What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in threat actors

Microsoft warns of Volt Typhoon, latest salvo in global cyberwar

Image: pinkeyes/Adobe Stock Microsoft’s warning on Wednesday that the China-sponsored actor Volt Typhoon attacked U.S. infrastructure put a hard emphasis on presentations by cybersecurity and international affairs experts that a global war in cyberspace is pitting authoritarian regimes against democracies. Jump to: China’s commitment to cyberwarfare Microsoft’s notification pointed out . . . Read more

White House addresses AI’s risks and rewards as security experts voice concerns about malicious use

Image: Shuo/Adobe Stock The White House, last week, released a statement about the use of artificial intelligence, including large language models like ChatGPT. The statement addressed concerns about AI being used to spread misinformation, biases and private data, and announced a meeting by Vice President Kamala Harris with leaders of . . . Read more

Ransomware attacks skyrocket as threat actors double down on U.S., global attacks

New studies by NCC Group and Barracuda Networks show threat actors are increasing ransomware exploits, with consumer goods and services receiving the brunt of attacks and a large percentage of victims being hit multiple times. Image: darkfoxelixir/Adobe Stock NCC Group’s Global Threat Intelligence team, in its monthly cybersecurity Threat Pulse, . . . Read more

FBI Warns of Egregor Attacks on Businesses Worldwide

The agency said the malware has already compromised more than 150 organizations and provided insight into its ransomware-as-a-service behavior. The FBI has alerted companies in the private sector to a spate of attacks using the Egregor ransomware. The malware currently is raging a warpath across businesses worldwide and has already . . . Read more

Feds Pinpoint Russia as ‘Likely’ Culprit Behind SolarWinds Attack

The widespread compromise affecting key government agencies is ongoing, according to the U.S. government. The U.S. government has identified Russia as the “likely” culprit behind the widespread SolarWinds cyberattack that has so far affected multiple federal agencies and private-sector companies. Cyberespionage is cited as the motivation behind the attack, which . . . Read more

Sextortionist Campaign Targets iOS, Android Users with New Spyware

Goontact lures users of illicit sites through Telegram and other secure messaging apps and steals their information for future fraudulent use. New spyware is targeting iOS and Android frequenters of adult mobile sites by posing as a secure messaging application in yet another twist on sextortionist scams. The spyware, dubbed . . . Read more

iPhone Bug Allowed for Complete Device Takeover Over the Air

Researcher Ian Beer from Google Project Zero took six months to figure out the radio-proximity exploit of a memory corruption bug that was patched in May. Details tied to a stunning iPhone vulnerability were disclosed by noted Google Project Zero researcher Ian Beer. Apple patched the vulnerability earlier this year. . . . Read more

Magecart Attack Convincingly Hijacks PayPal Transactions at Checkout

New credit-card skimmer uses postMessage to make malicious process look authentic to victims to steal payment data. Just in time for a busy online holiday shopping season, the Magecart gang has come up with a new credit-card skimming technique for hijacking PayPal transactions during checkout. A security researcher who identifies . . . Read more

TurkeyBombing Puts New Twist on Zoom Abuse

Threat actors already stole nearly 4,000 credentials before the holiday was even over, according to report. Millions of family and friends, forced to spend Thanksgiving socially distant, are being targeted by cybercriminals as they turn to video platforms like Zoom to virtually be together. In this ongoing attack, cybersecurity experts . . . Read more

APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies

Threat actors mount year-long campaign of espionage, exfiltrating data, stealing credentials and installing backdoors on victims’ networks. China-backed APT Cicada joins the list of threat actors leveraging the Microsoft Zerologon bug to stage attacks against their targets. In this case, victims are large and well-known Japanese organizations and their subsidiaries, . . . Read more