Fortune 50 Co. Pays Record-Breaking $75M Ransomware Demand
The runaway success of an upstart ransomware outfit called “Dark Angels” may well influence the cyberattack landscape for years to come.
darkreading – Read More
China’s APT41 Targets Taiwan Research Institute for Cyber Espionage
The state-sponsored Chinese threat actor gained access to three systems and stole at least some research data around computing and related technologies.
darkreading – Read More
Optus and Medibank Data Breach Cases Allege Cyber Security Failures
Australian regulators allege that cyber security failures at Optus and Medibank contributed to data breaches in 2022, leading to theft of sensitive customer data.
Security | TechRepublic – Read More
APT41 Hackers Use ShadowPad, Cobalt Strike in Taiwanese Institute Cyber Attack
A Taiwanese government-affiliated research institute that specializes in computing and associated technologies was breached by nation-state threat actors with ties to China, according to new findings from Cisco Talos.
The unnamed organization was targeted as early as mid-July 2023 to deliver a variety of backdoors and post-compromise tools like ShadowPad and Cobalt Strike. It has been attributed
The Hacker News – Read More
Is the US Federal Government Increasing Cyber-Risk Through Monoculture?
In a monoculture, cybercriminals need to look for a weakness in only one product, or discover an exploitable vulnerability, to affect a significant portion of services.
darkreading – Read More
APT28 Targets Diplomats with HeadLace Malware via Car Sale Phishing Lure
A Russia-linked threat actor has been linked to a new campaign that employed a car for sale as a phishing lure to deliver a modular Windows backdoor called HeadLace.
“The campaign likely targeted diplomats and began as early as March 2024,” Palo Alto Networks Unit 42 said in a report published today, attributing it with medium to high level of confidence to APT28, which is also referred to as
The Hacker News – Read More
New Panamorfi DDoS Attack Exploits Misconfigured Jupyter Notebooks
“Panamorfi,” a new DDoS attack, exploits Discord, Minecraft, and Jupyter Notebooks. Cybersecurity researchers warn of this threat targeting…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Sensitive Illinois Voter Data Exposed by Contractor’s Unsecured Databases
Social Security numbers, death certificates, voter applications, and other personal information was accessible on the open internet, highlighting the ongoing challenges in election security.
Security Latest – Read More
Disney, Nike, IBM Signatures Anchor 3M Fake Emails a Day
A simple toggle in Proofpoint’s email service allowed for brand impersonation at an industrial scale. It prompts the question: Are secure email gateways (SEGs) secure enough?
darkreading – Read More
In Other News: European Banks Put to Test, Voting DDoS Attacks, Tenable Exploring Sale
Noteworthy stories that might have slipped under the radar: over 100 European banks undergo cyber resilience test, DDoS attacks don’t impact voting, and Tenable exploring a potential sale.
The post In Other News: European Banks Put to Test, Voting DDoS Attacks, Tenable Exploring Sale appeared first on SecurityWeek.
SecurityWeek – Read More