Daily Cyber Brief
Sudan shuts off the internet prior to protests, NK hackers behind $100M crypto theft, and Google TAG blocked 36 malicious domains...
Cybersecurity
NATO forging cyber response force amid growing Russian, Chinese threats
NATO will establish a program to quickly respond to cyberattacks and other malign activity in the digital domain, while pledging to boost Ukraine’s cyber defenses amid relentless Russian attacks. The creation of the “virtual rapid response cyber capability” was included in a June…
Cyberattack disrupts unemployment benefits in some states
A cyberattack on a software company has disrupted unemployment benefits and job seeking assistance for thousands of people in several states. In Tennessee, the website for unemployment benefits remained down Thursday morning after the vendor, Geographic…
Toll fraud malware disables your WiFi to force premium subscriptions
Microsoft is warning that toll fraud malware is one of the most prevalent threats on Android and that it is evolving with features that allow automatic subscription to premium services. Toll fraud is a subset of billing fraud, where the threat actor tricks victims into calling or…
Sudan government shuts off internet ahead of anti-coup protest
Sudan’s government has shut off the internet across the country ahead of massive protests organized to pressure the military into handing power back to civilian leaders. Several organizations monitoring internet access across the world confirmed that the internet was…
North Korean Hackers Suspected to be Behind $100M Horizon Bridge Hack
The notorious North Korea-backed hacking collective Lazarus Group is suspected to be behind the recent $100 million altcoin theft from Harmony Horizon Bridge, citing similarities to the Ronin bridge attack in March 2022. The finding comes as Harmony confirmed…
Macmillan shuts down systems after likely ransomware attack
Publishing giant Macmillan was forced to shut down their network and offices while recovering from a security incident that appears to be a ransomware attack. The attack reportedly occurred over the weekend, on Saturday, June 25th, with the company shutting…
California DOJ apologizes for ‘unacceptable’ breach involving Firearms Dashboard
California’s Justice Department admitted this week that personal information was leaked after it debuted a new version of its Firearms Dashboard Portal. The state’s Department of Justice on Monday relaunched the portal, which allows the public to see some information…
XFiles info-stealing malware adds support for Follina delivery
The XFiles info-stealer malware has added a delivery module that exploits CVE-2022-30190, aka Follina, for dropping the payload on target computers. The flaw, discovered as a zero-day at the end of May and fixed with Microsoft’s Windows update on June 14, enables the…
Google Blocks Dozens of Malicious Domains Operated by Hack-for-Hire Groups
Google's Threat Analysis Group (TAG) on Thursday disclosed it had acted to block as many as 36 malicious domains operated by hack-for-hire groups from India, Russia, and the U.A.E. In a manner analogous to the surveillanceware ecosystem, hack-for-hire firms equip their clients…
AstraLocker 2.0 infects users directly from Word attachments
A lesser-known ransomware strain called AstraLocker has recently released its second major version, and according to threat analysts, its operators engage in rapid attacks that drop its payload directly from email attachments. This approach is quite unusual as all the…
Create your profile
Only paid subscribers can comment on this post
Check your email
For your security, we need to re-authenticate you.
Click the link we sent to , or click here to sign in.