Cybersecurity

Conti Ransomware Source Code Leaked by Ukrainian Researcher

A Ukrainian researcher continues to deal devastating blows to the Conti ransomware operation, leaking further internal conversations, as well as the source for their ransomware, administrative panels, and more. It has been quite a damaging week for Conti after they…

New Worm and Data Wiper Malware Seen Hitting Ukrainian Networks

Newly discovered malware was deployed in destructive attacks against Ukrainian organizations and governmental networks before and after Russia invaded the country on February 24. While analyzing these attacks, ESET Research Labs analysts discovered a new…

NVIDIA Confirms Employee Credentials Stolen in Cyberattack

NVIDIA this week acknowledged that employee credentials were stolen during a cyberattack on February 23 and confirmed the attackers have started leaking the information online. The compromise occurred on February 23 and impacted certain "IT resources," an NVIDIA…

Insurance Broker Aon Investigating Cyber Incident

Global insurance broker Aon on Monday revealed that it’s investigating a cyber incident impacting some of its systems. In a brief statement submitted to the U.S. Securities and Exchange Commission (SEC), Aon said it detected a cyber incident on February 25…

This is What Happens When Two Ransomware Gangs Hack the Same Target - at the Same Time

A healthcare provider fell victim to two simultaneous cyber attacks by two separate ransomware gangs using different techniques to exploit unpatched security vulnerabilities in Microsoft Exchange Server at the same time, which even led to the second ransomware attack…

RCE Bugs in WhatsApp, Other Hugely Popular VoIP Apps: Patch Now!

The flaws are in the ubiquitous open-source PJSIP multimedia communication library, used by the Asterisk PBX toolkit that’s found in a massive number of VoIP implementations. WhatsApp and BlueJeans are just two of the world’s most popular communication apps that…

Microsoft Accounts Targeted by Russian-Themed Credential Harvesting

Malicious emails warning Microsoft users of “unusual sign-on activity” from Russia are looking to capitalizing on the Ukrainian crisis. While legitimate concerns abound about the Russian-Ukrainian conflict sparking a far-reaching cyberwarfare conflagration around the…

Daxin Espionage Backdoor Ups the Ante on Chinese Malware

Via node-hopping, the espionage tool can reach computers that aren’t even connected to the internet. The Daxin malware is taking aim at hardened government networks around the world, according to researchers, with the goal of cyberespionage. The Symantec Threat…

Signal Confirms Hack Claims Are Part Of Misinformation Campaign

Encrypted messaging app Signal has not been hacked, the app maker has confirmed. As Signal use in Eastern Europe increases, rumors had started to circulate that the encrypted messaging app had been hacked. But as misinformation around the Russia Ukraine conflict escalates…

Conti Ransomware Group Diaries, Part I: Evasion

A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti, an aggressive and ruthless Russian cybercrime group that focuses on deploying its ransomware to companies with more than $100 million in annual revenue…