April 27, 2022 Lots of software still has log4j2 vulnerabilities, hackers took only days to exploit a VMware vulnerability and more. Welcome to Cyber Security Today. It’s Wednesday April 27th. I’m Howard Solomon, contributing reporter on cybersecurity for more...
April 26, 2022 The state-sponsored North Korean hackers APT37, also known as Ricochet Chollima, target journalists with Goldbackdoor malware. According to NK News, the malicious software spreads through phishing attacks. Emails to journalists included a link to download more...
April 25, 2022 T-Mobile has confirmed earlier reports by investigative journalist Brian Krebs that the Lapsus $extortion gang had infiltrated its network. According to the telecoms giant, the breach took place "several weeks ago" and the attackers used more...
April 25, 2022 Investigations conducted by threat intelligence firm Mandiant and Google's Project Zero have revealed an increase in zero-day bugs being exploited. Mandiant and Project Zero have a different scope for the zero-day types they pursue. For more...
April 25, 2022 Ukraine's national postal service Ukrposhta was the victim of a cyberattack on Friday. The attack, which is still unclear, came after sales of a postage stamp depicting a Ukrainian soldier making a crude gesture to more...
April 22, 2022 Operators of the Lemon_Duck botnet are targeting Docker APIs on Linux servers using a large-scale Monero crypto-mining campaign. According to a Crowdstrike report, Lemon_Duck operators hide their wallets behind proxy pools. The hackers gain access more...
April 22, 2022 A report from Avanan security researchers has exposed a new phishing campaign used by attackers. The campaign takes advantage of credit unions to steal money and information. To compromise accounts, the phishing campaign uses different more...
April 22, 2022 A new backgrounder on the BlackCat ransomware gang, movement from REvil and millions stolen from another DeFi system. Welcome to Cyber Security Today. It’s Friday April 22nd, 2022. I’m Howard Solomon, contributing reporter on cybersecurity more...
April 21, 2022 Canadian organizations, including a law firm and a national staffing agency, are among the companies recently targeted by malware spread by infected resumés in job applications, says a new report by researchers at eSentire. The more...
April 21, 2022 The Conti ransomware strain aimed at VMware’s ESXi hypervisor seems to be designed to be run directly by an operator, say researchers at Trellix. By comparison, Windows versions of the malware run independently, the researchers more...
