Cybersecurity

Russian Botnet Disrupted in International Cyber Operation

The U.S. Department of Justice, together with law enforcement partners in Germany, the Netherlands and the United Kingdom, have dismantled the infrastructure of a Russian botnet known as RSOCKS which hacked millions of computers and other electronic devices around…

Iran-Backed Cyber Warfare Group Phosphorus Targets US, Israel, Corporations

Suspected Iranian hackers targeted the emails of senior Israeli and American officials and executives this month. According to the Israeli cybersecurity firm Check Point, the personal e-mail accounts of these individuals were subject to a variety of phishing attacks that linked…

New MaliBot Android banking malware spreads as a crypto miner

Cybersecurity researchers have discovered a new Android banking malware named MaliBot, which poses as a cryptocurrency mining app or the Chrome web browser to target users in Italy and Spain. MaliBot focuses on stealing financial information such as e-banking service…

Security firm warns of ransomware attacks targeting Microsoft cloud ‘versioning’ feature

Researchers said they have discovered a way ransomware groups can encrypt files stored on Microsoft’s SharePoint and OneDrive applications that would make them “unrecoverable without dedicated backups or a decryption key from the attacker.” The attack centers on the…

BlackCat Ransomware Gang Targeting Unpatched Microsoft Exchange Servers

Microsoft is warning that the BlackCat ransomware crew is leveraging exploits for unpatched Exchange server vulnerabilities to gain access to targeted networks. Upon gaining an entry point, the attackers swiftly moved to gather information about the compromised machines…

Cyber-Criminals Smuggle Ukrainian Men Across Border

The war in Ukraine continues to offer cyber-criminals new opportunities to monetize conflict, with threat researchers observing ads offering to smuggle men out of the war-torn country. Intel 471 said criminals are using insiders, including border service staff, to offer people…

Sophos Firewall zero-day bug exploited weeks before fix

Chinese hackers used a zero-day exploit for a critical-severity vulnerability in Sophos Firewall to compromise a company and breach cloud-hosted web servers operated by the victim. The security issue has been fixed in the meantime but various threat actors continued to exploit it…

‘Hermit’ Android spyware used in Syria, Kazakhstan and Italy

Organizations operating inside of Kazakhstan, Syria and Italy are using a powerful enterprise-grade spyware to break into people’s Android devices, according to a report released by cybersecurity firm Lookout. Lookout researchers obtained a sample of what they call…

iCloud hacker gets 9 years in prison for stealing nude photos

A California man who hacked thousands of Apple iCloud accounts was sentenced to 8 years in prison after pleading guilty to conspiracy and computer fraud in October 2021. Starting from as early as September 2014, 41-year-old Hao Kuo Chi from La Puente, California…

High-Severity RCE Vulnerability Reported in Popular Fastjson Library

Cybersecurity researchers have detailed a recently patched high-severity security vulnerability in the popular Fastjson library that could be potentially exploited to achieve remote code execution. Tracked as CVE-2022-25845 (CVSS score: 8.1), the issue relates to a case of…