News
-
"Russians Tied To The SolarWinds Cyberattack Hacked Federal Prosecutors, DOJ Says"The Justice Department recently discovered that the Russian hackers behind the massive SolarWinds cyberespionage campaign broke into the email accounts of some of the most prominent federal prosecutors' offices around the country last year. The…
-
"Android Banking Trojan 'Vultur' Abusing Accessibility Services"An Android banking Trojan dubbed Vultur, first identified in March 2021, relies on screen recording and keylogging instead of HTML overlays to capture login credentials. According to security researchers at ThreatFabric, Vultur uses the Virtual Network…
-
"FAU Invention for Privacy of Sharing Files Online Gets U.S. Patent"Advancement has been made in secure online file-sharing by a scientist from Florida Atlantic University's (FAU) College of Engineering and Computer Science. Hari Kalva, Ph.D., inventor, associate chair, and professor in the Department of Electrical…
-
"Dozens of Active Cozy Bear C2 Servers for Data-Stealing Malware Identified"Researchers from RiskIQ's Team Atlas reported having identified more than 30 active command-and-control (C2) servers being used by APT29, a Russia-backed advanced persistent group, in a campaign to deliver WellMess and WellMail malware. These malware…
-
"Curious to See How Healthcare Cybersecurity Fared This Year?"In a new report, CynergisTek reviewed just under 100 assessments of healthcare providers across hospitals, physician practices, Accountable Care Organizations (ACOs), and Business Associates. These assessments measure organizations’ security posture…
-
"Researchers Publish Details on Recent Critical Hyper-V Vulnerability"Security researchers at Guardicore Labs have shared details of a critical vulnerability in Hyper-V, tracked as CVE-2021-28476, with a CVSS score of 9.9. The vulnerability impacts Hyper-V's virtual network switch driver (vmswitch.sys). If exploited by…
-
"Criminals Are Using Call Centers to Spread Ransomware in a Crafty Scheme"Palo Alto Networks originally discovered the ransomware campaign “BazaCall” in February. Adversaries lure in targets with an email during the campaign, suggesting that a subscription for a service, such as a gym membership, is expiring. Recent…
-
"Honeypot Security Technique Can Also Stop Attacks in Natural Language Processing"The growing sophistication of online fake news detectors and spam filters is accompanied by the increasing advancement of attacker's methods for tricking them. These methods include attacks through the "universal trigger." This learning-based method…
-
"CISA, NIST to Develop Cybersecurity Goals for Critical Infrastructure Control Systems"The Biden administration has released a national security memorandum to develop cybersecurity standards for critical infrastructure. The "Improving Cybersecurity for Critical Infrastructure Control Systems" memorandum brings the U.S. Department of…
-
"DDoS attacks in Q2 2021"In a new study, researchers at Kaspersky analyzed DDoS Intelligence statistics they collected on botnets in Q2 of 2021. The researchers stated that the countries that suffered the most DDoS attacks in Q2 were the US (36%), China (10.28%), and Poland (6.…
-
"BlackMatter & Haron: Evil Ransomware Newborns or Rebirths"DarkSide and REvil ransomware gangs have recently gone dark, but researchers at Ars Technica may have just discovered the rebranded version of the two ransomware groups or two completely new ransomware gangs. Both of the newly discovered ransomware…
-
"Praying Mantis Threat Group Targeting U.S. Firms in Sophisticated Attacks"High-profile public and private entities in the U.S. are being targeted in a malicious campaign similar to the one that focused on attacking Australian companies and government entities last year. Researchers at the cyber technology and services company…