Security News

The move to remote working spurred by the coronavirus pandemic has triggered a surge in the use of cloud services. Based on cloud-usage data from 30 million McAfee MVISION cloud users between January and April 2020, the security provider found a 50% increase overall in the use of cloud services.

The hackers have now turned to Dark Web auction houses instead. "Putting the data out there for free to do extortion or to leverage the extortion isn't effective because now the police are involved, the FBI is involved, the Secret Service is involved because Trump was mentioned. They then turned to this auction house called Jokerbuzz," Turnage said. Because of DarkOwl's work offering access to the world's largest dataset of Dark Net and deep web content, the company's researchers have seen the files related to Lady Gaga, Sherwood, and the initial documents related to President Trump.

There has been an exponential growth in phishing and website scams in Q1 2020, according to a Bolster analysis of over 1 billion websites. Of the total number of confirmed phishing and counterfeit pages, 30% were related to COVID-19 - that is over a quarter of a million confirmed malicious websites.

Cybercriminals have been busy devising email campaigns that take advantage of the coronavirus outbreak. In a blog post published Monday, Lastline said that it's detected a variety of threats centered around COVID-19, and many of these threats are infostealers.

Bad actors matched their cyber attack strategy with the increasing uncertainty of the coronavirus epidemic, according to a new analysis from Mimecast. Over the 14 weeks that Mimecast analyzed, detections increased during seven weeks, decreased during five weeks, and showed no change during two weeks.

Cybercriminals have taken notice as well, increasingly lacing popular movie torrents with dangerous malware that can damage your device. In a recent thread on Twitter, Microsoft Security Intelligence wrote at length that the team saw malware attached to torrents for popular "John Wick 3" and "Contagion" in Spain, Mexico, and a number of South American countries.

These restrictions have created a burgeoning underground market for reshipping scams, which rely on willing or unwitting residents in the United States and Europe - derisively referred to as "Reshipping mules" - to receive and relay high-dollar stolen goods to crooks living in the embargoed areas. Still, every dark cloud has a silver lining: Intel 471 noted many cybercriminals appear optimistic that the impending global economic recession "Will make it easier to recruit low-level accomplices such as money mules."

A new report from BleepingComputer found that cybercriminals are selling and trading the credentials for more than 500,000 Zoom accounts associated with companies like Chase and Citibank as well as schools like Dartmouth College, the University of Florida, and the University of Vermont. Earlier this month, a report from cybersecurity firm IntSights by cyber threat analyst Charity Wright and chief security officer Etay Maor found that there has been increased chatter across the dark web about ways to take advantage of the increased usage of Zoom globally.

NormShield researchers looked for websites using the names of 10 commonly discussed drugs over the last several months. While the number of phishing domains catapulted for chloroquine and azithromycin in particular, domain names containing the eight other drugs increased as well.

As these industries evolve and become more digitized, attackers have the opportunity to access more data than ever before. Wipers continue to trend upward as adversaries begin to realize the futility of purely destructive attacks.