Security News

FBI warns about Cuba, no, not that one — the ransomware gang
2022-12-02 20:30

The Cuba gang has hit more than 100 organizations worldwide, demanding over $145 million in payments and successfully extorting at least $60 million since August, according to a joint FBI and US Cybersecurity and Infrastructure Security Agency advisory. Private security researchers have identified possible links between Cuba ransomware criminals and their RomCom remote access trojan and Industrial Spy ransomware counterparts.

Existential Risk and the Fermi Paradox
2022-12-02 20:07

This becomes catastrophic as the effects of that attack become greater. The magnifying effects of technology enable short-term damage to cause long-term planet-wide systemic damage.

LastPass admits to customer data breach caused by previous breach
2022-12-02 19:10

Back in August 2022, popular password manager company LastPass admitted to a data breach. LastPass insisted that the developer's account hadn't given the criminals access to any customer data, or indeed to anyone's encrypted password vaults.

DHS Cyber Safety Board to review Lapsus$ gang’s hacking tactics
2022-12-02 19:05

The Department of Homeland Security Cyber Safety Review Board will review attacks linked to an extortion gang known as Lapsus$, which breached multiple high-profile companies in recent incidents. As announced on Friday, the goal behind CSRB's review of the gang's hacking activities is to provide advice on defending against Lapsus$ attacks.

BlackProxies proxy service increasingly popular among hackers
2022-12-02 18:56

A new residential proxy market is becoming popular among hackers, cybercriminals, phishers, scalpers, and scammers, selling access to a million claimed proxy IP addresses worldwide. The BlackProxies service claims to have access to a pool of 1,000,000 IP addresses from around the world, all coming from real residential users, ensuring unblocked status, low detection rates, and good speeds.

New CryWiper data wiper targets Russian courts, mayor’s offices
2022-12-02 17:29

A previously undocumented data wiper named CryWiper is masquerading as ransomware, but in reality, destroys data beyond recovery in attacks against Russian mayor's offices and courts. "In the fall of 2022, our solutions detected attempts by a previously unknown Trojan, which we named CryWiper, to attack an organization's network in the Russian Federation," explains the new report by Kaspersky.

New CryWiper malware wipes data in attack against Russian org
2022-12-02 17:29

A previously undocumented data wiper named CryWiper is masquerading as ransomware, extorting victims to pay for a decrypter, but in reality, it just destroys data beyond recovery. CryWiper was first discovered by Kaspersky this fall, seen in attacks against organizations in the Russian Federation.

Police arrest 55 members of 'Black Panthers' SIM Swap gang
2022-12-02 15:29

The Spanish National Police have arrested 55 members of the 'Black Panthers' cybercrime group, including one of the organization's leaders based in Barcelona. The gang was operating four specialized activity cells dedicated to social engineering, vishing, phishing, and carding, having a very organized structure.

How Windows 11's Enhanced Phishing Protection guards your password
2022-12-02 15:14

To help combat the constant risk of password theft, Microsoft added phishing protection in Windows 11 Version 22H2. When enabled, Enhanced Phishing Protection is offered through Microsoft Defender SmartScreen. If Enhanced Phishing Protection detects a user entered their Windows password into a website or an application, an alert and prompt are shown warning the user to change their password.

Hackers Sign Android Malware Apps with Compromised Platform Certificates
2022-12-02 13:56

Platform certificates used by Android smartphone vendors like Samsung, LG, and MediaTek have been found to be abused to sign malicious apps. "A platform certificate is the application signing certificate used to sign the 'android' application on the system image," a report filed through the Android Partner Vulnerability Initiative reads.