Menu

Blog

Archive for the ‘cybercrime/malcode’ category: Page 82

Jul 2, 2022

Google blocked dozens of domains used by hack-for-hire groups

Posted by in categories: cybercrime/malcode, surveillance

Google’s Threat Analysis Group (TAG) has blocked dozens of malicious domains and websites used by hack-for-hire groups in attacks targeting high-risk targets worldwide.

Unlike commercial surveillance vendors whose tools are deployed in attacks by clients, hack-for-hire operators are directly involved in attacks and are usually employed by a firm offering such services. In some cases, they can also be “freelance” threat actors.

They’re hired for their hacking skills by clients who lack them or who want to conceal their identity if the attacks are detected and investigated.

Jul 2, 2022

Toll fraud malware disables your WiFi to force premium subscriptions

Posted by in categories: cybercrime/malcode, internet, robotics/AI

Microsoft is warning that toll fraud malware is one of the most prevalent threats on Android and that it is evolving with features that allow automatic subscription to premium services.

Toll fraud is a subset of billing fraud, where the threat actor tricks victims into calling or sending an SMS to a premium number.

The difference is that toll fraud does not work over WiFi and forces the devices to connect to the mobile operator’s network.

Jul 2, 2022

CISA orders agencies to patch Windows LSA bug exploited in the wild

Posted by in category: cybercrime/malcode

CISA has re-added a security bug affecting Windows devices to its list of bugs exploited in the wild after removing it in May due to Active Directory (AD) certificate authentication issues caused by Microsoft’s May 2022 updates.

The flaw is an actively exploited Windows LSA (Local Security Authority) spoofing vulnerability tracked as CVE-2022–26925 and confirmed to be a new PetitPotam Windows NTLM Relay attack vector.

Unauthenticated attackers can exploit this bug to force domain controllers to authenticate them remotely via the Windows NT LAN Manager (NTLM) security protocol and, likely, take over the entire Windows domain.

Jun 30, 2022

Google Blocks Dozens of Malicious Domains Operated

Posted by in category: cybercrime/malcode

Google’s Threat Analysis Group (TAG) blocks as many as 36 malicious domains operated by hack-for-hire groups from India, Russia and UAE.


Shadow IT refers to the practice of users deploying unauthorized technology resources in order to circumvent their IT department.

Jun 30, 2022

Ex-Canadian Government Employee Pleads Guilty Over NetWalker Ransomware Attacks

Posted by in categories: cybercrime/malcode, government

A former Canadian government employee pleaded guilty in the U.S. to charges related to his involvement with the NetWalker ransomware syndicate.

Jun 30, 2022

New YTStealer Malware Aims to Hijack Accounts of YouTube Content Creators

Posted by in category: cybercrime/malcode

Researchers are warning about a new YouTube hijacking malware, dubbed YTStealer, believed to be sold as a service on the dark web.

Jun 30, 2022

CISA Warns of Active Exploitation of ‘PwnKit’ Linux Vulnerability in the Wild

Posted by in category: cybercrime/malcode

U.S. cybersecurity agency CISA has added the PwnKit Linux vulnerability to its catalog of known exploited vulnerabilities.

Jun 29, 2022

California DOJ data breach exposes personal information of all concealed carry permit holders across state

Posted by in category: cybercrime/malcode

The breach occurred as part of the state Department of Justice’s launch of its “2022 Firearms Dashboard Portal,” officials said.


The names, addresses and license types of all concealed carry permit holders in California were exposed after the state Department of Justice suffered a data breach, authorities said Tuesday.

The Fresno County Sheriff’s Office on Tuesday learned of the breach from the California State Sherriff’s Association, according to a statement.

Continue reading “California DOJ data breach exposes personal information of all concealed carry permit holders across state” »

Jun 28, 2022

Messenger chatbots now used to steal Facebook accounts

Posted by in categories: cybercrime/malcode, robotics/AI

A new phishing attack is using Facebook Messenger chatbots to impersonate the company’s support team and steal credentials used to manage Facebook pages.

Chatbots are programs that impersonate live support people and are commonly used to provide answers to simple questions or triage customer support cases before they are handed off to a live employee.

In a new campaign discovered by TrustWave, threat actors use chatbots to steal credentials for managers of Facebook pages, commonly used by companies to provide support or promote their services.

Jun 28, 2022

Senator Joe Lieberman — Leading Bipartisan Moonshots For Health, National Security And Government

Posted by in categories: biotech/medical, business, cybercrime/malcode, energy, government, health, law, policy

Leading bipartisan moonshots for health, national security & functional government — senator joe lieberman, bipartisan commission on biodefense, no labels, and the centre for responsible leadership.


Senator Joe Lieberman, is senior counsel at the law firm of Kasowitz Benson Torres (https://www.kasowitz.com/people/joseph-i-lieberman) where he currently advises clients on a wide range of issues, including homeland and national security, defense, health, energy, environmental policy, intellectual property matters, as well as international expansion initiatives and business plans.

Continue reading “Senator Joe Lieberman — Leading Bipartisan Moonshots For Health, National Security And Government” »

Page 82 of 218First7980818283848586Last