News
-
"FIN7 Threat Actors Add Ransomware to Their Arsenal"FIN7, one of the world's most prolific cybercriminal gangs, has added ransomware to its arsenal. In 2014, the organization gained notoriety after stealing $1 billion from more than 100 companies globally. FIN7 is one of the most skilled Advanced… -
"European Lawmaker Targeted With Cytrox Predator Surveillance Spyware"A security audit by the European Parliament has unearthed attempts to plant high-end surveillance software on the phone of a Greek lawmaker, and new reports are linking the hack attempt to a known North Macedonia spyware vendor. The company, called… -
"Wawa Agrees to Payment, Security Changes for '19 Data Breach"Authorities announced Tuesday that a Pennsylvania-based convenience store chain will pay $8 million to several states over a 2019 data breach involving some 34 million payment cards. The Pennsylvania attorney general’s office stated that Wawa Inc.… -
"US Doubles Reward for Info on North Korean Hackers"The US government has increased its reward for information on North Korean state-linked hackers to $10m. The State Department's Rewards for Justice initially offered $5M for information. In a notice, the State Department stated, "if you have… -
"Data Breach Costs Reach New Record High"Security researchers at IBM have found that the average cost of a data breach globally now stands at $4.35m, up nearly 13% on 2020 figures and a new all-time record. During the study, the researchers interviewed 550 organizations in 17 countries… -
"Hackers Scan for Vulnerabilities within 15 Minutes of Disclosure"Palo Alto's 2022 Unit 42 Incident Response Report shows that threat actors scan for vulnerable endpoints within 15 minutes of a new CVE being publicly disclosed, giving system administrators even less time to patch disclosed security vulnerabilities than… -
"Israel's New Cyber-Kinetic Lab Will Boost the Resilience of Critical Infrastructure"The National Cyber-Kinetic Lab for Industrial Control Systems (ICS) and Operational Technology (OT) is a new governmental lab that is taking shape at the Advanced Technologies Park in Be'er Sheva, Israel's "cyber capital." It will serve as a sandbox for…
-
"Malicious IIS Extensions Gaining Popularity Among Cyber Criminals for Persistent Access"Threat actors are increasingly using Internet Information Services (IIS) extensions to backdoor servers to establish a long-lasting persistence mechanism. According to a new warning from the Microsoft 365 Defender Research Team, IIS backdoors are also…
-
"Hackers Stole $6 Million From Blockchain-Based Music Portal Audius"Threat actors recently infiltrated the decentralized music platform Audius and stole more than 18 million AUDIO tokens, which are currently worth around $6 million. Audius is an Ethereum blockchain-based decentralized streaming service. Users can earn…
-
"Discord, Telegram Services Hijacked to Launch Array of Cyberattacks"As evidenced by ongoing, dangerous campaigns, threat actors have figured out how to use the existing functionality and infrastructure of popular messaging apps such as Telegram and Discord to host and execute a variety of malware. According to Intel 471'… -
SoS Musings #63 - Testbeds for Security ExperimentationSoS Musings #63 - Testbeds for Security Experimentation
-