Group Behind WannaCry Now Using New Malware

Data Breach Today

CISA Warns That Lazarus Group Has Added 3 New Tools A sophisticated hacking group associated with the North Korean government that's been tied to a number of high-profile attacks, including WannaCry, is using three new malware variants, according to the U.S.

Alert: APT Groups Targeting COVID-19 Researchers

Data Breach Today

are warning medical institutions, pharmaceutical companies, universities and others about "password-spraying campaigns" by advance persistent threat groups seeking to steal COVID-19 research data.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Gamaredon Group Using Fresh Tools to Target Outlook

Data Breach Today

Suspected Russia-Linked Hackers Have Previously Focused on Ukraine The Gamaredon hacking group is now using a new set of malicious tools to compromise Microsoft Outlook as a way of sending spear-phishing emails to victims' contact lists, according to security firm ESET.

Hacker Group Stole $200 Million From Cryptocurrency Exchanges

Data Breach Today

Researchers: 'CryptoCore' Group Used Spear-Phishing Emails to Lure Victims A hacking group dubbed CryptoCore has stolen more than $200 million in virtual currency from several cryptocurrency exchanges over the past two years, the security firm ClearSky Cyber Security reports

ABCs of Data Normalization for B2B Marketers

Data normalization. It’s not a far stretch to suggest that the topic isn’t exactly what gets marketers excited in their day-to-day workflow. However, if lead generation, reporting, and measuring ROI is important to your marketing team, then data normalization matters - a lot. In this eBook, we’ll break down the ins and outs of data normalization and review why it’s so critical for your marketing strategies and goals!

US Now Accuses Assange of Conspiring With Hacking Groups

Data Breach Today

Federal prosecutors now allege that Assange conspired with the Anonymous and LulzSec groups to obtain classified information to publish Superseding Indictment Expands Scope of Case, But Doesn't Add Charges The U.S

'Hack-for-Hire' Groups Spoof WHO Emails to Steal Data

Data Breach Today

Google: Hackers Using COVID-19 Phishing Themes to Target Businesses "Hack-for-hire" groups operating in India are spoofing World Health Organization emails to steal credentials from financial services and healthcare firms around the world, according to Google's Threat Analysis Group

Toll Group Says Ransomware Attackers Stole Data

Data Breach Today

Australian Shipping Giant, Hit With Nefilim Ransomware, Vows to Not Pay Ransom Australian shipping giant Toll Group has vowed to again not pay a ransom after suffering its second ransomware attack of the year.

Hacking of Accounting Firm Affects Medical Group

Data Breach Today

Apparent Ransomware Incident Exposes Patient Information An apparent ransomware attack on an accounting firm in December exposed the patient data of Community Care Physicians, a large upstate New York medical group, as well as other clients of the firm

Hacking Group Offers Another 27 Million Records for Sale: Report

Data Breach Today

Shiny Hunters Claim to Have Data From Four Additional Breaches After offering three large databases of compromised user data for sale on the darnket last week, a hacking group known as Shiny Hunters now is trying to sell four additional databases of information apparently gathered from data breaches, security researchers say.

Sales 251

A Year Later, Cybercrime Groups Still Rampant on Facebook

Krebs on Security

Almost exactly one year ago, KrebsOnSecurity reported that a mere two hours of searching revealed more than 100 Facebook groups with some 300,000 members openly advertising services to support all types of cybercrime, including spam, credit card fraud and identity theft.

New Hacking Group Targets Gambling Firms: Report

Data Breach Today

APT Group Steals Source Code and Data, Not Money, Researchers Say A newly identified hacking group has been targeting gambling companies in Asia, the Middle East and Europe, using backdoors to steal source code and other data, according to new research from security firm Trend Micro

Iranian Hacking Group Continues Targeting Universities

Data Breach Today

Cobalt Dickens' Group Attempting to Steal Intellectual Property "Cobalt Dickens," a threat group with suspected ties to Iran, is continuing its attempts to steal intellectual property from schools and universities, according to an analysis by SecureWorks.

IT 221

Lazarus Group Adds Magecart to the Mix

Threatpost

Hacks Web Security card skimmer e-commerce Lazarus Group magecart North Korea online payments payment cards sansecNorth Korea-based APT is targeting online payments made by American and European shoppers.

TA505 Group Hides Malware in Legitimate Certificates

Data Breach Today

APT Group Targets Banks With Backdoor Malware to Penetrate Networks TA505, a sophisticated advanced persistent threat group, is now using legitimately signed certificates to disguise malware that can penetrate banking networks, security researchers warn in a new report

Contact-Tracing Apps: Privacy Group Raises Concerns

Data Breach Today

As Google and Apple Prepare an Infrastructure, Electronic Frontier Foundation Urges Caution As Google and Apple prepare to offer a jointly developed infrastructure for contact-tracing smartphone apps to help fight the COVID-19 pandemic, the Electronic Frontier Foundation, a privacy advocacy group, is raising concerns about the risks involved.

Russian Hackers Coopted Iranian APT Group's Infrastructure

Data Breach Today

UK and US Intelligence Agencies Report That Turla Group Seized OilRig APT Assets Turla, an advanced persistent threat group with apparent ties to Russia, seized attack infrastructure and tools used by OilRig, an Iranian APT group, U.K.

IT 184

Newly Discovered APT Group Targets Middle East Firms: Report

Data Breach Today

WildPressure' Has No Ties to Other Groups or Malware, Kaspersky Says A newly discovered advanced persistent threat group is targeting industrial firms in the Middle East with a new type of backdoor Trojan, according to the security firm Kaspersky

Toll Group Data Leaked Following Second Ransomware Incident

Data Breach Today

To Suffer One May Be Regarded As a Misfortune; To Suffer Two Looks Like Carelessness Australian shipping giant Toll Group recently suffered its second ransomware outbreak of the year, with Thomas Knudsen, the company's managing director, branding the latest attack as being "serious and regrettable."

Chinese APT Group 'Thrip' Powers Ahead

Data Breach Today

Hackers Have Attacked at Least 12 Targets Since 2018, Symantec Researchers Say A Chinese advanced persistent threat group dubbed "Thrip" has attacked at least 12 organizations in Southeast Asia since being exposed last year, Symantec researchers say.

184
184

France Télévisions group hit by a cyber attack, its antennas were not impacted

Security Affairs

The France Télévisions group announced yesterday that it was hit by a cyber attack, targeting one of its broadcasting sites. The France Télévisions group announced Friday that it was the victim of a cyber attack that targeted one of its broadcasting sites.

IT 94

APT Group Wages 5-Year Cyber-Espionage Campaign: Report

Data Breach Today

Naikon Hacking Group Targeted Asia-Pacific Countries With New RAT Over the last five years, a hacking group that's apparently tied to China has been targeting government ministries in the Asia-Pacific region as part of a cyber-espionage campaign, according to Check Point Research

Leak Exposes OilRig APT Group's Tools

Data Breach Today

Group, Apparently Backed By Iran, Was Broadening Its Targets, Analysts Say A set of malicious tools, along with a list of potential targets and victims, belonging to an APT group dubbed OilRig has leaked online, exposing some of the organization's methods and goals, analysts say

IT 219

Moroccan journalist targeted with network injection attacks using NSO Group ‘s spyware

Security Affairs

Researchers at Amnesty International collected evidence that a Moroccan journalist was targeted with network injection attacks using NSO Group ‘s spyware. SecurityAffairs – NSO Group, Morocco).

Access 105

Cisco: Hacking Group Targets US Veterans

Data Breach Today

Attackers Used Phony Job Website to Install Malware, Researchers Say A threat group has been targeting U.S. veterans through a spoofed website promising help for those looking for jobs, according to research from Cisco Talos.

190
190

NSO Group Impersonates Facebook Security Team to Spread Spyware — Report

Threatpost

An investigation traces an NSO Group-controlled IP address to a fake Facebook security portal. Cloud Security Facebook Hacks Vulnerabilities Web Security amazon cloud infrastructure Lawsuit NSO Group security team portal spoofed page Spyware u.s.

Magecart Group Continues Targeting E-Commerce Sites

Data Breach Today

BEC Group Favors G-Suite, Physical Checks: Report

Data Breach Today

Agari Says 'Exaggerated Lion' Has Targeted Businesses Throughout US A business email compromise group targeting U.S. businesses is using G-Suite for their scams and collecting money through physical checks instead of wire transfers, according to the security firm Agari

Pacha Group declares war to rival crypto mining hacking groups

Security Affairs

Two hacking groups associated with large-scale crypto mining campaigns, Pacha Group and Rocke Group , wage war to compromise as much as possible cloud-based infrastructure. SecurityAffairs – Pacha Group, cryptocurrency miners).

Microsoft Takes Control of 99 Websites From APT Group

Data Breach Today

Phosphorus Group Waged Spear-Phishing Campaign, Company Reports Microsoft is using its legal muscle to push back against an advanced persistent threat group that is says is "widely associated with Iranian hackers."

Magecart Group Hits Small Businesses With Updated Skimmer

Data Breach Today

Researchers Determine That 19 Ecommerce Sites Have Been Targeted A Magecart group has been using a new skimmer technique to target the online checkout sites of smaller businesses in order to steal credit card data, according to RiskIQ researchers, who have spotted 19 of these malicious JavaScript attacks so far.

175
175

Lazarus Group Hides macOS Spyware in 2FA Application

Threatpost

Malware 2FA apt dacl Lazarus Group macOS minaotp North Korea RAT remote access Trojan Spyware Two Factor AuthenticationThe Dacls RAT has been ported from an existing Linux version.

Toyota Australia, Healthcare Group Hit By Cyberattacks

Data Breach Today

A healthcare group acknowledged it was the victim of a ransomware attack. Country Has Faced a Series of Security Incidents in Recent Weeks Australia has faced a few tough weeks on the cybersecurity front. Toyota Australia's computer systems were still down Friday after an attempted cyberattack. And last week, suspected nation-state attackers hit Parliament's email systems

Despite Doxing, OilRig APT Group Remains a Threat

Data Breach Today

Researchers Describe What They've Learned From Data Dump Despite a doxing of its targets and tools in March, the advanced persistent threat group known as OilRig remains a significant threat to governments and businesses, researchers at Palo Alto Network's Unit 42 report

ScarCruft APT Group Targets Bluetooth With Malware: Report

Data Breach Today

Kaspersky Lab Says Korean-Speaking Group Expanding Its Arsenal ScarCruft, a Korean-speaking APT group that has been targeting organizations mainly in Southeast Asia over the past three years, is developing new malware that targets Bluetooth-enabled devices, according to Kaspersky Lab

IT 212

Magecart Cybercrime Groups Harvest Payment Card Data

Data Breach Today

Researchers say they are tracing at least six active Magecart groups, each with unique infrastructure, skimmers and targeting

193
193

Chinese APT Group Began Targeting SSL VPN Flaws in July

Data Breach Today

Pulse Secure and Fortinet Released Critical Fixes Months Ago, But Patching Lags A hacking group known as APT5 - believed to be affiliated with the Chinese government - has been targeting serious flaws in Pulse Secure and Fortinet SSL VPNs for more than six weeks, security experts warn.

TA505 Group Targeted Corporate Networks With RAT: Report

Data Breach Today

Spear-Phishing Emails Appeared to Originate With HR Departments The prolific TA505 cybercrime group targeted corporate networks across Europe using spear-phishing emails to spread the SDBbot remote access Trojan, according to IBM X-Force researchers.

Chinese APT Groups Target Cancer Research Facilities: Report

Data Breach Today

FireEye Describes How Groups Are Gathering Data Chinese advanced persistent threat groups are targeting cancer research organizations across the globe with the goal of stealing their work and using it to help the country address growing cancer rates among its population, according to researchers at cybersecurity company FireEye.

'Sea Turtle' DNS Hijacking Group Conducts Espionage: Report

Data Breach Today

Cisco Talos Researchers Describe Group's Methods A nation-state sponsored espionage campaign dubbed "Sea Turtle" has been manipulating the domain name system to target more than 40 organizations, including intelligence agencies - especially in North Africa and the Middle East, Cisco Talos warns.

230
230