Cybersecurity authorities in the U.S., U.K., Australia, Canada, and New Zealand have recently released a joint advisory warning that they expect malicious cyber actors, including state-sponsored advanced persistent threat (APT) groups, to step up their…

After Microsoft began rolling out a plan to block macros obtained from the Internet by default, threat actors are now using new malware delivery methods for spear-phishing attacks that rely less on malicious macros. IBM Security's X-Force Threat…

Security researchers at Varonis are warning that vanity links created by companies to add their brand to well-known cloud services could become a useful vector for phishing attacks and a way to better fool victims.  The researchers stated that cloud…

A recent malware campaign involving a lure about non-fungible token (NFT) projects suggests that threat actors are taking advantage of the growing interest in digital goods. The campaign observed by Malwarebytes researchers involved messages appearing to…

Rodrigo Chaves, the Costa Rican President, declared a state of national cybersecurity emergency following a financially-motivated Conti ransomware attack targeting his administration, which has disrupted the Latin American nation's government and economy…

Cyber defense experts warn of the possibility of hackers targeting Electric Vehicle (EV) infrastructure to lock drivers out of their cars, steal payment information, and disrupt electrical grids. According to experts who spoke at NextGov's recent Cyber…

The National Cyber Security Centre (NCSC) has been deleting scams from the Internet as a part of a campaign aimed at protecting individuals from fraud and cybercrime. The organization claims to have successfully deleted nearly four times as many scams,…

A new underground service called Frappo has been identified by the Resecurity HUNTER unit. Frappo is a Phishing-as-a-Service (PaaS) that allows cybercriminals to host and generate high-quality phishing pages appearing to belong to major online banking, e…

An April consumer survey recently released by the Internet security firm NordVPN reveals that many Americans are concerned about the threat of cyber warfare. The survey polled over 1,000 US consumers, 93 percent of which expressed concern over the…

Security researchers at Secureworks have claimed that new malware samples and a new Tor-based leak website suggest that the REvil ransomware operation has been resumed.  Secureworks, which tracks the group behind REvil as Gold Southfield, has…

Microsoft recently released critical software updates to fix at least 73 documented security flaws in the Windows ecosystem and warned that unknown attackers are already launching zero-day man-in-the-middle attacks.  The zero-day, flagged as CVE-…

The US Department of Health and Human Services' (HHS) Health Sector Cybersecurity Coordination Center (HC3) observed an increase in the use of legitimate tools such as Cobalt Strike and Mimikatz by ransomware groups during the first quarter of 2022. HC3…