Cybersecurity News


Researchers connect Evilnum hacking group to cyberattacks against Fintech firms

The APT is also a loyal customer of Golden Chickens, a Malware-as-a-Service outfit.
09 July 2020

Google abandons Isolated Region cloud services project in China

Google says the Isolated Region project was scrapped due to other services offering “better outcomes.”
09 July 2020

More pre-installed malware has been found in budget US smartphones

Cheap phones often have tradeoffs but researchers say this should never compromise user safety.
09 July 2020

Nvidia fixes code execution vulnerability in GeForce Experience

Security updates have also been released for the JetPack software development kit.
08 July 2020

Conti ransomware uses 32 simultaneous CPU threads for blazing-fast encryption

The Conti ransomware also abuses the Windows Restart Manager component to unlock apps and free up their data (for encryption).
08 July 2020

Microsoft's new KDP tech blocks malware by making parts of the Windows kernel read-only

New KDP security feature is currently being tested with Windows 10 Insider builds.
08 July 2020

Study Finds 15 Billion Stolen, Exposed Credentials in Criminal Markets

Data is fueling account takeover attacks in a big way, Digital Shadows says.
08 July 2020

New Fraud Ring "Bargain Bear" Brings Sophistication to Online Crime

The ring tests the validity of stolen credentials to be used in fraud through an online marketplace.
08 July 2020

As More People Return to Travel Sites, So Do Malicious Bots

Attacks against travel-related websites are on the rise as the industry begins to slowly recover from COVID-19, new data shows.
08 July 2020

More Malware Found Preinstalled on Government Smartphones

Researchers report the American Network Solutions UL40 smartphone comes with compromised apps.
08 July 2020

Advertising Plugin for WordPress Threatens Full Site Takeovers

Advertising Plugin for WordPress Threatens Full Site Takeovers Thousands of vulnerable websites need to apply the patch to avoid RCE.
08 July 2020

US Charges Kazakhstani Citizen With Hacking Into More Than 300 Orgs

The accused man, and members of his cybercriminal group, allegedly made at least $1.5 million hacking into companies and selling access to systems over the past three years.
08 July 2020

How Advanced Attackers Take Aim at Office 365

Researchers discuss how adversaries use components of Office 365 that are poorly understood and not closely monitored.
08 July 2020

Fresh Options for Fighting Fraud in Financial Services

Fraud prevention requires a consumer-centric, data sharing approach.
08 July 2020

Google open-sources Tsunami vulnerability scanner

Google says Tsunami is an extensible network scanner for detecting high-severity vulnerabilities with as little false-positives as possible.
08 July 2020

Notorious Hacker ‘Fxmsp’ Outed After Widespread Access-Dealing

Notorious Hacker ‘Fxmsp’ Outed After Widespread Access-Dealing The Kazakh native made headlines last year for hacking McAfee, Symantec and Trend Micro; but the Feds say he's also behind a widespread backdoor operation spanning six continents.
08 July 2020

Microsoft Seizes Malicious Domains Used in Mass Office 365 Attacks

Microsoft Seizes Malicious Domains Used in Mass Office 365 Attacks The phishing campaign targeted Office 365 accounts in 62 countries, using business-related reports and the coronavirus pandemic as lures.
08 July 2020

Why Cybersecurity's Silence Matters to Black Lives

The industry is missing an opportunity to educate the public about bad actors who capitalize off of protest, voting rights education and police brutality petitions through social engineering and phishing attacks.
08 July 2020

A Most Personal Threat: Implantable Devices in Secure Spaces

Do implantable medical devices pose a threat to secure communication facilities? A Virginia Tech researcher says they do, and the problem is growing.
08 July 2020

15 Billion Credentials Currently Up for Grabs on Hacker Forums

15 Billion Credentials Currently Up for Grabs on Hacker Forums Unprecedented amounts of data for accessing bank accounts and streaming services are being flogged on the dark web.
08 July 2020