Cybercrime, Greece victim of a phishing campaign with keylogger
Bleeping Computer cybersecurity experts: The decoy is an alleged tax refund. Through fake sites, the data entered by the user is stolen in real time.
Cybercrime, Industrial Spy now has its own ransomware
Bleeping Computer cybersecurity experts: The data extortion marketplace partnered with adware loaders and fake crack sites to distribute the malware
Cybercrime, RansomHouse is a new group just appeared on darkweb
Bleeping Computer cybersecurity experts: Threat Actors, instead using ransomware, seems focused on breaching networks through alleged vulnerabilities to steal data.
Cybercrime, Eternity Project is a new malware-as-a-service (MaaS) just launched
Bleeping Computer cybersecurity experts: The toolkit is modular and can include an info-stealer, a coin miner, a clipper, a ransomware, a worm spreader, and soon, also a DDoS bot.
Cybercrime, companies worldwide targeted via SonicWall critical bugs
BleepingComputer cybersecurity experts: Threat actors exploit the CVE-2021-20038 to execute code as the 'nobody' user in compromised appliances.
Cybercrime, the Renewable Energy sector targeted by an APT
The cybersecurity researcher Will Bushido discovered a cyber espionage campaign aimed to steal credential from at least 15 companies worldwide.
Cybercrime, a fake employee termination email on Christmas spreads Dridex
The cybersecurity researcher TheAnalyst discovered a mail pretending to fire the victim on December 24th. The xls attachments activates the malware infection chain.
Cybercrime, also Linux has its Cobalt Strike Beacon version
Intezer cybersecurity experts spotted the new malware in August and dubbed it Vermilion Strike. It has been actively used in attacks targeting organizations.
Cybercrime, Ragnar Locker gang increases pressure on ransomware victims
The group threatened to leak the stolen data if the targeted organizations contact law enforcements or recovery experts.
Cybercrime, DoppelPaymer is back with a new name: Grief
Bleeping Computer: The two Ransomware-as-a-Service operations exploit the same encrypted file format and the distribution channel: the Dridex botnet.