Cybercrime , Fraud Management & Cybercrime , Social Engineering Microsoft Says Spam Campaign Uses Updated Variant Prajeet Nair (@prajeetspeaks) • May 24, 2021 If the “Outgoing Payments” PDF is clicked, it downloads the StrRAT. (Source: Microsoft) Microsoft is warning about a spam campaign that uses an updated variant of Java-based StrRAT malware that…
One of the largest insurance companies in the U.S. reportedly paid $40 million in ransom in March to regain control of its network following a ransomware attack. CNA Financial Corp. reportedly paid the hackers two weeks after a heap of company data was stolen, and employees of the company were locked out of their network, Bloomberg reported…
Поступили новые сведения об уязвимости CVE-2021-31166, обнаруженной в системном драйвере Windows — HTTP.sys. Напомним, что с помощью бреши не прошедший аутентификацию злоумышленник может отправить специально созданные пакеты, эксплуатирующие дыру. По словам исследователя Джима Девриза, опасная….
A plane bound for Lithuania has been forcibly diverted while flying in Belarusian airspace. Opposition journalist Roman Protasevich was on board the plane and was arrested when it landed in the country’s capital, Minsk. Franak Viacorka, adviser to Belarus opposition leader Svetlana Tikhanovskaya and friend of Mr Protasevich, said it showed the risk of flying…
TPG Telecom Limited has disclosed that its legacy cloud-based hosting service, TrustedCloud, was affected in a recent cyberattack, with two clients found to have their data accessed. Only two TPG clients had their data stolen during the April cyberattack, which the enterprise observed on the same day, forcing it to take TrustedCloud offline while the…
The Federal Bureau of Investigation (FBI) has identified at least 16 attacks linked to the Conti ransomware group. The agency stated that the attacks target healthcare and first responder organizations, aiming to disrupt their operations and networks. Targets include 911 dispatch carriers, law enforcement agencies, and emergency medical services. These entities have been attacked over…
Cyber gang behind Irish health system attack also hit more than a dozen US healthcare organisations The Federal Bureau of Investigation (FBI) said on Thursday that the Conti ransomware operatives who recently took down Irish health system have also hit the networks of at least 16 US healthcare and first response organisations in the past…
Cybersecurity researchers disclosed details about 13 vulnerabilities in the Nagios network monitoring application that could be abused by an adversary to hijack the infrastructure without any operator intervention. “In a telco setting, where a telco is monitoring thousands of sites, if a customer site is fully compromised, an attacker can use the vulnerabilities to compromise…
The Federal Bureau of Investigation said that the same group of online extortionists blamed for striking the Irish health system last week have also hit at least 16 U.S. medical and first response networks in the past year. From a report: In an alert made public Thursday by the American Hospital Association, the FBI said…
TPG Telecom said that a legacy IT-as-a-service platform that was due to be decommissioned in August was breached by unknown attackers. The telco said in a financial filing [pdf] that the TrustedCloud service “was compromised in a recent cyber incident”. TrustedCloud was acquired in TPG’s 2011 buyout of on-demand services provider IntraPower. It provides IT-as-a-service “built on…
