Cyber Attack News, Articles and Updates

Rate of data compromise revealed: 121 records per sec; defenders lagging

More data records have been breached in the first six months of 2017 than the whole of 2016. The Gemalto Breach Level Index reports that this amounts to an astonishing 121 records lost or stolen every second of every day.

Aggressive campaign spreads Locky variant with single identifier

An aggressive ransomware campaign is infecting victims with a Locky variant that only uses a single identifier for all of its victims.

N. Korea targets Bitcoin and other cryptocurrency firms amid sanctions

North Korean hackers are targeting banks and other cryptocurrency outlets as international sanctions appear to take their toll on the Hermit Kingdom.

Ransomware and IOT attacks spell trouble for transportation industry

The ransomware and IOT threat landscapes are merging into a greater threat for transportation sector.

Rural New York sheriff's department hacked

The Schuyler County (New York) Sheriff's Department's 911 emergency contact system was temporarily knocked offline by what local officials said was an attack by a foreign country.

Instagram API hacked to access verified accounts of Selena Gomez, others

Instagram confirmed it was hit by a cyberattack targeting several high profile celebrities.

Connected devices can get pwned by attackers every 2 minutes

IoT device pwned by credential attackers once every 120 seconds in SANS research using real connected device rather than honeypot.

CeX data breach - up to 2 million hit - and at risk of future scams

Today second hand games and electronics store CeX reported that it had been the victim of a massive data breach, issuing a statement to customers saying, "We have recently been subject to an online security breach."

Real Madrid Twitter accounts hacked shortly after FC Barcelona account breach

Grey hat hackers pranked soccer fans by hacking the Real Madrid Twitter accounts and posting tweets announcing the signing of rival Lionel Messi.

Hackers rewrite Jimmy Nukebot malware to change its goals and tasks

Jimmy Nukebot malware trojan becomes more modular to increase flexibility and make static analysis much more complicated - shows ability to adapt to the goals and tasks set before a botnet to take advantage of a new source.

Chinese hackers leverage HBO 'Game of Thrones' leaks to deliver trojans

A few weeks before the season finale of popular HBO series "Game of Thrones" Proofpoint researchers spotted a Chinese advance persistent threat (APT) group looking to lure fans with leaked episodes.

Researchers spot build your own malware apps for ransomware

Symantec researchers have spotted mobile malware factories in the wild which allow wannabe malware authors develop custom malware on their own devices without having to write a single line of code.

Chinese national arrested in relation to OPM breach

U.S. officials arrested a Chinese national who is accused of being involved in the 2015 OPM breach.

Researcher spots uptick in WAP-billing Trojan-Clickers

Kaspersky Lab researcher Roman Unuchek spotted an uptick in WAP-billing trojan-clickers from different cybercriminal groups targeting users in Russia and India.

Russian linked to 2014 Yahoo breach pleads not guilty

A Russian-born Canadian citizen pled not guilty after being accused for playing a role in the 2014 Yahoo hack which compromised the information of nearly 500 million users.

Shadow Brokers Eternal Exploits expected to remain effective

Even with increased awareness and the availability of patches, the vulnerabilities are unlikely to disappear soon, researchers said.

Uber FTC settlement requires 20 years of privacy audits following 2014 breach

Uber has agreed to the Federal Trade Commission that it will undergo 20 years of privacy audits after the agency said the firm "failed consumers."

U.S. Military vows to tweak and fling malware back at creators

U.S. military hackers are by throwing the proverbial malware grenade back at the enemy

Mandiant breach hackers claim to dump FireEye data

The threat actors who two weeks ago targeted Mandiant are now claiming to have leaked FireEye documents in a second leak.

Guccifer looks to avoid extradition to U.S., claims State Dept. is Guccifer 2.0

The infamous Guccifer is trying to avoid extradition to the U.S. and told reporters he feels the U.S. State Department is behind the Guccifer 2.0 hacks.

Cyberattacks at sea prompt return of radio ship navigation

The threat of cyberwarfare tactics at sea are prompting the return of ships using radio navigation

Carbanak Bateleur Jscript backdoor targets U.S. chain restaurants

Proofpoint researchers observed a Carbanak, aka FIN7, backdoor malware targeting U.S. restaurant chains looking to steal screenshots and passwords.

Persistent Persian Prince learns from takedowns - now avoids sinkholes

The information stealer, dubbed Foudre, incorporates new anti-takeover techniques in an attempt to avoid having its Command and Control (C2) infrastructure domains being sinkholed

Appeals court rules health insurance breach victims can sue providers

A lower court initially ruled that customers lacked standing because they failed to show a present injury or likelihood of being injured in the future.

Seattle man arrested after cyber extortion against Leagle.com and other firms

A Seattle man was arrested on federal charges Friday for attempting to extort Leagle.com and several other media companies.

Homograph attacks bring new level of spoofing

Researchers are warning users beware of homograph attacks which mimic legitimate domains using Unicode characters from non-Latin writing systems.