Security News

Cybercrooks play dress-up as 'helpful' researchers in latest ransomware ruse
2024-01-10 17:01

Ransomware victims already reeling from potential biz disruption and the cost of resolving the matter are now being subjected to follow-on extortion attempts by criminals posing as helpful security researchers. Researchers at Arctic Wolf Labs publicized two cases in which casulaties of the Royal and Akira ransomware gangs were targeted by a third party, believed to be the same individual or group in both scenarios, and extorted by a fake cyber samaritan.

Cybercrooks book a stay in hotel email inboxes to trick staff into spilling credentials
2023-12-20 21:30

Cybercriminals are preying on the inherent helpfulness of hotel staff during the sector's busy holiday season. When the staff then responds by requesting more information, the attacker sends a message directing the staff to open a link that supposedly contains evidence supporting their claim.

Recruiters, beware of cybercrooks posing as job applicants!
2023-12-12 13:37

Recruiters are being targeted via spear-phishing emails sent by cybercrooks impersonating job applicants, Proofpoint researchers are warning. "The tone and content of the emails suggest to the recipient the actor is a legitimate candidate, and because the actor specifically targets people who are involved in recruiting and hiring, the emails do not immediately seem suspicious," they noted.

Cybercrooks amp up attacks via macro-enabled XLL files
2023-11-01 14:45

Xlam files are now the seventh most commonly abused file extension in Q3 2023, rising 35 places from 42nd on the list in Q2. XLL attacks aren't new and researchers observed a lull in exploits at the start of 2023, but a surge in attention has been given to them in the past few months. XLL files offer attackers greater capabilities compared to alternatives like Visual Basic for Applications macros, which are now blocked by default courtesy of Microsoft's 2022 intervention, a move that was seen at the time as long overdue.

Airbus suffers data leak turbulence to cybercrooks' delight
2023-09-13 17:45

Ransomware group nicked info from employee of airline, say researchers Aerospace giant Airbus has fallen victim to a data breach, thanks in part to the inattention of a third party.…

Cybercrooks target students with fake job opportunities
2022-03-29 10:45

Scammers appear to be targeting university students looking to kickstart their careers, according to research from cybersecurity biz Proofpoint. "Threat actors use the promise of easy money working from home to collect personal data, steal money, or convince victims to unwillingly participate in illegal activities, such as money laundering," the researchers said.

Cybercrooks’ Political In-Fighting Threatens the West
2022-03-14 13:52

"Pro-Ukrainian actors are refusing to sell, buy, or collaborate with Russian-aligned actors, and are increasingly attempting to target Russian entities in support of Ukraine," wrote researchers from Accenture's Cyber Threat Intelligence. The conflict "Has led some actors to exclusively sell their services, such as network accesses, to pro-Russian actors," researchers wrote, and inspired increased attacks against Western targets.

Cybercrooks Frame Targets by Planting Fabricated Digital Evidence
2022-02-11 19:57

Threat actors are hijacking the devices of India's human rights lawyers, activists and defenders, planting incriminating evidence to set them up for arrest, researchers warn. Arsenal Consulting's digital analysis shows that the file - one of the more incriminating pieces of data seized by police - was one of many files delivered via a NetWire RAT remote session associated with ModifiedElephant.

Ex-Gumshoe Nabs Cybercrooks with FBI Tactics
2022-02-09 14:00

Crane Hassold, former FBI analyst turned director of threat intel at Abnormal Security, shares stories from his covert work with cyberattackers. "Behavioral characteristics and motivations of cybercriminals in the real world and virtual world are the same," said Crane Hassold, who helped to create the CBAC after spending more than 11 years as an FBI analyst, offering strategic and tactical analytical support to cyber, financial crime and violent crime cases.

DDoS Attacks: A Flourishing Business for Cybercrooks – Podcast
2021-09-16 13:00

Keeping availability away from customers via DDoS can have a painful impact on businesses as they find their doors blocked to customers, keeping them from making transactions. Over the years, DDoS attacks have evolved regarding level of sophistication, metrics and the techniques that threat actors employ.