Daily Cyber Brief
LA schools hit by huge cyberattack, the U.S. seizes WT1SHOP criminal marketplace, and new Worok group targets high profile Asian companies and governments...
Cybersecurity
A cyberattack targeting the huge Los Angeles school district prompted an unprecedented shutdown of its computer systems as schools increasingly find themselves vulnerable to attacks at the start of a new year. The attack on the Los Angeles Unified School District sounded…
Japan is investigating the possible involvement of a group supporting the Russian government in a denial-of-service cyberattack on government websites on Thursday, public broadcaster NHK reported. The attack temporarily blocked access to websites, including the…
An international law enforcement operation has seized the website and domains for WT1SHOP, a criminal marketplace that sold stolen credit cards, I.D. cards, and millions of login credentials. WT1SHOP was one of the largest criminal marketplaces of PII data…
High-profile companies and local governments located primarily in Asia are the subjects of targeted attacks by a previously undocumented espionage group dubbed Worok that has been active since late 2020. "Worok's toolset includes a C++ loader CLRLoad, a PowerShell…
The Mirai malware botnet variant known as ‘MooBot’ has re-emerged in a new attack wave that started early last month, targeting vulnerable D-Link routers with a mix of old and new exploits. MooBot was discovered by analysts at Fortinet in December 2021, targeting a flaw…
A new phishing-as-a-service (PhaaS) toolkit dubbed EvilProxy is being advertised on the criminal underground as a means for threat actors to bypass two-factor authentication (2FA) protections employed against online services. "EvilProxy actors are using reverse…
Security researchers have discovered that Minecraft is the most heavily abused game title by cybercriminals, who use it to lure unsuspecting players into installing malware. Based on stats collected by the security firm between July 2021 and July 2022, Minecraft-related files…
Travellers in London are braced for more delays after the city’s largest bus operator revealed it has been hit by a “cybersecurity incident,” according to reports. Newcastle-based transportation group Go-Ahead shared a statement with the London Stock Exchange…
A previously undocumented strain of Android spyware with extensive information gathering capabilities has been found disguised as a book likely designed to target the Uyghur community in China. The malware comes under the guise of a book titled…
Leading hospitality company InterContinental Hotels Group PLC (also known as IHG Hotels & Resorts) says its information technology (IT) systems have been disrupted since yesterday after its network was breached. IHG is a British multinational company that currently…