Cyber Warfare, USA hit North Korea state sponsored hackers
OFAC sactions Lazarus, Bluenoroff and Andariel. They’re linked to Pyongyang’s RGB and launched cyber attacks to support illicit weapon and missile programs, and to spy and sabotate enemies.
Cybercrime updated JSWorm ransomware to version 4
Yoroi-Cybaze ZLab cyber security experts: The malware uses a set of extensions to exclude during the cipher step. It encrypts all files whose extension is not present in the list.
WordPress, the ongoing malvertising campaign is evolving
WordFence cyber security experts: Cybercrime add backdoors and target new plugins to inject malicious JavaScript into sites. It redirects to harmful content, as malware droppers and fraud sites.
Hactivism as fashion has ended, it’s returning to origins
Insikt Group cyber security experts: The number of large-scale, international hacking operations most commonly associated with hacktivism, fall dramatically after 2016. Here’s why.
North Korea stole US$ 2bn with cyber attacks to fund It’s weapons program
It has been unveiled by a leaked United Nations report. Pyongyang state sponsored hackers as Lazarus preferred cryptocurrency to avoid international controls on money flux.
Cybercrime and other APTs are copying North Korea cyber attacks
F-Secure cyber security experts: The target is the banking/finance sector. The motivations are three: data theft, data integrity and sabotage, and direct financial theft.
WordPress sites are suffering an ongoing malvertising campaign
WordFence cyber security experts: Cybercrime attacks, exploiting plugin vulnerabilities, cause victims’ sites to display unwanted popup ads and redirect visitors to malicious destinations.
Commercial ships and maritime industry hit by waves of phishing cyber attacks
U.S. Cost Guard issues a Safety Alert with recommended cyber security best practices. It’s seem the ICT extension of the Iranian aggressive campaign in the Hormuz Strait.
Cybercrime spreads Astaroth Trojan with a fileless malware campaign
Microsoft Defender ATP cyber security experts: Telemetry showed a sudden increase in the use of WMIC tool to run a script. This led researchers discovery the cyber attack.
WordPress, new flaw in plugin: this time is Convert Plus
The cyber security experts of WordFence and the developers, however, fixed it before publishing the news. Users have to upgrade to 3.4.3 version ASAP to avoid cybercrime attacks.