Blog

cyber threat attacks customer data theft US Health Insurance Industry 

Increasing risk of customer data theft on US Health Insurance industry 

The health insurance industry in the US is now facing an increased risk of cyber threat attacks due to the rise of sophisticated exploitative techniques being used and developed by cybercriminals and fraudsters. This is due to the expansion of industries towards online digitization in conducting transactions, billing, and client records.  Health insurers or related third...
Continue Reading
golang malware PSYA ransomware backdoor chachi image 1

GoLang written malware becomes a growing trend

A recent cybersecurity report says there’s been a 2,000% increase in the number of new malware written using the GoLang programming language since 2017. Both state-sponsored and non-state threat actor groups have written the GoLang-based malware and are actively adding this to their toolset. The PSYA ransomware is one of the newest malware found and currently...
Continue Reading
privateers hacking group ransomware tier syndicate

A new ransomware syndicate tier, the Privateers

A new type of ransomware syndicate has been classified by a cybersecurity firm named Privateers. These ransomware syndicates compose of threat actors that are financially motivated and government-backed cybercriminals prosecuted and hunted by law enforcement; however, they do not have the same status as state-sponsored APT hacking groups.   According to the report, the Privateers are...
Continue Reading
whitehat hackers breach network north america utility ICS SCADA

Whitehat hackers successfully breached the network of North American utility

The number of cyberattacks against ICS SCADA (Industrial Control Systems Supervisory Control and Data Acquisition) system products used by industrial organizations worldwide has rapidly increased. Hence, many cybersecurity firms and whitehat hackers highlighted the risks of attack that target OT (Operational Technology) network used in utilities.   Among the most significant cyber-attack against industrial organizations are...
Continue Reading
fbi complaint reports online scam fraud investment

Online scams and investment fraud reached a record level of complaint reports, says the FBI

According to the Federal Bureau of Investigation or FBI, complaints concerning online scams and investment fraud now reached a record-breaking level.   The FBI’s Internet Crime Complaint Center or IC3 channel have received more than six million complaints filed related to cybercrime last May 15, 2021. The first one million complaints reports took 7 seven years...
Continue Reading
cryptojacking malware cryptocurrency mining malware botnet

Cryptocurrency mining attacks and crypto-jacking on businesses on the rise again

A surge of cyberattacks on cryptocurrency businesses has been seen recently by the cybersecurity community. We all know that cryptocurrencies are fully decentralized. They have no authority that monitors crypto activities and transactions, which provides a free hand to threat actors to conduct attacks at their will. This fact, in addition to the soaring value of...
Continue Reading
Accellion data breach Clop ransomware malware File Transfer Appliance

The average ransomware payment increases due to the Accellion data breach

Clop ransomware group attacked Accellion, one of the companies that offer File Transfer Appliance. Typically, transferring files happens via email. However, emails have limitations, particularly when it comes to large attachments and sensitive data. Some companies are now using File Transfer Appliance (FTA) installed on a private cloud, on-premises, or hosted to securely manage and store...
Continue Reading
IcedID malware contact forms financial trojan social engineering

Hackers abusing enterprise contact forms to deliver financial malware

Microsoft recently warned organizations of a new unique attack campaign that abuses contact forms found on websites to deliver financial malware to businesses through email that poses as email of legal threats. This new campaign is another trick of adversaries to abuse business infrastructures to evade and bypass installed security protection systems. The emails aim to...
Continue Reading
apkpure client tampered triada malware trojan android mobile device

APKPure client app tampered by Hackers to distribute malware and trojan

One of the largest app stores outside of the Google Play Store, APKPure, was reported to have been infected with malware recently. The malware can allow hackers and threat actors to plant and distribute trojans into Android phones and other devices.  This is another supply chain attack with similarities to the recent attack on Gigaset, a...
Continue Reading
php git server compromised supply chain attack

PHP’s git server gets compromised by another Supply Chain Attack

Another instance of a supply chain attack has been reported; this time, it’s on the Git repository of PHP and their data storage. The hacked repository and the codebase contents were tampered with. The incident’s investigation is ongoing and more details will be revealed in the upcoming days. On the initial reports, the malicious activity had...
Continue Reading
facebook hacked leaked compromised data social media vulnerability exploit

Facebook Hacked… Again? Maybe we are not that surprised

Hacked and leaked, ever since the Cambridge-Analytica issue erupted, we have seen never-ending posts in the different dark web and criminal forums about data peddled for a price about Facebook. The social media giant became a target for social engineer actors from other countries and various blackhat hacking skills. This 2020, iZOOlogic downloaded leaked Facebook data...
Continue Reading
verkada surveillance camera hacked breach Arson Cats APT69420

Customers not affected after Verkada surveillance camera breach

This week’s trending topic in the cybersecurity community is the successful intrusion of the collective hacktivist APT69420 or Arson Cats that proves no one is secured. Though it is a small group of hackers, they could penetrate Verkada Security Company, a known recipient of Silicon Valley funding for its technology advancement when it comes to a...
Continue Reading
ethical hackers researchers hacked indian government critical vulnerabilities flaws

Researcher team hacked Indian government websites by using exposed git and env files

Ethical hackers and cybersecurity researchers disclosed more information on how multiple websites of the Indian government got hacked and breached. Just last month, researchers from the Sakura Samurai hacking group had discovered and disclosed their breach and findings via a large number of critical vulnerabilities on the cyber systems of the Indian government. The full findings...
Continue Reading
data breach world's top 100 brands business reputation

World’s top 100 brands values at 223 billion dollars are at stake if a data breach occurs

A company’s sensitive information is stored on either local machine, cloud servers, and enterprise databases. A data breach can be defined as viewing an individual’s personal medical file without authorization or sharing a sensitive document without permission. When a company accidentally exposes data, it might be due to unintentional disclosure of data inside the job of...
Continue Reading
microsoft instagram vulnerability bug bounty reward program ethical hacking

$50,000 reward for bug that could have allowed access to your Microsoft account

A 50,000 USD reward program recently made a noise because it was awarded to an independent researcher who submitted a vulnerability found on Microsoft and Instagram accounts to bypass the mentioned platform’s account recovery program service. Despite its high-level security to avoid such intrusion on their user’s account, the researcher was able to crack the fortress...
Continue Reading
cybercrime work from home remote work fraud prevention vulnerability exploit

Remote work leveraged for cybercrime by adversaries in targeted attacks

Cybercrime (CC) has never been projected as high as last fiscal year compared to the previous years. Historical data confirms the enormous leap of numbers on reported cases in various types of attack known by the cybersecurity experts. Incidents of repurposed tactics, newer and more lethal approach of adversaries were recorded complimenting the uprising cases amidst...
Continue Reading
SII Bharat Biotech Stone Panda APT10 Chinese State Hackers

SII and Bharat Biotech, Covid19 vaccine makers targeted by Chinese hackers

The Chinese hacking group Stone Panda or APT10 has been identified as responsible for the attacks on Indian vaccine makers, as confirmed by a cybersecurity firm. The hacking group had identified flaws and vulnerabilities in the IT infrastructure and software supply chain of the world’s largest vaccine maker companies, Serum Institute of India or SII and...
Continue Reading
mobile apps location tracking personal privacy compromised data

Mobile apps location tracking is invading personal data privacy

The hot debatable issue in the cyber world today is about the location tracking on mobile apps discussing the pros and cons of people’s privacy. In the recent news site that is prominent in India, it is said that aggregators have been sued together with telecom providers that sold collected data to third-party companies gathered from...
Continue Reading
clubhouse social media app chinese government compromised data agora inc

Clubhouse social media app might be leaking data to Chinese Government

Launched amidst the pandemic in March 2020 with only 1500 users and a net worth of USD 100 million, the Clubhouse app soared up the digital market with a current count of estimated 10 million users and worth USD 1 billion in just 11 months aside from other found funding. The app became famous as it...
Continue Reading
phone scams communications frauds money loss fraud prevention vishing SMSing

Phone scams stolen money from almost 40 percent of consumers in 2020

Almost 40% of telecommunication consumers have lost money to phone scams and frauds during the previous year based on a recent research report conducted by a Hiya, a telecommunication platform. It is now more than ever that consumers and organizations rely on using voice calls to process transactions with voice network traffic rising 184% in 2020...
Continue Reading
1 2 3 30