It appears the attackers used Zoom invites as a lure together with an extensive list of email addresses, in this way “Contact” was able to deliver messages from hacked accounts on the SendGrid cloud-based platform.

With CERT-FR warning that Ryuk now has worm-like capabilities, attackers can now more quickly spread the malware inside a network. Earlier, it could only target one system at a time.

Cyberattackers behind ObliqueRAT campaigns are now disguising the trojan in benign image files on hijacked websites. Four new versions of the malware have been recently discovered.

Digital ad companies are exploring a new technique wherein they masquerade as serving first-party, rather than third-party cookies, to circumvent the protections offered by adblocking software.

The Reserve Bank of New Zealand recently became the victim of a data breach affecting users’ personal information due to zero-day flaws in a legacy file sharing solution provided by Accellion.

A mysterious cybercrime group apparently driven by profit has been targeting industrial organizations in Europe, Asia and North America as part of an information theft campaign.

A prominent underground online criminal forum by the name of Maza has been compromised by unknown attackers, making it the fourth forum to have been breached since the start of the year.

Two newly discovered forms of ransomware with very different traits show just how diverse the world of ransomware has become as more cyber criminals attempt to join in with cyber extortion.

Security researchers with threat intelligence firm Gemini Advisory say they have observed dark web activities related to bypassing 3D Secure (3DS), which is designed to improve the security of online credit and debit card transactions.

In a public disclosure, the Swiss outfit confirmed it had last month fallen victim to a wide-ranging data security incident that ensnared passengers from some of the world’s largest airlines.