FBI Archives - Cyber Security Minute

CISA, FBI Issue New Warning Following Las Vegas Cyberattack

Issued by: DataBreach Today

The FBI and U.S. Cybersecurity and Infrastructure Security Agency are urging critical infrastructure organizations to implement mitigation techniques to thwart a cybercriminal group known as Scattered Spider that targets major companies and their IT help desks. A joint advisory describes the hacking group, also known as Octo Tempest and UNC3944, as having expertise in social…

Malware & Threats

FBI, CISA Issue Joint Warning on ‘Snatch’ Ransomware-as-a-Service

Issued by: Dark Reading

Cybersecurity advisories from the FBI and the US Cybersecurity and Infrastructure Security Agency (CISA) are usually a good indication that a particular threat merits priority attention from organizations in the crosshairs. That would appear to be the case with “Snatch,” a ransomware-as-a-service (RaaS) operation that has been active since at least 2018 and is the…

Vulnerabilities

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Issued by: Security Affairs

The FBI and CISA issued a joint advisory warning that the Bl00dy Ransomware group is actively targeting the education sector by exploiting the PaperCut remote-code execution vulnerability CVE-2023-27350. The Bl00dy ransomware has been active since May 2022, it has been the first group that started using the leaked LockBit ransomware builder in attacks in the…

Malware & Threats

Will Hive Stay Kaput After FBI Busts Infrastructure?

Issued by: DataBreach Today

What’s not to love about an international law enforcement operation wreaking disruption on Hive, the ransomware-wielding crime syndicate? But with no suspects in jail, it’s unclear how long this takedown will stick before the bad guys get back their sting. There’s still plenty to celebrate since Hive, one of the world’s most active ransomware groups,…

Malware & Threats

FBI Recommends Ad Blockers as Cybercriminals Impersonate Brands in Search Engine Ads

Issued by: Security Week

The attackers register domains similar to those of legitimate businesses or services and use those domains to purchase ads from search engine advertisement services, the FBI says in an alert. These nefarious ads are displayed at the top of the web page when the user searches for that business or service, and the user might…

Malware & Threats

FBI Warns of Iranian Cyber Firm’s Hack-and-Leak Operations

Issued by: Security Week

Previously known as Eeleyanet Gostar and Net Peygard Samavat, Emennet Pasargad is an organization that often changes its name to avoid US sanctions, and which is known for providing cybersecurity services to government entities in Iran. In November 2020, the US warned that Iranian hackers exploited known vulnerabilities to access voter registration data, and in…

Network Security, Software Security, Vulnerabilities

NSA Cyber Specialist, Army Doctor Charged in US Spying Cases

Issued by: Security Week

In one case, cybersecurity expert Jareh Sebastian Dalke, 30, spent less than four weeks working at the NSA, the government’s huge and powerful signals intelligence agency, before he suddenly quit, citing family problems at the end of June. In the few weeks he was at the NSA, he printed out top secret documents, and after…

Malware & Threats

FBI Warns of Cyberattacks Targeting Healthcare Payment Processors

Issued by: Security Week

As part of such attacks, threat actors rely on publicly-available personally identifiable information (PII) and social engineering to impersonate victims and access payment information, healthcare portals, and more. “Recent reporting indicates cyber criminals will continue targeting healthcare payment processors through a variety of techniques, such as phishing campaigns and social engineering, to spoof support centers…

Malware & Threats

US Agencies Warn of ‘Vice Society’ Ransomware Gang Targeting Education Sector

Issued by: Security Week

In a joint advisory this week, the three agencies warn that a threat actor tracked as ‘Vice Society’ has been “disproportionately targeting the education sector with ransomware attacks”. Ransomware attacks targeting the education sector, especially K-12, are not uncommon, and the US government agencies expect an increase in attacks as the 2022/2023 school year begins….

Malware & Threats

FBI Warns of Surge in Attacks Targeting DeFi Platforms

Issued by: Security Week

According to the agency, miscreants are taking advantage of the increased interest in cryptocurrency and the complex functionality and the open source nature of DeFi platforms to perform nefarious activities. Cybercriminals are exploiting security flaws in the smart contracts governing DeFi platforms to steal virtual currency and cause investors to lose money, the FBI says….