Category Security

Microsoft Threat Intelligence has revealed a previously tracked threat actor (DEV-0586). Now known as “Cadet Blizzard”. In a tech blog post published Wednesday, the tech giant described the emerging threat and shared updates on the techniques, tools and infrastructure of…

June 15, 2023Ravi LakshmananMalware/Cyberthreat threat actors behind Vidar malware We can see that they have made changes to their backend infrastructure and are trying to reconstruct and cover up their online trails in response to public disclosures about their tactics.…

EMEA will be the most targeted region for web attacks against retailers in Q1 2023, surpassing North America, according to new research from Akamai. In the research report, Intrusions from Gift Shops: Attacks on Commercefound that there were over 14…

June 15, 2023Ravi LakshmananMobile Security/Privacy Updated version of the Android Remote Access Trojan Gravity RAT Since June 2022, it has been found masquerading as messaging apps BingeChat and Chatico as part of a targeted campaign. “What is noteworthy about the…

Nearly half (47%) of UK business leaders believe their organizations are at risk of attack since the cost of living crisis began. Inflation, soaring interest rates and rising utility bills are eroding household disposable income, even as wages are rising…

Infoblox, a domain name system (DNS) security provider, has discovered an increase in cyberattacks using malicious lookalike domains, email addresses, and other types of registered identifiers. In a recent report, Detailed analysis of similar attacks, The Infoblox Threat Intelligence Group…

June 15, 2023Ravi Lakshmanan Microsoft on Wednesday opened the lid on a “novel and distinct Russian threat actor,” which it said had ties to the General Staff Intelligence Unit (GRU) and said it had a “relatively low success rate.” The…

The attackers behind the LockBit ransomware as a service (RaaS) scheme have extorted $91 million in hundreds of attacks against numerous US organizations since 2020. This is according to a joint bulletin issued by the U.S. Cybersecurity and Infrastructure Security…

System administrators breathed a sigh of relief yesterday when Microsoft issued a relatively light round of patch updates, no zero-day vulnerabilities, and only six critical CVEs on the list. However, there was still some work to be done. Among his…

According to Proofpoint, threat actors will continue to evolve their tactics to bypass user defenses in 2022, with multi-factor authentication (MFA) bypass kits accounting for millions of phishing messages. While off-the-shelf toolkits have contributed to the prevalence of phishing against…