Malware & Threats Archives - Page 27 of 107

LastPass Found No Code Injection Attempts Following August Data Breach

Issued by: Security Week

The GoTo-owned company announced on August 25 that unknown intruders had gained access to the LastPass development environment and stole “portions of source code and some proprietary LastPass technical information”. At the time, the company posted a notice online, saying that no user data or master passwords were compromised in the incident, and that its…

Malware & Threats

Free Decryptor Available for LockerGoga Ransomware Victims

Issued by: Security Week

The LockerGoga ransomware has been around since at least 2019, when it was used in attacks targeting several industrial organizations, including Norwegian metals and energy giant Norsk Hydro and US-based chemical companies Hexion and Momentive. The individual who operated LockerGoga is believed to be part of a cybercrime ring that also used the MegaCortex ransomware…

Malware & Threats

FBI Warns of Cyberattacks Targeting Healthcare Payment Processors

Issued by: Security Week

As part of such attacks, threat actors rely on publicly-available personally identifiable information (PII) and social engineering to impersonate victims and access payment information, healthcare portals, and more. “Recent reporting indicates cyber criminals will continue targeting healthcare payment processors through a variety of techniques, such as phishing campaigns and social engineering, to spoof support centers…

Malware & Threats

Malware Infects Magento-Powered Stores via FishPig Distribution Server

Issued by: Security Week

Specialized in Magento optimizations and Magento-WordPress integrations, FishPig offers various Magento extensions that have gathered over 200,000 downloads. On Tuesday, FishPig warned of an intrusion to its extension license system, which resulted in a threat actor injecting malicious PHP code into the Helper/License.php file. “This file is included in most FishPig extensions so it is…

Malware & Threats

LockBit, ALPHV & Other Ransomware Gang Leak Sites Hit by DDoS Attacks

Issued by: Dark Reading

The ransomware-as-a-service (RaaS) groups LockBit and ALPHV (aka BlackCat), among others, have been the focus of distributed denial-of-service (DDoS) attacks targeting their data leak sites, causing downtime and outages. The attacks have been monitored by Cisco Talos since Aug. 20 and include a wide range of other RaaS groups, including Quantum, LV, Hive, Everest, BianLian,…

Malware & Threats, Network Security, Software Security

NATO Condemns Alleged Iranian Cyberattack on Albania

Issued by: Security Week

“We stand in solidarity with Albania following the recent cyber attack on its national information infrastructure,” NATO allies said. “We strongly condemn such malicious cyber activities designed to destabilise and harm the security of an Ally, and disrupt the daily lives of citizens.” The alliance pledged to “support Albania in strengthening its cyber defence capabilities…

Malware & Threats

The Advantages of Threat Intelligence for Combating Fraud

Issued by: Security Week

Leveraging threat intelligence to combat nation state espionage threats is a common practice for cybersecurity teams. However, outside of common types of fraud seen in darkweb or closed forums, the same threat intelligence often is not leveraged to combat enterprise fraud. If you are a target of APT threats by espionage actors, buying access to…

Malware & Threats

US Agencies Warn of ‘Vice Society’ Ransomware Gang Targeting Education Sector

Issued by: Security Week

In a joint advisory this week, the three agencies warn that a threat actor tracked as ‘Vice Society’ has been “disproportionately targeting the education sector with ransomware attacks”. Ransomware attacks targeting the education sector, especially K-12, are not uncommon, and the US government agencies expect an increase in attacks as the 2022/2023 school year begins….

Malware & Threats

Ransomware Attacks Target Government Agencies in Latin America

Issued by: Security Week

Several government agencies in Latin America were targeted in ransomware attacks in the past months, and the latest victims are Chile and the Dominican Republic. read moreChile’s Ministry of Interior reported last week that a government agency had its systems and online services disrupted by a piece of ransomware that targeted Windows and VMware ESXi…

Malware & Threats

Ransomware Gang Claims Customer Data Stolen in TAP Air Portugal Hack

Issued by: Security Week

The incident was initially disclosed on August 26, when TAP announced on Twitter that it managed to foil the cyberattack before the threat actor could access any customer data. “TAP was the target of a cyberattack, now blocked. Operational integrity is guaranteed. No facts have been found that allow us to conclude that there has…