Daily Cyber Brief
Russian hackers continue to push disinfo, Nikkei hit by a ransomware attack, and a new phishing tactic using a chatbot seen by researchers...
Cybersecurity
The notorious Conti ransomware gang has officially shut down their operation, with infrastructure taken offline and team leaders told that the brand is no more. This news comes from Advanced Intel's Yelisey Boguslavskiy, who tweeted this afternoon that the gang's…
The conflict in Ukraine has shown that warfare has entered its “fourth plane” – cyber space, according to Microsoft’s President Brad Smith, speaking during Microsoft Envision in London, UK, today. He argued that Russia’s invasion of Ukraine marks a significant shift…
Cyberattacks on K-12 schools across the U.S. continued this week with both the Fort Sumner Municipal Schools in New Mexico and Washington Local Schools in Ohio suffering from incidents. The Cl0p ransomware group’s leak site this week displayed sensitive information…
Google last month addressed a high-severity flaw in its OAuth client library for Java that could be abused by a malicious actor with a compromised token to deploy arbitrary payloads. Tracked as CVE-2021-22573, the vulnerability is rated 8.7 out of 10 for severity and relates…
As Ukrainians flooded into Poland earlier this year to flee Russian invaders, a hacking group aligned with the Kremlin sought to spread rumors that criminal gangs were waiting to harvest the organs of child refugees. The network, known to cybersecurity experts as Ghostwriter…
Netgear is pushing out fixes for a bad Orbi firmware update released earlier this month that prevents users from accessing the device's admin console. On April 27th, Netgear released firmware update 4.6.8.2 for the Orbi RBR750, Orbi RBS750, Orbi RBR850, and Orbi…
Publishing giant Nikkei disclosed that the group's headquarters in Singapore was hit by a ransomware attack almost one week ago, on May 13, 2022. "Unauthorized access to the server was first detected on May 13, prompting an internal probe," the company revealed in a press…
A new research published by academics from KU Leuven, Radboud University, and the University of Lausanne has revealed that users' email addresses are exfiltrated to tracking, marketing, and analytics domains before such is submitted and without prior consent…
A newly discovered phishing campaign tries to ease potential victims into feeling secure about sharing credit card numbers and other information, according to research published Thursday by Trustwave’s SpiderLabs team. The process includes a “chatbot-like” page that “tries to…
Researchers with Shadowserver Foundation have discovered more than 380,000 open Kubernetes API servers exposed on the Internet. That represents 84% of all global Kubernetes API instances observable online. The research was conducted across IPv4 infrastructure…