
hacking

Israeli hackers breach KKK-affiliated website

Hackers leaked the name, phone number, and other personal information of Patriotic Bridge Knights' alleged leader
5 Feb 2021
Agent Tesla malware evades security controls to infect systems
Malware in code
malware

Agent Tesla malware evades security controls to infect systems

The weakest link in malware prevention is still the average user
3 Feb 2021
Hackers target gamers with a supply-chain attack
hands holding games controller
hacking

Hackers target gamers with a supply-chain attack

Cyber criminals have compromised an Android emulator and used it to infect gamers’ devices with malware
1 Feb 2021
Fears over cyber crime tool that can build phishing pages in real-time
Hooks on top of credit cards with a padlock in the background
phishing

Fears over cyber crime tool that can build phishing pages in real-time

Threat actors installed the LogoKit toolkit on over 700 domains over the last month
28 Jan 2021
Russian spy agencies warn of US cyber retaliation
SolarWinds logo on the side of a building
hacking

Russian spy agencies warn of US cyber retaliation

Moscow denies involvement in the SolarWinds attack but still fears US payback
25 Jan 2021
Global ransom DDoS extortionists are retargeting companies
DDoS Attack on a screen
distributed denial of service (DDOS)

Global ransom DDoS extortionists are retargeting companies

Threat actors asked for 10 bitcoins, or they will attack corporate networks
22 Jan 2021
Pixlr data breach exposes over 1.9 million user records
Pixlr website on a computer screen
data breaches

Pixlr data breach exposes over 1.9 million user records

Bad actors could use the breached data in targeted phishing and credential-stuffing attacks
22 Jan 2021
BEC scammers are using Google Forms to identify easy victims
Google Forms opening screen on a smartphone
phishing

BEC scammers are using Google Forms to identify easy victims

That unexpected Google Form may be benign, but it can lead to more aggressive tactics
21 Jan 2021
Report: Security staff excluded from app development
Abstract cyber security image of a man holding a symbol of a padlock inside a shield
cyber security

Report: Security staff excluded from app development

Security professionals have little influence over how apps are secured
20 Jan 2021
FBI warns of ongoing corporate vishing attacks
Vishing alert on a smartphone
phishing

FBI warns of ongoing corporate vishing attacks

Hackers are attempting to steal corporate credentials from US-based employees using voice phishing
19 Jan 2021
Cyber criminals bypassing MFA to access cloud service accounts
Smartphone and tablet displaying two-factor authentication screens
two-factor authentication (2FA)

Cyber criminals bypassing MFA to access cloud service accounts

Pass-the-cookie attacks help sidestep organizational security
14 Jan 2021
What is zero trust?
Key lit up on a dark background of 1s and 0s
network security

What is zero trust?

How a zero trust security strategy better protects your business from internal and external attackers
11 Jan 2021
State Department sets up cyber diplomacy bureau
Mike Pompeo giving a speech
Policy & legislation

State Department sets up cyber diplomacy bureau

The CSET will work to reduce online conflict and keeping the US competitive in cyber space
8 Jan 2021