News

A sophisticated spear-phishing campaign has targeted companies using Zeplin, a collaboration system heavily used in the software development and product design communities. The campaign, launched in early May by South Korean APT group Higaisa, took special aim at newer users of the service, luring users with files purporting to be a project file and updates to copyright policies. The Prevailion Tailored Intelligence Team, which discovered the campaign, notes in its published report that the malware...

More employees are working from home amidst the global pandemic, but a majority do so without proper training on how to ensure they can keep their organisation safe. More than half are using their personal devices to carry out work tasks, even as they believe these devices are not fully secure against advanced security threats. And this is despite 54% of these employees believing their organisations are more likely to experience a serious cyberattack during...

Singapore currently is developing a wearable device that may be issued to every resident as a way to facilitate contact tracing amidst the COVID-19 pandemic, but the move has sparked public outcry from individuals concerned about their privacy. An online petition urging the public to reject its use has, to date, garnered more than 17,500 signatures. Headlined "Singapore says 'No' to wearable devices for COVID-19 contact tracing", the online petition describes the implementation of such devices as...

Chinese and Iranian state-sponsored hackers have been caught targeting the Trump and Biden Presidential campaigns, according to Google. Shane Huntley, director of Google’s Threat Analysis Group, revealed the news in a couple of tweets yesterday. He confirmed that there was no sign the attacks had led to compromise. “We sent users our govt attack warning and we referred to fed law enforcement,” Huntley added. “If you are working on a campaign this election cycle, your personal accounts...

Cybercriminals gained access to systems owned by US military contractor Westech International according to reports from Sky News.The hackers stole top secret nuclear missile data, encrypted hard drives and began leaking documents in an extortion attempt. The breached company is a sub-contractor for Northrup Grumman, which provides engineering and maintenance support for the Minuteman III intercontinental ballistic missiles. Westech is based in Albuquerque and was formed in 1995 by Dr. Betty Chao. Sky News said...

Criminals are using resumes to hide malicious payloads in a business climate that has seen hundreds of thousands of individuals searching for jobs. According to new research, the fake CVs disguise banking trojans and data stealers in macros within Microsoft Excel files. Researchers at Check Point Software say that a new campaign of Zloader malware has been part of an overall doubling of resume-based subterfuge in the last two months. A similar campaign involving the TrickBot loader...

Widespread violent protests across the US over the past week have been followed by attempted DDoS attacks on several rights groups, according to Cloudflare. The web security firm analyzed malicious HTTP requests it blocked across the weekend of April 25/26 versus a month later (May 30/31). Minneapolis resident George Floyd was killed on May 25, sparking a wave of violence and protests across the US over the succeeding days. Cloudflare claimed to have blocked 135.5 billion...

Attackers have been pounding employee inboxes at companies that still use private branch eXchange (PBX) telephone systems for communication, delivering phishing that bypasses email defences. The messages pretended to be voicemail notifications from PBX integrations and featured custom subject lines to pass a superficial legitimacy test. Businesses around the world use PBX systems for internal communication. Integration with the company’s email client allows employees to access voice messages from their inbox. A fairly sophisticated phishing...

Cybercriminals have been keen to exploit COVID-19 to create coronavirus-related malicious apps, phoney websites, and phishing emails. As the pandemic has triggered a huge shift toward remote working, so, too, have criminals been trying to target business employees working at home. In a blog post published Wednesday, Abnormal Security describes a new phishing campaign that exploits the need for VPNs. The initial phishing email arrives with a notification ostensibly from IT support at the recipient's...

The Netwalker Ransomware operators claim to have successfully attacked the University of California San Francisco (UCSF), stolen unencrypted data, and encrypted their computers. UCSF is a research university located in San Francisco, California, and is entirely focused on health sciences.  According to the U.S. News & World Report's college rankings, UCSF ranks #2 in medical schools for research and #6 in best medical schools for primary care. Over the past week, the Netwalker Ransomware operation has...