Election-season cyber incidents in Germany. South Africa works to recover from a ransomware attack...
Election-season cyber incidents in Germany. South Africa works to recover from a ransomware attack on government networks. Cryptojacking botnet moves to Windows targets. Ransomware notes.
Denial-of-service at a German election...
Log4Shell exploited by criminals and intelligence services. Private sector offensive cyber capabilities. Noberus ransomware...
Log4Shell exploited by criminals and intelligence services. Private sector offensive cyber capabilities. Noberus ransomware used in double-extortion attacks. Squid Game phishbait.
Log4Shell is exploited by criminals and intelligence services. Private...
SolarMarket malware carried in some WordPress sites. Russian privateers don’t much like REvil’s takedown....
SolarMarket malware carried in some WordPress sites. Russian privateers don’t much like REvil’s takedown. The SVR in the supply chain. Malicious Squid Games app. Scary social media.
SolarMarket infestations are...
More stolen alt-coin is returned. Accenture reports minimal effects in the alleged LockBit attack....
More stolen alt-coin is returned. Accenture reports minimal effects in the alleged LockBit attack. Home routers attacked. Source code for sale? PrintNightmare exploited in the wild. Extradition cases.
More stolen...
A threat to release stolen proprietary data. The C2C market: division of labor and...
A threat to release stolen proprietary data. The C2C market: division of labor and loss-leading marketing ploys. Misconfigured Salesforce Communities. Sanctions-induced headwinds for Huawei.
RansomEXX threatens to release stolen proprietary...
Public Wi-Fi advice from NSA. South African ports recover from ransomware. Iranian rail incident...
Public Wi-Fi advice from NSA. South African ports recover from ransomware. Iranian rail incident was a wiper attack. Developments in the criminal-to-criminal market. Intercept vendors under scrutiny.
Log4j updates, including one deadline. Other, non-Log4j, challenges. RSAC postpones itself until June. A...
Log4j updates, including one deadline. Other, non-Log4j, challenges. RSAC postpones itself until June. A German court awards pain-and-suffering damages in a breach case.
An update of where things stand with...
Cyberespionage campaign looks a lot like SIGINT collection. Magnitude gets more capable. VPN exploits...
Cyberespionage campaign looks a lot like SIGINT collection. Magnitude gets more capable. VPN exploits solicited. Ransomware trends. Seven years for UPMC hacker. Plenty of Candy Corn coming.
The LightBasin “activity...
More APT activity. Brigading, Mass Reporting, and Coordinated Inauthentic Behavior. CISA names the CSAC...
More APT activity. Brigading, Mass Reporting, and Coordinated Inauthentic Behavior. CISA names the CSAC members. Cybercriminals sentenced. A whistleblower with an ulterior motive?
An APT is exploiting Internet-facing instances of...
Espionage by password spraying, and espionage via peanut butter sandwich. Ransomware and DDoS warnings....
Espionage by password spraying, and espionage via peanut butter sandwich. Ransomware and DDoS warnings. Two journalists get the Nobel Peace Prize
Teheran is running password spraying attacks (especially on Thursdays...
