Business services company Morley was targeted in a ransomware attack that may have resulted in the information of more than 500,000 individuals getting stolen.  In letters sent to impacted individuals, Morley, which serves Fortune 500 and Global 500…

Security researchers have discovered that the ransomware operation, Alphv, also known as BlackCat, is a reboot of the DarkSide/BlackMatter ransomware group. According to a threat analyst at the security firm Emsisoft, Alphv/BlackCat claims to be former…

Yet another cryptocurrency firm has been hacked to the tune of millions of dollars.  Meter provides decentralized finance (DeFi) infrastructure services, linking siloed blockchains for users with so-called "cross-chain bridges." An unauthorized…

Multiple law enforcement actions led to arrests and the shutdown of some ransomware activities in 2021, thus driving threat actors to reduce their targeting scope and increase efforts towards maximizing the effectiveness of their operations. Although…

APT36, also known as Earth Karkaddan, is a politically motivated Advanced Persistent Threat (APT) group believed to be operational since at least 2013 and composed of threat actors in Pakistan. In 2016, the group was found distributing information-…

Major oil terminals in some of Western Europe's biggest ports have been targeted in a cyberattack. Belgian prosecutors are investigating the hacking of oil facilities in the country's maritime entryways, including Europe's second-biggest port, Antwerp,…

A report released by WhiteSource details malicious activity discovered in npm, a popular JavaScript package manager widely used among developers. The report is based on findings from over 1,300 malicious npm packages identified in 2021. JavaScript…

The usual tax-season barrage of cybercriminal activity is already underway with a phishing campaign impersonating the popular accounting and tax-filing software.  Intuit is warning customers of a phishing campaign that threatens to close user…

Security researchers at Chainalysis have found that cybercriminals are making and laundering millions through non-fungible tokens (NFTs).  NFTs are technically unique records on a blockchain that are each linked to a piece of digital content.  …

The US Department of Homeland Security (DHS) has launched the Cyber Safety Review Board (CSRB), a public-private initiative aimed at bolstering the nation's cybersecurity by bringing government and industry leaders together. The CSRB was established as…

Sophos discovered malware called SolarMarker, a backdoor and information-stealing malware being spread through Search Engine Optimization (SEO) poisoning. SEO poisoning is a technique in which threat actors create malicious websites and use SEO…

Researchers at QNAP Sytems found a new ransomware variant called DeadBolt that is actively compromising unsecured Internet-connected Network-Attached Storage (NAS) devices, encrypting users' data for Bitcoin ransom. The DeadBolt ransomware campaign has…