Cybercrime Archives - Page 9 of 45 - Cyber Security Minute

Power Electronics Manufacturer Semikron Targeted in Ransomware Attack

Issued by: Security Week

Semikron, which employs 3,000 people across 24 subsidiaries worldwide, makes power modules and systems. Its products are used in motor drives, industrial automation systems, as well as other application areas. In a notice posted on its website on Monday, Semikron said it had been targeted by ‘a professional hacker group’. The company said the incident…

Malware & Threats

Morocco Detains Frenchman Wanted in US Over Cybercrime: Police Source

Issued by: Security Week

Sebastien Raoult was taken in for questioning on May 31 at the Rabat-Sale airport in relation to an Interpol red notice over a cyber-piracy case, the Moroccan police source said, declining to be identified and providing no further details. Interpol red notices ask member countries to provisionally detain people pending possible extradition or other legal…

Malware & Threats

Austria Probes Claim Spyware Targeted Law Firms, Banks

Issued by: Security Week

Microsoft’s security team earlier this week said it found that a malware called Subzero — developed by Vienna-based company DSIRF — was deployed in 2021 and 2022. “Observed victims to date include law firms, banks and strategic consultancies in countries such as Austria, the United Kingdom and Panama,” it wrote in a blog entry on…

Malware & Threats

Malicious Macro-Enabled Docs Delivered via Container Files to Bypass Microsoft Protections

Issued by: Security Week

Initially announced in February, the macro-blocking feature is meant to prevent phishing attacks by making it more difficult for users to enable macros in documents received from the internet. Small snippets of code embedded in Office documents, macros have long been abused by threat actors in phishing attacks and for malware delivery. In 2016, Microsoft…

Software Security

Microsoft clamps down on RDP brute-force attacks in Windows 11

Issued by: Malwarebytes

It wasn’t so long ago that we were wondering what improvements Windows 11 would make in the security stakes. Well, we haven’t had to wait too long to find out. Windows 11 build 22528.1000 and up will tackle one of the more common entry points for network intruders. Namely, trying to prevent the brute forcing…

Malware & Threats

Data Stolen in Breach at Security Company Entrust

Issued by: Security Week

The breach was discovered on June 18 and the firm started notifying customers on July 6. However, the intrusion came to light only on July 21 when security researcher Dominic Alvieri came across a copy of the notification sent by Entrust to customers. Entrust is a Minneapolis, MN-based company that provides security solutions for user…

Malware & Threats

New Cross-Platform ‘Luna’ Ransomware Only Offered to Russian Affiliates

Issued by: Security Week

The ransomware is fairly simple, according to Kaspersky, whose researchers analyzed the malware, but it uses an encryption scheme that’s not typically used by ransomware — a combination of X25519 and AES. Luna is developed in Rust, which makes it easy to port to different platforms, and can also help evade static analysis. “Both the…

Vulnerabilities

Exploitation of Recent Chrome Zero-Day Linked to Israeli Spyware Company

Issued by: Security Week

Google was informed about the vulnerability and attacks exploiting it on July 1 by cybersecurity company Avast, which observed it being used against its customers in the Middle East as part of what appeared to be highly targeted operations. The vulnerability is tracked as CVE-2022-2294 and it has been described as a heap buffer overflow…

Malware & Threats

ALPHV Ransomware Gang Creates Searchable Database With Victim Data

Issued by: Security Week

Also known as BlackCat and Noberus, ALPHV emerged in November 2021 as the first ransomware family coded using the Rust programming language. To date, the ALPHV cybergang has compromised more than 100 organizations. Likely tied to the cybercrime group behind the Darkside/Blackmatter ransomware, ALPHV operates under the Ransomware-as-a-Service (RaaS) business model, with their affiliates compromising…

Malware & Threats

BlackCat (aka ALPHV) ransomware is increasing stakes up to $2.5 million in demands

Issued by: Help Net Security

The notorious cybercriminal syndicate competes with Conti and Lockbit 3.0. They introduced an advanced search by stolen victim’s passwords, and confidential documents leaked in the TOR network. Resecurity (USA), a Los Angeles-based cybersecurity company protecting Fortune 500 companies, has detected a significant increase in the value of ransom demand requests by the notorious Blackcat ransomware…