Daily Cyber Brief
Sudan shuts off the internet prior to protests, NK hackers behind $100M crypto theft, and Google TAG blocked 36 malicious domains...
Cybersecurity
NATO will establish a program to quickly respond to cyberattacks and other malign activity in the digital domain, while pledging to boost Ukraine’s cyber defenses amid relentless Russian attacks. The creation of the “virtual rapid response cyber capability” was included in a June…
A cyberattack on a software company has disrupted unemployment benefits and job seeking assistance for thousands of people in several states. In Tennessee, the website for unemployment benefits remained down Thursday morning after the vendor, Geographic…
Microsoft is warning that toll fraud malware is one of the most prevalent threats on Android and that it is evolving with features that allow automatic subscription to premium services. Toll fraud is a subset of billing fraud, where the threat actor tricks victims into calling or…
Sudan’s government has shut off the internet across the country ahead of massive protests organized to pressure the military into handing power back to civilian leaders. Several organizations monitoring internet access across the world confirmed that the internet was…
The notorious North Korea-backed hacking collective Lazarus Group is suspected to be behind the recent $100 million altcoin theft from Harmony Horizon Bridge, citing similarities to the Ronin bridge attack in March 2022. The finding comes as Harmony confirmed…
Publishing giant Macmillan was forced to shut down their network and offices while recovering from a security incident that appears to be a ransomware attack. The attack reportedly occurred over the weekend, on Saturday, June 25th, with the company shutting…
California’s Justice Department admitted this week that personal information was leaked after it debuted a new version of its Firearms Dashboard Portal. The state’s Department of Justice on Monday relaunched the portal, which allows the public to see some information…
The XFiles info-stealer malware has added a delivery module that exploits CVE-2022-30190, aka Follina, for dropping the payload on target computers. The flaw, discovered as a zero-day at the end of May and fixed with Microsoft’s Windows update on June 14, enables the…
Google's Threat Analysis Group (TAG) on Thursday disclosed it had acted to block as many as 36 malicious domains operated by hack-for-hire groups from India, Russia, and the U.A.E. In a manner analogous to the surveillanceware ecosystem, hack-for-hire firms equip their clients…
A lesser-known ransomware strain called AstraLocker has recently released its second major version, and according to threat analysts, its operators engage in rapid attacks that drop its payload directly from email attachments. This approach is quite unusual as all the…