Chinese Tech Firms Linked to Salt Typhoon Espionage Campaigns
The US, UK and allies have called out China’s “commercial cyber ecosystem” for enabling large-scale Salt Typhoon campaigns
Information Security Magazine
Crypto Companies Freeze $47m in Romance Baiting Funds
1 month ago
Chainalysis, OKX, Binance and Tether have managed to stop nearly $50m reaching romance baiting fraudsters
Ransomware Actor Deletes Data and Backups Post-Exfiltration on Azure
1 month ago
Microsoft observed Storm-0501 pivot to the victim’s cloud environment to exfiltrate data rapidly and prevent the victim’s recovery
CISA Strengthens Software Procurement Security With New Tool
1 month ago
CISA has launched a new Software Acquisition Guide Web Tool to enhance security in software procurement
Researchers Discover First Reported AI-Powered Ransomware
1 month ago
While still in development, PromptLock is described as the “first known AI-powered ransomware” by ESET researchers
Nevada “Network Security Incident” Shuts Down State Offices and Services
1 month ago
The Office of the Governor of Nevada revealed that the incident has shut down in-person State services, while government phone lines and websites are offline
ShadowSilk Campaign Targets Central Asian Governments
1 month ago
A series of cyber-attacks against government organizations in Central Asia and Asia- Pacific has been linked to the ShadowSilk threat cluster
Citrix Patches Three NetScaler Zero Days as One Sees Active Exploitation
1 month ago
Citrix customers are urged to patch their vulnerable NetScaler appliances, but “patching alone won’t cut it,” experts said
ENISA to Coordinate €36m EU-Wide Incident Response Scheme
1 month ago
EU security agency ENISA is being handed €36m to operate the EU Cybersecurity Reserve
New Data Theft Campaign Targets Salesforce via Salesloft App
1 month ago
Google is warning of a new credential theft campaign targeting Salesforce customers via Salesloft Drift
New Phishing Campaign Abuses ConnectWise ScreenConnect to Take Over Devices
1 month ago
Abnormal AI said the campaign, which lures victims into downloading legitimate RMM software, marks a major evolution in phishing tactics
New Android Trojan Variant Expands with Ransomware Tactics
1 month 1 week ago
A new version of the Hook Android banking Trojan features 107 remote commands, including ransomware overlays
Phishing Campaign Uses UpCrypter to Deploy Remote Access Tools
1 month 1 week ago
A global phishing campaign has been identified using personalized emails and fake websites to deliver malware via UpCrypter
US: Maryland Confirms Cyber Incident Affecting State Transport Systems
1 month 1 week ago
All previously scheduled mobility trips across Maryland for this week will be honored, said the state’s transportation administration
CIISec: Most Security Professionals Want Stricter Regulations
1 month 1 week ago
A new CIISec poll finds the majority of industry professionals would prefer more rigorous cybersecurity laws
Tech Manufacturer Data I/O Hit by Ransomware
1 month 1 week ago
Data I/O has revealed operational disruption following a ransomware breach that forced it to take some systems offline
Fake macOS Help Sites Seek to Spread Infostealer in Targeted Campaign
1 month 1 week ago
A variant of the Atomic macOS Stealer (AMOS) targets macOS users via fake support sites in malvertising campaign
Chinese Developer Jailed for Deploying Malicious Code at US Company
1 month 1 week ago
A Chinese developer has been sentenced to four years in prison after being found to deploy malicious code in his employer’s network, including a “kill switch”
CISA Seeks Biden Era's SBOM Minimum Requirements Guideline Change
1 month 1 week ago
The US Cybersecurity and Infrastructure Security Agency is planning to launch an update to a 2021 guideline for SBOM requirements
Interpol-Led African Cybercrime Crackdown Leads to 1209 Arrests
1 month 1 week ago
Operation Serengeti 2.0 operators helped recover $97.4m stolen by cybercriminals
Checked
9 hours 20 minutes ago