Cyber Security News

GPS Spoofers "Hack Time"
Date

GPS Spoofers "Hack Time"

A recent article published by Reuters shows a marked increase in GPS Spoofing attacks targeting airlines. GPS spoofing is a malicious attack in which Global Positioning System (GPS) data is manipulated to mislead a GPS receiver about its actual location. This could cause significant disruptions, as

Dark Angels Ransomware Gets Record Breaking Ransom Payment
Date

Dark Angels Ransomware Gets Record Breaking Ransom Payment

A recent report by Zscaler revealed that the Dark Angels ransomware gang received a record-breaking 75 million USD ransom payment from a Fortune 50 company. The report stated, In early 2024, ThreatLabz uncovered a victim who paid Dark Angels $75 million, higher than any publicly known amoun

Ransomware Gangs Exploit VMware ESXi Vulnerability
Date

Ransomware Gangs Exploit VMware ESXi Vulnerability

According to a recent report by Microsoft Threat Intelligence, researchers discovered a vulnerability in ESXi hypervisors being exploited by several ransomware operators to obtain full administrative permissions on domain-joined ESXi hypervisors. In practice, these hypervisors are installed on serv

FIN7 Begin Selling Security Software Killer
Date

FIN7 Begin Selling Security Software Killer

To say that the financially motivated, advanced persistent threat group FIN7 is notorious is an understatement. The Russian-speaking group of hackers has been active since 2013 and primarily focused on financial fraud and stealing credit card details. The group then moved to the ransomware game in a

New BugSleep Backdoor Malware Used In MuddyWater Attacks
Date

New BugSleep Backdoor Malware Used In MuddyWater Attacks

MuddyWater, also tracked as Earth Vetala, MERCURY, Static Kitten, and Seedworm, is an Iranian state-sponsored threat actor that has been active since 2017. In the past, we have seen the group extensively use zero-day exploits on several separate occasions. The group has also proven highly capable o

Ethereum Data Breach Exposes 35,000 To Crypto Drainers
Date

Ethereum Data Breach Exposes 35,000 To Crypto Drainers

On July 2, 2024, Ethereum disclosed that a threat actor compromised Ethereum's mailing list provider and sent to over 35,000 addresses a phishing email with a link to a malicious site running a crypto drainer. Summarizing the attack, Ethereum noted: The threat actor imported a large email l

Medusa Returns To Target Android Devices
Date

Medusa Returns To Target Android Devices

A banking trojan first discovered in 2020 has made a comeback, according to threat intelligence firm Cleafy. Called Medusa, not to be confused by the ransomware gang or the botnet going by the same name, the malware targets Android devices and is offered as a Malware-as-a-Service to other threat act

Windows Search Protocol Abused To Push Malicious Scripts
Date

Windows Search Protocol Abused To Push Malicious Scripts

According to security researchers based at Trustwave, a sophisticated malware campaign has been detected. The attack campaign abuses the Windows search functionality embedded in HTML code to deploy malware. Researchers found that the threat actors utilize a sophisticated understanding of system vul

Ransomware Attack Results In Blood Shortages
Date

Ransomware Attack Results In Blood Shortages

England's NHS Blood and Transplant (NHSBT) has issued an urgent call to O Positive and O Negative blood donors to book appointments and donate. This comes as major hospitals in the London area had to cancel operations and blood transfusions after a cyberattack on June 4, 2024. Hospitals were direct