Cybercriminals Take Aim at Connected Car Infrastructure
With automobiles becoming increasingly connected, a variety of attacks are emerging: Car thieves abuse keyless entry systems, hackers find new ways to exploit vehicle components, and fraud targets auto...
Aerospace, Telecommunications Companies Victims of Stealthy Iranian Cyber-Espionage Campaign
A previously unknown advanced persistent threat group likely backed by the Iranian government has been quietly carrying out a sophisticated cyber-espionage campaign against aerospace and telecommunication companies since at...
Hot Ticket: ‘Aurora’ Go-Based InfoStealer Finds Favor Among Cyber-Threat Actors
A growing number of cybercriminal groups are turning to an information stealer named Aurora, which is based on the Go open source programming language, to target data from browsers,...
FBI, CISA, MS-ISAC: Cybercriminals Increasingly Attacking K-12 Distance Learning
Ransomware attacks reported against US K-12 schools jumped from 28% in January through July to 57% in August and September.The FBI, the Department of Homeland Security's Cybersecurity and Infrastructure...
Iranian Hacking Group Among Those Exploiting Recently Disclosed VMware RCE Flaw
An Iranian cyber espionage group that some vendors track as Rocket Kitten has begun exploiting a recently patched critical vulnerability in VMware Workspace ONE Access/Identity Manager technology to deliver...
Ducktail Spear-Phishing Campaign Uses LinkedIn to Hijack Facebook Business Accounts
A spear-phishing campaign dubbed "Ducktail" has been discovered targeting marketing and HR professionals through LinkedIn, with the aim of taking over Facebook Business accounts and abusing the Ads function to run...
‘Copyright Infringement’ Lure Used for Facebook Credential Harvesting
An extensive credential-harvesting campaign has hackers leveraging Facebook copyright infringement notices to steal enterprise credentials.Malicious actors continue to use tried and true phishing techniques and social engineering tactics to...
Feds Recoup $500K From Maui Ransomware Gang
Two healthcare companies — one in Kansas and another in Colorado — are about to have about $500,000 in combined ransomware payments returned, after the Department of Justice was...
SolarWinds Attack Underscores ‘New Dimension’ in Cyber-Espionage Tactics
Meanwhile, Malwarebytes is the latest victim, Symantec discovers a fourth piece of malware used in the massive attack campaign, and FireEye Mandiant releases a free tool to help spot...
Ragnar Locker Threatens to Leak Data if Victims Contact Authorities
In a new twist on dirty tactics from ransomware gangs, media reports claim the Ragnar Locker ransomware group is threatening to leak victims' stolen data if they contact law enforcement...