Researchers Devise New Speculative Execution Attacks Against Some Intel, AMD CPUs
Researchers at ETH Zurich have found a way to overcome a commonly used defense mechanism against so-called speculative execution attacks targeting modern microprocessors.
In a technical paper published this week,...
QuickBooks Vishing Scam Targets Small Businesses
Cybercriminals are posing as Intuit's popular accounting software package QuickBooks to target Google Workspace and Microsoft 365 small business users in a voice-phishing scam.
The campaign sends a false invoice...
‘Luna Moth’ Group Ransoms Data Without the Ransomware
A little social engineering and commercially available remote administration tools (RATs) and other software are all the new Luna Moth ransom group has needed to infiltrate victims' systems and...
Fake Google Software Updates Spread New Ransomware
Threat actors are increasingly using fake Microsoft and Google software updates to try to sneak malware on target systems.
The latest example is "HavanaCrypt," a new ransomware tool that researchers...
Microsoft Reverses Course on Blocking Office Macros by Default
Updated 5:19 p.m. EDT to include Microsoft's clarification that the change is temporary.
Several security experts expressed disappointment this week at Microsoft's quiet reversal Wednesday of a decision it had...
ICYMI: Critical Cisco RCE Bug, Microsoft Breaks Down Hive, SHI Cyberattack
Cybercrime never sleeps — but editors do. To cap off this short Fourth of July week, Dark Reading's editors are collecting all of the interesting threat intelligence and cyber-incident stories...
In Switch, Trickbot Group Now Attacking Ukrainian Targets
In a break from precedent, Russia's hitherto purely financially motivated Trickbot threat group has systematically been attacking targets in Ukraine over the past three months, apparently in support of...
Arrested Russian hacker Pavel Sitnikov looks to start a new chapter
Editor’s Note: In December 2020, The Record published an interview between Recorded Future’s Dmitry Smilyanets and Russian hacker Pavel Sitnikov about ransomware, cybercrime, and his self-proclaimed connection with the...
Stealthy Cyber-Campaign Ditches Cobalt Strike for Rival ‘Brute Ratel’ Pen Test Tool
In a fresh campaign that takes a page from the advanced persistent threat known as APT29, hackers are shifting away from the Cobalt Strike post-exploitation toolkit, instead embracing Brute Ratel...
China’s Tonto Team APT Ramps Up Spy Operations Against Russia
Representing a significant increase in activity, a campaign linked to China started targeting Russia-linked organizations in June with malware designed to collect intelligence on government activities, according to analyses by security...
