Security Affairs

MAY 21, 2021

CyberNews researchers found that crooks could abuse cryptocurrency exchange API keys and steal cryptocurrencies. CyberNews researchers found that cybercriminals are able to abuse cryptocurrency exchange API keys and steal cryptocurrencies from their victims’ accounts without being granted withdrawal rights.

Cryptocurrency 107

Cryptocurrency Accountability Marketing Passwords 107

Security Affairs

FEBRUARY 25, 2024

Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S.

Spyware 130

Spyware Cyber Insurance Hacking Advertising 130

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 98

Spyware Hacking Malware Social Engineering 98

Security Affairs

APRIL 26, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking 121

Hacking Advertising Spyware Antivirus 121

The Last Watchdog

FEBRUARY 28, 2021

Regardless of how familiar you are with Information Security, you’ve probably come across the term ‘malware’ countless times. From accessing your business-critical resources and sensitive information to halting business operations and services, a malware infection can quickly become an organization’s worst nightmare come true.

Cyber threats 113

Cyber threats Computers and Electronics Adware Spyware 113

Security Affairs

JULY 16, 2020

The list of targeted apps includes cryptocurrency wallet applications (i.e. The malware targets 226 applications to steal account credentials, including Gmail, Google Play services, Uber, Amazon, Netflix and Outlook. Coinbase, BitPay, and Coinbase), and banks (i.e. Santander, Barclays, Lloyds, ING, and Wells Fargo).

Malware 129

Malware Banking Mobile Advertising 129

Security Affairs

JANUARY 23, 2022

Pay attention to Log4j attacks, Dutch National Cybersecurity Centre (NCSC) warns Vulnerabilities in Control Web Panel potentially expose Linux Servers to hack US Treasury Department sanctions 4 Ukrainian officials for working with Russian intelligence A bug in McAfee Agent allows running code with Windows SYSTEM privileges Experts warn of anomalous (..)

VPN 111

VPN Ransomware Spyware Hacking 111

CyberSecurity Insiders

JANUARY 31, 2021

Regardless of how familiar you are with Information Security, you’ve probably come across the term ‘malware’ countless times. From accessing your business-critical resources and sensitive information to halting business operations and services, a malware infection can quickly become an organization’s worst nightmare come true.

Malware 107

Malware Computers and Electronics Adware Spyware 107

Security Affairs

FEBRUARY 13, 2022

US seizes $3.6 to replace Chinese equipment Hackers breached a server of National Games of China days before the event Russian Gamaredon APT is targeting Ukraine since October Israeli surveillance firm QuaDream emerges from the dark Argo CD flaw could allow stealing sensitive data from Kubernetes Apps.

Spyware 98

Spyware Ransomware Surveillance Hacking 98

Security Affairs

JUNE 11, 2023

Gox exchange and operating BTC-e Japanese Pharmaceutical giant Eisai hit by a ransomware attack Clop ransomware gang was testing MOVEit Transfer bug since 2021 Stealth Soldier backdoor used is targeted espionage attacks in Libya Researchers published PoC exploit code for actively exploited Windows elevation of privilege issue Experts detail a new Kimsuky (..)

Social Engineering 98

Social Engineering Data breaches Ransomware Cybercrime 98

Security Affairs

OCTOBER 31, 2021

Hacker accessed medical info at UMass Memorial Health Reading INTERPOL the African Cyberthreat Assessment Report 2021 MITRE and CISA publish the 2021 list of most common hardware weaknesses TrickBot member extradited to US faces up to 60 years in prison ESET found a variant of the Hive ransomware that encrypts Linux and FreeBSD Papua New Guinea ‘s (..)

Artificial Intelligence 91

Artificial Intelligence Ransomware Spyware Cryptocurrency 91

Security Affairs

JULY 13, 2019

New FinFisher spyware used to spy on iOS and Android users in 20 countries. Hackers stole $32 million from Bitpoint cryptocurrency exchange. Intel addresses high severity flaw in Processor Diagnostic Tool. CVE-2019-1132 Windows Zero-Day exploited by Buhtrap Group in government attack.

Data breaches 78

Data breaches Spyware Advertising Government 78

Security Affairs

NOVEMBER 10, 2020

Now the experts from Kaspersky’s Global Research and Analysis Team (GReAT) gathered further evidence that demonstrates that malware operators behind Tetrade, tracked as Guildma, have expanded their tactics to infect mobile devices with spyware.

Banking 109

Banking Mobile Malware Spyware 109

Security Affairs

NOVEMBER 17, 2019

Two men arrested for stealing $550,000 in cryptocurrency with Sim Swapping. WhatsApp flaw CVE-2019-11931 could be exploited to install spyware. New TA2101 threat actor poses as government agencies to distribute malware. The Australian Parliament was hacked earlier this year. Checkra1n, a working iPhone Jailbreak, was released.

DDOS 75

DDOS Spyware Advertising Ransomware 75

Security Boulevard

MAY 3, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, April 2021. The UK Security Service MI5 said 10,000 staff from every UK government department and from important UK industries have been lured by fake LinkedIn profiles.

Ransomware 124

Ransomware Passwords Scams Government 124

Security Affairs

AUGUST 25, 2019

App tainted with Ahmyst Open-source spyware appeared on Google Play Store twice. Employees abused systems at Ukrainian nuclear power plant to mine cryptocurrency. Hackers are scanning the web for vulnerable Fortinet, Pulse Secure Products installs. Thousands credit card numbers of MoviePass customers were exposed online.

Small Business 79

Small Business Data breaches Advertising Spyware 79

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 98

Data breaches Malware Mobile Spyware 98

Security Affairs

NOVEMBER 14, 2021

Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server GravityRAT returns disguised as an end-to-end encrypted chat app Intel and AMD address high severity vulnerabilities in products and drivers New evolving Abcbot DDoS botnet targets Linux systems Retail giant Costco discloses data breach, payment card data exposed (..)

Spyware 55

Spyware Data breaches Ransomware Hacking 55

Security Affairs

NOVEMBER 8, 2019

Recently, researchers warned of the first mass-hacking campaign exploiting the BlueKeep exploit , the attack aimed at installing a cryptocurrency miner on the infected systems. ” A new wave of attacks could exploit the vulnerability to spread more dangerous and destructive malware, like ransomware or spyware.

Malware 75

Malware Penetration Testing Advertising Spyware 75

Security Boulevard

JANUARY 25, 2022

Dancho Danchev’s “Astalavista Security Group – Investment Proposal” Presentation – A Photos Compilation. Dancho Danchev’s “Building and Implementing a Successful Information Security Policy” White Paper – [PDF]. Exposing a Currently Active NSO Spyware Group’s Domain Portfolio – WhoisXML API Analysis.

Cybercrime 96

Cybercrime Hacking Scams Ransomware 96

Security Affairs

MARCH 27, 2023

Lower.exe, a sample of “GCleaner” spyware, historically, this piece of malware was initially faking CCleaner to drop additional malware ( link ). Sqlcmd.exe, an interesting information stealer and dropper leveraging custom ECC cryptography to secure its communication (details below) KiffAppE2.exe,

Malware 98

Malware Social Engineering Encryption Marketing 98

Security Affairs

SEPTEMBER 8, 2019

Security experts at Google have removed from Google Play 24 apps because they were infected with a new spyware tracked as “the Joker.” ” Google has removed from Google Play 24 apps because they were infected with a new spyware tracked as “the Joker.” The C&C URL 6.

Spyware 111

Spyware Advertising Malware Cryptocurrency 111

Security Affairs

DECEMBER 8, 2024

warn of PRC-linked cyber espionage targeting telecom networks U.S. Hackers stole millions of dollars from Uganda Central Bank International Press Newsletter Cybercrime INTERPOL financial crime operation makes record 5,500 arrests, seizures worth over USD 400 million Hackers Stole $1.49

Artificial Intelligence 103

Artificial Intelligence Spyware Hacking Ransomware 103

Security Affairs

NOVEMBER 17, 2024

CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices China-linked threat actors compromised multiple telecos and spied on a limited number of U.S.

Cryptocurrency 111

Cryptocurrency Malware Hacking Ransomware 111

Security Affairs

FEBRUARY 23, 2025

Every week the best security articles from Security Affairs are free in your email box. from Bybit, it is the largest cryptocurrency heist ever Apple removes iCloud encryption in UK following backdoor demand B1acks Stash released 1 Million credit cards U.S. Lazarus APT stole $1.5B

Scams 66

Scams Malware Encryption Phishing 66

Security Affairs

JULY 24, 2022

ransom and sued its insurance firm for refusing to cover this payment Crooks stole $375k from Premint NFT, it is one of the biggest NFT hacks ever Google is going to remove App Permissions List from the Play Store Security Affairs newsletter Round 374 by Pierluigi Paganini APT groups target journalists and media organizations since 2021.

Spyware 108

Spyware Surveillance Insurance Malware 108

Security Affairs

APRIL 28, 2024

Hackers may have accessed thousands of accounts on the California state welfare platform Brokewell Android malware supports an extensive set of Device Takeover capabilities Experts warn of an ongoing malware campaign targeting WP-Automatic plugin Cryptocurrencies and cybercrime: A critical intermingling Kaiser Permanente data breach may have impacted (..)

Cybercrime 126

Cybercrime Spyware Data breaches Antivirus 126

Security Affairs

DECEMBER 2, 2023

Researchers devised an attack technique to extract ChatGPT training data Fortune-telling website WeMystic exposes 13M+ user records Expert warns of Turtle macOS ransomware US govt sanctioned North Korea-linked APT Kimsuky Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022 Apple addressed 2 new (..)

Ransomware 126

Ransomware Hacking Spyware Cybercrime 126

Security Affairs

JUNE 28, 2020

Every week the best security articles from Security Affairs free for you in your email box. Every week the best security articles from Security Affairs free for you in your email box. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS 119

DDOS Spyware Advertising Healthcare 119

Security Affairs

MAY 8, 2020

H2 2019 has proved the tendency of past several years: mail remains the main method of delivering ransomware, spyware, backdoors and other malware, being used by cyber crooks in 94 percent of cases. They, in turn, let spyware and backdoors move ahead and become the second most popular malware with a 35-percent share. Balance of power.

Phishing 87

Phishing Spyware Banking Malware 87

Security Affairs

MARCH 4, 2023

stolen credit/debit cards Pegasus spyware used to spy on a Polish mayor Hundreds of thousands of websites hacked as part of redirection campaign MQsTTang, a new backdoor used by Mustang Panda APT against European entities Trusted Platform Module (TPM) 2.0 FiXS, a new ATM malware that is targeting Mexican banks BidenCash leaks 2.1M

Spyware 98

Spyware Data breaches Ransomware Retail 98

Security Affairs

JUNE 30, 2019

European law enforcement agencies arrested 6 individuals involved in $27M cryptocurrency theft. Crooks stole millions from Bitrue Cryptocurrency Exchange. Regin spyware involved in attack against the Russian tech giant Yandex. OSX/Linker, a new piece of Mac malware that exploits Gatekeeper bypass.

B2B 97

B2B Cryptocurrency Spyware Hacking 97

Security Affairs

MARCH 2, 2025

from Bybit, it is the largest cryptocurrency heist ever International Press Newsletter Cybercrime Mining Company NioCorp Loses $500,000 in BEC Hack Inside Black Bastas Exposed Internal Chat Logs: A Firsthand Look The Bleeding Edge of Phishing: darcula-suite 3.0

Cybercrime 61

Cybercrime Hacking Ransomware Cryptocurrency 61

Security Affairs

SEPTEMBER 22, 2024

CISA adds new Ivanti Cloud Services Appliance Vulnerability to its Known Exploited Vulnerabilities catalog Ivanti warns of a new actively exploited Cloud Services Appliance (CSA) flaw International law enforcement operation dismantled criminal communication platform Ghost U.S.

Surveillance 120

Surveillance Cryptocurrency Spyware Phishing 120

Security Affairs

FEBRUARY 2, 2025

CISA adds Apple products’ flaw to its Known Exploited Vulnerabilities catalog Aquabot variant v3 targets Mitel SIP phones Critical remote code execution bug found in Cacti framework Attackers actively exploit a critical zero-day in Zyxel CPE Series devices Attackers exploit SimpleHelp RMM Software flaws for initial access VMware fixed a flaw (..)

Data breaches 66

Data breaches Cybercrime Healthcare Ransomware 66

Security Affairs

NOVEMBER 5, 2023

Kinsing threat actors probed the Looney Tunables flaws in recent attacks ZDI discloses four zero-day flaws in Microsoft Exchange Okta customer support system breach impacted 134 customers Multiple WhatsApp mods spotted containing the CanesSpy Spyware Russian FSB arrested Russian hackers who supported Ukrainian cyber operations MuddyWater has been spotted (..)

Cyber Insurance 128

Cyber Insurance Cryptocurrency Internet Internet 128