Cybersecurity News
Fake Ransomware Infection Hits WordPress Sites
WordPress sites have been splashed with ransomware warnings that are as real as dime-store cobwebs made out of spun polyester.
Netflix Bait: Phishers Target Streamers with Fake Service Signups
Lures dressed up to look like movie and TV streaming offers are swiping payment data.
Exchange, Fortinet Flaws Being Exploited by Iranian APT, CISA Warns
Meanwhile, a Microsoft analysis that followed six Iranian threat actor groups for over a year found them increasingly sophisticated, adapting and thriving.
Phishing Scam Aims to Hijack TikTok ‘Influencer’ Accounts
Threat actors used malicious emails to target more than 125 people with high-profile TikTok accounts in an attempt to steal info and lock them out.
Why are you still using QWERTY? 2021's most common passwords revealed
Research reveals we are yet to adopt strong passwords, let alone more robust security measures.UK tackles record cyber incidents as Russian ransomware attacks increase
National Cyber Security Centre says cyberattacks at record high and urges businesses not to pay up
The National Cyber Security Centre (NCSC) said it tackled a record number of cyber incidents in the UK over the last year, with ransomware attacks originating from Russia dominating its activities.
The cybersecurity agency said it had helped deal with a 7.5% increase in cases in the year to August, fuelled by the surge of criminal hackers seizing control of corporate data and demanding payment in cryptocurrency for its return.
Continue reading...FBI Email Hoaxer ID’ed by the Guy He Allegedly Loves to Torment
Vinny Troia, the cybersecurity researcher mentioned in a fake alert gushed out of the FBI’s email system, says it's just one of a string of jabs from a childish but cybercriminally talented tormentor.
Rooting Malware Is Back for Mobile. Here’s What to Look Out For.
Hank Schless, senior manager of security solutions at Lookout, discusses AbstractEmu, mobile malware found on Google Play, Amazon Appstore and the Samsung Galaxy Store.
200M Adult Cam Model, User Records Exposed in Stripchat Breach
The leak included model information, chat messages and payment details.
MosesStaff Locks Up Targets, with No Ransom Demand, No Decryption
A politically motivated group is paralyzing Israeli entities with no financial goal -- and no intention of handing over decryption keys.
Belarus government accused of 'partial responsibility' for Ghostwriter campaigns
Mandiant says the government is likely to blame for anti-NATO campaigns, and more.Strategic web compromises in the Middle East with a pinch of Candiru
ESET researchers have discovered strategic web compromise (aka watering hole) attacks against high‑profile websites in the Middle East
The post Strategic web compromises in the Middle East with a pinch of Candiru appeared first on WeLiveSecurity
Emotet Resurfaces on the Back of TrickBot After Nearly a Year
Researchers observed what looks like the Emotet botnet – the "world’s most dangerous malware" – reborn and distributed by the trojan it used to deliver.
MosesStaff attacks organizations with encryption malware - no payment demand made
Israeli firms are being targeted for purely political and destructive purposes.New banking Trojan SharkBot makes waves across Europe, US
The malware specializes in infiltrating Android handsets.The Best Ransomware Response, According to the Data
An analysis of ransomware attack negotiation-data offers best practices.
High-Severity Intel Processor Bug Exposes Encryption Keys
CVE-2021-0146, arising from a debugging functionality with excessive privileges, allows attackers to read encrypted files.
Cybercriminals Target Alibaba Cloud for Cryptomining, Malware
Cybercriminals are targeting Alibaba Elastic Computing Service (ECS) instances, disabling certain security features to further their cryptomining goals. Alibaba offers a few unique options that make it a highly attractive target for attackers, researchers noted. According to research from Trend Micro, the Chinese giant’s cloud (also known as Aliyun) has a preinstalled security agent. While […]
FBI systems compromised to send out fake attack alerts
Hackers break into the Bureau’s email systems to send out at least 100,000 emails warning recipients of imminent cyberattacks
The post FBI systems compromised to send out fake attack alerts appeared first on WeLiveSecurity
FBI Says Its System Was Exploited to Email Fake Cyberattack Alert
The alert was mumbo jumbo, but it was indeed sent from the bureau's
email system, from the agency’s own internet address.