North America

North America page 1

CName Misconfiguration Subdomain Hijack Abuse DNS

CName Misconfiguration left thousands of companies open to attack

A recent web security scanning by a cybersecurity group confirmed that over 400,000 subdomains that have been abandoned are susceptible to malicious takeover invasion of many threat actors. According to the report, these abandoned subdomains result from misconfigured CName (canonical name) in the DNS layout of the hosting provider. The CName configuration is widely used...
Continue Reading
Zerologon Vulnerability APT10 hackers hacking group

APT10 targeting businesses on a global scale using Zerologon Vulnerability

A widespread and highly persistent cyber-attack has been discovered by security researchers. The series of assaults conducted by APT10 hacking group were found to have been leveraging the Zerologon vulnerability of Windows, targeting mostly Japanese firms but has connections to attacks happening in more than 17 territories around the world. No particular industry was targeted,...
Continue Reading
pharma companies mobile phishing campaign spear-phishing antiphishing

Pharma companies targeted by Mobile Phishing campaigns

A recent Threat Report and Assessment from leading security researchers revealed a growing threat. An in-depth analysis shows hackers prefer pharmaceutical companies over other industries as the target of choice for spear-phishing campaigns. Over the last decade, threat actors have been known to focus their efforts on large companies, both private and government-owned, because they’ve...
Continue Reading
dark side of online shopping exploits threats risks vulnerabilities

The dark side of online shopping: Vulnerabilities, exploits, threats, and risks

Online shopping is part of the new normal. With the pandemic catastrophe that we are facing, physical stores are moving their products online. Great deals and offers are widely marketed online via various shopping websites. Black Friday, Cyber Monday, Cyber Week, Free shipping day, and Super Saturday are just some of the companies’ discounts during...
Continue Reading
magento magecart attack malicious script credit card skimmer

Hackers attacked E-Shop Retailers operating outmoded Magento software

Security researchers have recently uncovered a sudden surge in cybercriminal activities involving several online businesses, more than 2800+, to be exact.   These e-commerce merchants have one thing in common – they are all running an outdated version of the Magento platform.   Since September, the attacks have been going on. That’s why security researchers...
Continue Reading
Network Access Academic Firms for sale Dark Web

Network access of 7000+ Academic Firms for sale on the Dark Web

A group of hackers just posted a “For Sale” notice over several Russian Dark Web forums. The sale involved access to the networks of over 7000+ organizations, the majority of which are educational institutions. From local government agencies, entertainment websites, bars, and other business websites, you name it, and the list goes on. The one...
Continue Reading
nitro software hacked compromised data breach dark web market

Nitro Software Hacked! Client and user data compromised

Nitro Software Inc., an Australian tech software company that provides document productivity and cloud services to its users and Fortune 500 clients, just got hacked. Known worldwide as the alternative provider of document productivity products – other than Adobe Acrobat, Nitro became one of the leaders in the PDF industry and digital transformation. It has...
Continue Reading
TrickBot Malware BazarBackDoor Payload antimalware

TrickBot Malware’s powerful new weapon – BazarBackDoor

Just recently, the number of hacking attacks on remote connections skyrocketed. The apparent target of those attacks is the remote employees to take over their corporate machines. The coordinated attacks on RDP connections were caused by an augmented version of the ill-famed Trojan, TrickBot. It would appear that these TrickBot developers have found a new...
Continue Reading
silent librarian apt school universities malware hackers iran iranian

Silent Librarian targets Schools and Universities – must upscale their vigilance

September means schools and universities are again open, and business is soaring high for the well-known threat actors – Silent Librarian. Also, popularly known as Cobalt Dickens or TA407, they are a notorious group of adversaries in circulation targeting educational institutions to steal research and propriety data. When cybercriminals target schools and universities, there is...
Continue Reading
coronavirus relief phishing campaign email

Cybercriminals used coronavirus relief for Phishing Campaign

A genuine and rather heartless phishing campaign was just discovered by security researchers this week. These cybercriminals saw an opportunity and targeted the Economic Stimulus checks from the Internal Revenue Services (IRS). These are the financial assistance payments for Americans during the Covid-19 pandemic. Taxpaying Americans were paid a one-time $1,200 check. At the same...
Continue Reading
1 2 3 6