Data Breach Today

NOVEMBER 6, 2023

John Scott-Railton, a senior researcher at The Citizen Lab, tweeted that "Apple threat notifications are 'clear & invaluable' signs something serious is going on." Lockdown Mode' Can Defeat Commercial Spyware Members of Armenian civil society say they have received warnings from Apple regarding commercial spyware.

285

285

Data Breach Today

DECEMBER 6, 2023

Researchers Find Way to Hack Apple's Most Extreme Security Feature for iPhones Researchers from Jamf Threat Labs said they have managed to manipulate the code in a compromised iPhone to effectively make it appear as if the device is entering Lockdown Mode - but "without any of the protections that would normally be implemented by the service."

Security 281

Security IT 281

Data Breach Today

MAY 3, 2019

Charles River Laboratories Says Some Clients' Data 'Copied' by Hackers In what may be a case of industrial espionage, Massachusetts-based drug development company Charles River Laboratories has reported a cyberattack involving the copying of client data by an intruder. Why is IP theft a growing worry for the healthcare sector?

196

196

Jamf

MARCH 29, 2024

Jamf Threat Labs dissects ongoing infostealer attacks targeting macOS users. Each with different means of compromising victim’s Macs but with similar aims: to steal sensitive user data.

143

143

Dark Reading

MARCH 3, 2023

The Rapid7 Cyber Threat Intelligence Laboratory at the University of South Florida will provide data on real-world threats for faculty and students to use in their research.

Cybersecurity 91

Cybersecurity 91

Data Breach Today

OCTOBER 16, 2021

TA505 APT Group delivers phishing email containing malicious links Researchers at Morphisec Labs have published fresh details about a new MirrorBlast campaign that they say is run by a Russia-based threat group TA505, targeting financial services organizations.

Financial Services 345

Financial Services Phishing 345

Data Breach Today

AUGUST 10, 2022

Ransomware, New Tactics and Geopolitical Threats Among the Key Conference Topics Black Hat 2022 kicks off today with security experts sharing cutting-edge research and insights through demos, technical trainings and hands-on labs.

Ransomware 246

Ransomware Risk Security 246

Data Breach Today

MARCH 22, 2021

Margaret Cunningham of Forcepoint X-Labs Describes Risky Remote Worker Behaviors Recent research highlights the growth in risky remote work behaviors. Dr. Margaret Cunningham of Forcepoint X-Labs discusses the implications of this increase in insider threats and provides risk mitigation insights.

Risk 277

Risk 277

Data Breach Today

JULY 12, 2021

Company Will Join Microsoft's Cloud and AI Division Microsoft announced Monday a definitive agreement to buy RiskIQ, an attack surface management and threat intelligence firm. Last month, Microsoft acquired the firmware analysis company ReFirm Labs.

Cloud 326

Cloud 326

Dark Reading

MAY 24, 2021

By leveraging their analysis outputs, security pros can update detection rules engines and establish a stronger security posture in the process.

Security 107

Security 107

Data Breach Today

MARCH 28, 2022

FCC's Public Safety and Homeland Security Bureau voted unanimously to ban Kaspersky Lab, China Telecom (Americas) Corp., saying they pose a national security threat. Also, HackerOne Suspends Kaspersky's Access to Bug Bounty Platform The U.S. and China Mobile International USA Inc.,

Risk 242

Risk Access Security 242

Jamf

APRIL 9, 2024

April 9 Jamf Event for commercial customers covered compliance, end-user privilege elevation, Jamf Threat Labs, vulnerability management and App Installers and more!

Compliance 85

Compliance 85

Jamf

NOVEMBER 7, 2023

Jamf Threat Labs discovered a new later-stage malware variant from BlueNoroff that shares characteristics with their RustBucket campaign. Read this blog to learn more about this malware and view the indicators of compromise.

145

145

Data Breach Today

JUNE 23, 2020

Researchers Say Malware Steals Financial Data From Bank Customers Fraudsters are now deploying the IcedID banking Trojan via phishing campaigns that use the COVID-19 pandemic as one of several lures, according to Juniper Threat Labs.

Phishing 293

Phishing 293

Jamf

APRIL 17, 2023

Jamf Threat Labs examines two sophisticated spyware attacks and provides recommendations for organizations to defend users from increasingly complex threats.

144

144

Data Breach Today

AUGUST 13, 2020

Fortinet's FortiGuard Labs is out with its latest Global Threat Landscape Report, and it tracks cyber adversaries exploiting the COVID-19 pandemic at a worldwide scale. A shift to proactive defense, says FortiGuard's Derek Manky, Chief, Security Insights & Global Threat Alliances. The best response?

Security 246

Security IT 246

Security Affairs

NOVEMBER 8, 2023

The North Korea-linked APT BlueNoroff used a new strain of macOS malware strain dubbed ObjCShellz, Jamf Threat Labs reported. Researchers from Jamf Threat Labs discovered a new macOS malware strain dubbed ObjCShellz and attributed it to North Korea-linked APT BlueNoroff.

Blockchain 117

Blockchain Military Communications IT 117

Data Breach Today

AUGUST 15, 2020

Banking Trojan Has Become More Prevalent Since COVID-19 The IcedID banking Trojan has been updated with additional evasion techniques including a password-protected attachment, keyword obfuscation and a DLL file that acts as a second stage downloader, according to Juniper Threat Labs.

Passwords 277

Passwords 277

Dark Reading

DECEMBER 15, 2022

New research also analyzes the commoditization of adversary-in-the-middle attacks, JavaScript obfuscation in exploit kits, and a malware family with Gothic Panda ties.

Encryption 53

Encryption 53

Data Breach Today

APRIL 14, 2023

Pakistan-Linked APT Group Using Spear-Phishing to Plant Info Stealer Malware A suspected Pakistan espionage threat actor that relies on phishing emails is expanding to the education sector after years of focusing on the Indian military and government.

Education 144

Education Military Phishing Government 144

Dark Reading

JUNE 29, 2023

Key findings from the research also show three of the four new malware threats on this quarter's top-ten list originated in China and Russia, living-off-the-land attacks on the rise, and more.

53

53

Security Affairs

MARCH 26, 2024

The Black Lotus Labs team at Lumen Technologies uncovered an updated version of “ TheMoon ” bot targeting end-of-life (EoL) small home/small office (SOHO) routers and IoT devices. TheMoon variant discovered by the Black Lotus Labs team was observed targeting over 40,000 bots from 88 countries in January and February of 2024.

IoT 125

IoT Authentication IT Security 125

Security Affairs

JANUARY 6, 2024

It utilizes reflective loading, a direct-memory form of execution that may bypass detections,” notes Elastic Security, which identified and analyzed the threat.” ” The latest discovery confirms the great interest of North Korea-linked threat actors in developing macOS malware to employ in targeted attacks.

Phishing 128

Phishing Security IT Information Security 128

Data Breach Today

NOVEMBER 6, 2020

Researchers: 'Gitpaste-12' Botnet Mainly Targets Linux And IoT Devices The operators behind a botnet dubbed "Gitpaste-12" are abusing legitimate services such as GitHub and Pastebin to help hide the malware's malicious infrastructure, according to Juniper Threat Labs.

IoT 268

IoT Mining 268

Data Breach Today

SEPTEMBER 11, 2020

Updated Trojan Downloader Helps Avoid Detection After a six-month hiatus, the Zeppelin ransomware variant returned in late August, according to Juniper Threats Labs. The malware now uses an updated Trojan downloader to better hide its activities from security tools.

Ransomware 238

Ransomware Security IT 238

Krebs on Security

OCTOBER 18, 2023

Earlier this month, researchers at the Tel Aviv-based security firm Guardio Labs said they tracked an updated version of the ClearFake scam that included an important evolution. “This model is designed to proactively identify and mitigate potential threats before they can cause harm,” BNB Smart Chain wrote.

Blockchain 269

Blockchain Security awareness Security IT 269

Jamf

APRIL 21, 2023

Learn about the macOS malware variant discovered by Jamf Threat Labs named 'RustBucket' What it does, how it works to compromise macOS devices, where it comes from and what administrators can do to protect their Apple fleet.

IT 145

IT 145

Security Affairs

SEPTEMBER 22, 2023

Citizen Lab and Google’s TAG revealed that the three recently patched Apple zero-days were used to install Cytrox Predator spyware. The three flaws were discovered by Bill Marczak of The Citizen Lab at The University of Toronto’s Munk School and Maddie Stone of Google’s Threat Analysis Group.

Security 113

Security Risk Government IT 113

Security Affairs

APRIL 1, 2024

Jamf Threat Labs researchers analyzed info stealer malware attacks targeting macOS users via malicious ads and rogue websites. ” reads the report published by Jamf Threat Labs. Experts warn of info stealer malware, including Atomic Stealer, targeting Apple macOS users via malicious ads and rogue websites.

IT 129

IT Information Security Security 129

Security Affairs

NOVEMBER 13, 2023

“The threat actor that Microsoft tracks as Sapphire Sleet, known for cryptocurrency theft via social engineering, has in the past few weeks created new websites masquerading as skills assessment portals, marking a shift in the persistent actor’s tactics.” ” warns Microsoft through a series of posts on X.

IT 127

IT Blockchain Communications Security 127

KnowBe4

OCTOBER 27, 2023

Several months ago, Netskope Threat Labs uncovered a surge in PDF phishing attachments infiltrating Microsoft Live Outlook. These attacks were part of a larger series of phishing campaigns aimed to trick unsuspecting users.

Phishing 101

Phishing Security awareness Security 101

Security Affairs

JANUARY 21, 2024

Jamf Threat Labs researchers warned that pirated applications have been utilized to distribute a backdoor to Apple macOS users. The pirated applications discovered by Jamf Threat Labs are being hosted on Chinese pirating websites. During their investigation, the researchers detected an executable name.fseventsd.

Libraries 127

Libraries IT Information Security Security 127

Security Affairs

SEPTEMBER 7, 2023

Citizen Lab reported that the actively exploited zero-days fixed by Apple are being used in Pegasus spyware attacks Researchers at Citizen Lab reported that the actively exploited zero-day flaws (CVE-2023-41064 and CVE-2023-41061) fixed by Apple are being used to infect devices with NSO Group ’s Pegasus spyware.

Security 117

Security Information Security IT 117

Security Affairs

NOVEMBER 20, 2023

“DarkCasino is an APT threat actor with strong technical and learning ability, who is good at integrating various popular APT attack technologies into its attack process. NSFOCUS Research Labs pointed out that exploitation of the CVE-2023-38831 flaw can be integrated into watering hole and phishing attacks.

Phishing 139

Phishing Archiving Financial Services Cybersecurity 139

Data Breach Today

DECEMBER 2, 2020

Researchers: Malware Offered for Sale for $75 A botnet called DarkIRC is exploiting a remote execution vulnerability in Oracle WebLogic, according to Juniper Threat Labs. Meanwhile, the malware used to create the botnet is being offered for sale on a darknet hacking forum.

Sales 176

Sales 176

Data Breach Today

DECEMBER 12, 2019

QuNu Lab's Sunil Kumar Gupta on Mitigating Threats From Quantum Computing Quantum-proof keys will become essential when quantum computers become more common because these devices can break conventional cyptography, says Sunil Kumar Gupta of QuNu Labs.

147

147

Security Affairs

MARCH 2, 2024

At the time, The Financial Times reported that the WhatsApp zero-day was exploited by threat actors to deliver the spyware developed by surveillance firm NSO Group. In September 2018, a report published by Citizen Lab revealed that the NSO Pegasus spyware was used against targets across 45 countries worldwide.

IT 131

IT Government Security Information Security 131