Microsoft Disables Iran-Linked Lebanese Hacking Group Polonium
After detecting a Lebanese hacking group it calls Polonium abusing its OneDrive personal storage service, Microsoft says it was able to disable the group, which could have links to...
YourCyanide Ransomware Propagates With PasteBin, Discord, Microsoft Links
A new CMD-based ransomware variant is still under development, but researchers warn that its poisonous combination of multiple layers of obfuscation and the sneaky integration of legitimate service links into its...
US Sanctions Force Evil Corp to Change Tactics
Sanctions that the US government imposed on Russia-based crimeware gang Evil Corp in 2019 appear to have forced the threat actor to change tactics to remain in the cybercrime...
Intel Chipset Firmware Actively Targeted by Conti Group
Leaked communications from within the Conti threat group reveal the Moscow-backed cybercrime group has honed its firmware attack skills and is actively targeting Intel Management Engine (ME), a microcontroller...
Fighting Follina: Application Vulnerabilities and Detection Possibilities
On May 27, 2022, researchers from Japan-based nao_sec identified
a malicious document in a commercial malware repository, dubbed "Follina," that revealed the document employed a novel technique to achieve code...
‘Clipminer’ Malware Actors Steal $1.7 Million Using Clipboard Hijacking
The malware known as Clipminer has earned cyberattackers $1.7 million in cryptocurrency mining and theft via clipboard hijacking so far – and it shows no signs of abating.
The Clipminer Trojan,...
EnemyBot Puts Enterprises in the Crosshairs With Raft of ‘1-Day’ Bugs
An Internet of Things (IoT) botnet dubbed “EnemyBot" is expanding its front lines to target security vulnerabilities in enterprise services — potentially leading to it being a much more virulent...
ReliaQuest to Acquire Digital Shadows
TAMPA, Fla., June 01, 2022 (GLOBE NEWSWIRE) -- ReliaQuest, a force multiplier of security operations, today announced that it has entered into an agreement to acquire Digital Shadows, a...
Feds Seize Domains Dealing Stolen Personal Data
The Justice Department and FBI today announced that three separate Internet domains have been seized for offering access to stolen data and performing network attacks.
The domains include WeLeakInfo.to, ipress.in,...
12K Misconfigured Elasticsearch Buckets Ravaged by Extortionists
Cyberattackers are targeting misconfigured Elasticsearch cloud buckets exposed on the public Internet and stealing the wide-open data, then replacing it with a ransom note.
According to Secureworks Counter Threat Unit (CTU)...
