New Ryuk Ransomware Function Spreads Across Networks Quickly
In terms of ransoms paid, Ryuk is the most successful strain of ransomware in use today, having netted an estimated $150 million for the group behind the malicious code. According to a recent report published by France’s national cybersecurity agency, it just got even more dangerous. Ryuk has historically been used preferentially against hospitals and […]
New Ransomware Strains Have Researchers On Their Toes
Recently, researchers have discovered two new ransomware strains, dubbed “AlumniLocker” and “Humble”, both of which have very different ways of doing what they do. This highlights the ongoing development and diversification of the larger ransomware threat and underscores the fact that it will be a major cause for concern in the years ahead. Both new […]
Mobile App Vulnerabilities Found To Leave Data Unsecured
Most apps these days make use of cloud storage in order to minimize their footprint on your device. That’s good in theory, but based on new research from Zimperium, a disappointing percentage of app developers don’t do nearly enough to secure the data they’re housing for you. In fact, the recent study indicated that fully […]
Hackers Are Using Unpatched NAS Devices To Mine Bitcoin
In late 2020, QNAP discovered a pair of critical security vulnerabilities that would allow hackers to take remote control over network attached storage devices (NAS). In this particular instance, the hackers chose not to encrypt files and demand payment or cause other mayhem. Instead, they made slaves of the devices and put them to work […]
Microsoft Expanding Fight Against Macros Based Malware
Macros have been a simple, effective means of spreading malware since the 1990’s, and some hackers still rely on them heavily to ensnare and infect unsuspecting users. It’s a long standing issue that many companies have attempted to address over the years. Now, it seems that it’s Microsoft’s turn at bat again. Recently, the Redmond […]
Latest Apple Update Fixes Web Security Flaw On Most Devices
Recently, two different security researchers (Clement Lecigne of Google’s Threat Analysis Group, and Alison Huffman from Microsoft’s Browser Vulnerability Research Group) discovered a pair of serious security vulnerability impacting Apple devices. The bugs, tracked as CVE-2021-1844 and CVE-2021-21166 respectively, are browser-based memory issues that could have allowed remote code execution if the victim navigated or […]
Hacker Uses Zoom Invites To Steal Credentials Through Sendgrid
There’s a mix of bad news and good in the ongoing war against the hackers of the world. For the bad news, security professionals have recently detected a sophisticated phishing campaign that makes use of SendGrid and convincing replicas of Outlook on the Web and Office 365 logins to harvest credentials. The attack works like […]
New Exchange Online Feature Helps Prevent Phishing And Ransomware
Microsoft has been busy of late, making a raft of improvements to their email system that are designed to enhance user security. Not long ago, they added a fantastically useful feature called ‘Plus Addressing’ which allows Office 365 users to make use of an unlimited number of disposable recipient email addresses and track email sources. […]
A United States Bank Hit By Ransomware And Data Breach
A few months ago, it became widely known that there was a critical security vulnerability in Accellion FTA servers. Naturally, hackers wasted no time exploiting the vulnerability, and since then, we’ve seen a few instances of high-profile data breaches traced back to that very vulnerability. Flagstar bank is the latest such victim. Recently, the company […]
Ransomware Attackers Demand 20 Million From U.S. Kia Motors
Strange things are afoot at Kia Motors America (KMA), a subsidiary of Kia Motors with more than 800 dealerships scattered across the United States. Recently the company has reported a nationwide IT outage that is impacting their mobile UVO Link apps, phone services, the company’s payment system, and a number of dealer-specific applications. If you’re […]
Another Malware Attack On Mac Systems Has Been Discovered
Barely a week ago, Patrick Wardle announced the discovery of the first piece of malware capable of slipping past the defenses of Apple’s M1, which was considered to be among the most secure commercially available technology. Now, it seems, there are two. Researchers from Red Canary and Malwarebytes jointly discovered an insidious, stealthy malware strain […]
Large Supermarket Chain Kroger Suffers Data Breach
Kroger, a titan in the US supermarket industry, is the latest company to fall victim to a data breach. In this case, the breach came about via a third-party service the company utilized called Accellion FTA. Hackers were able to exploit a Zero-Day vulnerability in that software and use it to steal data from vendors […]