Atekro

Watch Out: Attackers Are Hiding Malware in 'Browser Updates' -

Watch Out: Attackers Are Hiding Malware in 'Browser Updates' Updating your browser when prompted is a good practice, just make sure the notification comes from the vendor themselves.

Skype message threads hijacked to spread DarkGate malware -

Skype message threads hijacked to spread DarkGate malware Researchers have noticed a surge in campaigns deploying DarkGate malware via messaging platforms Skype and Microsoft Teams.

How to Identify and Avoid Online Trading Scams -

How to Identify and Avoid Online Trading Scams Follow us on Twitter - Facebook @ /Hackrea

Data Thieves Test-Drive Unique Certificate Abuse Tactic -

Data Thieves Test-Drive Unique Certificate Abuse Tactic An SEO poisoning campaign is spreading the RecordBreaker/Raccoon Stealer and LummaC2 infostealers by attempting to confound software certificate checks.

$2.7 billion lost to social media scams since 2021 -

$2.7 billion lost to social media scams since 2021 Scams originating on social media are responsible for $2.7 billion in losses since 2021, more than any other contact method, according to new data shared by the FTC.

Unkillable? Qakbot Infections Fly On Even After Its High-Profile Raid -

Unkillable? Qakbot Infections Fly On Even After Its High-Profile Raid A literal seven-nation (cyber) army wasn't enough to hold back the famous initial access broker (IAB) for long — it's been chugging along, spreading ransomware, despite a massive takedown in August.

US executives targeted in EvilProxy recruitment phishing campaign -

US executives targeted in EvilProxy recruitment phishing campaign C-level staff working across a range of industries were lured to phishing sites via redirect links purportedly from the popular Indeed job-search site.

Silent Skimmer: A Year-Long Web Skimming Campaign Targeting Online Payment Businesses -

Silent Skimmer: A Year-Long Web Skimming Campaign Targeting Online Payment Businesses Silent Skimmer - A year-long web skimming campaign targets businesses in Asia, North America, and Latin America, stealing sensitive payment data.

FBI Warns of Rising Trend of Dual Ransomware Attacks Targeting U.S. Companies -

FBI Warns of Rising Trend of Dual Ransomware Attacks Targeting U.S. Companies FBI Alert: Dual ransomware attacks are surging, targeting U.S. businesses with multiple variants.

Snapchat Safety for Parents: How to Safeguard Your Child -

Snapchat Safety for Parents: How to Safeguard Your Child Twitter - Facebook @ /Hackread

Clorox Cyber Attack to Cause Product Shortages, Impact First Quarter Results - CPO Magazine -

Clorox Cyber Attack to Cause Product Shortages, Impact First Quarter Results - CPO Magazine A cyber attack disclosed by Clorox in mid-August is now expected to negatively impact first quarter results for 2024 due to "widescale disruption" that the company is still struggling to recover from. A recent SEC filing indicates that product shortages through this period should also be expected.

Amidst MGM, Caesar's Incidents, Attackers Focus on Luxury Hotels -

Amidst MGM, Caesar's Incidents, Attackers Focus on Luxury Hotels A fast-growing cyber campaign solely takes aim at luxury hotel and resort chains, using security-disruptive tactics to spread info-stealing malware.

NFL, CISA Look to Intercept Cyber Threats to Super Bowl LVIII -

NFL, CISA Look to Intercept Cyber Threats to Super Bowl LVIII The league is working with more than 100 partners to workshop responses to a host of hypothetical cyberattacks on the upcoming Big Game in Las Vegas.

Feds issue Sn**ch ransomware warning as gang claims latest victim -

404: Not Found Copyright © 2023 CyberRisk Alliance, LLC All Rights Reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorization.

Facebook Messenger Phishing Campaign Targets Millions of Business Accounts Locking Out Owners - CPO Magazine -

Facebook Messenger Phishing Campaign Targets Millions of Business Accounts Locking Out Owners - CPO Magazine Facebook Messenger phishing campaign targeted millions of business accounts using fake and hijacked personal accounts to trick business owners into installing an infostealer that harvests passwords and cookies before locking them out.

Payment Card-Skimming Campaign Now Targeting Websites in North America -

Payment Card-Skimming Campaign Now Targeting Websites in North America "Silent Skimmer" is a technically complex campaign that has successfully targeted online businesses in the Asia Pacific region for over a year.

Healthcare IT Service Provider IBM Data Breach Impacts Johnson & Johnson Customers - CPO Magazine -

Healthcare IT Service Provider IBM Data Breach Impacts Johnson & Johnson Customers - CPO Magazine Johnson & Johnson’s IT service provider IBM has notified over 1 million Janssen CarePath customers of a data breach that leaked personal and medical information.

Microsoft promises to act as Teams continues to get pummeled by phishing attacks -

Microsoft promises to act as Teams continues to get pummeled by phishing attacks Storm-0324 is the latest threat actor to target the popular communications platform.

Cyberattack causes MGM Resorts to shut down its systems -

Cyberattack causes MGM Resorts to shut down its systems Some cybersecurity pros call the attack on MGM potentially one of the most significant attacks on a gaming-hospitality company in U.S. history.

Hackers phish users of old AP Stylebook site for credit card info -

Hackers phish users of old AP Stylebook site for credit card info While only 224 users were affected, security pros raised eyebrows because the victims could have been prominent journalists and editors.

AI abuse grows beyond phishing to multistage cyberattacks -

AI abuse grows beyond phishing to multistage cyberattacks Data shows cybercriminals are adopting AI for more attacks attempting to abuse trust and deliver multistage payloads.

Data Breach at Apparel Giant Forever 21 Impacts Over 500,000 Individuals - CPO Magazine -

Data Breach at Apparel Giant Forever 21 Impacts Over 500,000 Individuals - CPO Magazine Forever 21 has confirmed a data breach that impacted over 500,000 current and former employees. The company has however assured victims that hackers have deleted the stolen personal information, which included Social Security Numbers.

Parcel delivery smishing campaign targets iPhone users -

Parcel delivery smishing campaign targets iPhone users iMessages purporting to be from the U.S. Postal Service and fake website snare at least 108,000 victims.

Over 2.6 Million Duolingo User Records Obtained via Data Scraping Published on Hacking Forum - CPO Magazine -

Over 2.6 Million Duolingo User Records Obtained via Data Scraping Published on Hacking Forum - CPO Magazine Account information of over 2.6 million Duolingo users was obtained via data scraping of an exposed API, and recently leaked on an underground hacking forum.

Tesla’s Data Breach That Exposed Over 75,000 Employees Was an Inside Job - CPO Magazine -

Tesla’s Data Breach That Exposed Over 75,000 Employees Was an Inside Job - CPO Magazine Tesla has disclosed that the data breach impacting over 75,000 employees was an inside job. The electric automaker said two employees copied and shared confidential data with the German newspaper Handelsblatt.

Juice jacking: Is it a real issue or media hype? -

Juice jacking: Is it a real issue or media hype? Is it safe to plug in at a public charging station? And if not, what steps can keep your mobile devices safe from malware?

Ransomware Reaches New Heights -

Ransomware Reaches New Heights It's not going anywhere: Easy-to-exploit bugs like MOVEit, leaks of stolen data, and rapid-fire escalation are keeping ransomware attacks as painful as ever.

More Than Half of Browser Extensions Pose Security Risks -

More Than Half of Browser Extensions Pose Security Risks Spin.AI's risk assessment of some 300,000 browser extensions found 51% had overly permissive access and could execute potentially malicious behaviors.

EvilProxy Phishing Campaign Targets Over 120,000 Microsoft 365 Users - CPO Magazine -

EvilProxy Phishing Campaign Targets Over 120,000 Microsoft 365 Users - CPO Magazine Security researchers have discovered an EvilProxy phishing campaign targeting 120,000 Microsoft 365 users with a focus on business executives with access to financial assets or sensitive information.

LinkedIn Suffers 'Significant' Wave of Account Hacks -

LinkedIn Suffers 'Significant' Wave of Account Hacks Users report losing access to their accounts, with some being pressured into paying a ransom to get back in or else face permanent account deletion.