China-Backed Winnti APT Siphons Reams of US Trade Secrets in Sprawling Cyber-Espionage Attack
China's Winnti cyberthreat group has been quietly stealing immense stores of intellectual property and other sensitive data from manufacturing and technology companies in North America and Asia for years.
That's...
Docker Under Siege: Cybercriminals Compromise Honeypots to Ramp Up Attacks
Cybercriminals are ramping up their attacks on the Docker Engine — the software foundation of the container infrastructure used by many cloud-native companies. Researchers flagged a pair of cyber campaigns...
1,000+ Attacks in 2 Years: How the SideWinder APT Sheds Its Skin
It's one of the more prolific yet lesser-known nation-state hacking groups in the world, and it's not out of China or Russia. The so-called SideWinder (aka Rattlesnake or T-APT4)...
FBI: Bank Losses From BEC Attacks Top $43B
Between June 2016 and December 2021, the total losses reported by global financial institutions as a result of business email compromise (BEC) attacks clocked in at more than $43 billion.
The...
Scammer Infects His Own Machine With Spyware, Reveals True Identity
In what can only be described as a case of karmic irony, a Nigerian scammer responsible for stealing more than 800,000 credentials from some 28,000 victims over the past...
Costa Rica Declares State of Emergency Under Sustained Conti Cyberattacks
Newly elected Costa Rican president Rodrigo Chaves has declared a state of national cybersecurity emergency after weeks of fallout from a Conti ransomware attack that has crippled the country's government and...
5-Buck DCRat Malware Foretells a Worrying Cyber Future
A bargain-basement, $5 price tag on a 3-year-old remote access Trojan (RAT) has concerned some security researchers, who see the move as signs of a possible race to the...
US Pledges to Help Ukraine Keep the Internet and Lights On
The US State Department today announced a coordinated effort between several government agencies to provide Ukraine with the cybersecurity technical expertise, resources, and threat intelligence necessary to protect the electrical...
Novel Nerbian RAT Lurks Behind Faked COVID Safety Emails
Phishing emails purporting to contain COVID-19 safety information from the World Health Organization (WHO) are instead phishing lures intended to spread a novel remote-access Trojan (RAT) called Nerbian.
A team...
Cyber-Espionage Attack Drops Post-Exploit Malware Framework on Microsoft Exchange Servers
A likely China-based, state-sponsored threat actor has been deploying a sophisticated post-exploitation malware framework on Microsoft Exchange servers at organizations in the technology, academic, and government sectors across multiple...
