Category

Banking and Finance

Banking and Finance page 1

Kasablanca Bangladesh Bank Government LodaRAT malware trojan

Kasablanca targets financial and government organizations in Bangladesh

Last year of October 2020, the threat actor Kasablanca attacked banks and carrier-grade voice-over-IP software vendors intending to distribute malware droppers. Recently, the e-Government Computer Incident Response Team (e-Gov CIRT) warned the Bangladesh local financial and government organizations that there is an ongoing attack from Kasablanca wherein they have identified a total of 18 phishing...
Continue Reading
national finance center hacked solarwinds vulnerability NFC chinese hackers

National Finance Center hacked via Solarwinds software flaw

Chinese hackers are being suspected of exploiting a vulnerability of software made by SolarWinds that enabled the threat actors to break into US government computers last year, as stated by five people familiar with the cyberattacks. This marks another angle on the cybersecurity breach trail that United States Lawmakers labelled ‘national security emergency’. Two people...
Continue Reading
hezbollah hacking group Lebanese Cedar Cyberespionage telecom hosting ISP

Hezbollah hacking group targeted Telecoms, Hosting, ISPs Worldwide

A newly detected persistent threat attack group with probable ties to Hezbollah has been using a ‘retooled’ version of its malware with a new version of remote access trojan or RAT to penetrate organisations’ cyber defences worldwide aiming to exfiltrate valuable data. On a recent report published by a security research team last Thursday, the...
Continue Reading
sonicwall firewall hacked VPN zero-day vulnerability

SonicWall, firewall manufacturer hacked using zero-day vulnerability on it’s VPN product

SonicWall, a security hardware manufacturer, has recently issued an urgent security notice regarding threat actors possibly exploiting a zero-day vulnerability on some of their VPN products to conduct cyber-attack exploits to their network and infrastructure systems. Catering to SME and large enterprise organizations and companies, SonicWall is a well-known hardware firewall system device manufacturer which...
Continue Reading
Genesis Market Place Back Blackhats dark web

Genesis Market Place is back – Blackhats who do not run away

Blackhats who do not run away will continuously cause havoc and insecure private data breach to individuals and companies. Though it is rare for adversaries to honour their customers, yesterday the doubt of security researchers and adversaries were proven wrong. Both onion and Clearnet version of the Genesis Market website is up and running. Yet,...
Continue Reading
Fraudulent phishing websites Internet anti phishing solutions antiphishing

Fraudulent phishing websites are taking over the Internet

With the pandemic crisis that we are facing today, the Internet has become a necessity. The government’s lockdown and social distancing force us to relay our everyday activities such as shopping, financial transaction, and communication to online websites. The increased usage of the Internet leads to more cyber-attacks that target individuals and companies via fraudulent...
Continue Reading
Cicada group Zerologon Vulnerability Japanese Organizations apt10 stone panda

Cicada Group exploits Zerologon on targeted Japanese Organizations

The researchers’ recent discovery that exposes the Microsoft platform’s Zerologon vulnerability is making noise within the Cybersecurity community. Tagged as CVE-2020-1442, it is the vulnerability that adversaries can exploit to gain access to the Domain Controller of the network through compromised elevated privileged accounts. In this scenario, adversaries can access the network by ciphering the...
Continue Reading
microsoft office 365 phishing email campaign

A sophisticated phishing email targeting Office 365 users is in the wild

Microsoft has warned the public about a new phishing campaign targeting Office 365 users via their Twitter account on Tuesday, November 17th.       This newly discovered phishing email was seemingly a sophisticated one, as it was designed to bypass and dodge secure email gateways as per the Microsoft analysis. The Threat actors behind...
Continue Reading
ransomware attack multi cloud infrastructure malware trojan

Ransomware advances on Multi-Cloud Infrastructure

The first documentation of a ransomware attack was in the year 1989. A Harvard-educated biologist developed the malware where a compromised diskette named “AIDS Information – Introductory Diskettes” were dispersed to the attendees of an internal conference and spread to more than 90 countries. These give a concept to cybercriminals that they can monetize from...
Continue Reading
ghimob trojan malware spyware android mobile device

Ghimob spy has been detected on your Android device

A Brazilian based threat group named Guildma has successfully infected 153 financial applications from different banks, exchanges, and cryptocurrencies. The threat actor developed a remote access Trojan malware called Ghimob to attack Android users, obtain access to the victim’s smartphone and financial information. They are currently targeting users from Angola, Brazil, Germany, Mozambique, Paraguay, Peru,...
Continue Reading
1 2 3 6