Novel Phishing Method Used in Android/iOS Financial Fraud Campaigns Information Security Magazine 2 months 1 week ago ESET detected a new phishing technique using progressive web applications (PWAs) as part of a large-scale mobile financial scam
New DNS-Based Backdoor Threat Discovered at Taiwanese University Information Security Magazine 2 months 1 week ago The Msupedge backdoor communicates with a command-and-control server by using DNS traffic
Iranian Group TA453 Launches Phishing Attacks with BlackSmith Information Security Magazine 2 months 1 week ago TA453, also known as Charming Kitten, launched a targeted phishing attack using PowerShell malware BlackSmith
Vermin Cyber-Attacks Target Ukraine, Exploiting Kursk Battle Information Security Magazine 2 months 1 week ago Ukraine detected cyber-attacks using malicious emails containing photos of alleged prisoners of war from the Kursk direction
Iran Behind Trump Campaign Hack, US Government Confirms Information Security Magazine 2 months 1 week ago The ODNI, FBI and CISA confirmed Iran was behind a reported hack of a Trump campaign website as part of efforts to stoke discord and undermine the US elections
Former Congressman Santos Admits Identity Theft and Fraud Information Security Magazine 2 months 1 week ago Former US Representative George Santos pleads guilty to multiple fraud and identity theft charges
Jewish Home Lifecare Notifies 100,000 Victims of Ransomware Breach Information Security Magazine 2 months 1 week ago Healthcare organization Jewish Home Lifecare has revealed that a 2024 data breach hit over 100,000 customers
FBI and CISA Assure Public on Election Ransomware Security Information Security Magazine 2 months 1 week ago The FBI and CISA said ransomware on local networks may cause delays but won't impact voting system integrity
New Tool Xeon Sender Enables Large-Scale SMS Spam Attacks Information Security Magazine 2 months 1 week ago Xeon Sender features SMS spam via APIs, Nexmo/Twilio credentials validation and phone number generation
Microsoft Apps for macOS Exposed to Library Injection Attacks Information Security Magazine 2 months 1 week ago Cisco Talos researchers found a flaw in eight Microsoft apps for macOS that could enable library injection attacks, putting sensitive data at risk
Ransomware Resilience Drives Down Cyber Insurance Claims Information Security Magazine 2 months 1 week ago Cyber insurance claims in the UK have fallen by over a third between 2022 and 2024 as businesses refuse ransom payments
NCSC Opens Cyber Resilience Audit Scheme to Applicants Information Security Magazine 2 months 1 week ago The UK’s National Cyber Security Centre wants prospective auditors to check compliance with its Cyber Assessment Framework
Unicoin Staff Locked Out of G-Suite in Mystery Attack Information Security Magazine 2 months 1 week ago Employees at crypto firm Unicoin couldn’t access Google services for four days during a recent breach
US Bipartisan Committee Urges Investigation Into Chinese Wi-Fi Routers Information Security Magazine 2 months 2 weeks ago Two Congressmen fear that the Chinese government might use TP-Link Wi-Fi routers to deploy hacking and espionage campaigns in the US
Microsoft Mandates MFA for All Azure Sign-Ins Information Security Magazine 2 months 2 weeks ago Microsoft is mandating MFA for all Azure sign-ins, with customers given 60-day advance notices to start implementation
Florida-Based National Public Data Confirms Data Breach Information Security Magazine 2 months 2 weeks ago The US data broker did not address the threat actor’s claim that the breach concerns 2.9 billion records
Geopolitical Tensions Drive Explosion in DDoS Attacks Information Security Magazine 2 months 2 weeks ago Radware found that Web DDoS attacks rose by 265% in H1 2024, driven by hacktivist groups amid rising geopolitical tensions
Cyber-criminals Exploited Paris Olympics With Fake Domains Information Security Magazine 2 months 2 weeks ago 166 Olympics-related domains displayed signs of DNS abuse like keyword stuffing and typosquatting
Advanced ValleyRAT Campaign Hits Windows Users in China Information Security Magazine 2 months 2 weeks ago Discovered by FortiGuard Labs, the ValleyRAT campaign targets Chinese Windows systems
Russia's FSB Behind Massive Phishing Espionage Campaign Information Security Magazine 2 months 2 weeks ago Citizen Lab attributed the campaign to Coldriver, a notorious FSB subordinate team, and Coldwastrel, a new, Russian-aligned group