A sophisticated group is using a webshell called BumbleBee in an ongoing xHunt campaign targeting Microsoft Exchange servers at Kuwaiti organizations.
The Scottish Environment Protection Agency (SEPA) confirmed on Thursday that some of its contact center, internal systems, processes, and internal communications were affected following a ransomware attack that took place on Christmas Eve.
The National Security Agency is recommending that security teams use designated DNS resolvers to lockdown DNS over HTTPS (DoH), effectively preventing eavesdropping, manipulation and exfiltration of DNS traffic.
Google has removed 164 apps, downloaded a total of 10 million times, from its Google Play marketplace because they were delivering “disruptive” ads, considered malicious.
The European Medicines Agency (EMA) today revealed that some of the stolen Pfizer/BioNTech vaccine candidate data was doctored by threat actors before being leaked online with the end goal of undermining the public’s trust in COVID-19 vaccines.
Joker’s Stash, the internet’s notorious and largest marketplace for buying & selling stolen card data, announced that it was shutting down within a month, on February 15, 2021.
The NSA has confirmed longtime US cybersecurity official Rob Joyce as the new leader of its Cybersecurity Directorate. He most recently has been serving as the NSA’s top representative in the UK, a position he has held since 2018.
The Linux Mint project has patched this week a security flaw that could have allowed a threat actor to bypass the OS screensaver and its password and access locked desktops.
According to a new research, almost half of all data breaches in hospitals and the wider healthcare sector are a result of ransomware attacks that have recently shown an uptick in deploying an extra layer of extortion.
The financially motivated FIN11 appeared to rely on low-effort volume techniques like spamming malware for initial entry, but put a substantial amount of effort into each follow-up compromise.