lake city city hall triple threat ransomware malware antimalware

Triple Threat’ ransomware attacks Lake City’s network systems

A ransomware program known as “Triple Threat” is now attacking the network systems of the City Hall in Lake City forcing emergency email, credit card, and land-line telephone to shut down. This malware trojan exploits three different methods of attack making the City’s network systems to be currently out of order. As a result of...
Continue Reading
gandcrab ransomware mysql malware antimalware

New ransomware campaign targets windows MySQL servers

Security researchers have discovered new GandCrab Ransomware campaign targeting internet-facing Windows MySQL servers. The new campaign was spotted by security researchers in a controlled laboratory environment.   “A honeypot we run in a lab environment, listening on the default port used for SQL servers (3306/tcp), received an intriguing attack this week from a machine based...
Continue Reading
atlassian gandcrab ransomware malware antimalware antiransomware

Hackers exploit atlassian confluence servers to spread malware

A group of attackers are actively exploiting a critical vulnerability in Atlassian’s Confluence collaboration software to infect servers with the GandCrab ransomware. Confluence is a Java-based web application that provides a shared wiki-type workspace for enterprise employees and is used by tens of thousands of companies worldwide.   The vulnerability, tracked as CVE-2019-3396, is in...
Continue Reading

Data Wiping Malware hits Bahrain’s national oil company

On December 29, 2019, the National Cybersecurity Authority of Saudi Arabia published a new cyber-attack incident describing software that was deployed to target Bapco, the national oil company of Bahrain specifically. The malware, dubbed as “Dustman”, is a data-wiper, designed to access a computer, a database, or a server/mainframe, delete its data, and replace the...
Continue Reading

Sierra Leone Commercial Bank suffers a cyberattack – web defacement.

We recently reported on Iranian hackers attacks a US Government website, shortly after the killing of Qassem Suleimani in Baghdad, Iraq, in supposed retaliation. More information can be found here. The hacker, H4ck3D, behind this US government website attack also has claimed to deface the Sierra Leone Commercial Bank, one the main financial institutions in...
Continue Reading
joker stash dark web

Joker Stash – One of the Biggest Card Dumps

We routinely monitor the dark web for threats and suspicious activities. Joker Stash is a Dark Web store that sells compromised bank credit cards.   On the 28th (US Time) of October the Joker Stash dark web store announced its new release of cards for sale through their news bulletin.   Something more suspicious than...
Continue Reading
Phishing Attack

Unorthodox Phishing Attack Aimed at Financial Employees in US and UK

A recently discovered phishing campaign has been targeting financial sector employees in the U.S. and UK with remote access trojan payloads stored on a Google Cloud Storage domain.   Researchers that the campaign seeks to infect PCs and other endpoints by tricking victims into clicking on malicious links that lead to .zip or .gz archive...
Continue Reading
NoKor Hacking Group – Serious Threat to the Banking Sector

NoKor Hacking Group – Serious Threat to the Banking Sector

A North Korean-connected hacking group progressively is efforting banking-inspired assaults, proposing that digital heists are presently one of its primary exercises in the internet, as per another cyber security report.   The worldwide digital firm said in Thursday that the Lazarus Group is a threat to the banking industry area after it completed a progression...
Continue Reading
Radisson Hotel Group Hacked

Radisson Hotel Group Hacked!

The Radisson Hotel Group is informing individuals from its Loyalty Scheme about an information rupture that may have brought about the unknowingly illegal presentation of their sensitive personal information. The illegally exposed data incorporates names, physical locations, email addresses, telephone numbers, Radisson Reward numbers and frequent flyer numbers and information of the individuals/members. The malicious...
Continue Reading
SMiShing Campaign

SMiShing Campaign Targeting Android Users using Fake Banking App

Another SMiShing effort has been seen in the wild, focusing on Spanish-talking clients and utilizing a phony Android Banking application. The phony application, called Movil Secure has just piled on several downloads in a time of only six days.   As indicated by security firm specialists, who found the new battle, the phony Movil Security...
Continue Reading
1 2 3