The US government has imposed sanctions on two Russian cybercriminals for cyberattacks targeting critical infrastructure. According to a US Treasury press release, the two sanctioned persons are Yuliya Vladimirovna Pankratova and Denis Olegovich Degtyarenko, both key members of the Russia-aligned hacktivist group Cyber Army of Russia Reborn (CARR). Pankratova, known online as ‘YuliYA,’ is allegedly the…
Read More
From Google’s potential blockbuster acquisition of security startup Wiz to the massive CrowdStrike and Microsoft chaos, here’s four big things to watch for during Google Cloud’s earnings results slated for Tuesday. Google Cloud’s parent company Alphabet is releasing the financial earnings results for its second quarter 2024 on Tuesday with potential huge discussions around the…
Read More
‘Over the weekend, we saw about 50 new email domains that were purchased by cybercriminals to impersonate CrowdStrike,’ HacWare CEO Tiffany Ricks tells CRN. Phishing emails have been circulating around inboxes after news of the CrowdStrike IT outage with scammers impersonating support teams to remediate the issue, and HacWare CEO Tiffany Ricks said the messages…
Read More
The largest trial court in the United States, the Superior Court of Los Angeles County, closed all 36 courthouse locations on Monday to restore systems affected by a Friday ransomware attack. The attack, which has not yet been claimed by a ransomware operation, affected the entire network of the Los Angeles Superior Court. This includes…
Read More
Flight cancellations continued through the weekend while the two vendors sought to help expedite the recovery process for the millions of affected Windows devices. Following the massive CrowdStrike-Microsoft outage early Friday morning, flight cancellations continued through the weekend while the two vendors sought to help expedite the recovery process for the millions of affected Windows…
Read More
For many enterprises, IT infrastructures have broadened to the extent that they seemingly have no boundaries. Many employees are working remotely or via a hybrid model. Cloud-based services have become the norm. Edge computing and the internet of things are continuing to grow. This can all be great from the standpoint of keeping staffers happy,…
Read More
DDoS-for-hire service DigitalStress was taken down on July 2 in a joint law enforcement operation led by the United Kingdom’s National Crime Agency (NCA). The Police Service of Northern Ireland also arrested its owner (known as Skiop) this month, and NCA agents infiltrated the communication services used to plan distributed denial-of-service (DDoS) attacks, collecting data…
Read More
A pair of downgrades from Wall Street analysts and ongoing disruptions to flights weighed on the cybersecurity vendor’s stock price Monday. Following the CrowdStrike-caused Microsoft Windows outage Friday, a pair of downgrades from Wall Street analysts and ongoing flight disruptions sank the cybersecurity vendor’s stock price lower Monday. As of this writing Monday morning, CrowdStrike’s…
Read More
Jul 22, 2024NewsroomCloud Security / Phishing Attack A Latin America (LATAM)-based financially motivated actor codenamed FLUXROOT has been observed leveraging Google Cloud serverless projects to orchestrate credential phishing activity, highlighting the abuse of the cloud computing model for malicious purposes. “Serverless architectures are attractive to developers and enterprises for their flexibility, cost effectiveness, and ease…
Read More
A Telegram for Android zero-day vulnerability dubbed ‘EvilVideo’ allowed attackers to send malicious Android APK payloads disguised as video files. A threat actor named ‘Ancryno’ first began selling the Telegram zero-day exploit on June 6, 2024, in a post on the Russian-speaking XSS hacking forum, stating the flaw existed in Telegram v10.14.4 and older. ESET…
Read More