“Beginning in 2012, Fahd, 35, conspired with others to recruit AT&T employees at a call centre located in Bothell, Washington, to unlock large numbers of cellular phones for profit,” said the DOJ.
While most cryptocurrency scams target social media users, scammers are now using phishing email spam to promote a new “Elon Musk Club” or “Elon Musk Mutual Aid Fund” giveaway.
It was found that 32-year old Matthew Gatrel of St. Charles, Illinois allowed users to launch more than 200,000 DDoS attacks through paid services for which he may face 35-years in prison.
While these bugs have been or still are exploited by one ransomware group or another in past and ongoing attacks, the list has also been expanded to include actively exploited flaws.
Over 5,000 current and former NEISD employees received a letter from the district saying their payroll information, including names and social security numbers, was at risk of being compromised.
Trend Micro discovered an ongoing spam campaign by the APT-C-36 group that sends phishing emails to various entities in South America and delivers commodity RATs. Apart from potential financial gains, the group’s motives are not yet clear. Experts suggest organizations to be wary of this threat group to avoid any unpleasant surprises.
Banking and shopping apps and cryptocurrency wallets of users in the U.S. and Spain are under attack from the SOVA Android trojan. Though in its early stage, it’s been promoted on hacking forums with ads looking for malware testers. Security teams must act now and consider implementing a risk-based mobile security strategy.
Lacework is warning of new threats from PYSA ransomware actors who just added capabilities to target Linux systems with ChaChi backdoor. Besides PYSA, several cybercriminals have recently been observed to be targeting Linux-based systems and networks in addition to Windows. No attack footprints for now but this malware could be used in future attack campaigns. Do […]
Experts reported a SideWalk malware attack on an undisclosed computer retail firm in the U.S. by Grayfly, a China-affiliated espionage group. Active at least since March 2017, Grayfly continues to refine its tools and evasion tactics. Security agencies and analysts in concerned sectors must watch this threat while using shared threat intelligence to detect and stop […]
Tracked as CVE-2021-26333 and discovered by Kyriakos Economou, co-founder of security firm ZeroPeril, the vulnerability resides in the driver for AMD Platform Security Processor (PSP).