The FBI is warning that a threat group is using IT-themed social engineering calls and callback phishing emails to gain remote access to systems and steal sensitive data. The Silent Ransom Group (SRG), also known as Luna Moth, Chatty Spider, and UNC3753, will then use the stolen data to extort the law firms, the show more ...
Dutch intelligence officials and Microsoft warned today of a new Russian threat actor targeting Western organizations in what appears to be a military and high-tech espionage campaign. The new threat group – called Laundry Bear by the Dutch and Void Blizzard by Microsoft – was the subject of separate advisories show more ...
Can your photos and other data be downloaded or erased from your smartphone while its charging from a public charging port — on public transport, in a clinic, at the airport, and so on? Despite manufacturers safety measures, its sometimes possible. Hackers first came up with such attacks way back in 2011: if an show more ...
DragonForce, a ransomware "cartel" that has gained significant popularity since its debut in 2023, attacked an MSP as part of a recent supply chain attack, via known SimpleHelp bugs.
_Illia_Uriadnikov_Alamy.jpg?width=1280&auto=webp&quality=80&disable=upscale)
Organizations need to broaden their strategy to manage vulnerabilities more effectively and strengthen network cyber resilience.
Once dismissed as Internet miscreants in hoodies, ethical hackers have hit the big time, earning millions from blue-chip firms. And they say it's their diverse backgrounds that make them top-tier bug hunters.
A multiyear investigation by a public-private partnership has resulted in the seizure of the botnet's US-based infrastructure and indictments for its key players, significantly disrupting a vast cybercriminal enterprise.
The non-ransomware extortion group has switched up tactics and victimology in a deliberate and focused campaign similar to those of other attackers focused on stealing sensitive data.
A threat actor has gained access to Microsoft 365 environments of a small number of customers of Commvault's Metallic service.
The attack dirsupted MathWorks' systems and online applications, but it remains unclear which ransomware group targeted the software company and whether they stole any data.
Though Adidas said that no payment or financial information was affected in the breach, individuals who contacted the compamy's customer service help desk were impacted.
The city filed breach notification letters with regulators seven months after a ransomware gang accessed systems.
According to police in Guangzhou, the group — allegedly linked to Taiwan’s ruling Democratic Progressive Party (DPP) — has targeted more than 1,000 key networks in over 10 Chinese provinces.
The threats ranged from deceptive apps designed to steal personal information to fraudulent payment schemes.
Massachusetts-based MathWorks provided an update to customers on Monday after initially reporting outages on May 18, confirming that it experienced a ransomware attack that took down online applications and internal systems used by staff.
The government, which previously criticized the app for so-called "subversive" activity on the platform, alleged Telegram had not cooperated with authorities in addressing criminal activity.
Sina Gholinejad admitted to using the Robbinhood ransomware variant to extort ransom payments from dozens of victims.
A Russian court sentenced a former hospital programmer to 14 years in a high-security penal colony for allegedly leaking personal data of Russian soldiers to Ukraine, authorities said.
The U.S. Federal Bureau of Investigation (FBI) has warned of social engineering attacks mounted by a criminal extortion actor known as Luna Moth targeting law firms over the past two years. The campaign leverages "information technology (IT) themed social engineering calls, and callback phishing emails, to gain remote access to systems or devices and steal sensitive data to extort the victims,"
The Russia-aligned threat actor known as TAG-110 has been observed conducting a spear-phishing campaign targeting Tajikistan using macro-enabled Word templates as an initial payload. The attack chain is a departure from the threat actor's previously documented use of an HTML Application (.HTA) loader dubbed HATVIBE, Recorded Future's Insikt Group said in an analysis. "Given TAG-110's historical
Microsoft has shed light on a previously undocumented cluster of threat activity originating from a Russia-affiliated threat actor dubbed Void Blizzard (aka Laundry Bear) that it said is attributed to "worldwide cloud abuse." Active since at least April 2024, the hacking group is linked to espionage operations mainly targeting organizations that are important to Russian government objectives,
Artificial intelligence is driving a massive shift in enterprise productivity, from GitHub Copilot’s code completions to chatbots that mine internal knowledge bases for instant answers. Each new agent must authenticate to other services, quietly swelling the population of non‑human identities (NHIs) across corporate clouds. That population is already overwhelming the enterprise: many companies
Threat hunters have exposed a novel campaign that makes use of search engine optimization (SEO) poisoning techniques to target employee mobile devices and facilitate payroll fraud. The activity, first detected by ReliaQuest in May 2025 targeting an unnamed customer in the manufacturing sector, is characterized by the use of fake login pages to access the employee payroll portal and redirect
Misconfigured Docker API instances have become the target of a new malware campaign that transforms them into a cryptocurrency mining botnet. The attacks, designed to mine for Dero currency, is notable for its worm-like capabilities to propagate the malware to other exposed Docker instances and rope them into an ever-growing horde of mining bots. Kaspersky said it observed an unidentified threat
Cybersecurity researchers have disclosed a new malicious campaign that uses a fake website advertising antivirus software from Bitdefender to dupe victims into downloading a remote access trojan called Venom RAT. The campaign indicates a "clear intent to target individuals for financial gain by compromising their credentials, crypto wallets, and potentially selling access to their systems," the
In episode 52 of The AI Fix, our hosts watch a non-existent musical about garlic bread, Graham shares a summer reading list of books that don't exist, Mark feels nauseous after watching a video of Sam Altman and Jony Ive waffling about products that don't exist, some non-existent robots stack empty crates in a show more ...
Lovers of Adidas clothes would be wise to be on their guard against phishing attacks, after the German sportswear giant revealed that a cyber attack had exposed the personal information of customers. Read more in my article on the Hot for Security blog.
Cybercriminals impersonate the trusted e-signature brand and send fake Docusign notifications to trick people into giving away their personal or corporate data
Source: www.securityweek.com – Author: Eduard Kovacs Nearly one month after it informed customers that it had been targeted in a cyberattack, Canadian electric utility Nova Scotia Power admitted on Friday that it has been dealing with a ransomware attack. The breach was disclosed by Nova Scotia Power and its show more ...
Source: www.securityweek.com – Author: SecurityWeek News SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a show more ...
Source: www.securityweek.com – Author: Ionut Arghire The ongoing exploitation of a Commvault vulnerability that was targeted as a zero-day is likely part of a broader campaign against software-as-a-service (SaaS) solutions, the US cybersecurity agency CISA says. Tracked as CVE-2025-3928 (CVSS score of 8.7), the show more ...
Source: hackread.com – Author: Waqas. The full source code of SilverRAT, a notorious remote access trojan (RAT), has been leaked online briefly appearing on GitHub under the repository “SilverRAT-FULL-Source-Code” before being swiftly taken down. A snapshot of the repository, captured by Hackread.com via show more ...
Source: securityboulevard.com – Author: Devin Partida Nonprofits do vital work in their communities, which may create a tempting target for criminals. Increasingly sophisticated cybersecurity threats make incident response plans more relevant than ever. Nonprofit employees should strategically recognize and show more ...
Source: securityboulevard.com – Author: Ahona Rudra “PowerDMARC has been a game-changer for our IT team!” Sebastián Valero Márquez (IT Manager at HispaColex Tech Consulting) Overview Company: HispaColex Tech Consulting Customer Type: MSP Partner Country: Spain HispaColex Tech Consulting, a leading show more ...
Source: securityboulevard.com – Author: Alison Mack How Secure Are Your Non-Human Identities From Cyber Threats? Are you confident that your non-human identities (NHIs) are free from cyber threats? If your initial reaction is uncertainty or hesitation, don’t worry, you are not alone. Many organizations face show more ...
Source: securityboulevard.com – Author: Alison Mack Why Does NHI Value Matter To Your Security Architecture? For many businesses embarking on digital transformation journeys, the role of Non-Human Identities (NHIs) in their cybersecurity strategies is often understated. Yet, the management of NHIs and their show more ...
Source: securityboulevard.com – Author: Alison Mack Is Your Cybersecurity Strategy Ready for Non-Human Identities? Non-Human Identities (NHIs) and Secrets Security Management have emerged as crucial components of a comprehensive cybersecurity strategy. These powerful tools, once adequately managed, can show more ...
Source: securityboulevard.com – Author: Laura Bruck Executive Team’s Digital Footprint Exposure Is Real Executives, board members, and other high-profile users carry more than just influence – they carry risk. With access to strategic assets, critical systems, and high-trust communications, these show more ...
Source: securityboulevard.com – Author: Andy Rea As organisations begin to adopt LLMs internally, security and control become non-negotiable. This post is a proof of concept that shows just how straightforward it is to integrate GitGuardian’s Secrets Detection API into an LLM workflow. We’ll start with a show more ...
Source: securityboulevard.com – Author: Deepak Gupta – Tech Entrepreneur, Cybersecurity Author Securing your API endpoints isn’t just good practice—it’s essential survival. As cyber threats grow increasingly sophisticated, understanding the authentication mechanisms that protect your digital show more ...
Source: securityboulevard.com – Author: Rebecca Kappel What is EASA? EASA has long been synonymous with excellence in aviation safety. As the regulatory authority for the European Union, EASA sets the standards that govern everything from aircraft design to operational protocols. Its mission is clear: to ensure show more ...
Source: www.infosecurity-magazine.com – Author: The US government has begun an audit of its National Vulnerability Database (NVD) to ensure its team can catch up with the vulnerability backlog. In a May 20 memo, the US Department of Commerce’s Office (DoC) of Inspector General announced plans to conduct an show more ...
Source: www.infosecurity-magazine.com – Author: A new joint government advisory has urged organizations to prioritize the implementation of Security Information and Event Management (SIEM) and Security Orchestration, Automation and Response (SOAR) platforms. The guidance, issued by government agencies in the show more ...
Source: www.infosecurity-magazine.com – Author: Chinese hackers are targeting local government organizations in the US by exploiting a vulnerability in Cityworks, a popular asset management system. Cisco Talos said it has observed a threat actor tracked as UAT-6382 successfully conduct intrusions in the show more ...
Source: heimdalsecurity.com – Author: Madalina Popovici , Heimdal launches a new podcast, The MSP Security Playbook – a show for managed service providers ready to scale smarter, boost profitability, and lead with next-gen cybersecurity solutions. The first episode features Nigel Moore, founder of The show more ...
Source: thehackernews.com – Author: . The U.S. Federal Bureau of Investigation (FBI) has warned of social engineering attacks mounted by a criminal extortion actor known as Luna Moth targeting law firms over the past two years. The campaign leverages “information technology (IT) themed social engineering show more ...
Source: thehackernews.com – Author: . The Russia-aligned threat actor known as TAG-110 has been observed conducting a spear-phishing campaign targeting Tajikistan using macro-enabled Word templates as an initial payload. The attack chain is a departure from the threat actor’s previously documented use of show more ...
