Cybersecurity News
Is a nation‑state digital deterrent scenario so far‑fetched?
Why has the conflict in Ukraine not caused the much anticipated global cyber-meltdown?
The post Is a nation‑state digital deterrent scenario so far‑fetched? appeared first on WeLiveSecurity
24 March 2022
Chinese APT Combines Fresh Hodur RAT with Complex Anti-Detection

24 March 2022
Microsoft Help Files Disguise Vidar Malware

24 March 2022
Top 3 Attack Trends in API Security – Podcast

24 March 2022
Tax-Season Scammers Spoof Fintechs, Including Stash, Public

24 March 2022
Vidar spyware is now hidden in Microsoft help files
The malware is being spread through an interesting phishing tactic.24 March 2022
Crypto malware in patched wallets targeting Android and iOS devices
ESET Research uncovers a sophisticated scheme that distributes trojanized Android and iOS apps posing as popular cryptocurrency wallets
The post Crypto malware in patched wallets targeting Android and iOS devices appeared first on WeLiveSecurity
24 March 2022
Mustang Panda hacking group takes advantage of Ukraine crisis in new attacks
Just as criminals seized on the pandemic, this group is trying to capitalize on Russia's invasion of Ukraine.24 March 2022
Malicious npm packages target Azure developers to steal personal data
Typosquatting and automatic tools are the weapons of choice.24 March 2022
A Closer Look at the LAPSUS$ Data Extortion Group
Microsoft and identity management platform Okta both disclosed this week breaches involving LAPSUS$, a relatively new cybercrime group that specializes in stealing data from big companies and threatening to publish the information unless a ransom demand is paid. Here's a closer look at LAPSUS$, and some of the low-tech but high-impact methods the group uses to gain access to targeted organizations.23 March 2022
Okta names Sitel in Lapsus$ security incident impacting up to 366 customers
The analogy "walking away from your computer at a coffee shop" has been used to describe the incident.23 March 2022
DeadBolt Ransomware Resurfaces to Hit QNAP Again

23 March 2022
Microsoft: Lapsus$ Used Employee Account to Steal Source Code

23 March 2022
This is how much the average Conti hacking group member earns a month
While ransom payments can reach millions of dollars, it isn't as much as you'd think.23 March 2022
Mustang Panda’s Hodur: Old tricks, new Korplug variant
ESET researchers have discovered Hodur, a previously undocumented Korplug variant spread by Mustang Panda, that uses phishing lures referencing current events in Europe, including the invasion of Ukraine
The post Mustang Panda’s Hodur: Old tricks, new Korplug variant appeared first on WeLiveSecurity
23 March 2022
Lapsus$ Data Kidnappers Claim Snatches From Microsoft, Okta

22 March 2022
‘Spam Nation’ Villain Vrublevsky Charged With Fraud
Pavel Vrublevsky, founder of the Russian payment technology firm ChronoPay and the antagonist in my 2014 book "Spam Nation," was arrested in Moscow this month and charged with fraud. Russian authorities allege Vrublevsky operated several fraudulent SMS-based payment schemes, and facilitated money laundering for Hydra, the largest Russian darknet market. But according to information obtained by KrebsOnSecurity, it is equally likely Vrublevsky was arrested thanks to his propensity for carefully documenting the links between Russia's state security services and the cybercriminal underground.22 March 2022
Russia Lays Groundwork for Cyberattacks on US Infrastructure – White House

22 March 2022
FIDO: Here’s Another Knife to Help Murder Passwords

22 March 2022
Serpent Backdoor Slithers into Orgs Using Chocolatey Installer

22 March 2022