Daily Cyber Brief
Twitter back up after a global outage, Log4j is considered an endemic problem, and the Mantis botnet was behind the record-breaking DDoS in June...
Cybersecurity
Twitter users across the globe were reporting an outage on the social media service that started early Thursday morning and lasted for about an hour. Starting at around 5 a.m., users started experiencing the outage on the app. Many users saw over capacity error messages and…
A computer vulnerability discovered last year in a ubiquitous piece of software is an “endemic” problem that will pose security risks for potentially a decade or more, according to a new cybersecurity panel created by President Joe Biden…
A newly discovered phishing kit targeting PayPal users is trying to steal a large set of personal information from victims that includes government identification documents and photos. Over 400 million individuals and companies are using PayPal as an online payment solution…
Several ransomware gangs and extortion groups are creating searchable databases of information stolen during attacks, according to several cybersecurity experts. Ransomware groups have long extorted organizations with the threat of data leaks, but often leave the…
US debt collector Professional Finance Company (PFC) has reported a data breach affecting 1.9 million individuals across over 650 different healthcare providers. The Colorado-based company, which chases outstanding debts for healthcare companies…
The record-breaking distributed denial-of-service (DDoS) attack that Cloudflare mitigated last month originated from a new botnet called Mantis, which is currently described as "the most powerful botnet to date." The attack peaked at 26 million requests per second that came…
The advanced persistent threat (APT) group known as Transparent Tribe has been attributed to a new ongoing phishing campaign targeting students at various educational institutions in India at least since December 2021. "This new campaign also suggests that the APT is…
Security researchers with threat intelligence firm Cyble have warned organizations about three new ransomware families named Lilith, RedAlert and 0mega. Written in C/C++ and targeting 64-bit Windows systems, Lilith appends the “.lilith” extension to the encrypted files, after…
Security researchers have discovered a new speculative execution attack called Retbleed that affects processors from both Intel and AMD and could be used to extract sensitive information. Retbleed focuses on return instructions, which are part of the retpoline software…
The BlackCat ransomware group has deployed a new binary to help with its intrusion efforts, according to security company Sophos. The company has discovered it is using Brute Ratel, a penetration testing suite that includes remote access features for attackers…