Cybersecurity

Ex-Canadian government official extradited to face charges over ransomware attacks

A former Canadian government official has been extradited to the United States to face criminal charges alleging he deployed ransomware known as "NetWalker" to target companies, municipalities, hospitals and law enforcement during…

Anonymous hacks Russian federal agency, releases 360,000 documents

The Ukrainian Anonymous hacker group hacked into Roskomnadzor, the Russian federal agency responsible for monitoring and censoring media, and released 360,000 files, the group announced on Twitter on Thursday…

REvil Ransomware Member Extradited to U.S. to Stand Trial for Kaseya Attack

The U.S. Department of Justice announced that alleged REvil ransomware affiliate, Yaroslav Vasinskyi, was extradited to the United States last week to stand trial for the Kaseya cyberattack. Vasinkyi, a 22-year-old Ukrainian national, was arrested in November…

Corporate Website Contact Forms Used to Spread BazarBackdoor Malware

The stealthy BazarBackdoor malware is now being spread via website contact forms rather than typical phishing emails to evade detection by security software. BazarBackdoor is a stealthy backdoor malware created by the TrickBot group and is now under development by…

Malware Disguised as Security Tool Targets Ukraine's IT Army

A new malware campaign is taking advantage of people's willingness to support Ukraine's cyber warfare against Russia to infect them with password-stealing Trojans. Last month, the Ukrainian government announced a new IT Army composed of volunteers worldwide who…

Google Rolling Out Air Raid Alerts to Android Users in Ukraine

Google is rolling out an air raid alert system to all Android phones in Ukraine to help them get back to safety from incoming Russian airstrikes. The new feature was announced via an update to a March 1 blog post regarding the actions taken by Google following the Russian…

SEC Wants Public Companies to Report Breaches Within Four Days

The US Securities and Exchange Commission (SEC) has proposed rule amendments to require publicly traded companies to report data breaches and other cybersecurity incidents within four days after they're determined as being a material incident (one that shareholders would…

Russia Creates its Own TLS Certificate Authority to Bypass Sanctions

Russia has created its own trusted TLS certificate authority (CA) to solve website access problems that have been piling up after sanctions prevent certificate renewals. The sanctions imposed by western companies and governments are preventing Russian sites…

Malware Posing as Russia DDoS Tool Bites Pro-Ukraine Hackers

Be careful when downloading a tool to cyber-target Russia: It could be an infostealer wolf dressed in sheep’s clothing that grabs your cryptocurrency info instead. Looking to cyber-hassle Russia, Ukrainian sympathizers? Be careful — malware is making the rounds, disguised as a…

Qakbot Botnet Sprouts Fangs, Injects Malware into Email Threads

The ever-shifting, ever-more-powerful malware is now hijacking email threads to download malicious DLLs that inject password-stealing code into webpages, among other foul things. The Qakbot botnet is getting more dangerous, sinking its fangs into email threads and…