A new ransomware family dubbed 3AM has emerged in the threat landscape. It was detected in an attack by a LockBit affiliate who attempted to deploy the ransomware when LockBit was blocked on the targeted network. Diving in details It begins with the use of the gpresult command to retrieve the policy settings for a […]
Hospitality and entertainment company, MGM Resorts, recently suffered a cyber attack that severly impacted its business operations. The cyber attack was discovered on September 11, when MGM Resorts put out a statement via X (formerly Twitter) that a “cyber security incident” was impacting come of its systems. MGM Resorts reassured customers that it had contacted […]
Ransomware gang BianLian has claimed responsibility for a cyber attack against nonprofit Save The Children International. The ransomware gang has been active since June 2022, and primarily targets critical infrastructure and healthcare organizations. In previous attacks, BianLian has extorted these organziations for their data. While the charity was not directly named by the ransomware gang, […]
Sep 13, 2023THNCyber Attack / Malware Microsoft is warning of a new phishing campaign undertaken by an initial access broker that involves using Teams messages as lures to infiltrate corporate networks. The tech giant’s Threat Intelligence team is tracking the cluster under the name Storm-0324, which is also known by the monikers TA543 and Sagrid. […]
The WiKI-Eve attack is designed to intercept WiFi signals during password entry, so it’s a real-time attack that must be carried out while the target actively uses their smartphone and attempts to access a specific application.
Investigations have begun into a massive ransomware attack that has affected Sri Lanka’s government cloud system, Lanka Government Cloud (LGC). The investigation is being conducted by the Sri Lanka Computer Emergency Readiness Team and Coordination Center (CERT|CC). Sri Lanka’s Information and Communication Technology Agency (ICTA) confirmed the attack to several local news outlets on September […]
A phishing attack has led to the loss of over US$691,000 following the compromise of the X (formely Twitter) account of co-founder of decentralized blockchain Ethereum and cryptocurrency Ether, Vitalik Buterin. The hack was discovered on September 9, following suspicious activity on Buterin’s X account. After compromising Buterin’s account, the hackers attempted to steal cryptocurrency […]
Sep 11, 2023THNMalware / Social Media A new phishing attack is leveraging Facebook Messenger to propagate messages with malicious attachments from a “swarm of fake and hijacked personal accounts” with the ultimate goal of taking over the targets’ accounts. “Originating yet again from a Vietnamese-based group, this campaign uses a tiny compressed file attachment that […]
A cybersecurity company claims it identified and thwarted a massive distributed denial-of-service (DDoS) attack targeting a prominent American financial institution. The researchers at Akamai Technologies did not reveal the company’s name but said it is among their “largest and most influential” customers in the financial sector. DDoS attacks overwhelm websites with a flood of traffic, […]