New Chaos Malware Variant Ditches Wiper for Encryption
The Chaos malware-builder, which climbed up as a wiper from the underground murk nearly a year ago, has shape-shifted with a rebranded binary dubbed Yashma that incorporates fully fledged...
Third-Party Scripts on Websites Present a ‘Broad & Open’ Attack Vector
Many organizations may be significantly more vulnerable to risks from third-party JavaScript in their websites than they think.
New analysis from Source Defense finds there to be a high prevalence of...
VMware, Airline Targeted as Ransomware Chaos Reigns
Ransomware incidents are on the rise and this week proved no exception, with the discovery of a Linux-based ransomware family called Cheerscrypt targeting VMware ESXi servers and an attack...
Interpol’s Massive ‘Operation Delilah’ Nabs BEC Bigwig
Business email compromise (BEC) attacks have caused billions of dollars in losses to businesses globally in recent years — but now international law-enforcement has notched up another victory in...
DDoS Extortion Attack Flagged as Possible REvil Resurgence
Concern has been raised that a coordinated distributed denial-of-service (DDoS) attack from a malicious actor could be associated with the notorious ransomware-as-a-service (RaaS) group REvil.
According to a report from...
Industry 4.0 Points Up Need for Improved Security for Manufacturers
Digital transformation within the manufacturing industry, often referred to as Industry 4.0, is bringing a new world of connectivity and efficiency to modern-day factories. Smart factories incorporate new technology — such...
CLOP Ransomware Activity Spiked in April
While on the whole the ransomware landscape remained fairly stable between March and April, a new analysis shows a sizable hike in attack activity from the CLOP ransomware group.
The...
Brexit Leak Site Linked to Russian Hackers
A new website has popped up called Very English Coop d'Etat, publishing what it claims are private emails from pro-Brexit leadership in the UK in an attempt to gin...
DeFi Is Getting Pummeled by Cybercriminals
Decentralized finance (DeFi) platforms — which connect various cryptocurrency blockchains to create a decentralized infrastructure for borrowing, trading, and other transactions — promise to replace banks as a secure and convenient...
New Attack Shows Weaponized PDF Files Remain a Threat
When it comes to packaging malware, the file format of choice remains Microsoft Word or Excel, but a recent attack using a PDF file to lure in victims caught the...