Daily Cyber Brief
Budworm found targeting U.S. State Legislature, WIP19 targets telecommunication and IT service providers, and Mirai launches a massive DDoS attack on Minecraft servers...
Cybersecurity
The advanced persistent threat (APT) actor known as Budworm has been spotted targeting a US-based entity for the first time in more than six years, alongside other international targets. The news comes from Symantec security researchers, who shared an advisory about the…
A new threat cluster, tracked by SentinelLabs as WIP19, has been targeting telecommunications and IT service providers across the Middle East and Asia. According to the security experts, the group is characterized by the use of a legitimate, stolen digital…
Communications, water and health care are the next critical infrastructure sectors the Biden administration plans to work with to increase their baseline cybersecurity, White House deputy national security adviser Anne Neuberger said Thursday. The effort, which will be…
A pro-Russian group created a crowdsourced project called 'DDOSIA' that pays volunteers launching distributed denial-of-service (DDOS) attacks against western entities. DDoS attacks typically don’t have any security repercussions for the target but can cause a lot of…
Attackers are spoofing Google Translate in an ongoing phishing campaign that uses a common JavaScript coding technique to bypass email security scanners. Leveraging trust in Google Translate is a never-before-seen approach, researchers said. Researchers from…
A Mirai botnet variant has launched a distributed denial-of-service (DDoS) attack that peaked at 2.5 terabytes per second (Tbps), according to Cloudflare, which described it as the largest attack it has seen in terms of bitrate. The attack was aimed at a Minecraft server…
A recent malicious campaign delivering Magniber ransomware has been targeting Windows home users with fake security updates. Threat actors created in September websites that promoted fake antivirus and security updates for Windows 10. The downloaded malicious…
CommonSpirit Health — one of the largest nonprofit health care systems in the U.S. — confirmed on Wednesday evening that it was hit with a ransomware attack that caused widespread IT outages at hospitals across the country over the last week. A spokesperson…
The State Bar of Georgia said the personal information, Social Security numbers, driver’s license numbers and direct deposit information of its members leaked during a cyberattack in April. The State Bar is authorized by the Supreme Court of Georgia to hold ethics…
A previously undocumented command-and-control (C2) framework dubbed Alchimist is likely being used in the wild to target Windows, macOS, and Linux systems. "Alchimist C2 has a web interface written in Simplified Chinese and can generate a configured payload, establish…