News
-
"FBI Arrests Two Estonian Men in $575M Crypto Fraud, Money Laundering Scheme"The FBI and Estonian police recently arrested two Estonian citizens for their alleged involvement in a $575 million cryptocurrency fraud scheme. Sergei Potapenko and Ivan Turõgin, both 37, are charged with conspiracy to commit wire fraud, 16 counts…
-
"Emotet Is Back and Delivers Payloads Like IcedID and Bumblebee"Proofpoint researchers have warned of the return of the Emotet malware, observing a high-volume malspam campaign delivering payloads such as IcedID and Bumblebee in early November. The Emotet banking Trojan has been around since at least 2014, and the…
-
"DUCKTAIL Attacks Costing Victims Hundreds of Thousands of Dollars"According to a new analysis, DUCKTAIL, a Vietnam-based cybercrime operation discovered by WithSecure earlier this year, has continued to evolve its operations. DUCKTAIL has been using LinkedIn to target individuals and organizations using Facebook's Ads…
-
"CISA Seeks Information for Potential Cyber Threat Intelligence Platform"On behalf of the Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA), the General Services Administration (GSA) requested information on the availability of Threat Intelligence Enterprise Services (TIES) to the…
-
"Microsoft Warns of Rise in Stolen Cloud Tokens Used to Bypass MFA"Threat actors are stealing authentication tokens that have already been verified by multi-factor authentication (MFA) in order to compromise organizations' systems. According to a new alert from Microsoft's Detection and Response Team (DART), token theft…
-
"90% Of Organizations Have Microsoft 365 Security Gaps"A recent study of 1.6 million Microsoft 365 users across three continents discovered that 90 percent of organizations lacked essential security protections. Microsoft 365 administration was found to be difficult. CoreView experts examined the most common…
-
"Hackers Steal $300,000 in DraftKings Credential Stuffing Attack"DraftKings, a sports betting company, has announced that it would refund all customers who were affected by a credential stuffing attack that resulted in losses of up to $300,000. The statement comes after DraftKings tweeted that it was looking into…
-
"Researchers Warn of Cyber Criminals Using Go-based Aurora Stealer Malware"Aurora Stealer, a new Go-based malware, is increasingly being used in campaigns to steal sensitive information from compromised hosts. These infection chains use phishing pages impersonating legitimate software download pages, such as those for…
-
"The Department of National Defense Awards Concordia Researcher $1M to Develop New Strategies Against Cyberattacks"The Royal Canadian Navy's ships are becoming increasingly vulnerable to targeted cyberattacks. These can impact the safety and integrity of assets, as well as the ability of decision-makers to use them. Researchers at Concordia University have received a…
-
"Human Side of Cybersecurity: An Empirical Study"A new study published in the International Journal of Business Information Systems examines the human side of cybersecurity. Cybersecurity is typically thought to be primarily about firewalls, antivirus software, spam filters, and Distributed Denial-of-…
-
"Google Won a Lawsuit Against the Glupteba Botnet Operators"Google has announced the successful conclusion of a nearly year-long legal battle with the Glupteba botnet, a highly sophisticated botnet comprised of millions of compromised Windows devices. Glupteba, unlike other botnets, uses cryptocurrency…
-
"Major Security Breach From Business Users' Low-Code Apps Could Come in 2023, Analysts Warn"Forrester analysts recently warned of a possible major security breach at a large enterprise in 2023 caused by business users employing low-code/no-code (LCNC). The first part of this prediction is a common industry assumption that it would be unusual to…