Veriti Research has discovered a surge in attacks from operators of the Androxgh0st malware family, uncovering over 600 servers compromised primarily in the U.S., India and Taiwan. According to Veriti’s blog post, the adversary behind Androxgh0st had their C2 server exposed, which could allow for a counterstrike by revealing the impacted targets. The researchers then […]
Quishing attacks, a form of phishing that leverages QR codes, have significantly increased, climbing from a mere 0.8% in 2021 to 10.8% in 2024. The figures come from the latest Egress report, which also suggests a notable decrease in attachment-based payloads, which halved from 72.7% to 35.7% over the same period. According to the new […]
Fraud Management & Cybercrime , Ransomware Experts See Surge in Attacks, Including in Russia, Using Leaked LockBit Code Mathew J. Schwartz (euroinfosec) • April 17, 2024 A LockBit ransomware attack doesn’t always come from LockBit. (Image: Shutterstock) What do a German healthcare network, a Russian security company and an American bridal clothing retailer […]
The U.S. food and agriculture sector dealt with at least 167 ransomware attacks last year, according to the leading industry group. In its first annual report, the Food and Agriculture-Information Sharing and Analysis Center (Food and Ag-ISAC) said the industry was the seventh most targeted sector in the country, behind manufacturing, financial services and others. […]
Recently, FortiGuard Labs observed multiple attacks focusing on this year-old vulnerability, spotlighting botnets like Moobot, Miori, the Golang-based agent “AGoent,” and the Gafgyt Variant.
Microsoft was impersonated in 38% of all brand phishing attacks in Q1 2024, according to new data from Check Point. This is an increase on the proportion of brand phishing attempts impersonating the tech giant compared to Q4 2023, when it made up 33% of cases. Google was the second most impersonated brand in Q1 […]
The attacks begin with malicious emails containing seemingly innocuous document attachments (Excel and Word files) that exploit the CVE-2017-11882 flaw, a commonly targeted Microsoft Office Equation Editor vulnerability fixed in 2017.
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Government US Cyber Mission Force Led 22 Defensive Cyber Operations in 2023, Commander Says Chris Riotta (@chrisriotta) • April 12, 2024 The Cyber National Mission Force was active in “hunt forward” operations across the globe in 2023. (Image: Shutterstock) A secretive U.S. cyber […]
Microsoft fixed two zero-day bugs exploited in malware attacks Pierluigi Paganini April 11, 2024 Microsoft addressed two zero-day vulnerabilities (CVE-2024-29988 and CVE-2024-26234) actively exploited by threat actors to deliver malware Microsoft addressed two zero-day vulnerabilities, tracked as CVE-2024-29988 and CVE-2024-26234, that threat actors are exploiting to deliver malware. Microsoft Patches Tuesday security updates for April […]