Threat actors were seen by researchers posing as a bank customer support service that call or text targets and instructing them to install a particular app that contains an Android banking malware remote access trojan (RAT) dubbed “BRATA malware.” Researchers first spotted this campaign in Italy, where threat actors disseminate SMS spams to steal e-banking...Continue Reading
Finland’s National Cyber Security Centre (NCSC) recently released a threat advisory regarding a Flubot campaign that heavily targets Android users inside their country. NCSC Finland said that the Flubot banking malware is spread through SMS sent from compromised devices. The new spam campaign utilises a voicemail theme that asks the targets to access a link...Continue Reading
A vulnerability in the server of Punjab National Bank (PNB) reportedly exposed the financial and personal data of approximately 180 million clients in seven months. Researchers claimed that the flaw inside PNB’s server could provide full access to the said bank’s overall digital banking system, which may also give malicious threats to administrative control. Punjab...Continue Reading
Experts have recently studied one of the most commonly exploited ways on how threat actors withdraw money from stolen bank accounts of their victims and empty their funds. The study involves the peer-to-peer payment solutions app called “Zelle,” which several banks and financial institutions use to send cash to others fast, and how it is...Continue Reading
Experts are continuously analysing financial fraud attacks within the online landscape. From a recent study about malware, they have found BrazKing, an Android banking trojan, to have enhanced its capabilities to target mobile banking app users from Brazil and run by local cybercriminals. BrazKing’s developers may have worked on upgrading the malware to be more...Continue Reading
Our security experts from iZOOlogic have recently noticed multiple spam sites registered through Alibaba Registrar/Webhost, Cloudflare Webhost, and .CN or .TOP registries created by threat actors to conduct fraud by targeting our clients and using their brand names and logos. Threat actors leverage the spam sites by offering prizes such as huge cash or gift...Continue Reading
Recently, a barrage of attacks from the Magecart threat actors revealed multiple critical vulnerabilities in e-commerce sites and applications wherein the website’s defenses are discovered to be incompetent against Magecart attacks. Experts conducted research and found that about 30,000 vulnerabilities were found within existing websites being prone to Magecart attacks. Also, another 10,000 active sites...Continue Reading
Researchers from iZOOlogic recently discovered that the clearnet website of All World Cards (https://allworld(dot)cards/), an underground market for compromised bank cards, had been offline and was inaccessible for its clients until further notice. Despite the website’s outage, All World Cards has its Tor website to remain accessible for clients to reach out to and...Continue Reading
Recently, a cybersecurity firm reported that a malicious threat group called TeamTNT prioritises targeting poorly configured Docker systems existing on the internet. The researchers also observed that a current campaign by TeamTNT is still ongoing against the Docker REST APIs. Docker is an open-source containerisation platform that enables developers to package applications into containers. It...Continue Reading
A workforce management solutions and human resource management services giant, Ultimate Kronos Group (UKG), reported a massive ransomware attack that transpired last December 11. The attack impacted the HR solutions firm’s Kronos Private Cloud applications, including Banking Scheduling Solutions, Healthcare Extensions, Workforce Central, and UKG TeleStaff. As the HR solutions firm works hard to resolve the...Continue Reading
This website stores cookies on your computer. These cookies are used to collect information about how you interact with our website and allow us to remember you. We use this information in order to improve and customize your browsing experience and for analytics and metrics about our visitors both on this website and other media.
If you decline, your information won’t be tracked when you visit this website. A single cookie will be used in your browser to remember your preference not to be tracked.