Skip to content

Cybersecurity | english only |

Meta-Phish: Facebook Infrastructure Used in Phishing Attack Chain

Meta-Phish: Facebook Infrastructure Used in Phishing Attack Chain

Researchers at Trustwave Holdings Inc.’s SpiderLabs detailed a new campaign that leverages Facebook infrastructure for phishing attacks and the theft of personally identifiable information. Users are advised to be extra careful when receiving false violation notifications and not to be fooled by the apparent legitimacy of the initial links.

Members Public
GPS Signals Are Being Disrupted in Russian Cities

GPS Signals Are Being Disrupted in Russian Cities

Navigation system monitors have seen a recent uptick in interruptions since Ukraine began launching long-range drone attacks. EVERY DAY, BILLIONS of people use the GPS satellite system to find their way around the world—but GPS signals are vulnerable. Jamming and spoofing attacks can cripple GPS connections entirely or make

Members Public
Healthcare Organizations Warned of Royal Ransomware Attacks

Healthcare Organizations Warned of Royal Ransomware Attacks

The US Department of Health and Human Services (HHS) is warning healthcare organizations of the threat posed by ongoing Royal ransomware attacks. Initially spotted in September 2022, the ransomware family is employed by a financially-motivated threat actor that also uses known tools for persistence, credential exfiltration, and lateral movement. “Royal

Members Public
Targeted Attacks Against The Cryptocurrency Industry

Targeted Attacks Against The Cryptocurrency Industry

Microsoft and cybersecurity firm Volexity have traced a new version of AppleJeus malware to the hackers behind the Ronin exploit and numerous other online heists. Microsoft reports that a threat actor has been identified targeting cryptocurrency investment startups. A party Microsoft has dubbed DEV-0139 posed as a cryptocurrency investment company

Members Public
Russian Espionage APT Callisto Focuses on Ukraine War Support Organizations

Russian Espionage APT Callisto Focuses on Ukraine War Support Organizations

The Russia-linked cyberespionage group known as Callisto (aka AG-53,  COLDRIVER,  SEABORGIUM) has been observed targeting multiple entities that provide war support for Ukraine, including private companies in the US and Europe. Active since at least 2017, the advanced persistent threat (APT) actor is also tracked as Blue Callisto, Coldriver, Seaborgium,

Members Public
Iran: State-Backed Hacking of Activists, Journalists, Politicians

Iran: State-Backed Hacking of Activists, Journalists, Politicians

Hackers backed by the Iranian government have targeted two Human Rights Watch staff members and at least 18 other high-profile activists, journalists, researchers, academics, diplomats, and politicians working on Middle East issues in an ongoing social engineering and credential phishing campaign, Human Rights Watch said today. An investigation by Human

Members Public
Preparing for a Russian cyber offensive against Ukraine this winter

Preparing for a Russian cyber offensive against Ukraine this winter

Microsoft has warned in its report to Russia boost cyberattack on Ukraine and its allies throughout the winter. In recent months, cyberthreat actors affiliated with Russian military intelligence have launched destructive wiper attacks against energy, water and other critical infrastructure organizations’ networks in Ukraine as missile strikes knocked out power

Members Public
Pro-Russian Hacker Groups  DDoS Attack Against Latvian and NATO websites

Pro-Russian Hacker Groups DDoS Attack Against Latvian and NATO websites

Pro-Russian hacker group KillNet has launched DDoS attack today against several Latvian websites, among them primarily the website of the Latvian Ministry of Foreign Affairs. The website of Latvian Ministry of Foreign Affairs (mfa.gov.lv) is currently unavailable. Trigger of DDoS attacks was statement of Latvian Foreign Minister, Edgar

Members Public
RansomBoggs Ransomware linked to Russian Sandworm APT Targeted Several Ukrainian Organizations

RansomBoggs Ransomware linked to Russian Sandworm APT Targeted Several Ukrainian Organizations

Ukraine has come under a fresh onslaught of ransomware attacks that mirror previous intrusions attributed to the Russia-based Sandworm nation-state group. Slovak cybersecurity company ESET, which dubbed the new ransomware strain RansomBoggs, said the attacks against several Ukrainian entities were first detected on November 21, 2022. "While the malware

Members Public
Leaky Buckets in 2022

Leaky Buckets in 2022

Paolo Passeri, cybersecurity expert has been collecting the incidents due to cloud misconfigurations and leading to the exposure of data since 2020. The statistics of this collection related to year of 2022 were published on his website, Hackmageddon. Unfortunately despite increasing risks and awareness the number of incidents this year

Members Public
Pro-Russian group Killnet claims responsibility for DDoS attack that has taken down the European Parliament site

Pro-Russian group Killnet claims responsibility for DDoS attack that has taken down the European Parliament site

The European Parliament website was hit by a cyberattack  shortly after lawmakers approved a resolution calling Moscow a "state sponsor of terrorism". DDoS attacks are part of the announced campaign on October 2 by Anonymous Russia (the hacker group operating under the management of KillNet). “KILLNET officially recognises

Members Public