News

Cybercriminals have been distributing fake Android and Windows installers for Cyberpunk 2077 which installs ransomware called CoderWare onto devices. Malicious actors are distributing the game through installers, cracks for copyrighted software, and cheats. A Kaspersky analyst discovered the Android ransomware which was disguised as a mobile version of Cyberpunk 2077. The game was being distributed on fake websites that were impersonating the Google Play Store. It was reported that the ransomware was using hardcoded keys,...

Coronavirus vaccines have been found for sale on the internet just days are the shot was first approved. One of the vaccines for offer was discovered by the cybersecurity company Check Point Software. The vaccines were priced at $250 with the vendor promising for fast and stealth-like delivers with double packaging and a courier delivery service for +$20. The advertisement was accompanied by a stock photo which didn't correspond with the vaccines on the market....

Microsoft has said that they have identified over 40 customers who were affected by the SolarWinds hack. These customers were affected as they installed trojanized versions of the SolarWinds Orion platform. Microsoft used their Microsoft Defender antivirus product, a built-in antivirus product for all Windows devices, to disorder the intrusions on their clients' devices. Brad Smith, President of Microsoft, said that they are now notifying anyone who was impacted, with 80% of those affected being located...

Research has revealed that in recent months hundreds of attempts of SystemBC deployments have been made globally by the ransomware groups Egregor and Ryku. Commodity malware backdoor SystemBC is now able to automate a range of key activities, while also being able to use the anonymizing platform, Tor. These new evolutions in SystemBC will make it easier for malicious actors to deploy the backdoor, while simultaneously disguising the destination of the command-and-control (C2) traffic.

The US Federal Bureau of Investigations (FBI) reports that they are aware of a number of incidents in which the DoppelPaymer ransomware gang has begun to cold-calling victims who have not paid their ransoms, in order to intimidate them into paying the demands. The FBI has said in a PIN (private industry notification) alert that these incidents have been taking place since February 2020. The alert notified the US private sector that this method of...

Although the investigation as to how SolarWinds' was compromised by hackers and how these hackers poisoned the company's software updates is still ongoing, new evidence reveals that it could have possibly been a meticulously planned, sophisticated supply chain attack. Today ReversingLabs published a report which revealed that the actors who attacked SolarWinds' most likely do so by compromising the software build and code signing infrastructure of SolarWinds Orion platform. Their access to SolarWinds' networks could...

Although most companies claim that they have well-defined consumer data protection and privacy policies, research has found that three in five US and Canadian companies fail to inform customers that they allow third-party services to use tracking codes on their websites. Zoho, an Austin based productivity app surveyed 1,416 individuals across Canada and the United States, with participants including a range of business leaders from C-level to manager roles, from a variety of business sizes....

Every year, fullstack vulnerability management provider Edgescan releases its Vulnerability Statistics Report, which highlights the highest impact vulnerabilities still out there in the wild. As a teaser to their 2021 report, their team has compiled a useful list of the top 5 known, unpatched vulnerabilities leveraged by cybercriminals in order launch attacks on unsuspecting organisations. The list includes the CVE, its impact and the threat actors taking advantage of the vulnerabilities. 1. CVE-2019-0708 - Often known...

Gmail has suffered two outages in 24 hours, as users have been unable to send emails to other Gmail users, while others have experienced unexpected behaviour. However, users are still able to access their Gmail accounts. When Gmail users send an email to another Gmail address they will immediately receive a delivery failure message which states "Address not found". Users of the GSuit who have custom domains are not experiencing any problems. Over 17,000 users...

Security researchers at Lookout have discovered a new strain of malware called Goontact which has surveillance and spying capabilities. The Goontact spyware is currently available on Android and iOS, with the ability to collect data from infected victims. This data includes photos, SMS messages, location information, phone identifiers and contacts. Lookout has reported that the Goontact malware is distributed by third-party sites that are promoting free instant messaging apps that are dedicated to reaching escort...