Daily Cyber Brief

Kosovo establishes a new cybersecurity agency, DDoS attacks on UK financial institutions surged during the first months of the Ukraine war, and SparklingGoblin uses a variant of SideWalk...

Cybersecurity

Feds Accuse Hacking Trio Tied to Iranian Military of Hundreds of Ransomware Attacks on U.S.

Iranian hackers with ties to the nation’s military are responsible for carrying out “hundreds” of ransomware attacks on victims in the U.S. and other countries over multiple years, U.S. federal authorities said Wednesday. The attacks are said to have targeted nearly every kind of…

Kosovo to Establish Agency for Cyber Security Amid Recent Attacks

After suffering a series of cyber-attacks, Kosovo’s government is to propose the establishment of an Agency for Cyber-Security. The government on Wednesday approved a draft law on cyber security, which will include forming an agency. Minister of Interior Xhelal Sveçla said…

Gay hookup site typosquatted by 50 domains to push dodgy Chrome extensions

Gay hookup and cruising web app Sniffies is being impersonated by opportunistic threat actors hoping to target the website's users with typosquatting domains that push scams and dubious Google Chrome extensions. In some cases, these illicit domains launch the Apple…

SparklingGoblin APT Hackers Using New Linux Variant of SideWalk Backdoor

A Linux variant of a backdoor known as SideWalk was used to target a Hong Kong university in February 2021, underscoring the cross-platform abilities of the implant. Slovak cybersecurity firm ESET, which detected the malware in the university's network, attributed…

Death of Queen Elizabeth II exploited to steal Microsoft credentials

Threat actors are exploiting the death of Queen Elizabeth II in phishing attacks to lure their targets to malicious sites designed to steal their Microsoft account credentials. Besides Microsoft account details, the attackers also attempt to steal their victims' multi-factor…

Vulnerabilities Found in Airplane WiFi Devices, Passengers' Data Exposed

Two critical vulnerabilities were found in wireless LAN devices that are allegedly used to provide internet connectivity in airplanes. The flaws were discovered by Thomas Knudsen and Samy Younsi of Necrum Security Labs and affected the Flexlan FX3000 and FX2000…

New Lenovo BIOS updates fix security bugs in hundreds of models

Chinese computer manufacturer Lenovo has issued a security advisory to warn of several high-severity BIOS vulnerabilities impacting hundreds of devices in the various models (Desktop, All in One, IdeaCentre, Legion, ThinkCentre, ThinkPad, ThinkAgile, ThinkStation…

Researchers Detail OriginLogger RAT — Successor to Agent Tesla Malware

Palo Alto Networks Unit 42 has detailed the inner workings of a malware called OriginLogger, which has been touted as a successor to the widely used information stealer and remote access trojan (RAT) known as Agent Tesla. A .NET based keylogger and remote access…

Phishing page embeds keylogger to steal passwords as you type

A novel phishing campaign is underway, targeting Greeks with phishing sites that mimic the state's official tax refund platform and steal credentials as they type them. The campaign aims to trick victims into entering their banking credentials on the sites, allegedly to confirm…

DDoS Attacks on UK Firms Surge During Ukraine War

The volume of DDoS attacks against UK financial institutions surged during the first few months of the Ukraine war, according to new Freedom of Information (FoI) data obtained from the industry regulator. The Financial Conduct Authority (FCA) revealed to Picus…

Daily Cyber Brief

Kosovo establishes a new cybersecurity agency, DDoS attacks on UK financial institutions surged during the first months of the Ukraine war, and SparklingGoblin uses a variant of SideWalk...

Cybersecurity

Join the conversation

Overt Operator