GodFather Malware Upgraded to Hijack Legitimate Mobile Apps
Upgraded GodFather banking malware now uses on-device virtualization to hijack apps, enabling real-time fraud
Information Security Magazine
ClickFix Helps Infostealers Use MHSTA for Defense Evasion
1 week 1 day ago
ClickFix techniques are enabling threat actors to bypass defenses using tools like MSHTA, says ReliaQuest
UK Government Publishes Plan to Boost Cyber Sector Growth
1 week 1 day ago
The new Cyber Growth Action Plan aims to support the UK’s cyber industry, including the development of innovative new technologies and startups
Ransomware Group Qilin Offers Legal Counsel to Affiliates
1 week 1 day ago
The group positions itself “not just as a ransomware group, but as a full-service cybercrime platform”, according to Cybereason
Paddle Pays $5m to Settle Tech Support Scam Allegations
1 week 1 day ago
Payment processor Paddle has agreed to settle with the FTC over allegations related to tech support scams
Hacklink Marketplace Fuels Surge in Covert SEO Poisoning Attacks
1 week 2 days ago
New SEO poisoning attacks identified, using Hacklink to hijack search rankings and inject malicious links into sites
UK ICO Fines 23andMe £2.3m for Data Protection Failings
1 week 2 days ago
23andMe has been fined over £2m by the UK ICO for failing to adequately protect genetic data
Taiwan Hit by Sophisticated Phishing Campaign
1 week 2 days ago
Phishing campaign targeting Taiwan has been identified, using tax-themed emails and malware like Winos and HoldingHands
Chained Flaws in Enterprise CMS Provider Sitecore Could Allow Remote Code Execution
1 week 2 days ago
WatchTowr has found three vulnerabilities in the Sitecore Experience Platform, used by HSBC and L’Oréal
Microsoft Promises to Keep European Cloud Data in Europe
1 week 2 days ago
Microsoft’s Sovereign Cloud solutions are designed to ensure European cloud data is stored and processed in Europe
Brits Lose £106m to Romance Fraud in a Year
1 week 2 days ago
New City of London Police data reveals British men and women lost over £100m to romance fraudsters in 2024
Threat Actors Target Victims with HijackLoader and DeerStealer
1 week 3 days ago
Cyber-attacks using HijackLoader and DeerStealer have been identified exploiting phishing tactics via ClickFix
Archetyp Market Shut Down in Europe-wide Law Enforcement Operation
1 week 3 days ago
Operation DEEP Sentinel has shut down Archetyp Market, the longest-running dark web drug marketplace
Tenable Fixes Three High-Severity Flaws in Vulnerability Scanner Nessus
1 week 3 days ago
Nessus users should update patches as soon as possible
Anubis Ransomware Adds File-Wiping Capability
1 week 3 days ago
Trend Micro identified a novel “wipe mode” included in Anubis ransomware to prevent file recovery, increasing pressure on victims to give in to demands
Over a Third of Grafana Instances Exposed to XSS Flaw
1 week 3 days ago
Some 36% of Grafana instances are vulnerable to account takeover bug, putting DevOps teams at risk
WestJet Investigates Cyber-Attack Impacting Customers
1 week 3 days ago
Canadian airline WestJet is investigating a cyber-attack that struck on June 13
Former CISA and NCSC Heads Warn Against Glamorizing Threat Actor Names
1 week 6 days ago
Jen Easterly and Ciaran Martin called for a universal, vendor-neutral cyber threat actor naming system
European Journalists Targeted by Paragon Spyware, Citizen Lab Confirms
1 week 6 days ago
This is the first forensic evidence that journalists’ devices have been infected with Paragon’s Graphite spyware
Ransomware Gang Exploits SimpleHelp RMM to Compromise Utility Billing Firm
1 week 6 days ago
A CISA advisory urged all software vendors and downstream customers to check if they are impacted by unpatched versions of the SimpleHelp RMM tool
Checked
10 hours 50 minutes ago