In episode 44 of The AI Fix, ChatGPT won’t build a crystal meth lab, GPT-4o improves the show’s podcast art, some students manage to screw in a lightbulb, Google releases Gemini 2.5 Pro Experimental and nobody notices, and Mark invents a clock for measuring AI time. Graham explains how ChatGPT’s love for Young Adult fiction…
Category: malware
Global Security News, Guest blog, malware, plugins, wordpress
Hackers exploit little-known WordPress MU-plugins feature to hide malware
A new security issue is putting WordPress-powered websites at risk. Hackers are abusing the “Must-Use” plugins (MU-plugins) feature to hide malicious code and maintain long-term access on hacked websites. Read more in my article on the Hot for Security blog.
Application Security, Cloud Security, CVE-2021-35587, Cyberlaw, Cybersecurity, Data Privacy, Data Security, DevOps, Featured, Global Security News, Governance, Risk & Compliance, Humor, Identity & Access, Incident Response, Industry Spotlight, IoT & ICS Security, Larry Ellison, malware, Mobile Security, Most Read This Week, Network Security, News, OCI, oracle, Oracle Access Manager, oracle cloud, Oracle Cloud infrastructure, Oracle Fusion Cloud, Popular Post, rose87168, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches, vulnerabilities
Oracle Hack PR Drama: Deny, Deny, Deny — Despite Damning Data
OCI dokey then: Larry Ellison’s PR pukes desperately follow the script. The post Oracle Hack PR Drama: Deny, Deny, Deny — Despite Damning Data appeared first on Security Boulevard.
Global Security News, Guest blog, malware, Ransomware
VanHelsing ransomware: what you need to know
First reported earlier in March 2025, VanHelsing is a new ransomware-as-a-service operation. Read more in my article on the Tripwire State of Security blog.
.net, Android, Cybersecurity, Developer, developers, Global Security News, Google, malware, Microsoft, Mobile Security, Mobility, News, Security
Android Malware Exploits a Microsoft-Related Security Blind Spot to Avoid Detection
Microsoft’s .NET MAUI lets developers build cross-platform apps in C#, but its use of binary blob files poses new risks by bypassing Android’s DEX-based security checks.
AI (Artificial Intelligence), Cloud Security, Cybersecurity, Data Privacy, Data Security, DeepSeek AI, Featured, Global Security News, Industry Spotlight, llm security, malware, microsoft copilot, Network Security, News, OpenAI ChatGPT, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence
Cato Uses LLM-Developed Fictional World to Create Jailbreak Technique
A Cato Networks threat researcher with little coding experience was able to convince AI LLMs from DeepSeek, OpenAI, and Microsoft to bypass security guardrails and develop malware that could steal browser passwords from Google Chrome. The post Cato Uses LLM-Developed Fictional World to Create Jailbreak Technique appeared first on Security Boulevard.
Cybersecurity, Gaming, Global Security News, hacking, infostealer, malware, Security, Steam, Valve
Valve removes video game demo suspected of being malware
Valve removed a video game called Sniper: Phantom’s Resolution from Steam after users reported that its free demo contained malware.
Global Security News, Guest blog, malware, Ransomware
BlackLock ransomware: What you need to know
BlackLock has become a big deal, very quickly. It has been predicted to be one of the biggest ransomware-as-a-service operations of 2025. Read more in my article on the Tripwire State of Security blog.
.lnk, Analytics & Intelligence, APT37, APT43, BitterAPT, china espionage, CWE-451, Cybersecurity, Cybersecurity zero-day flaw, Data Security, Earth Anansi, Earth Imp, Earth Kumiho, Earth Manticore, Endpoint, Evil Corp, Exploits, Featured, Global Security News, Governance, Risk & Compliance, Humor, Incident Response, Industry Spotlight, InkySquid, Iranian hackers, kimsuky, Kimsuky hacking group, Konni, LNK file malware, LNKFiles, malicious LNK files, malware, Microsoft, Microsoft Windows Zero Day, Most Read This Week, News, North Korean cyber espionage, Popular Post, russia hacker, SB Blogwatch, ScarCruft, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threat Intelligence, Threats & Breaches, vulnerabilities, Windows, ZDI-CAN-25373, zero day, Zero Day Attacks, zero day exploit attack, Zero Day Initiative, Zero Day Initiative (ZDI), zero-day attack, Zero-Day Bug
Microsoft Won’t Fix This Bad Zero Day (Despite Wide Abuse)
Satya says NO: Redmond blames Windows users, rather than solve 30-year-old bug—exploited since 2017. The post Microsoft Won’t Fix This Bad Zero Day (Despite Wide Abuse) appeared first on Security Boulevard.
CCTV, critical infrastructure, Global Security News, Law & order, malware, Podcast, privacy, Security threats, Smashing Security, surveillance, Volt Typhoon
Smashing Security podcast #409: Peeping perverts and FBI phone calls
In episode 409 of the “Smashing Security” podcast, we uncover the curious case of the Chinese cyber-attack on Littleton’s Electric Light Company, and a California landlord’s hidden camera scandal. Find out about this, and more, in the latest edition of the “Smashing Security” podcast by cybersecurity veterans Graham Cluley and Carole Theriault.
Asia Pacific, china espionage, Cloud Security, Cybersecurity, Data Security, Endpoint, Featured, Global Security News, Iranian hackers, malware, Microsoft Windows Zero Day, Network Security, News, North Korean cyber espionage, russia hacker, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threat Intelligence, vulnerabilities
China, Russia, North Korea Hackers Exploit Windows Security Flaw
Amost a dozen state-sponsored threat groups from Russia, China, and North Korea have been exploiting a security flaw in WIndows in attacks on governments and critical infrastructure that date back to 2017. According to Trend Micro’s VDI unit, Microsoft has no plans to patch the vulnerability. The post China, Russia, North Korea Hackers Exploit Windows…
CAPTCHA, clipboard, Global Security News, Guest blog, malware, supply chain
Supply-chain CAPTCHA attack hits over 100 car dealerships
A security researcher has discovered that the websites of over 100 car dealerships have been compromised in a supply-chain attack that attempted to infect the PCs of internet visitors. Read more in my article on the Hot for Security blog.
anti-malware, Cybersecurity, fbi, Global Security News, identity theft, malware, mp4 converters, pdf converters, Ransomware, Security, Software
Scam Alert: FBI ‘Increasingly Seeing’ Malware Distributed In Document Converters
FBI warns computer users to keep an eye out for malware, including ransomware, distributed through working document converters.
credential theft, Cybercrime, Cybersecurity, Data Breaches, Flashpoint, Global Security News, identity, identity theft, Information stealing malware, infostealers, malware, Ransomware, Research, stolen credentials
Infostealers fueled cyberattacks and snagged 2.1B credentials last year
Cybercriminals used information-stealing malware to a devastating effect last year, capturing sensitive data that fueled ransomware, breaches and attacks targeting supply chains and critical infrastructure, according to a new report. Infostealers were used to steal 2.1 billion credentials last year, accounting for nearly two-thirds of 3.2 billion credentials stolen from all organizations, Flashpoint said in a…
Akira ransomware, Cloud Security, Cybersecurity, Data Security, Featured, Global Security News, Incident Response, malware, Network Security, News, Nvidia RTX 4090 GPU, ransomware decryptor, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches
New Akira Ransomware Decryptor Leans on Nvidia GPU Power
A software programmer developed a way to use brute force to break the encryption of the notorious Akira ransomware using GPU compute power and enabling some victims of the Linux-focused variant of the malware to regain their encrypted data without having to pay a ransom. The post New Akira Ransomware Decryptor Leans on Nvidia GPU…
fbi, Global Security News, Guest blog, Law & order, malware
Free file converter malware scam “rampant” claims FBI
Whether you’re downloading a video from YouTube or converting a Word document into a PDF file, there’s a chance that you might be unwittingly handing control of your PC straight into the hands of cybercriminals. Read more in my article on the Hot for Security blog.
Binance, Cloud Security, crypto cons, Cybersecurity, Data Privacy, Data Security, Donald Trump, Endpoint, Featured, Global Security News, Identity & Access, Industry Spotlight, malware, Network Security, News, Remote Access Trojan (RAT), Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence
Hackers Use Trump’s Coin, Binance’s Name in Crypto Phishing Scam
Threat actors are running an email phishing scam to entice victims to install Binance software in hopes of collecting TRUMP coins. However, if they try, they instead get the ConnectWise RAT installed on their systems, which could let the malware steal sensitive information from the compromised machines. The post Hackers Use Trump’s Coin, Binance’s Name…
Global Security News, Guest blog, malware, Medusa, Ransomware
Medusa ransomware: FBI and CISA urge organisations to act now to mitigate threat
The Medusa ransomware gang continues to present a major threat to the critical infrastructure sector, according to a newly-released – with at least one organisation hit with a “triple-extortion” threat. Read more in my article on the Tripwire State of Security blog.
android spyware, Cybersecurity, Data Privacy, Data Security, Endpoint, Featured, Global Security News, malware, mobile cyberattack, Mobile Security, Network Security, News, North Korean cyber espionage, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence
Suspected North Korea Group Targets Android Devices with Spyware
A North Korea-backed threat group, APT37, disguised KoSpy as utility apps in Google Play to infect Android devices, using the spyware for such activities as gathering sensitive information, tracking locations, capturing screenshots, recording keystrokes, and accessing files. The post Suspected North Korea Group Targets Android Devices with Spyware appeared first on Security Boulevard.
data breach, Data loss, Global Security News, Law & order, malware, Podcast, postal, Ransomware, Smashing Security, snail mail
Smashing Security podcast #408: A gag order backfires, and a snail mail ransom demand
What happens when a healthcare giant’s legal threats ignite a Streisand Effect wildfire… while a ransomware gang appears to ditch the dark web for postage stamps? Find out about this, and more, in the latest edition of the “Smashing Security” podcast by cybersecurity veterans Graham Cluley and Carole Theriault.
CryptoCurrency, Cybercrime, Cybersecurity, GitHub, Global Security News, Lazarus Group, malware, North Korea, npm, Research, Socket, software security, Threats
Lazarus Group deceives developers with 6 new malicious npm packages
Lazarus Group has burrowed deeper into the npm registry and planted six new malicious packages designed to deceive software developers and disrupt their workflows, researchers at cybersecurity firm Socket said in a Monday blog post. The North Korea-linked threat group embedded BeaverTail malware into the npm packages to install backdoors and steal credentials and data…
Application Security, Cloud Security, Cloudflare DDoS Protection, cyber attacks during ukraine war, cyber attacks russia, Cybersecurity, Dark Storm Team, DDoS, DDoS attack, Denial of Service, Denial of Service (DoS) attacks, denial of service attacks, denial of service vulnerability, DevOps, DevSecOps, distributed denial of service, Distributed denial of service (DDoS) attacks, distributed denial of service attack, Editorial Calendar, Elon Musk, elon musk twitter, Featured, Global Security News, Governance, Risk & Compliance, hacktivism ukraine cyber-attacks, Humor, Incident Response, Industry Spotlight, IoT, IoT & ICS Security, malware, Most Read This Week, Network Security, News, Popular Post, Russia, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, social media, Social Media Attack, social media attacks, social media cyber attacks, Social Media Cybercrime, Social Media Exploits, Spotlight, Threats & Breaches, Ukraine, ukraine conflict, Ukraine Cyber War, Ukraine-Russia War, Ukraine/European Security, vulnerabilities, X
No, Elon — X DDoS was NOT by Ukraine
X marks the botnet: Outage outrage was a Ukrainian cyberattack, implies our favorite African billionaire comedy villain. The post No, Elon — X DDoS was NOT by Ukraine appeared first on Security Boulevard.
Global Security News, Guest blog, insider threat, Law & order, logic bomb, malware
Man found guilty of planting infinite loop logic bomb on ex-employer’s system
Davis Lu had planted malicious Java code onto his employer’s network that would cause “infinite loops” that would ultimate result in the server crashing or hanging. Read more in my article on the Hot for Security blog.
Android, Exclusive, Global IT News, Global Security News, Google, Google Play, Lookout, malware, Security, Spyware, TC
North Korean government hackers snuck spyware on Android app store
Cybersecurity firm Lookout found several samples of a North Korean spyware it calls KoSpy. © 2024 TechCrunch. All rights reserved. For personal use only.
Asia Pacific, Cloud Security, Cybersecurity, Data Security, Endpoint, Global Security News, Identity & Access, infostealers, malvertising, malware, Microsoft Threat Intelligence, Mobile Security, Network Security, News, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threat Intelligence
Microsoft: Massive Malvertising Campaign Infects a Million Devices
A massive malvertising campaign that targeted individuals watching pirated videos on illegal streaming sites redirected them several times before landing them at GitHub repositories that hosted infostealers and other malware, according to Microsoft The post Microsoft: Massive Malvertising Campaign Infects a Million Devices appeared first on Security Boulevard.
Global Security News, HP, Law & order, malvertising, malware, Myanmar, Podcast, printer, Romance baiting, Scam, technical support scam
Smashing Security podcast #407: HP’s hold music, and human trafficking
Journey with us to Myanmar’s shadowy scam factories, where trafficked workers are forced to run romance-baiting and fake tech support scams, and find out why a company’s mandatory hold time for tech support could lead to innocent users having their computers compromised. All this and more is discussed in the latest edition of the “Smashing…
Black Basta, Data loss, Global Security News, Guest blog, malware, Ransomware
Cactus ransomware: what you need to know
Cactus is a ransomware-as-a-service (RaaS) group that encrypts victim’s data and demands a ransom for a decryption key. Read more about it in my article on the Tripwire State of Security blog.
CISA, Global Security News, Guest blog, Law & order, malware, Russia, Security threats, united states
CISA refutes claims it has been ordered to stop monitoring Russian cyber threats
It’s been a confusing few days in the world of American cybersecurity… Read more in my article on the Hot for Security blog.
CISA, Cloud Security, Cybersecurity, Data Privacy, Data Security, Featured, Global Security News, Governance, Risk & Compliance, Industry Spotlight, malware, Network Security, News, North America, Russia, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches, Trump, US DOD
Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia
The Trump Administration’s orders to the DoD and CISA to halt cyber operations and investigations against Russia is a gift to the United States’ longtime foreign adversary and makes the country less safe, according to cybersecurity professionals. The post Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia appeared first on…
CISA, Cloud Security, Cybersecurity, Data Privacy, Data Security, Featured, Global Security News, Governance, Risk & Compliance, Industry Spotlight, malware, Network Security, News, North America, Russia, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches, Trump, US DOD
Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia
The Trump Administration’s orders to the DoD and CISA to halt cyber operations and investigations against Russia is a gift to the United States’ longtime foreign adversary and makes the country less safe, according to cybersecurity professionals. The post Security Pros Push Back as Trump Orders Halt to Cyber Ops vs. Russia first appeared on…
CISA, Donald Trump, Global Security News, Guest blog, Law & order, malware, Ransomware, Russia, Security threats, Ukraine, united states
Stop targeting Russian hackers, Trump administration orders US Cyber Command
The Trump administration has told US cyber command and CISA to stop following or reporting on Russian cyber threats. Yes, Russia! That country everyone used to agree was home to lots of ransomware gangs and hackers. Hmmm… Read more in my article on the Hot for Security blog.
AirTag, AirTags, Analytics & Intelligence, Apple, Apple AirTag, apple bug, apple hack, apple hacker, Apple iCloud, BLE, bluetooth, Bluetooth low energy, Bluetooth Protocol, bluetooth security, Bluetooth vulnerability, Cloud Security, Cyberlaw, Cybersecurity, Data Privacy, DevOps, Editorial Calendar, Featured, Find My iPhone, Global Security News, Governance, Risk & Compliance, Humor, iCloud, icloud hack, Identity & Access, Incident Response, Industry Spotlight, IoT, IoT & ICS Security, malware, Mobile Security, Most Read This Week, Network Security, News, nRootTag, OpenHayStack, Popular Post, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threat Intelligence, Threats & Breaches, vulnerabilities
Apple Lets Stalkers Find YOU — ‘nRootTag’ Team Breaks AirTag Crypto
Dumb Design + Crud Code = Privacy Panic: It’s been SEVEN MONTHS, but Tim’s crew is yet to fix the bugs. The post Apple Lets Stalkers Find YOU — ‘nRootTag’ Team Breaks AirTag Crypto appeared first on Security Boulevard.
Anydesk, belgium, Global Security News, Guest blog, malware, Security threats, Ukraine
Warning issued as hackers offer firms fake cybersecurity audits to break into their systems
Companies are being warned that malicious hackers are using a novel technique to break into businesses – by pretending to offer audits of the company’s cybersecurity. Read more in my article on the Tripwire State of Security blog.
bybit, CryptoCurrency, Global Security News, malware, Podcast, Smashing Security, Social networks
Smashing Security podcast #406: History’s biggest heist just happened, and online abuse
In episode 406 of the “Smashing Security” podcast, we explore how the cryptocurrency exchange Bybit has been hacked to the jaw-dropping tune of $1.5 billion, and we look at what is being done to better defend women and girls’ safety online. All this and more is discussed in the latest edition of the “Smashing Security”…
Android, Global Security News, Guest blog, malware, Spyware, stalkerware, vulnerability
Flaw found in stalkerware apps, exposing millions of people. Here’s how to find out if your phone is being spied upon
A serious security vulnerability has been found in popular stalkerware apps, exposing the sensitive personal information and communications of millions of people. Read more in my article on the Hot for Security blog.
Asia Pacific, China-linked Hackers, Cloud Security, Cybersecurity, Data Security, Featured, Global Security News, Incident Response, malware, nation-state hackers, Network Security, News, Ransomware, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches, vulnerabilities
Cases of China-Backed Spy Groups Using Ransomware Come to Light
Cyberattacks detected by Trend Micro and Orange Cyberdefense find hackers using malware linked to China-backed groups and ransomware, adding more evidence that nation-state cyberespionage groups are also now using ransomware and further blurring the line between the two. The post Cases of China-Backed Spy Groups Using Ransomware Come to Light appeared first on Security Boulevard.
CryptoCurrency, Global Security News, Law & order, malware, Podcast, Ransomware, Scam, Smashing Security
Smashing Security podcast #405: A crypto con exchange, and soaring ticket scams
From shadowy Bitcoin exchanges to Interpol’s most wanted, Alexander Vinnik was the alleged kingpin behind BTC-e, a $4bn crypto laundering empire. Learn more about him, and how he became a geopolitical pawn between the US, France, and Russia. Plus! Hear how concert-goers are being warned about a swathe of scams hitting stadiums and arenas around…
CaaS, Cybersecurity, Darktrace, Featured, Global Security News, MaaS, malware, News, RATs, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight
CaaS Surges in 2025, Along With RATs, Ransomware
Cybercrime-as-a-Service (CaaS) now accounts for 57% of all cyberthreats, marking a 17% increase from the first half of 2024, according to Darktrace’s Annual Threat Report. The post CaaS Surges in 2025, Along With RATs, Ransomware appeared first on Security Boulevard.
Cloud Security, Cybersecurity, Data Privacy, Data Security, defense contractors, Endpoint, Featured, Global Security News, Governance, Risk & Compliance, Identity & Access, Incident Response, Industry Spotlight, malware, Network Security, News, Raccoon Infostealer, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, stolen credentials, Threat Intelligence, Threats & Breaches, U.S. military
US Military, Defense Contractors Infected with Infostealers: Hudson Rock
A report by cybersecurity firm Hudson Rock says hundreds of computers from the U.S. Army and Navy and defense contractors like Honeywell and Boeing are infected with infostealer malware, endangering the security of the systems and threatening third-party players. The post US Military, Defense Contractors Infected with Infostealers: Hudson Rock appeared first on Security Boulevard.
Cybersecurity, Gaming, Global IT News, Global Security News, hacking, infostealer, malware, Security, Steam, Valve
Hackers planted a Steam game with malware to steal gamers’ passwords
Researchers found that PirateFI was never designed to be a real game, but a vehicle to infect gamers with malware and steal their passwords with an infostealer called Vidar. © 2024 TechCrunch. All rights reserved. For personal use only.
Asia Pacific, china espionage, Cloud Security, Cybersecurity, Data Security, Featured, Global Security News, Incident Response, malware, Network Security, News, PlugX, Ransomware, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches
Chinese Cyber-Spies Use Espionage Tools for Ransomware Side Hustle
A Chinese threat actor who targeted an Asian software company used the same toolset for the ransomware attack that was found in multiple cyberespionage incidents, leaving Symantec analysts to believe the hacker was a Chinese spy who used the malicious tools to earn some money on the side. The post Chinese Cyber-Spies Use Espionage Tools…
data breach, Data loss, Global Security News, Guest blog, Law & order, malware, North America, phobos, Ransomware
US charges two Russian men in connection with Phobos ransomware operation
Roman Berezhnoy and Egor Nikolaevich Glebov are alleged to have extorted over US $16 million in ransom payments using the Phobos ransomware, impacting over 1000 organisations in the United States. Read more in my article on the Hot for Security blog.
Cybersecurity, Gaming, Global IT News, Global Security News, hacking, malware, Security, Valve
Valve removes Steam game that contained malware
The gaming giant told affected users: “Consider fully reformatting your operating system” © 2024 TechCrunch. All rights reserved. For personal use only.
Android, Cybersecurity, Exclusive, Global IT News, Global Security News, Google, Hackers, hacking, Italy, Lookout, malware, Security, SIO, Spyware, WhatsApp
Spyware maker caught distributing malicious Android apps for years
Italian company SIO, which sells to government customers, is behind an Android spyware campaign called Spyrtacus that spoofed popular apps like WhatsApp, per security researchers. © 2024 TechCrunch. All rights reserved. For personal use only.
Asia Pacific, china espionage, Cloud Security, Cyberlaw, Cybersecurity, Data Security, Featured, Global Security News, Google, Incident Response, malware, Mobile Security, nation-state attacks, national security risk, Network Security, News, Russia, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches
Lines Between Nation-State and Cybercrime Groups Disappearing: Google
Threat researchers with Google are saying that the lines between nation-state actors and cybercrime groups are blurring, noting that gangs backed by China, Russia, and others are using financially motivated hackers and their tools while attacks by cybercriminals should be seen as national security threats. The post Lines Between Nation-State and Cybercrime Groups Disappearing: Google…
AI, Artificial Intelligence, data breach, Data loss, Global Security News, Law & order, malware, Podcast, Ransomware, sim swap, Smashing Security, Twitter
Smashing Security podcast #404: Podcast not found
The story of how hackers managed to compromise the US Government’s official SEC Twitter account to boost the price of Bitcoins, AI isn’t helping reduce the rife conspiracy theories inside classrooms, and is the funeral bell tolling for ransomware? All this and more is discussed in the latest edition of the “Smashing Security” podcast by…
Bankruptcy, Cloud Security, Cybereason, Cybersecurity, Data Security, Featured, Global Security News, lawsuit, malware, Mobile Security, Network Security, News, Ransomware, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight
Cybereason CEO: Mnuchin, SoftBank Pushing Company To Bankruptcy
Eric Gan, the ex-SoftBank executive, who took over as CEO of Cybereason in 2023, is suing SoftBank and Liberty Capital, claiming its largest investors are blocking much-needed financial proposals and driving the cybersecurity firm toward bankruptcy. The post Cybereason CEO: Mnuchin, SoftBank Pushing Company To Bankruptcy appeared first on Security Boulevard.
Cloud Security, Cyberlaw, Cybersecurity, Data Security, Department of Justice (DOJ), Europol bust, Featured, Global Security News, Incident Response, malware, Network Security, News, Ransomware, ransomware as a service, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence
Authorities Seize 8Base Ransomware Infrastructure, Arrest Four Russians
With “Operation Phobos Aetor,” international law enforcement, including the US DOJ and Europol, arrest four Russian nationals and seize infrastructure connected to the 8Bbase ransomware group, the largest affiliate of the prolific Phobos RaaS operation. The post Authorities Seize 8Base Ransomware Infrastructure, Arrest Four Russians appeared first on Security Boulevard.
Botnet C&C, Global Security News, malware, Security Bloggers Network, Service Providers
Networks hosting botnet C&Cs: Same players, same problems
With every Botnet Threat Update we publish, the same networks consistently appear in the Top 20 for hosting botnet command and control (C&C) servers. But why does this keep happening? In this Botnet Spotlight, we look into the root causes behind this persistent issue and what networks must do to break the cycle. The post…
Apple, Apps, Global IT News, Global Security News, Google, Kaspersky, malware, Security
Apple and Google take down malicious mobile apps from their app stores
Apple and Google have pulled as many as 20 apps from their respective apps for carrying a data-stealing malware. © 2024 TechCrunch. All rights reserved. For personal use only.
AI, AI (Artificial Intelligence), AI privacy, Application Security, application-level encryption, Artificial Intelligence, Artificial Intelligence (AI), Artificial Intelligence (AI)/Machine Learning (ML), Artificial Intelligence Cybersecurity, Artificial Intelligence News, artificial intellignece, Artificial Stupidity, artificialintelligence, Asia Pacific, breach of privacy, bytedance, California Consumer Privacy Act, California Consumer Privacy Act (CCPA), china, china espionage, China Mobile, China-nexus cyber espionage, Chinese, Chinese Communists, chinese government, Chinese Internet Security, Chinese keyboard app security, Cloud Security, Congress, congressional legislation, Cyberlaw, Cybersecurity, cybersecurity artificial intelligence, Darin LaHood, Data encryption, Data encryption standards, Data Privacy, Data Security, Data Stolen By China, deepseek, DeepSeek AI, DevOps, encryption, Endpoint, Global Security News, Governance, Risk & Compliance, Humor, Industry Spotlight, Josh Gottheimer, Large Language Models (LLM), Large language models (LLMs), LLM, llm security, malware, Mobile Security, Most Read This Week, Network Security, News, No DeepSeek on Government Devices Act, Peoples Republic of China, Popular Post, privacy, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches, TikTok, TikTok Ban, Unencrypted Data, US Congress, vulnerabilities
Chinese DeepSeek AI App: FULL of Security Holes Say Researchers
Xi knows if you’ve been bad or good: iPhone app sends unencrypted data to China—and Android app appears even worse. The post Chinese DeepSeek AI App: FULL of Security Holes Say Researchers appeared first on Security Boulevard.
Blackcat, BlackCat/ALPHV ransomware, Chainalysis, Cloud Security, Cybersecurity, Data Security, Featured, Global Security News, LockBit, malware, Mobile Security, Network Security, News, ransom payments, Ransomware, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches, vulnerabilities
Ransom Payments Fell 35% in 2024 After LockBit, BlackCat Takedowns
Law enforcement actions, better defenses, and a refusal by victims to pay helped to reduce the amount of ransoms paid in 2024 by $35%, a sharp decline from the record $1.25 billion shelled out in 2023, according to researchers with Chainalysis. The post Ransom Payments Fell 35% in 2024 After LockBit, BlackCat Takedowns appeared first…
ad blocking, Coinbase, data breach, Data loss, Global Security News, malware, Podcast, powerschool, QR code, Ransomware, Smashing Security, VPN
Smashing Security podcast #403: Coinbase crypto heists, QR codes, and ransomware in the classroom
In episode 403 of “Smashing Security” we dive into the mystery of $65 million vanishing from Coinbase users faster than J-Lo slipped into Graham’s DMs, Geoff gives a poor grade for PowerSchool’s security, and Carole takes a curious look at QR codes. All this and more is discussed in the latest edition of the “Smashing…
Analytics & Intelligence, blood, COST OF RANSOMWARE IN HEALTHCARE, Cyber Threat on Healthcare, cyberattacks in healthcare, Cyberlaw, Cybersecurity, Cybersecurity for Healthcare, cybersecurity in healthcare, Data Privacy, Data Security, Editorial Calendar, Endpoint, exposed healthcare records, Featured, Global Security News, Governance, Risk & Compliance, Healthcare, hospital, hospital attacks, hospital cyberattack, Humor, Identity & Access, Incident Response, Industry Spotlight, malware, medical, medical data breach, Most Read This Week, Network Security, New York Blood Center, New York Blood Center Enterprises, News, NYBC, NYBCe, Popular Post, Ransomware, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threat Intelligence, Threats & Breaches
Ransomware Scum — Out For Blood: NYBCe is Latest Victim
Bloody hell: New York Blood Center Enterprises crippled by ransomware scrotes unknown. The post Ransomware Scum — Out For Blood: NYBCe is Latest Victim appeared first on Security Boulevard.
BlackBerry, Botnet, British Museum, Data loss, Denial of Service, Global Security News, kidnap, Law & order, malware, Operating Systems, Podcast, privacy, Remote access trojan, Smashing Security, Social networks, Spyware
Smashing Security podcast #402: Hackers get hacked, the British Museum IT shutdown, and social media kidnaps
What happens when eager computer enthusiasts unknowingly download a trojanized hacking tool and find themselves on the wrong side of cybersecurity? A former employee’s actions led to chaos and raise urgent questions about the security of cultural treasures. And join us as we explore the alarming trend of social media influencers staging fake kidnappings. All…
Apple, Automattic, Chrome, Cybersecurity, Global IT News, Global Security News, macOS, malware, Security, Windows, wordpress
Hackers are hijacking WordPress sites to push Windows and Mac malware
A cybersecurity company says hackers are pushing Mac and Windows malware through sites that are using outdated versions of WordPress. © 2024 TechCrunch. All rights reserved. For personal use only.
Apple, apple bug, Apple Data Security, Apple Silicon, Application Security, ARM, Arm CPU Attack, arm64, Cloud Security, Cyberlaw, Cybersecurity, Daniel Genkin, Data Privacy, Data Security, DevOps, Endpoint, Featured, FLOP, Global Security News, Governance, Risk & Compliance, Humor, Identity & Access, Incident Response, Industry Spotlight, iPad, iPhone, Jalen Chuang, Jason Kim, mac, malware, Mobile Security, Most Read This Week, Network Security, News, Popular Post, SB Blogwatch, Security Awareness, Security Boulevard (Original), Side-Channel, side-channel attack, side-channel attacks, SLAP, Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spectre, Spectre attack, Spectre variant, speculative execution, Spotlight, Threats & Breaches, vulnerabilities, Yuval Yarom
SLAP/FLOP: Apple Silicon’s ‘Son of Spectre’ Critical Flaws
Watch this: Want more “speculative execution” bugs? You’re gonna be in a great mood all day. The post SLAP/FLOP: Apple Silicon’s ‘Son of Spectre’ Critical Flaws appeared first on Security Boulevard.
Cloud Security, Cyberlaw, Cybersecurity, Data Privacy, Data Security, DevOps, Featured, fraud, Global Security News, Identity & Access, malware, Network Security, News, North Korea IT worker scam, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, U.S. Department of Justice indictment
U.S. Shuts Down Another N. Korean IT Worker Scam, Indicting 5
The DOJ, which has move aggressively over the past year to find and shut down North Korea’s numerous IT worker scams, indicts two U.S. citizens and three others for running a six-year operation the stole more than $866,000 from 10 U.S. companies that thought they were hiring legitimate IT pros. The post U.S. Shuts Down…
AI chatbots, BEC attacks, Cloud Security, Cybersecurity, Data Security, Featured, generative ai, Global Security News, Identity & Access, malware, malware development, Mobile Security, Network Security, News, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threat Intelligence
GhostGPT: A Malicious AI Chatbot for Hackers
A malicious generative AI chatbot dubbed “GhostGPT” is being advertised to cybercriminals on underground forums as a tool for more quickly and efficiently creating malware, running BEC attacks, and other nefarious activities, lowering the barrier for less-skilled hackers to launch attacks. The post GhostGPT: A Malicious AI Chatbot for Hackers appeared first on Security Boulevard.
Application Security, bytedance, children, Children and smartphones, china, chinese government, Cloud Security, Cyberlaw, Cybersecurity, Data Privacy, DevOps, disinformation, Donald Trump, Endpoint, Featured, Global Security News, Governance, Risk & Compliance, Humor, Incident Response, Industry Spotlight, malware, misinformation, Mobile Security, Most Read This Week, Network Security, News, online disinformation, Popular Post, president donald trump, president trump, privacy, Protecting Americans from Foreign Adversary Controlled Applications Act, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social disinformation, Social Engineering, social media, socialmedia, Spotlight, Spyware, Threats & Breaches, TikTok, TikTok Ban, Trump, vulnerabilities, Won’t somebody think of the children?
Trump U-Turn: TikTok’s On-Again/Off-Again U.S. Ban
Not For You: The Protecting Americans from Foreign Adversary Controlled Applications Act shouldn’t be enforced, orders President Trump. The post Trump U-Turn: TikTok’s On-Again/Off-Again U.S. Ban appeared first on Security Boulevard.
Global Security News, Guest blog, malware, Ransomware
Medusa ransomware: what you need to know
Medusa is a ransomware-as-a-service (RaaS) platform that has targeted organisations around the world. Read more about it in my article on the Tripwire State of Security blog.
Application Security, Biden, Biden administration, Biden National Cybersecurity Strategy, Biden-Harris, china, China-linked Hackers, China-nexus cyber attacks, Cloud Security, Cyberlaw, Cybersecurity, Data Privacy, Data Security, DevOps, Endpoint, executive order cybersecurity, executive order on cybersecurity, Featured, Federal Government, Global Security News, Governance, Risk & Compliance, Humor, Identity & Access, Incident Response, Industry Spotlight, IoT & ICS Security, Joe Biden, malware, Mobile Security, Most Read This Week, Network Security, News, Peoples Republic of China, Popular Post, President Biden, president cybersecurity executive order, presidential executive order cybersecurity, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threats & Breaches, US Federal Government, vulnerabilities, White House, white house executive order cybersecurity framework
This is HUGE: Biden’s Cybersecurity Exec. Order — Big Parting Gift to Trump
Wow. Just Wow.: Joseph Robinette Biden Jr. hits the emergency “do something” button. The post This is HUGE: Biden’s Cybersecurity Exec. Order — Big Parting Gift to Trump appeared first on Security Boulevard.
Asia Pacific, china espionage, Cloud Security, Cybersecurity, Data Security, Endpoint, FBI investigation of cybercrime, Featured, Global Security News, Incident Response, Industry Spotlight, malware, Mustang Panda, Network Security, News, PlugX, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches, windows malware
FBI Deletes PlugX Malware From Computers Infected by China Group
A Chinese-based threat group called Mustang Panda was using a variant of the PlugX malware to infected U.S. Windows computers and steal information. The FBI, with help from French authorities and a private company, deleted the malicious code from more than 4,200 systems. The post FBI Deletes PlugX Malware From Computers Infected by China Group…
Allstate, Analytics & Intelligence, android spyware, Arity, automaker, Car, cars, cellular IoT, cellular IoT security, Chrysler, Cloud Security, Connected Cars, Consumer IoT, Cyberlaw, Cybersecurity, Data Privacy, DevOps, Dodge, Endpoint, Featured, Fiat, Fuel Rewards, GasBuddy, Global Security News, Governance, Risk & Compliance, Humor, Incident Response, Industry Spotlight, insurance, Insurance Companies, insurance company, internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, iOS spyware, IoT, IoT & ICS Security, Jeep, Lexus, Life360, malware, Maserati, Mazda, Mobile Security, Most Read This Week, mozilla, Mozilla Foundation, New Cars, News, Popular Post, privacy, Privacy4Cars, RAM, Routely, SB Blogwatch, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Spyware, Stellantis, Texas Data Privacy and Security Act, Threat Intelligence, Threats & Breaches, Toyota, vehicle, vehicle cybersecurity, vehicle OTAs
Allstate Violates Drivers’ Privacy, Texas AG Alleges
Don’t Mess With Texas Privacy: “We will hold all these companies accountable,” rants state attorney general Ken Paxton (pictured). The post Allstate Violates Drivers’ Privacy, Texas AG Alleges appeared first on Security Boulevard.
china, cyberespionage, Global Security News, malware, North America, Security, us government
DOJ confirms FBI operation that mass-deleted Chinese malware from thousands of US computers
The FBI says it was authorized to mass-remove “PlugX” malware from more than 4,000 compromised machines in the United States © 2024 TechCrunch. All rights reserved. For personal use only.
CISA, Cloud Security, critical infrastructure assets, Cybersecurity, Data Security, Featured, Global Security News, Governance, Risk & Compliance, Incident Response, Industry Spotlight, malware, Network Security, News, Salt Typhoon cyberattack, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches, Volt Typhoon
Critical Infrastructure Seeing Benefits of Government Program, CISA Says
CISA in two years has seen the number of critical infrastructure organizations signing up for its CPG services double, which has improved the overall security in most sectors, but more needs to be done to strengthen what has become a target adversarial state-sponsored threat groups. The post Critical Infrastructure Seeing Benefits of Government Program, CISA…
Cloud Security, Cybersecurity, Data Security, Featured, generative ai, Global Security News, Hacktivists, malware, Mobile Security, Network Security, News, Ransomware, Ransomware-as-a-Service (RaaS), Security Awareness, Security Boulevard (Original), Social - LinkedIn, Social - X, Sponsored Content, Spotlight, Threat Intelligence
FunkSec: A New Ransomware Group Buoyed by AI
A new ransomware group called FunkSec claimed 85 victims in December but its members appear to be lesser-skilled hackers using generative AI and inflated attack numbers to bolster their capabilities and reputation, according to Check Point researchers. The post FunkSec: A New Ransomware Group Buoyed by AI appeared first on Security Boulevard.
Botnet C&C, Global Security News, malware, Security Bloggers Network, Service Providers, Threat Intelligence
Botnet Threat Update July to December 2024
Overall botnet command control (C&C) activity decreased marginally by -4% between July and December last year. China dominated the Top 20 charts with increased botnet C&C activity across domain registrars and networks, ranking #1 globally for hosting botnet C&C servers. Download the latest report to learn more. The post Botnet Threat Update July to December…
Chinese cyber espionage, Cloud Security, Cybersecurity, Data Security, Endpoint, Exploits, Global Security News, ivanti, malware, Network Security, News, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, vulnerabilities
Chinese-linked Hackers May Be Exploiting Latest Ivanti Vulnerability
Software maker Ivanti, which for more than a year has been plagued by security flaws in its appliance, unveiled two new ones this week, with Mandiant researchers saying that one likely is being activity exploited by China-linked threat groups. The post Chinese-linked Hackers May Be Exploiting Latest Ivanti Vulnerability appeared first on Security Boulevard.
data breach, Data loss, Global Security News, Guest blog, malware, Ransomware
Space Bears ransomware: what you need to know
The Space Bears ransomware gang stands out from the crowd by presenting itself better than many legitimate companies, with corporate stock images and a professional-looking leak site. Read more in my article on the Tripwire State of Security blog.
Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), exploit, Exploits, Global Security News, ivanti, malware, Mandiant, SPAWN, UNC5221, UNC5337, vulnerabilities, zero days
New zero-day exploit targets Ivanti VPN product
A year after a series of vulnerabilities impacting a pair of Ivanti VPN products prompted an emergency directive from the Cybersecurity and Infrastructure Security Agency to federal agencies, the Utah-based software firm is again experiencing issues with one of its signature systems. The company on Wednesday disclosed two vulnerabilities — CVE-2025-0282 and CVE-2025-0283 — that…
Cloud Security, Cybersecurity, data breach, Data Privacy, Data Security, Endpoint, Featured, Global Security News, Green Bay Packers, Industry Spotlight, malware, Mobile Security, Network Security, News, Security Boulevard (Original), skimming malware, Social - Facebook, Social - LinkedIn, Social - X, Spotlight, stolen data, Threat Intelligence, Threats & Breaches, YouTube
Green Bay Packers Retail Site Hacked, Data of 8,500 Customers Exposed
The data of more than 8,500 customers were exposed during an attack on the Green Bay Packers online retail website in which the hackers were able to bypass security measure and install malicious code, steal customers’ names, addresses, and credit card information. The post Green Bay Packers Retail Site Hacked, Data of 8,500 Customers Exposed…
AI, Artificial Intelligence, CAPTCHA, Global Security News, Krispy Kreme, malware, Podcast, ramsomware, Ransomware, Smashing Security
Smashing Security podcast #398: Fake CAPTCHAs, Harmageddon, and Krispy Kreme
This week, we delve into the dark world of fake CAPTCHAs designed to hijack your computer. Plus, the AI safety clock is ticking down – is doomsday closer than we think? And to top it off, we uncover the sticky situation of Krispy Kreme facing a ransomware attack. All this and more is discussed in…
CISA Emergency Directive, Cloud Security, Cybersecurity, Data Security, Featured, Global Security News, Industry Spotlight, malware, Mobile Security, Network Security, News, Preventing Misconfigurations, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threats & Breaches
CISA Mandates Federal Agencies Secure Their Cloud Environments
CISA is requiring all federal agencies to adopt stronger measures to improve their SaaS configurations and protect their complex cloud environments against growing threats from hackers, who are increasingly targeting third parties like cloud providers. The post CISA Mandates Federal Agencies Secure Their Cloud Environments appeared first on Security Boulevard.
Blog, data protection, Data Security, Global Security News, malware, Security Bloggers Network
5 Modern Computer Safety Tips You Should Know About
Protecting your computer in the hyper-connected world of today goes beyond merely preventing bothersome viruses. Smarter, quicker, and far more invasive than ever before are modern dangers. Cybercriminals no longer depend on simple strategies; they leverage flaws, fool unsuspecting consumers, […] The post 5 Modern Computer Safety Tips You Should Know About appeared first on…
APT41, Asia Pacific, backdoor, china, Cybercrime, Geopolitics, Global Security News, Government, malware, nation-state hackers, php, QiAnXin, Threats, Winnti
PHP backdoor looks to be work of Chinese-linked APT group
Cybersecurity researchers at a China-based cybersecurity company have uncovered an advanced PHP backdoor that suggests a new asset in the arsenal of Chinese-linked Advanced Persistent Threat group Winnti. Researchers at QiAnXin’s XLab discovered the backdoor, which they titled Glutton, targeting China, the United States, Cambodia, Pakistan, and South Africa. After initially discovering the malware in…
Cloud Security, Cybersecurity, data breach, Data Privacy, Data Security, deloitte, Featured, Global Security News, Identity & Access, Incident Response, Industry Spotlight, malware, Network Security, News, Ransomware, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, State Government Breach, Threat Intelligence, Threats & Breaches
Rhode Island Benefits and Services Systems Hit by Ransomware
Hackers likely stole personal information such names, addresses, and SSNs in a ransomware attack on Rhode Island’s human services systems and are threatening to release the data as state and federal officials and Deloitte scrambling to mitigate the data breach. The post Rhode Island Benefits and Services Systems Hit by Ransomware appeared first on Security…
Amnesty, Amnesty International, Cellebrite, Cybersecurity, Global IT News, Global Security News, hacking, infosec, malware, Security, Serbia, Spyware
Serbian police used Cellebrite to unlock, then plant spyware, on a journalist’s phone
Amnesty said it found NoviSpy, an Android spyware linked to Serbian intelligence, on the phones of several members of Serbian civil society following police stops. © 2024 TechCrunch. All rights reserved. For personal use only.
Cloud Security, Cybersecurity, cybersecurity professionals, Data Privacy, Data Security, Datadog, Featured, Global Security News, Identity & Access, Information stealing malware, malware, Network Security, News, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Social Engineering, Spotlight, Threat Intelligence, vulnerabilities, wordpress
Hacker Uses Info-Stealer Against Security Pros, Other Bad Actors
An unknown hacker called MUT-1244 used information-stealing malware to not only grab sensitive data from cybersecurity professionals but also to steal WordPress credentials from other bad actors who had bought them on the dark web. The post Hacker Uses Info-Stealer Against Security Pros, Other Bad Actors appeared first on Security Boulevard.
data breach, Data loss, Global Security News, Guest blog, Krispy Kreme, malware, North America, Ransomware
Doughnut orders disrupted! Krispy Kreme suffers hack attack
Krispy Kreme, the dispenser of delectable doughnuts, says that it suffered a cyber attack at the end of last month which saw its IT systems compromised and has disrupted online orders in parts of the United States. Read more in my article on the Hot for Security blog.
Global Security News, Guest blog, malware, North America, Ransomware, Russia
Ransomware-hit vodka maker Stoli files for bankruptcy in the United States
Stoli Group USA, the US subsidiary of vodka maker Stoli, has filed for bankruptcy – and a ransomware attack is at least partly to blame. The American branch of Stoli, which imports and distributes Stoli brands in the United States, as well as the Kentucky Owl bourbon brand it purchased in 2017, was hit by…
Fake anti-virus, Global Security News, Google, Google ads, Guest blog, malvertising, malware, phishing, Ransomware, Scam, seo, technical support scam
Tech support scams leverage Google ads again and again, fleecing unsuspecting internet users
It’s not a new technique, but that doesn’t mean that cybercriminals cannot make rich rewards from SEO poisoning. Read more in my article on the Tripwire State of Security blog.
@chenlun, A Little Sunshine, and Mobile Anti-Abuse Working Group, Anti-Phishing Working Group, Coalition Against Unsolicited Commercial Email, Global Security News, ICANN, Interisle Consulting, Internet Corporation for Assigned Names and Numbers, John Levine, Latest Warnings, malware, Messaging, new gTLDs, North America, phishing, spam, The Coming Storm, U.S. Postal Service
Why Phishers Love New TLDs Like .shop, .top and .xyz
Phishing attacks increased nearly 40 percent in the year ending August 2024, with much of that growth concentrated at a small number of new generic top-level domains (gTLDs) — such as .shop, .top, .xyz — that attract scammers with rock-bottom prices and no meaningful registration requirements, new research finds. Meanwhile, the nonprofit entity that oversees…
data breach, Data loss, Global Security News, Guest blog, hospital, INC Ransom, malware, Ransomware
No guarantees of payday for ransomware gang that claims to have hacked children’s hospital
What is the point of INC Ransom’s attack on Alder Hey? They are not likely to be paid, and the attack on a children’s hospital only increases the chances that they will one day find their collars felt by law enforcement. Read more in my article on the Hot for Security blog.
Data loss, Global Security News, Guest blog, hospital, malware, NHS, Ransomware
UK hospital, hit by cyberattack, resorts to paper and postpones procedures
A British hospital is grappling with a major cyberattack that has crippled its IT systems and disrupted patient care. Read more in my article on the Hot for Security blog.
Conti, Exploits, Global Security News, Guest blog, malware, Ransomware, vulnerability
Mimic ransomware: what you need to know
What makes Mimic particularly unusual is that it exploits the API of a legitimate Windows file search tool (“Everything” by Voidtools) to quickly locate files for encryption. Find out more about the threat in my article on the Tripwire State of Security blog.