Infosecurity News
IRISSCON: Organizations Still Falling Victim to Predictable Cyber-Attacks
Organizations remain unprepared to defend against known and predictable attacks like ransomware
Winos4.0 Malware Found in Game Apps, Targets Windows Users
Winos4.0 malware, derived from Gh0strat, targets Windows users via game-related applications, enabling remote control of affected systems
Massive Nigerian Cybercrime Bust Sees 130 Arrested
The Nigerian police have arrested 113 foreign individuals and their 17 Nigerian collaborators for their alleged involvement in high-level cybercrimes
Google Cloud to Mandate Multifactor Authentication by 2025
Google wants to ensure a smooth transition towards required MFA across all Google Cloud accounts with a phased rollout running throughout 2025
Snowflake Hacking Suspect Arrested in Canada
A man suspected of breaching hundreds of Snowflake accounts has been arrested
Global Operation Takes Down 22,000 Malicious IPs
Interpol claims an international policing operation has shuttered 22,000 IPs connected with cybercrime
ClickFix Exploits Users with Fake Errors and Malicious Code
ClickFix exploits fake error messages across multiple platforms, such as Google Meet and Zoom
ToxicPanda Malware Targets Banking Apps on Android Devices
ToxicPanda malware targets banking apps on Android, spreading through Italy, Portugal and Spain
US Voters Urged to Use Official Sources for Election Information
A joint US government advisory warned about increasing foreign influence efforts designed to undermine the legitimacy of the Presidential Election
Pakistani Hackers Targeted High-Profile Indian Entities using Custom RAT
APT36 evolved its remote access trojan, ElizaRAT, along with introducing a new stealer payload called ApoloStealer
Oasis Fans Losing Up to £1000 Each to Ticket Scammers
Lloyds Bank has revealed that Oasis fans comprise the vast majority of ticket scam victims it deals with
Chinese Air Fryers May Be Spying on Consumers, Which? Warns
A Which? report outlines serious privacy concerns with smart device products including air fryers
Columbus Ransomware Attack Exposes Data of 500,000 Residents
The City of Columbus, Ohio, informed the Maine Attorney General’s Office that approximately 55% of its residents were affected by the breach
Cybercriminals Exploit DocuSign APIs to Send Fake Invoices
Cybercriminals are exploiting DocuSign APIs to send fake invoices, bypassing security filters and mimicking well-known brands
Nigerian Handed 26-Year Sentence for Real Estate Phishing Scam
A US district court sentenced a Nigerian man for an elaborate ‘man-in-the-middle’ phishing campaign, which resulted in $12m in losses from real-estate transactions
Google Researchers Claim First Vulnerability Found Using AI
The flaw, an exploitable stack buffer underflow in SQLite, was found by Google’s Big Sleep team using a large language model (LLM)
US Says Russia Behind Fake Haitian Voters Video
US government agencies said the video, widely shared on social media, is part of Russia’s broader strategy of undermining the integrity of the Presidential Election
Supply Chain Attack Uses Smart Contracts for C2 Ops
Checkmarx has observed a novel npm supply chain attack using Ethereum smart contracts to manage command-and-control (C2) operations
UK Council Sites Recover Following Russian DDoS Blitz
Several UK council websites are back online after being disrupted by Russian hacktivist DDoS attacks
Sophos Warns Chinese Hackers Are Becoming Stealthier
Sophos provided details of changing tactics by Chinese APT groups over a five-year period, involving a shift towards stealthy, targeted attacks