Cybersecurity

The Lapsus$ Hacking Group Is Off to a Chaotic Start

Ransomware gangs have become well-oiled moneymaking machines in their quest for criminal profit. But since December, a seemingly new group called Lapsus$ has added chaotic energy to the field, cavorting about with a strong social media presence on Telegram, a string of…

Russia’s Roskomnadzor Hacked By Anonymous

Hacking collective Anonymous says it breached Russia federal agency Roskomnadzor last week and leaked 360,000 files (800GB). The hacktivist collective Anonymous continues its self-declared war against Russia, after it claimed to have breached a federal agency…

Germany Warns Against Using Kaspersky Software, Citing ‘Considerable’ Cyber Risk After Russia’s Invasion

The German Federal Office for Information Security (BSI) warned organizations against using Kaspersky antivirus software over fears it could be exploited for cyber-espionage or launching cyberattacks amid Russia’s ongoing war in Ukraine. While the office is not explicitly banning…

FBI Warns of MFA Flaw Used by State Hackers for Lateral Movement

The FBI says Russian state-backed hackers gained access to a non-governmental organization (NGO) cloud after enrolling their own device in the organization's Duo MFA following the exploitation of misconfigured default multifactor authentication (MFA) protocols…

Massive Phishing Campaign Uses 500+ Domains to Steal Credentials

Large-scale phishing activity using hundreds of domains to steal credentials for Naver, a Google-like online platform in South Korea, shows infrastructure overlaps linked to the TrickBot botnet. The resources used for this attack show the sheer size of the cybercriminal…

New Linux Botnet Exploits Log4J, uses DNS Tunneling for comms

A recently discovered botnet under active development targets Linux systems, attempting to ensnare them into an army of bots ready to steal sensitive info, installing rootkits, creating reverse shells, and acting as web traffic proxies. The newly found malware, dubbed B1txor20…

Mobile Threats Skyrocket

The volume of mobile threats is increasing and attackers are growing more sophisticated, with almost a third of zero-day attacks now targeting mobile devices, new data shows. In its annual mobile threats report published this week, cybersecurity firm Zimperium says data from its…

Cyberattacks Against Israeli Government Sites: ‘Largest in the Country’s History’

DDoS attacks against Israel telecom companies took down government sites, sparking a temporary state of emergency. Israel’s Nation Cyber Directorate confirmed in a tweet on Monday that a denial-of-service (DDoS) attack against a telecommunications provider took…

Ukraine says it has Detained a Suspected Hacker who Allegedly Helped Russia Send Texts to Ukrainians Urging them to Surrender

Ukraine's top law-enforcement agency said on Tuesday that it has detained a suspected "hacker" who was allegedly aiding Russian troops technologically in the eastern European country and helping Russia send text messages to Ukrainian forces urging them to surrender…

Researchers Find New Evidence Linking Kwampirs Malware to Shamoon APT Hackers

New findings released last week showcase the overlapping source code and techniques between the operators of Shamoon and Kwampirs, indicating that they "are the same group or really close collaborators." "Research evidence shows identification of co-evolution between both…