The FBI noted a trend in back-to-back ransomware attacks, and cyberdefense pros are seeing it too. Some things are better in pairs. Socks, dice, animals on arks. Not ransomware. “Dual” ransomware, a term used in a September advisory from the FBI, is on the rise, according to the agency and other pros who handle ransomwareContinue reading “‘Dual’ ransomware suggests orgs rush the recovery”
Category Archives: Ransomware
Year-end report cites ransomware, APTs, commodity loaders as 2023 trends.
Ransomware attacks boomed this year for a simple reason, expert says: “There’s a lot of money to be made.” Omne trium perfectum, but for cybersecurity. The Latin saying that “everything that comes in threes is perfect” fits the bill for Cisco Talos Intelligence Group’s 2023 Year In Review Report, led by the evolution of ransomware attacks,Continue reading “Year-end report cites ransomware, APTs, commodity loaders as 2023 trends.”
FBI Issues Guidance for Delaying SEC-Required Data Breach Disclosure.
The FBI has issued guidance for SEC data breach reporting requirements and how disclosures can be delayed. The FBI has issued guidance regarding the data breach reporting requirements of the Securities and Exchange Commission (SEC), providing useful information on how disclosures can be delayed. The SEC announced in late July that it had adopted new cybersecurityContinue reading “FBI Issues Guidance for Delaying SEC-Required Data Breach Disclosure.”
BazarCall attacks abuse Google Forms to legitimize phishing emails.
A new wave of BazarCall attacks uses Google Forms to generate and send payment receipts to victims, attempting to make the phishing attempt appear more legitimate. BazarCall, first documented in 2021, is a phishing attack utilizing an email resembling a payment notification or subscription confirmation to security software, computer support, streaming platforms, and other well-known brands. TheseContinue reading “BazarCall attacks abuse Google Forms to legitimize phishing emails.”
Promon discovers new Android banking malware, “FjordPhantom”.
Promon has discovered a new type of Android malware, which the company has dubbed FjordPhantom, for its illusiveness and ability to spread covertly. This blog post explores what FjordPhantom is and how it works. Background Through longtime Promon partner i-Sprint, multiple Security Research teams received reports of a new Android malware spreading in Southeast Asia inContinue reading “Promon discovers new Android banking malware, “FjordPhantom”.”
Ransomware gang hits British Library, internal files leaked.
Authorities first noticed the attack on Oct. 28, when hackers took down the library website. Three weeks after a cyberattack took down the British Library—one of the world’s largest athenaeums—alleged attackers appear to be leaking HR data stolen in the breach. The library confirmed the leak on November 20 in a post on X, formerly Twitter,Continue reading “Ransomware gang hits British Library, internal files leaked.”
Apple fixes two new iOS zero-days in emergency updates.
Apple released emergency security updates to fix two zero-day vulnerabilities exploited in attacks and impacting iPhone, iPad, and Mac devices, reaching 20 zero-days patched since the start of the year. “Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1,” the company said in an advisory. TheContinue reading “Apple fixes two new iOS zero-days in emergency updates.”
BlackCat claims it is behind Fidelity National Financial ransomware shakedown
One of US’s largest underwriters forced to shut down a number of key systems Fortune 500 insurance biz Fidelity National Financial (FNF) has confirmed that it has fallen victim to a “cybersecurity incident.” The announcement came in the form of an 8-K filing with the Securities and Exchange Commission (SEC) on Tuesday, saying it hadContinue reading “BlackCat claims it is behind Fidelity National Financial ransomware shakedown”
New Samsung data breach impacts UK store customers.
Samsung Electronics is notifying some of its customers of a data breach that exposed their personal information to an unauthorized individual. The company says that the cyberattack impacted only customers who made purchases from the Samsung UK online store between July 1, 2019, and June 30, 2020. Hacker exploits bug in third-party app Samsung discovered theContinue reading “New Samsung data breach impacts UK store customers.”
Phishers add QR codes to the menu.
Please don’t make us say QRishing. Taking a page from restaurants of the early-Covid era, hackers are trying out QR codes, frustrating IT pros by sneaking poisoned pixel squares past filters and into inboxes. A report from the cybersecurity company Reliaquest discovered a 51% increase in QR-code attacks in September, compared to the cumulative number from JanuaryContinue reading “Phishers add QR codes to the menu.”
You must be logged in to post a comment.