Cyber Security Threats

LeakedSource has claimed that email addresses, usernames, and passwords have been accessed by the hackers responsible for a recent Dailymotion cyberattack. Dailymotion is one of the biggest internet video sharing platforms and, according to Alexa, … Read more

Cybercriminals responsible for a ransomware attack against a Sherriff’s office in Arkansas have received payment of 3 Bitcoin ($2,400) to supply the relevant keys to decrypt files that had been locked by the ransomware. Carrol … Read more

Human error was to blame for a massive Verizon Communications data leak that saw the personal information, account details and PIN numbers of more than 6 million customers exposed on the Internet. The Verizon Communications … Read more

Over 60 apps have now been deleted from Google Play Store due to the presence of AdultSwine Malware, a form of malware that displays pornographic adverts on users’ devices. Many of the apps that included … Read more

Microsoft has released emergency Windows XP updates to tackle exploitation of the Windows Server Message Block (SMB) vulnerability used to infect computers globally with ransomware on May 12, 2017. The move came as a shock … Read more

The Anti-Phishing Working Group (APWG) has recently released a new report showing the changing trends in phishing in 2016. The report provides interesting insights into how cybercriminal activity is changing and the attack methods most … Read more

A new study conducted by the Ponemon Institute has shown that General Data Protection Regulation preparations have only been made by a small minority of companies, with almost half of surveyed organizations unsure where to … Read more

The U.S. Federal Bureau of Investigation has issued its annual Internet Crime Report, showing cybercriminals have netted at least $1.3 billion last year. The figures for the report were compiled by the FBI’s Internet Crime … Read more

A massive global cyberattack is underway involving Petya ransomware. Ukraine has been hit particularly hard although companies all over Europe have reported that systems have been taken out of action and ransoms demanded. Social media … Read more

The WannaCry ransomware campaign may have attracted a lot of media attention, but Locky ransomware presents a bigger threat to organizations with a new Locky ransomware campaign now a regular event. The ransomware was initially … Read more

The recent ransomware attack on University College London has been discovered to have occurred as a result of an end user visiting a website hosting the Astrim exploit kit. Exploit kits are used to probe … Read more

The healthcare industry has been heavily targeted by cybercriminals, but retail industry data breaches are now the most common according to a recent study by Trustwave. Retail industry data breaches account for 22% of all … Read more

For the first time in the past seven years, the cost of a data breach has fallen, with a 10% reduction in per capita data breach costs across all industry sectors. The global study revealed … Read more

Hackers have been conducting fileless malware phishing attacks and restaurants are being focused on. Restaurants are being targeted as they tend to have relatively weak cybersecurity defenses and criminals can easily obtain access to the … Read more

A Google phishing scam has been discovered infiltrated online accounts over the past couple of days. Emails have been sent in the millions asking individuals to edit Google Docs files. The emails seem to have … Read more

Jaff ransomware, a new Locky-type encryptor, is being shared around by the same group distributed by the individuals responsible for distributing the Dridex banking Trojan and Locky ransomware. This group has also previously used Bart … Read more

A recent Lazio phishing scam result in €2 million being stolen from the Italian Serie A football team. The cybercriminals intercepted the last installment of a transfer of a football player to the bank account … Read more

Over the past few days, a new threat called Fireball malware has been spreading rapidly and has allegedly been installed on more than 250 million computer systems. An estimated 20% of corporate networks have been … Read more

The most recent Locky campaign uses a different tactic to complete infection. Earlier Locky campaigns have used malicious Word macros connected to spam emails. If the email attachment is clicked on, end users are asked … Read more

The EternalRocks worm is a new threat that comes hot on the heels of WannaCry ransomware. The self-replicating network work uses similar tactics to infect computers and spread to other connected devices; however, in contrast … Read more

A new Uiwix ransomware variant has been detected using EternalBlue to gain access to vulnerable systems. Businesses that have not yet patched they systems are vulnerable to this new attack. In contrast to the WannaCry … Read more

An Edmodo data breach has been reported that has impacted tens of millions of users of the education platform, including teachers, students and parents. Edmodo is a platform used for K-12 school lesson planning, homework … Read more

The Solicitors Regulation Authority in the United Kingdom has recently released an alert in relation to law firm email scams following a sharp increase in law firm cyberattacks. According to SRA figures, around 500 UK … Read more

A Mac malware warning has been issued for any individual who recently downloaded Handbrake for Mac. A server was compromised and a remote access Trojan was bundled with the Handbrake Apple Disk Image file. A … Read more

A patch has been rushed and released to address a serious Microsoft Malware Protection Engine bug, termed ‘Crazy Bad’ by the researchers who discovered the flaw. If exploited, the vulnerability would allow threat actors to … Read more

A sophisticated new malware threat has been discovered that is being used to target a wide range of industry sectors and infect systems with RAT/malware. The campaign is being used to spread multiple malware variants … Read more

Sabotage, subversion and ransomware attacks all increased sharply in 2016, with malware-infected emails now at a five-year high according to the latest installment of Symantec’s Internet Security and Threat Report (ISTR). For the 22nd volume … Read more

Kaspersky Lab has released new figures showing software exploit attacks increased by almost a quarter in 2016. In total, more than 702 million attempted software exploit attacks were performed; a rise of 24.54% year on … Read more

Locky is back. The latest Locky ransomware attacks leverage an infection technique used in Dridex malware campaigns. It has been all quiet on the western front, with Locky ransomware attacks dropping off to a tiny … Read more

In the United States, the healthcare sector is being focused on, by hackers and scammers, with phishing attacks on healthcare organizations one of the most simple and most experienced methods of gaining access to email … Read more

The Intercontinental Hotels Group data breach previously announced in February as affecting 12 hotels in the chain has proven to have been far more extensive than was first thought. Last week the group announced that … Read more

Last week, the Bitglass Threats Below the Surface Report was released. The report highlights the extent to which organizations are being attacked by cybercriminals. Far from cyberattacks being a relatively rare occurrence, they are now … Read more

Do you have any machines running on unsupported operating systems? Is all of your software up to date with all of the latest patches applied? If you are not patching promptly or are still running … Read more

Windows-based systems are far more likely to be infected by viruses and malware; however, Mac users are far from immune to malware infections. A new report from McAfee suggests Mac malware infections increased substantially in … Read more

A new variant of Stampedo ransomware – called Philadelphia ransomware – is being used in targeted attacks on the healthcare sector in the United States. The ransomware variant is being spread using spear phishing emails. … Read more

Anti-pornography legislation in Alabama could be introduced from January 1, 2018, following the introduction of a new bill last month. House Bill 428 was introduced by Jack Williams (R-Montgomery) to prevent state residents from using Internet-enabled … Read more

Dropbox phishing campaigns are relatively typical and often fool employees into revealing their sensitive information or installing malware. Dropbox is widely used for sharing files and employees are used to receiving links advising them that … Read more

The source code for the NukeBot Trojan has been published online on a source-code management platform. The code for NukeBot – or Nuclear Bot as it is also known –  appears to have been released … Read more

The SANS Internet Storm Center has released a statement that says the Blank Slate spam campaign which was first discovered in July last year is now being employed to spread Cerber ransomware, rather than previous … Read more

A flaw in the mobile Safari browser has been exploited by cybercriminals and used to extort money from individuals who have previously used their mobile device to view pornography or other illegal content. The Safari … Read more

The world’s biggest spam operation has been exposed including a gigantic database of email addresses. Over 1.37 billion email addresses, names, addresses, and IP addresses were included in the database, which was exposed due to … Read more

A new form of PoS malware – called MajikPOS malware – has recently been discovered by security researchers at Trend Micro. The new malware has been used in targeted attacks on businesses in the United … Read more

There is a new ransomware threat that businesses should be aware of, but PetrWrap ransomware is not exactly anything new. It is actually a form of ransomware that was first discovered in May last year. … Read more

A W-2 Form phishing scam that has been widely used to trick businesses out of the tax information of their staff is now being used on educational institutions. School districts should be on high alert … Read more

The final New York Department of Financial Services cybersecurity rules have now been issued. Covered entities – banks, Insurance companies, and financial service firms operating in the state of New York must now comply with … Read more

Complex phishing emails and elaborate web-based scams are being used to attack students at the University of Connecticut. The range to which students have been focused on with these scams has lead toUConn Chief Information … Read more

A recent university cyberattack in the United States resulted in more than 5,000 systems being taken out of action. The university cyberattack only became apparent after the IT department was flooded with complaints from staff … Read more