An Interpol operation resulted in the seizure of more than $129 million in "virtual assets" and the arrest of nearly 1,000 suspects. The operation comes at a critical juncture in international cooperation to combat online financial crime, particularly…

According to a Daon survey report, 92 percent of consumers believe that cybersecurity threats will continue to outpace cybersecurity technology, and 91 percent are willing to take additional security measures to prove their identity on an ongoing basis…

Cybercriminal organizations are increasingly using Aurora, an information stealer built on the Go open-source programming language, to target data from browsers, cryptocurrency wallets, and local systems. Sekoia's research team discovered at least seven…

More than 1,600 publicly available Docker Hub images conceal malicious behavior, such as cryptocurrency miners, embedded secrets that can be used as backdoors, Domain Name System (DNS) hijackers, and website redirectors. Docker Hub is a cloud-based…

An examination of firmware images from Dell, HP, and Lenovo devices revealed the presence of outdated versions of the OpenSSL cryptographic library, highlighting a supply chain risk. The EFI Development Kit (EDK) is an open-source implementation of the…

The cybersecurity technology company Cybereason has warned that an aggressive new ransomware campaign from the Black Basta ransomware group is targeting US businesses. Black Basta first appeared in April and is thought to be an offshoot of the Conti…

A security research and hacking startup discovered a coding flaw that enables locking out Mars Stealer malware operators from their own servers and releasing their victims. Mars Stealer is a data-stealing Malware-as-a-Service (MaaS) that allows…

Amazon Web Services (AWS) has patched a cross-tenant vulnerability in AWS AppSync that could allow malicious actors to use the cloud service to assume identity and access management roles in other AWS accounts, gaining access to and control over those…

Computerland, a Belgian company, shared information with the European threat intelligence community about the Quantum Locker gang's tactics, techniques, and procedures (TTPs) used in recent attacks. According to the information shared, the Quantum Locker…

A threat actor known as Luna Moth has been stealing sensitive data and extorting money from small and medium-sized businesses through the use of social engineering tactics and legitimate software. The group avoids using ransomware in favor of convincing…

Microsoft has announced that security flaws impacting a web server that has been discontinued since 2005 were used to target and compromise organizations in the energy sector. According to a report published in April by cybersecurity firm Recorded Future…

A malicious extension for Chromium-based web browsers has been discovered to be distributed by ViperSoftX, a long-standing Windows information-stealer. The rogue browser add-on was dubbed VenomSoftX by a Czech-based cybersecurity firm due to the…