Cyber Bites

The notorious North Korea-backed hacking collective Lazarus Group is suspected to be behind the recent $100 million altcoin theft from Harmony Horizon Bridge. Last week Harmony confirmed that its Horizon Bridge, a platform that allows users to move cryptocurrency across different blockchains, had been breached. The incident involved the exploiter carrying out multiple transactions on 23rd June that extracted tokens stored in the bridge and stole approximately $100 million in cryptocurrency. Elliptic, a blockchain analytics...

The American retailer Walmart has denied being hit with a ransomware attack by the Yanlouwang gang after hackers claimed to encrypt thousands of computers. According to BleepingComputer, Walmart said that their "Information Security team is monitoring our systems 24/7," and believe the claims to be inaccurate. "We believe this claim is inaccurate and are not aware of a successful attack in this regard on our devices," a Walmart said. On Monday, the Yanluowang ransomware operation,...

YTStealer, a new information-stealing malware, is targeting YouTube content creators and attempting to steal their authentication tokens and hijack their channels. Focusing on one goal has given YTStealer's authors the capacity to make its token-stealing operation very effective, according to a report published earlier this week by Intezer. Most of its distribution uses lures impersonating software that edits videos or acts as content for new videos, targeting YouTube creators. Examples of impersonated software that contains...

A new survey from Bridewell, a cybersecurity services company, found that 95% of respondents are experiencing factors that would make them likely to leave in the next 12 months. Of the 521 critical national infrastructure decision makers who were surveyed, 40% said stress could push them to leave their job with the next year. These industry leaders attribute their desire to two dominant causes: 42% say a cyber breach is inevitable and do not want...

Whether you are ordering food online, booking a doctor's appointment, or checking your balance, you are doing it through your phone. For many years we believed that we had a valid reason to trust our phone with sensitive information. Today, we have to acknowledge that this isn't completely true and examine the risks inherent in our mobile devices. Looking ahead to 2022, these are the threats to be on the lookout for. DATA LEAKS Accepting...

The Evilnum hacking group have been targeting European organisations that are involved in international migration, showing renewed signs of malicious activity within the group. Evilnum is an advanced persistent threat (APT) that has been active since at least 2019 and had its campaign and tools exposed in 2020. In 2020, ESET published a technical report describing the threat group's tactics against compaines in the financial technology sector, using "homemade", custom malware. Zscaler's analysts have discovered...

Wiltshire Farm Foods, a leading producer of frozen ready meals in the UK, has revealed that its systems are currently down after experiencing a serious cyber-attack. The producer said on Sunday that it is "currently experiencing severe difficulties" with its computer system. They said, “If you are expecting a delivery this week (w/c 27th June) or have other concerns, please contact your local depot." “Unfortunately, as our systems are not currently working, we will be...

A report released by Mandiant on June 28th found a coordinated effort to generate outrage and protests against an Australian rare earth mining company, Lynas Rare Earths Ltd. Lynas, the world's largest rare earth mining company outside of China, is planning an expansion into Texas to extract materials which are valuable to consumer and defense products. This influence operation aligns with the geopolitical goal of the PRC to curtail the United States' ability to compete...

More news concerning the notorious spyware group NSO Group Technologies was released last week in discussions with European legislators. At least five EU countries have been using its powerful Pegasus surveillance malware raising questions about how commercially-available spyware is increasingly being abused. The capabilities of Pegasus are something out of an Orwellian novel. The software allows governments to hack into iPhones and Android phones; turning on microphones and cameras, recording text messages, call logs, locations,...

An unidentified hacker group has stolen more than $100million from Californian cryptocurrency firm Harmony. Last Thursday, the company made the announcement via Twitter. They said that they had identified a theft occurring on the Horizon bridge amounting to approximately $100m. The first Tweet reads, “we have begun working with national authorities and forensic specialists to identify the culprit and retrieve the stolen funds." Harmony published the cryptocurrency address of the malicious actor and reassured customers that...