Infosecurity News
Russia’s Midnight Blizzard Accesses Microsoft Source Code
Threat group APT29 is using secrets stolen in an earlier attack to compromise Microsoft’s internal systems
Dropbox Used to Steal Credentials and Bypass MFA in Novel Phishing Campaign
Darktrace reveals a novel phishing campaign where attackers leveraged legitimate Dropbox infrastructure to steal credentials before bypassing MFA
UnitedHealth Sets Timeline to Restore Change Healthcare Systems After BlackCat Hit
UnitedHealth said it expects Change Healthcare’s key systems to be restored by March 18, amid reports it paid a $22m ransom to BlackCat
RATs Spread Via Fake Skype, Zoom, Google Meet Sites
Zscaler’s ThreatLabz discovered malware spreading SpyNote RAT to Android and NjRAT/DCRat to Windows
Evasive Panda Targets Tibet With Trojanized Software
ESET researchers said the attackers strategically leveraged the Monlam Festival, targeting individuals associated with Tibetan Buddhism
FBI: US Ransomware Losses Surge 74% to $59.6 Million in 2023
Ransomware losses in the US rose by 74% to $59.6m in 2023, according to reported incidents to the FBI
Governments Eye Disclosure Requirements for AI Development Labs
AI scientist Inma Martinez predicts governments will start requiring ‘frontier’ AI labs full disclosure on the purpose of the tools they are developing
Ransomware Attackers Leak Sensitive Swiss Government Documents, Login Credentials
Sensitive data from Switzerland government departments were leaked by the Play ransomware group after an attack on Xplain, including classified documents and log in credentials
Former Google Engineer Charged With Stealing AI Secrets
Alleged Chinese spy Linwei Ding is accused of stealing proprietary IP from Google
Hundreds of Rogue Users Added to Unpatched TeamCity Servers
Security experts warn of mass exploitation of critical TeamCity vulnerability
TA4903 Phishing Campaigns Evolve, Targets US Government
Proofpoint said TA4903 adopted new tactics, including lure themes referencing confidential docs and ACH payments
Linux Malware Targets Docker, Apache Hadoop, Redis and Confluence
Cado said the payloads facilitated RCE attacks by leveraging common misconfigurations and known vulnerabilities
EU Agrees 'Cyber Solidarity Act' to Bolster Incident Response and Recovery
The EU has agreed new rules to strengthen cyber incident response and recovery across member states, encompassing closer cooperation mechanisms
Cyber Pros Turn to Cybercrime as Salaries Stagnate
The UK’s Chartered Institute of Information Security warns that many professionals are prepared to moonlight for cybercrime groups
Skype, Google Meet, and Zoom Used in New Trojan Scam Campaign
A new threat actor has been observed by Zscaler distributing remote access Trojans (RATs) via online meeting lures
US Sanctions Predator Spyware Maker Intellexa
The US Treasury has designated individuals and entities associated with Predator spyware developer, Intellexa
GhostSec Evolves With Website Compromise Tools
Cisco Talos uncovered two new tools developed by the group: the “GhostSec Deep Scan tool” and “GhostPresser”
South Korean Police Develops Deepfake Detection Tool Ahead of April Elections
With a claimed 80% efficiency, the new AI detection tool will be used to inform the police during criminal investigations
ALPHV/BlackCat Ransomware Servers Go Down
Speculations about the shut down range from a potential exit scam to a rebranding initiative
American Express Warns Credit Card Data Exposed in Third-Party Breach
American Express has informed customers that their credit card details may have been compromised following a breach of a third-party merchant processor
