Sophisticated Android Ransomware Executes with the Home Button
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the...
Microsoft: Lapsus$ Used Employee Account to Steal Source Code
The data-extortion gang got at Microsoft’s Azure DevOps server. Meanwhile, fellow Lapsus$ victim and authentication firm Okta said 2.5 percent of customers were affected in its own Lapsus$ attack....
Websites requiring security software downloads opened door to supply chain attack
By:
Bradley Barth
A newly reported supply chain attack involved malicious hackers compromising financial and government websites so...
Russian Security Takes Down REvil Ransomware Gang
The country’s FSB said that it raided gang hideouts; seized currency, cars and personnel; and neutralized REvil’s infrastructure.
At the request of U.S. authorities. Russia’s Federal Security Service (FSB) has...
Training Transformers for Cyber Security Tasks: A Case Study on Malicious URL Prediction
Highlights
Perform a case study on using Transformer models to solve cyber security problems
Train a Transformer model to detect malicious URLs under multiple training regimes
Compare our model...
Amazon, Azure Clouds Host RAT-ty Trio in Infostealing Campaign
A cloudy campaign delivers commodity remote-access trojans to steal information and execute code.
Cyberattackers are abusing Amazon Web Services (AWS) and Azure Cloud services to deliver a trio of remote...
NVIDIA’s Stolen Code-Signing Certs Used to Sign Malware
NVIDIA certificates are being used to sign malware, enabling malicious programs to pose as legitimate and slide past security safeguards on Windows machines.
Two of NVIDIA’s code-signing certificates were part...
Android Apps in Google Play Harvest Facebook Credentials
The apps all used an unusual tactic of loading a legitimate Facebook page as part of the data theft.
A set of nine malicious Android apps that steal Facebook credentials...
TeaBot Trojan Targets Banks via Hijacked Android Handsets
Malware first observed in Italy can steal victims’ credentials and SMS messages as well as livestream device screens on demand.
Researchers have discovered an Android trojan that can steal victims’...
How to Buy Precious Patching Time as Log4j Exploits Fly
Podcast: Cybereason shares details about its vaccine: a fast shot in the arm released within hours of the Apache Log4j zero-day horror show being disclosed.
Sure, Apache got a...
