Majority of attacks have originated from cryptomining and DDoS botnets, such as Mirai, Muhstik, and Kinsing, which are typically the first to exploit any critical enterprise bug before everyone else.
After being uncovered a few weeks ago, the Yanluowang ransomware has since been associated with campaigns, and its operators are said to launch targeted attacks on US firms since at least August.
Researchers at JFrog found 17 malicious packages in the npm repository, which attack and steal users’ Discord tokens. The payloads vary – ranging from remote access backdoors to infostealers.
Hellmann Worldwide Logistics reported an attack that forced them to temporarily remove all connections to their central data center. It said the shutdown had a “material impact” on their operations.
The method is not new as this sophisticated cybercrime organization (aka APT-C-41 or Promethium) was noticed delivering malicious WinRAR installers in highly targeted operations between 2016 and 2018.
The content of the phishing email, written in Korean, asks recipients to open the attached PowerPoint file to review a purchase order. It is designed to infect users with the Agent Tesla malware.
CS Energy, an electric utility owned by the Government of Queensland, suffered a digital disruption on November 27. The attack sabotaged over 3,500 MW of electricity generation powering around 3 million homes.
The new Vulnerable and Malicious Driver Reporting Center allows users to upload a copy of a malicious driver, which gets uploaded and analyzed by a Microsoft automated scanner.
Volvo confirmed that a limited amount of the company’s R&D property had been stolen during a recent intrusion. It also warned that “there may be an impact on the company’s operation.”
Afero, a Menlo Park, California-based company focused on securing IoT device communication, has closed a $50 million Series C funding round. To date, the company has raised $100 million in funding.