Microsoft’s Digital Crimes Unit (DCU) has seized 17 malicious domains used by scammers in a business email compromise (BEC) campaign targeting the company’s customers. The domains taken down by Microsoft were so-called “homoglyph” domains registered to resemble those of legitimate business. This technique allowed the threat actors to impersonate companies when communicating with their clients. According to the complaint filed…
Another day, and it’s time for another Apple security scare: malware that can harvest keystrokes and log-ins and is available on the Darknet for only $49. Malware-as-a-service for Mac attacks Check Point Software’s research team claims to have identified the hack, which it is calling XLoader. Enterprise security specialists managing Macs and Apple devices (of which there…
Executive Summary This vulnerability is currently undergoing analysis and not all information is available. Please check back soon to view the completed vulnerability summary Informations Name CVE-2021-1094 First vendor Publication 2021-07-22 Vendor Cve Last vendor Modification 2021-07-22 Security-Database Scoring CVSS v3 Cvss vector : N/A Overall CVSS Score NA Base Score NA Environmental Score NA…
Hungary’s Prime Minister Viktor Orban has announced that his government will hold a referendum on its new law which includes a ban on the depiction or promotion of homosexuality and gender change to under-18s. Dismissing the idea that this decision was about populism, the country’s foreign minister, Peter Szijjarto, said the referendum was about democracy….
A 22-year-old UK citizen has been arrested in connection with a 2020 hack that promised a doubling of Bitcoin promised through high-profile Twitter accounts, including Apple’s. The Department of Justice said that Joseph O’Connor was arrested by Spanish authorities on Wednesday in Estepona, Spain. U.S. officials had sent a request for his arrest, as O’Connor…
Business Email Compromise (BEC) , Fraud Management & Cybercrime , Fraud Risk Management Company Says West African Group Used Homoglyph Techniques to Trick Victims Doug Olenick (DougOlenick) • July 21, 2021 Microsoft has announced the takedown of 17 domains that a threat group operating out of West Africa used to host fake Microsoft…
Executive Summary Informations Name CVE-2021-2340 First vendor Publication 2021-07-21 Vendor Cve Last vendor Modification 2021-07-21 Security-Database Scoring CVSS v3 Cvss vector : N/A Overall CVSS Score NA Base Score NA Environmental Score NA impact SubScore NA Temporal Score NA Exploitabality Sub Score NA Calculate full CVSS 3.0 Vectors scores Security-Database Scoring CVSS v2 Cvss…
China is a leader in cyberwarfare research along with the United States and Russia, but Beijing denies accusations that Chinese hackers steal trade secrets and technology. China on Tuesday rejected an accusation by Washington and its Western allies that Beijing is to blame for a hack of the Microsoft Exchange email system and complained Chinese…
The Biden administration has confirmed that ‘state-sponsored Chinese actors’ compromised 13 US pipeline companies as part of a ‘spearphishing and intrusion campaign’ from 2011 to 2013. The coordinated cyber attack targeted 23 pipeline companies in total, according to a report coauthored by the FBI and the Cybersecurity and Infrastructure Security Agency (CISA). Just three of…
Business Continuity Management / Disaster Recovery , Fraud Management & Cybercrime , Fraud Risk Management Hackers Accessed System Containing PII Prajeet Nair (@prajeetspeaks) • July 20, 2021 Campbell Conroy & O’Neil, a Boston-based law firm that serves Fortune 500 firms, including Apple and Pfizer, is continuing its investigation of a ransomware attack in…
