Industry News
-
Weekly News Digest #67
Cyberattacks targeting Ukraine are likely to heat In case current tensions between Ukraine and Russia became worse, Western countries should be prepared for the risk of more cyber and ransomware attacks targeting Ukraine. Russia is likely to utilize the capacity of its cyber and disinformation armies to sow confusion and disaccord among the Western supporters
-
Weekly News Digest #66
Grim Finance lost $30M, new hire blamed for vulnerability Hackers stole >$30M from Grim Finance by exploiting platform vulnerability. Due to the advanced attack, all vaults were put on pause to prevent further attacks. The exploit was found in the platform’s vault contract. The company has notified DAI, AnySwap, and Circle (USDC) of the incident
-
Weekly News Digest #65
Terrifying zero-click iPhone attack The surveillance company NSO Group developed an exploit allowing the users of its software to gain access to an iPhone to install malware – in this case, a target does not even need to click on a link. Last month, NSO Group was added to the “entity list” of the US
-
Weekly News Digest #64
Discord tokens are stolen by malicious NPM packages 17 new malicious packages in the npm (Node.js package manager) repository have been discovered by the security firm JFrog. The key purpose of these packages is to steal users’ Discord tokens. By hijacking users’ Discord tokens, attackers can get full control over the victims’ accounts. In the
-
Weekly News Digest #63
$120 million hack affecting Badger DAO Protocol Badger DAO Protocol has fallen victim to a hack, $120.3 million in cryptocurrencies was stolen from its users. The first messages from users mentioning possible problems were coming on Wednesday at 9 p.m. ET. According to the data provided by PeckShield, the total amount of lost assets included
-
Weekly News Digest #62
Users may see their passwords stolen by a “silent threat” delivered by stealthy malware A new JavaScript downloader is used by cybercriminals to distribute 8 kinds of remote access Trojan malware and information-stealing malware. The key purpose of this malicious activity is to gain backdoor control of infected Windows systems and steal sensitive information such
-
Weekly News Digest #60
Attackers can smuggle malware onto your network via a sneaky trick A relatively new form of cyberattacks dubbed “HTML smuggling” has been flagged by Microsoft. This malicious technique is used during targeted cyberattacks and in email campaigns deploying remote access Trojans and banking malware. Through this malicious technique, an attacker can “smuggle” encoded malicious script
-
Weekly News Digest #59
FBI warning: Ransomware groups are tying their attacks to major events in the financial world Significant financial events are used by ransomware groups as leverage during their malicious activities. Such events as mergers and acquisitions are an ideal time for ransomware groups to commit attacks aimed at making victims pay the ransom. Before committing these
-
Weekly News Digest #58
HTTPS Threats: 314% increase compared to 2020 According to the State of Encrypted Attacks report released by cybersecurity firm Zscaler, tech companies and retailers are facing a growing number of https threats since January. HTTPS threats have increased by 314% while attacks on retailers have increased by 800%, and attacks on tech companies by an
-
Weekly News Digest #57
Massive phishing and malware campaign disrupted by Google The malware campaign was focused on hijacking Youtube accounts and promoting cryptocurrency scams. Since May 2021 Google has blocked 1.6 million phishing emails that have been part of this malware campaign. According to the data provided by Google’s Threat Analysis Group, a network of Russian hacker subcontractors
-
Weekly News Digest #56
Data encryption and nasty threats attributable to a new ransomware A new form of ransomware is distributed by cybercriminals against businesses, their employees, and partners. The new ransomware not only encrypts victims’ data but also make a threat to launch DDoS attacks unless victims pay a ransom. The ransomware dubbed Yanluowang was firstly uncovered by
-
Weekly Digest #55
Thieves are targeting healthcare entities: 1 in 5 targets of FIN12 hacking group is from the healthcare One may suppose that due to ethical considerations ransomware groups may exclude from their list of targeted entities representing specified sectors such as healthcare. However, it’s not about the FIN12 group since 1 in 5 its targets are
Subscribe to Hacken emails
Enter your email and be the
first to know all the news posted on Hacken Research