‘Over the weekend, we saw about 50 new email domains that were purchased by cybercriminals to impersonate CrowdStrike,’ HacWare CEO Tiffany Ricks tells CRN. Phishing emails have been circulating around inboxes after news of the CrowdStrike IT outage with scammers impersonating support teams to remediate the issue, and HacWare CEO Tiffany Ricks said the messages…
Read More
The largest trial court in the United States, the Superior Court of Los Angeles County, closed all 36 courthouse locations on Monday to restore systems affected by a Friday ransomware attack. The attack, which has not yet been claimed by a ransomware operation, affected the entire network of the Los Angeles Superior Court. This includes…
Read More
Flight cancellations continued through the weekend while the two vendors sought to help expedite the recovery process for the millions of affected Windows devices. Following the massive CrowdStrike-Microsoft outage early Friday morning, flight cancellations continued through the weekend while the two vendors sought to help expedite the recovery process for the millions of affected Windows…
Read More
For many enterprises, IT infrastructures have broadened to the extent that they seemingly have no boundaries. Many employees are working remotely or via a hybrid model. Cloud-based services have become the norm. Edge computing and the internet of things are continuing to grow. This can all be great from the standpoint of keeping staffers happy,…
Read More
DDoS-for-hire service DigitalStress was taken down on July 2 in a joint law enforcement operation led by the United Kingdom’s National Crime Agency (NCA). The Police Service of Northern Ireland also arrested its owner (known as Skiop) this month, and NCA agents infiltrated the communication services used to plan distributed denial-of-service (DDoS) attacks, collecting data…
Read More
A pair of downgrades from Wall Street analysts and ongoing disruptions to flights weighed on the cybersecurity vendor’s stock price Monday. Following the CrowdStrike-caused Microsoft Windows outage Friday, a pair of downgrades from Wall Street analysts and ongoing flight disruptions sank the cybersecurity vendor’s stock price lower Monday. As of this writing Monday morning, CrowdStrike’s…
Read More
Jul 22, 2024NewsroomCloud Security / Phishing Attack A Latin America (LATAM)-based financially motivated actor codenamed FLUXROOT has been observed leveraging Google Cloud serverless projects to orchestrate credential phishing activity, highlighting the abuse of the cloud computing model for malicious purposes. “Serverless architectures are attractive to developers and enterprises for their flexibility, cost effectiveness, and ease…
Read More
A Telegram for Android zero-day vulnerability dubbed ‘EvilVideo’ allowed attackers to send malicious Android APK payloads disguised as video files. A threat actor named ‘Ancryno’ first began selling the Telegram zero-day exploit on June 6, 2024, in a post on the Russian-speaking XSS hacking forum, stating the flaw existed in Telegram v10.14.4 and older. ESET…
Read More
The relationship between various TDSs and DNS associated with Vigorish Viper and the final landing experience for the user A Chinese organized crime syndicate with links to money laundering and human trafficking across Southeast Asia has been using an advanced “technology suite” that runs the whole cybercrime supply chain spectrum to spearhead its operations. Infoblox…
Read More
More sensitive information that could be used in frauds and identity thefts included Medicare card numbers (including individual identifier and expiry), Pensioner Concession card number and expiry, Commonwealth Seniors card number and expiry, Healthcare Concession card number and expiry, Department of Veterans’ Affairs (DVA) (Gold, White, Orange) card number and expiry. Sensitive individual health data…
Read More