Cyberattack News, Articles and Updates

Taiwanese Semiconductor product knocked offline due to malware

The Taiwan Semiconductor Manufacturing Co. (TSMC) had several factories knocked offline late last week due to an as yet unknown cyberattack.

Russian spearphishing campaign targeted nearly 800 PCs at more than 400 companies

A spearphishing campaign targeted more than 400 industrial companies by sending highly personalized emails disguised as procurement and accounting documents.

Fortnite click-fraud scammers set to earn $1 million

Imperva researchers estimate Fortnite Scammers are earning nearly $1 million annual through pay per click advertising by exploiting users eager to get free in-game currency.

Crook gets 20 years for literal domain hijacking at gunpoint

A man was sentenced to 20 years in prison after giving a new meaning to the term domain-hijacking when attempting to forcibly steal a domain name from someone at gunpoint.

Prowli campaign monetized 40K machines across various industries

The campaign dubbed Operation Prowli was observed targeting vulnerable platforms, including CMS servers, backup servers, DSL modems and IOT devices to mine cryptocurrency, promote fake websites and run tech support scams,

'Cyber incident' leaves Eventbrite-owned Ticketfly offline, ransom demanded.

The company didn't specify whether or not user information has been compromised but did acknowledge the incident in a tweet.

NigelThorn malware exploits Google Chrome zero-day

A zero-day exploiting malware capable of performing credential theft, cryptomining, click fraud, and more has already infected more than 100,000 users from over 100 countries

Trump administration looking to rescind cyberwarfare approval process

The Trump administration is reportedly looking to rescind Presidential Policy Directive 20 an important policy memorandum that currently guides the approval process for government-backed cyberattacks

PyRoMine uses NSA exploits to mine Monero and disable security features

In the age where cryptomining software is beating out ransomware as the go to for most hackers, a Python-based Monero miner is using stolen NSA exploits to gain an edge

Malware attacks leveraging MS Word documents grew by 33% in Q4

Amidst a major rise in zero-day malware attacks in Q4 2017, researchers have observed how hackers are increasingly using Microsoft Office documents as carriers to deliver malicious payloads in enterprise systems.

Common-sense GoScanSSH author avoids infecting high-risk targets

Researchers at Cisco's Talos Intelligence Group have identified a new malware family, dubbed GoScanSSH, that compromises SSH servers. Well, those not attached to government, law enforcement or military domains anyway. Note: SC Media UK will not be publishing during UK Easter holidays, resuming 2nd April 2018.

Bitcoin stealing malware distributed on download.com for nearly a year

Bitcoin stealing malware that swaps user accounts with that of the attacker was hosted on Download.com servers for nearly a year.

U.K. government publicly blames Russia for NotPetya attacks

The U.K. government publicly accused Russia of carrying out the June 2017 NotPetya ransomware attacks in June 2017 as part of a deliberate attack on the Ukraine state.

Olympic torch lights the way for cybercrimminals

The potential for cyberattacks being launched against those attending the games, and even those watching from afar, is so strong that U.S. CERT has issued cybersecuirty guidelines for visitors.

Google's DoubleClick network exploited to serve cryptominers

A malvertising campaign was observed exploiting Google's DoubleClick network to deliver silent cryptominers on high-traffic sites.

Hacked cryptocurrency exchange to reimburse customers after largest heist in history

Tokyo-based cryptocurrency exchange Coincheck Sunday told customers it would be repaying about 90 percent of the $534 million worth of NEM coin stolen.

GhostTeam adware looks to steal Facebook credentials

A Vietnamese adware dubbed "GhostTeam" was found hiding in 53 Google Play apps disguised as utility apps, device performance boosting apps, and social media downloaders.

Hackers crack BlackWallet DNS server, steal $400,000

Attackers have made off with up to $400,000 (£290,000) in cryptocurrency after an ingenious attack on Stellar Lumen (XLM) wallet, BlackWallet.

Aspen Cyber Strategy Group holds inaugural meeting to tackle cybersecurity issues

The organization is chaired by IBM Chairman, President and CEO Ginni Rometty, Rep. Will Hurd, and former White House Homeland Security Advisor Lisa O. Monaco.

Necurs botnet launches massive 47 million emails per day campaign

The Necurs botnet continued to launch massive global ransomware attacks through the Holiday Season with researchers stopping as many as 47 million emails per day.

Starbucks free Wi-Fi caught secretly mining cryptocurrency

A tech CEO noticed the free Wi-Fi at his local Starbucks didn't exactly come without a price after discovering the network was to mining cryptocurrency.

Tennessee city still not recovered from ransomware attack

The City of Spring Hill, Tenn. is still suffering from the effects of a ransomware attack that struck the municipality in early November when government officials refused to pay the $250,000 ransom demanded by the cybercriminals.

Dark Overlord threatens to release plastic surgery images of royals, celebrities

The Dark Overlord cybergang has at least temporarily moved away from attacking school districts and has turned back to threatening to release celebrity private information by hacking a London, UK plastic surgery firm.

Bill legalizing hacking back introduced in the House

Reps. Tom Graves, R-Ga., and Kyrsten Sinema, D-Ariz., today introduced the Active Cyber Defense Bill which if passed would give individuals and companies hit with a cyberattack the legal authority to hack back against their assailant.

Despite increased spend, why doesn't DDoS mitigation always work?

Newly published research suggests that while there has been a marked increase in spending to mitigate against Distributed Denial of Service (DDoS) attacks, organisations are still falling victim.

CBS's Showtime sites silently used Monero Miners on user's browsers

CBS's Showtime is the latest site to silently mine cryptocurrencies off of the systems of unsuspecting users in the latest trend of cryptocurrency miner infections.