Security Affairs

JULY 1, 2022

Microsoft spotted a cloud threat actor tracked as 8220 that is now targeting Linux servers in a long-running cryptomining campaign. “We observed notable updates to the long-running malware campaign targeting Linux systems by a group known as the 8220 gang.”

Cloud 91

Cloud Communications Access Security 91

Security Affairs

NOVEMBER 6, 2022

A new round of the weekly SecurityAffairs newsletter arrived! 29 malicious PyPI packages spotted delivering the W4SP Stealer Zero-day are exploited on a massive scale in increasingly shorter timeframes RomCom RAT campaigns abuses popular brands like KeePass and SolarWinds NPM The 10th edition of the ENISA Threat Landscape (ETL) report is out!

Security 94

Security Ransomware Military Manufacturing 94

eSecurity Planet

SEPTEMBER 21, 2022

A retired threat actor has returned with new attacks aimed at the cloud, containers – and encryption keys. These cybercriminals are known for their creativity and ability to target cloud environments, as they introduced new techniques in 2020 that hadn’t been seen before. Also read: Top Container Security Solutions.

Cloud 120

Cloud Encryption Honeypots Mining 120

Security Affairs

FEBRUARY 22, 2022

Threat actors install Cobalt Strike beacons on vulnerable Microsoft SQL Servers to achieve a foothold in the target network. The threat actors behind the campaign are targeting poorly secured Microsoft SQL Servers exposed online. ” reads the analysis published by Ahn Lab’s ASEC.

Passwords 95

Passwords Access Security IT 95

Security Affairs

JULY 29, 2020

Experts spotted an undetectable Linux malware that exploits undocumented techniques to evade detection and targets publicly accessible Docker servers. The ongoing Ngrok mining botnet campaign is targeting servers are hosted on popular cloud platforms, including Alibaba Cloud, Azure, and AWS.

Blockchain 141

Blockchain Mining Cloud Communications 141

Security Affairs

MAY 6, 2023

A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Every week the best security articles from Security Affairs are free for you in your email box.

Security 97

Security Libraries Data breaches Ransomware 97

IT Governance

APRIL 11, 2023

This month, we look at a scam targeting YouTube content creators, the traditional tax-related phishing campaigns that occur at this time of year and a new report highlighting a surge in email-based scams attacks. These are pieces of malware hidden within pop-up adverts or error messages.

Phishing 114

Phishing Passwords Ransomware Insurance 114

Security Affairs

JANUARY 12, 2021

Google Project Zero researchers uncovered a sophisticated hacking campaign that targeted Windows and Android users. The Google Project Zero team has recently launched an initiative aimed at devising new techniques to detect 0-day exploits employed in attacks in the wild. ” reads the analysis published by Project Zero.

Security 111

Security Access IT Information Security 111

Security Affairs

OCTOBER 4, 2021

ChamelGang APT is a new cyberespionage group that focuses on fuel and energy organizations and aviation industry in Russia. ChamelGang is a new APT group that was first spotted in March by researchers at security firm Positive Technologies, it targets Russian companies in the energy and aviation industry.

Energy and Utilities 93

Energy and Utilities Phishing IT Access 93

Security Affairs

OCTOBER 30, 2020

Experts uncovered a new watering hole attack, dubbed Operation Earth Kitsune , targeting the Korean diaspora that exploits flaws in web browsers. The attacks were spotted by the researchers during the months of March, May, and September. ” reads the analysis published by Trend Micro. ” continues the analysis.

Communications 133

Communications Access IT Security 133

Security Affairs

AUGUST 4, 2021

China-linked APT31 group employed a new strain of malware in attacks aimed at entities in Mongolia, Belarus, Canada, the US, and Russia. Experts found many similarities between the malware and the DropboxAES RAT that was first spotted by researchers at Secureworks and that was previously attributed to APT31.

Libraries 133

Libraries Security IT Cybersecurity 133

IT Governance

JULY 6, 2023

This month, we look at the increase in a new form of phishing that uses QR codes, plus we discuss the latest the staggering findings of PhishLabs’ latest report. Quishing on the rise Cyber security researchers have discovered an extensive phishing campaign that uses QR codes as bait. However, this is just one form of QR code attack.

Phishing 98

Phishing Education Government Personal data 98

Security Affairs

MARCH 13, 2021

Kaspersky researchers spotted a new variant of the XCSSET Mac malware that compiled for devices running on Apple M1 chips. According to Trend Micro, the threat allows stealing data associated with popular applications, including Evernote, Skype, Notes, QQ, WeChat, and Telegram.

Ransomware 106

Ransomware Encryption IT Security 106

Security Affairs

OCTOBER 18, 2021

The Uptycs Threat Research Team spotted a campaign in which the TeamTNT threat actors deployed a malicious container image on Docker hub. Using the scanning tools inside the malicious Docker image, the threat actor tries to scan for more targets in the victim’s subnet and perform further malicious activities.

Communications 104

Communications Mining Security IT 104

Security Affairs

JUNE 18, 2020

Researchers uncovered a recent campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations. Experts noticed that in the recent campaign, threat actors dropped InvisiMole’s tools only on systems that have been previously compromised by Gamaredon.

Military 82

Military Communications Libraries Encryption 82

Security Affairs

FEBRUARY 26, 2020

Researchers from Cybaze Yoroi ZLab have spotted a new campaign exploiting the interest in coronavirus (COVID-19) evolution to spread malware. The proof is the leverage of the current physical threat, the CoronaVirus (COVID-19), as a social engineering trick to infect the cyber world. Introduction.

File names 118

File names Communications Encryption IT 118

Security Affairs

MARCH 8, 2019

Malware researchers from Trend Micro have spotted a new piece of malware dubbed SLUB that leverages GitHub and Slack for C&C communications. Malware researchers at Trend Micro have spotted a new backdoor dubbed SLUB that abuse GitHub and Slack for command and control (C&C) communications.

Communications 85

Communications Authentication IT Security 85

Security Affairs

JULY 7, 2019

Croatia government agencies have been targeted by unknown hackers with a new piece of malware tracked as SilentTrinity. A mysterious group of hackers carried out a series of cyber attacks against Croatian government agencies, infecting employees with a new piece of malware tracked as SilentTrinity.

Government 84

Government Computer and Electronics Archiving Phishing 84

Security Affairs

JUNE 9, 2022

Researchers spotted a previously undocumented Chinese-speaking APT, tracked as Aoqin Dragon, targeting entities in Southeast Asia and Australia. The APT primary focus on cyberespionage against targets in Australia, Cambodia, Hong Kong, Singapore, and Vietnam.

Encryption 90

Encryption Education Cybersecurity Security 90

IT Governance

JUNE 6, 2023

This month, we look at a new phishing tactic that exploits the newly released ‘.zip’ zip’ domains Google recently released 8 new top-level domains – the bits at the end of a website address such as ‘.com’, zip’ domains Google recently released 8 new top-level domains – the bits at the end of a website address such as ‘.com’,

Phishing 98

Phishing Archiving Risk Education 98

eSecurity Planet

AUGUST 19, 2022

One new tactic hackers have been using is to steal cookies from current or recent web sessions to bypass multi-factor authentication (MFA). The new attack method, reported by Sophos researchers yesterday, is already growing in use. It’s not uncommon to find such scripts along with other modules in info-stealing and other malware.

Authentication 140

Authentication Passwords Encryption Cybersecurity 140

KnowBe4

MARCH 14, 2023

The title said it all, and the news is that more than 4% of employees have put sensitive corporate data into the large language model, raising concerns that its popularity may result in massive leaks of proprietary information. With PhishER you can: NEW!

Phishing 81

Phishing Security Artificial Intelligence Security awareness 81

Security Affairs

FEBRUARY 5, 2019

Security experts at Check Point discovered a new backdoor dubbed ‘ SpeakUp ’ targeting Linux servers in East Asia and Latin America. Researchers linked the author of the SpeakUp backdoor with the malware developer that goes online with the moniker of Zettabithf. At the time of writing this article, it has no detections in VT.”

Security 73

Security IT 73

KnowBe4

JUNE 20, 2023

So, what does the report say about the most common threat actions that are involved in data breaches? The new PhishER Blocklist feature lets you use reported messages to prevent future malicious email with the same sender, URL or attachment from reaching other users. With PhishER you can: NEW!

Data breaches 69

Data breaches Phishing Security awareness Ransomware 69

KnowBe4

JULY 5, 2023

CyberheistNews Vol 13 #27 | July 5th, 2023 [Heads Up] Massive Impersonation Phishing Campaign Imitates Over 100 Brands and Thousands of Domains A year-long phishing campaign has been uncovered that impersonates 100+ popular clothing, footwear, and apparel brands using at least 10 fake domains impersonating each brand.

Phishing 73

Phishing Security awareness Passwords Computer and Electronics 73

KnowBe4

JUNE 13, 2023

CyberheistNews Vol 13 #24 | June 13th, 2023 [The Mind's Bias] Pretexting Now Tops Phishing in Social Engineering Attacks The New Verizon DBIR is a treasure trove of data. But what makes this attack dangerous is that the new bank account provided belongs to the attacker. Let's drill down a bit more in the social engineering section. "The

Phishing 70

Phishing Passwords Data breaches Security awareness 70

Security Affairs

JULY 26, 2018

Researchers from Proofpoint have discovered a new variant of the infamous Kronos banking Trojan that was involved in several attacks in the recent months. The malware was first spotted in 2014 by researchers at security firm Trusteer that discovered an adv on the Russian underground market regarding a new financial Trojan dubbed Kronos. .

Encryption 50

Encryption Marketing Security IT 50

Security Affairs

FEBRUARY 1, 2019

Security experts at Cybaze – Yoroi ZLab have analyzed a new sample of the AdvisorsBot malware, a downloader that was first spotted in August 2018. As usual, the malware looks like a legitimate e-mail attachment, named as “invoice.doc”. Figure 3 – Piece of VBS script that starts malware infection.

Libraries 88

Libraries Phishing Security IT 88

KnowBe4

MAY 16, 2023

Cybercriminals are constantly increasing the damage they cause to organizations by luring unsuspecting employees into clicking on malicious links or downloading fake attachments that seem realistic. With PhishER you can: NEW! Find out how adding PhishER can be a huge time-saver for your Incident Response team!

Phishing 75

Phishing Insurance Passwords Ransomware 75

KnowBe4

MARCH 21, 2023

CyberheistNews Vol 13 #12 | March 21st, 2023 [Heads Up] This Week's New SVB Meltdown Social Engineering Attacks On Saturday March 11, I warned about the coming wave of phishing attacks that would undoubtedly follow the SVB collapse. There is a raft of new registered domains that are SVB-related, for example login.svb[.]com

Phishing 90

Phishing Security awareness Passwords Marketing 90

KnowBe4

MARCH 7, 2023

CyberheistNews Vol 13 #10 | March 7th, 2023 [Eye Opener] BusinessWeek: The Satellite Hack Everyone Is Finally Talking About This week, Bloomberg News pointed at a brand-new article at BusinessWeek, one of their media properties. It is an excellent wake-up call for your C-level execs and powerful budget ammo. government.

Phishing 74

Phishing Ransomware Cybersecurity Security awareness 74

Security Affairs

FEBRUARY 3, 2019

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal. Aztarna – the open-source scanning tool for vulnerable robots. The return of the AdvisorsBot malware.

Security 64

Security Data breaches Paper Archiving 64

Security Affairs

APRIL 28, 2020

The Outlaw Hacking Group is back, malware researchers from Cybaze-Yoroi ZLab have uncovered a new botnet that is targeting European organizations. During our daily monitoring activities, we intercepted a singular Linux malware trying to penetrate the network of some of our customers. Introduction. Technical Analysis.

Mining 101

Mining File names Honeypots IT 101

KnowBe4

FEBRUARY 14, 2023

The first phishing campaigns have already been sent and more will be coming that try to trick you into clicking on a variety of links about blood drives, charitable donations, or "exclusive" videos. With PhishER you can: NEW! You need to alert your employees, friends and family. It's a good idea to send one to your users this week.

Phishing 77

Phishing Security awareness Compliance Risk 77

eSecurity Planet

AUGUST 23, 2023

Spear phishing is a more targeted and effective phishing technique that attempts to exploit specific individuals or groups within an organization. While phishing uses a broader range of tactics, such as mass emailing to random recipients, spear phishing is often well-researched and tailored to high-value targets.

Phishing 83

Phishing Authentication Security awareness Passwords 83

Security Affairs

MAY 22, 2020

ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. This actor was first spotted by PaloAlto’s UNIT42 in 2018 during wide scale operations against technology, retail, manufacturing, and local government industries in the US, Europe and Asia.

Manufacturing 135

Manufacturing e-Delivery IT Security 135

KnowBe4

APRIL 11, 2023

CyberheistNews Vol 13 #15 | April 11th, 2023 [The New Face of Fraud] FTC Sheds Light on AI-Enhanced Family Emergency Scams The Federal Trade Commission is alerting consumers about a next-level, more sophisticated family emergency scam that uses AI which imitates the voice of a "family member in distress." Save My Spot!

Passwords 73

Passwords Phishing Ransomware Security awareness 73