Schneier on Security

SEPTEMBER 17, 2024

Interesting social engineering attack: luring potential job applicants with fake recruiting pitches, trying to convince them to download malware. The capacity for exploitation at that point is pretty much unlimited, due to the flexibility of Python and how it interacts with the underlying OS.

Malware 302

Malware Social Engineering Engineering Hacking 302

Krebs on Security

NOVEMBER 1, 2024

” “That said, the phishing attacks stem from partners’ machines being compromised with malware, which has enabled them to also gain access to the partners’ accounts and to send the messages that your reader has flagged,” they continued. SecureWorks said these attacks had been going on since at least March 2023.

Phishing 260

Phishing Accountability Artificial Intelligence Cybercrime 260

Krebs on Security

JANUARY 10, 2023

Highlights from the first Patch Tuesday of 2023 include a zero-day vulnerability in Windows, printer software flaws reported by the U.S. Of particular concern for organizations running Microsoft SharePoint Server is CVE-2023-21743. ” By the way, when was the last time you completely closed out your Web browser and restarted it?

Software 299

Software Encryption Engineering Internet 299

Security Affairs

JANUARY 24, 2025

It activates upon detecting a “magic packet” with predefined parameters, enabling attackers to establish a reverse shell, control devices, steal data, or deploy malware. Earliest evidence dates to September 2023, but the experts have yet to determine the initial access method.

Malware 120

Malware VPN Encryption Hacking 120

Krebs on Security

APRIL 11, 2023

On April 7, Apple issued emergency security updates to fix two weaknesses that are being actively exploited, including CVE-2023-28206 , which can be exploited by apps to seize control over a device. CVE-2023-28205 can be used by a malicious or hacked website to install code. Both vulnerabilities are addressed in iOS/iPadOS 16.4.1,

Social Engineering 292

Social Engineering Ransomware Internet Internet 292

Krebs on Security

DECEMBER 12, 2023

The final Patch Tuesday of 2023 is upon us, with Microsoft Corp. Still, four of the updates pushed out today address “critical” vulnerabilities that Microsoft says can be exploited by malware or malcontents to seize complete control over a vulnerable Windows device with little or no help from users.

Internet 272

Internet Internet Engineering Malware 272

Krebs on Security

MARCH 15, 2023

The Outlook vulnerability ( CVE-2023-23397 ) affects all versions of Microsoft Outlook from 2013 to the newest. While CVE-2023-23397 is labeled as an “Elevation of Privilege” vulnerability, that label doesn’t accurately reflect its severity, said Kevin Breen , director of cyber threat research at Immersive Labs. .”

Passwords 278

Passwords Cyber threats Authentication Internet 278

Krebs on Security

JULY 11, 2023

July marks the sixth month this year that Apple has released updates for zero-day vulnerabilities — those that get exploited by malware or malcontents before there is an official patch available. CVE-2023-36874 is an elevation of privilege bug in the Windows Error Reporting Service.

Software 244

Software Malware Antivirus Ransomware 244

Security Affairs

DECEMBER 8, 2024

On December 25, 2023, a ransomware attack hit the Anna Jaques Hospital. In 2023, upon discovering the cyber attack, the Anna Jaques Hospital took the impacted systems down and launched an investigation into the security breach. The hospital revealed that the security breach exposed sensitive health data for over 316,000 patients.

Data breaches 115

Data breaches Insurance Healthcare Ransomware 115

Webroot

OCTOBER 31, 2024

In our annual “Nastiest Malware” report, now in its sixth year, we’ve observed a steady increase in both the number and sophistication of malware attacks. Source: Coveware We’ve seen a drop-off from the highs last year – fueled by Cl0p ransomware group making over $100 Million in a few months in late 2023.

Malware 104

Malware Ransomware Passwords Healthcare 104

Krebs on Security

FEBRUARY 28, 2024

But clicking the meeting link provided by the scammers prompts the user to run a script that quietly installs malware on macOS systems. It didn’t dawn on Doug until days later that the missed meeting with Mr. Lee might have been a malware attack. MacOS computers include X-Protect , Apple’s built-in antivirus technology.

Malware 326

Malware Cryptocurrency Software Phishing 326

Penetration Testing

DECEMBER 8, 2024

The AhnLab Security Intelligence Response Center (ASEC) has revealed that threat actors exploiting a critical vulnerability in Apache ActiveMQ, identified as CVE-2023-46604, have begun deploying Mauri ransomware in their attacks....

Ransomware 91

Ransomware Security Intelligence Cybersecurity Malware 91

Krebs on Security

AUGUST 8, 2023

Six of the flaws fixed today earned Microsoft’s “critical” rating, meaning malware or miscreants could use them to install software on a vulnerable Windows system without any help from users. They were assigned a single placeholder designation of CVE-2023-36884.

Engineering 226

Engineering Accountability Passwords Software 226

Tech Republic Security

APRIL 18, 2024

Nearly 10 million devices were infected with data-stealing malware in 2023, with criminals stealing an average of 50.9 credentials per device.

Malware 215

Malware Big data Data breaches Ransomware 215

Krebs on Security

DECEMBER 3, 2024

A study on phishing data released by Interisle Consulting finds that new gTLDs introduced in the last few years command just 11 percent of the market for new domains, but accounted for roughly 37 percent of cybercrime domains reported between September 2023 and August 2024.

Cybercrime 282

Cybercrime Phishing Accountability Internet 282

Security Boulevard

APRIL 8, 2024

The post 10 Million Devices Were Infected by Data-Stealing Malware in 2023 appeared first on Security Boulevard. Cybercriminals pilfered an average of 50.9 login credentials per device, evidence of the pressing need for cybersecurity measures.

Malware 141

Malware Cybersecurity Social Engineering Engineering 141

Tech Republic Security

NOVEMBER 14, 2022

The post Top cybersecurity threats for 2023 appeared first on TechRepublic. Next year, cybercriminals will be as busy as ever. Are IT departments ready?

Cybersecurity 218

Cybersecurity Phishing Ransomware Malware 218

Security Affairs

DECEMBER 27, 2024

North Korea-linked threat actors were spotted using new malware called OtterCookie as part of the Contagious Interview campaign that targets software developer community with fake job offers. Since November 2024, threat actors employed the malware OtterCookie, alongside BeaverTail and InvisibleFerret, in the campaign.

Malware 87

Malware Cryptocurrency Software Hacking 87

Tech Republic Security

JANUARY 23, 2023

A new report from Kaspersky details what their digital forensics and incident response teams predict as the main 2023 threats to corporations and government agencies. The post Kaspersky releases 2023 predictions appeared first on TechRepublic. Learn more about it.

Government 193

Government Phishing Ransomware Malware 193

Penetration Testing

DECEMBER 1, 2024

This new threat exploits the LogoFAIL vulnerability (CVE-2023-40238), a UEFI firmware flaw,... The post Security Alert: Bootkitty Bootkit Targets Linux via UEFI Vulnerability (CVE-2023-40238) appeared first on Cybersecurity News.

Firmware 65

Firmware Cybersecurity Malware 65

Krebs on Security

NOVEMBER 14, 2024

In December 2023, KrebsOnSecurity revealed the real-life identity of Rescator , the nickname used by a Russian cybercriminal who sold more than 100 million payment cards stolen from Target and Home Depot between 2013 and 2014. Mr. Shefel did not respond to requests for comment in advance of that December 2023 profile.

Retail 254

Retail Advertising Cryptocurrency Marketing 254

The Last Watchdog

DECEMBER 12, 2023

A look back at the cybersecurity landscape in 2023 rings all-too familiar: cyber threats rapidly evolved and scaled up , just as they have, year-to-year, for the past 20 years. Eyal Benishti , CEO, IRONSCALES Benishti Generative AI (GenAI) reshaped cybersecurity in 2023. What should I be most concerned about – and focus on – in 2024?

Cybersecurity 258

Cybersecurity Social Engineering Cyber threats Software 258

SecureList

MAY 6, 2024

A significant share of scam, phishing and malware attacks is about money. Methodology In this report, we present an analysis of financial cyberthreats in 2023, focusing on banking Trojans and phishing pages that target online banking, shopping accounts, cryptocurrency wallets and other financial assets. million in 2022. of attacks.

Phishing 134

Phishing Banking Mobile Scams 134

Schneier on Security

JUNE 9, 2023

As of the time of writing in June 2023, the attack is ongoing, and the most recent version of the devices successfully targeted is iOS 15.7. The timelines of multiple devices indicate that they may be reinfected after rebooting. The oldest traces of infection that we discovered happened in 2019. No attribution as of yet.

Malware 275

Malware Backups Mobile 275

Penetration Testing

DECEMBER 21, 2024

Kaspersky has uncovered a fresh variant of the BellaCiao malware familyBellaCPPmarking a shift from.NET to C++ in its development. First appearing in April 2023, BellaCiao is a.NET-based malware... The post From.NET to C++: BellaCiao Malware Evolves with BellaCPP appeared first on Cybersecurity News.

Malware 69

Malware Cybersecurity 69

Krebs on Security

APRIL 18, 2023

For the past seven years, a malware-based proxy service known as “ Faceless ” has sold anonymity to countless cybercriminals. The proxy lookup page inside the malware-based anonymity service Faceless. Image: spur.us. as a media sharing device on a local network that was somehow exposed to the Internet.

Malware 292

Malware Passwords Accountability Advertising 292

Security Affairs

OCTOBER 11, 2024

OpenAI disrupted 20 cyber and influence operations in 2023, revealing Iran and China-linked actors used ChatGPT for planning ICS attacks. The group used the chatbot to receive support in Android malware development and to create a scraper for the social media platform Instagram. ” continues the report.

Malware 135

Malware Social Engineering Engineering Hacking 135

The Last Watchdog

JULY 27, 2023

Tel Aviv, Israel, July 27, 2023 — Perception Point , a leading provider of advanced threat prevention across digital communication channels, today published a new report analyzing global cyberattack trends in H1 2023 amidst the paradigm shift brought about by advances in generative AI (GenAI) capabilities.

Phishing 186

Phishing Social Engineering Engineering Media 186

SecureWorld News

OCTOBER 31, 2024

Spooky fact : According to research from Proofpoint , in 2023, 71% of organizations experienced at least one successful phishing attack, and they remain one of the most prevalent forms of cyber threats. Vampire malware: draining systems dry This malware creeps in undetected, draining resources and stealing data in the dark.

IoT 117

IoT Phishing DDOS Backups 117

The Last Watchdog

AUGUST 1, 2023

1, 2023 – Guardz , the cybersecurity company securing and insuring SMEs, today disclosed the existence of a Hidden Virtual Network Computing (hVNC) malware targeting macOS devices. Recently, Guardz identified an information stealing malware called ‘ ShadowVault , ’ which also exclusively targets macOS devices.

Malware 189

Malware Insurance Cyber Insurance Small Business 189

The Hacker News

APRIL 29, 2024

The tech giant also said it blocked 333,000 bad accounts from the app storefront in 2023 for attempting to distribute malware or for repeated policy violations. "In

Accountability 141

Accountability Malware 141

Krebs on Security

SEPTEMBER 12, 2023

Apple says the iOS flaw ( CVE-2023-41064 ) does not seem to work against devices that have its ultra-paranoid “ Lockdown Mode ” enabled. Tracked as CVE-2023-36761 , it is flagged as an “information disclosure” vulnerability. ” The other Windows zero-day fixed this month is CVE-2023-36802.

Spyware 298

Spyware Software Surveillance Authentication 298

Krebs on Security

SEPTEMBER 13, 2023

11, 2023, USDoD resurfaced after a lengthy absence to leak sensitive employee data stolen from the aerospace giant Airbus , while promising to visit the same treatment on top U.S. In June 2023, the FBI seized the BreachForums domain name , but the forum has since migrated to a new domain. But on Sept. defense contractors.

Cybercrime 338

Cybercrime Passwords Authentication Malware 338

Security Affairs

JANUARY 25, 2025

Cisco ClamAV (Clam AntiVirus) is an open-source antivirus engine designed to detect malware, viruses, and other malicious threats. In February 2023, Cisco fixed a critical flaw, tracked as CVE-2023-20032(CVSS score: 9.8), in ClamAV product. Google OSS-Fuzz reported this vulnerability.

Antivirus 132

Antivirus Software Engineering Malware 132

Krebs on Security

NOVEMBER 28, 2022

But that story omitted an important historical detail about Pushwoosh: In 2013, one of its developers admitted to authoring the Pincer Trojan , malware designed to surreptitiously intercept and forward text messages from Android mobile devices. ” wherein Shmakov acknowledged writing the malware as a freelance project.

Mobile 286

Mobile Malware Technology Government 286

SecureList

MARCH 25, 2025

Note that for mobile banking malware, we retrospectively revised the 2023 numbers to provide more accurate statistics. We also changed the methodology for PC banking malware by removing obsolete families that no longer use Trojan banker functionality, hence the sharp drop in numbers against 2023. million in 2023.

Phishing 71

Phishing Banking Scams Mobile 71

Krebs on Security

JUNE 8, 2023

But experts say that is exactly what transpired this week with Barracuda Networks , as the company struggled to combat a sprawling malware threat which appears to have undermined its email security appliances in such a fundamental way that they can no longer be safely updated with software fixes. Campbell, Calif.

Firmware 341

Firmware Malware Software Ransomware 341