Cybercrime News, Articles and Updates

Waymo sues Uber and subsidiary Otto over alleged digital theft of intellectual property

Autonomous car developer Waymo has filed suit against Uber and its subsidiary Otto for theft of trade secrets and patent infringement, alleging that Otto's founder Anthony Levandowski stole IP from Waymo while he was still an employee there.

No secret anymore: Russia touts cyber force

Russia has a cyber army. The announcement was made by Defense Minister Sergey Shoygu.

Kaspersky: Banking malware attacks up 30.6% in 2016; finance sector phishing also more prevalent

The number of cyberattacks targeting financial institutions and their customers soared to new heights in 2016, according to Kaspersky Lab, which observed nearly 1.09 million banking trojan attacks on users in 2016.

A dish served cold: Chef Gordon Ramsay's in-laws charged with computer hacking

London's Metropolitan Police Service has charged four in-laws of celebrity chef Gordon Ramsay, including the famous curmudgeon's father-in-law, with computer hacking.

Apple issues patch for Logic Pro X; new crypto-ransomware detected

Apple released a security update on Tuesday to patch a flaw in Logic Pro X, the company's software for audio professionals.

Infected weather app's forecast: Malware

Android users who recently downloaded the Good Weather app received quite a bit more than just a weather forecast: primarily having their mobile banking app compromised.

Operation BugDrop spies on mic recordings, uses Dropbox to exfiltrate data

A sophisticated cyber espionage operation focused primarily within Ukraine reportedly uses malware that leverages Dropbox to exfiltrate stolen data, including conversations recorded by infected computers' audio microphones.

Study finds taxpayers unaware, unprepared to combat fraud

A recent study found that tax payers may not be as concerned as they should be about tax fraud.

XAgent malware linked to DNC hackers can now attack Macs

Macs are officially no longer immune to XAgent, a backdoor malware linked to the Russian threat group APT 28, as researchers have now discovered a version targeting machines running on OS X.

Malware targeting banks contains apparent false flags designed to frame Russians

Malware samples recovered from watering hole attacks recently targeting banks across the globe contain false flags that fraudulently suggest Russian actors are behind the campaign, even though the most likely culprit is the Lazarus Group.

Trump fundraising website hacked

A fundrising website of President Trump was defaced on Feb. 19.

Check Point: Ransomware % of malware doubled in second half of 2016

The company's report says ransomware attacks increased from 5.5 percent, to 10.5 percent of all recognised malware attacks from July to December 2016.

Russian hacker Rasputin hits universities, state and fed government agencies

A Russian hacker who penetrated the network of the U.S. Electoral Assistance Commission and then put its database up for sale, has been detected continuing his nefarious activities.

New Mexico close to data breach bill

New Mexico, one of three states without a data breach notification law, moved to close the gap.

Uber drives down alert fatigue with customized data sets

To combat alert fatigue among its security analysts, transportation service Uber applies specially customized data sets to flagged incidents to help distinguish between genuine threats and non-malicious activities.

Yahoo issues new breach warning; Verizon shaves $300M off its Yahoo offer

Verizon's initial offer of $4.8 billion has been reduced by $250 million to $350 million, depending on source.

EvilAP attack observed at RSA Conference, Pwnie Express

Pwnie Express observed an EvilAP attack that netted six victims during the RSA 2017 Conference in San Francisco.

Report: Most cyber-attacks come from same place, and use basic tactics

F-Secure's new cyber security report paints a stark picture of the threats posed by insecure networks and devices, the internet of things, cyber-crime and others.

New Android downloader masquerading as Flash Player update

Users who install the malware might find their mobile devices held to ransom or bank accounts emptied.

Russian special services deny involvement in Shaltay Boltay case

Russian officials continue to deny reports that hacker group Shaltay Boltay operated with the blessing of the security service FSB.

Playing offense while battling cybercrime

Businesses should look to take the offense in the fight against cybercrime as threat actors adopt new and evolving tactics.

Flynn resigns after revelations sanctions were discussed with Russia

Speculation had long swirled that Flynn discussed sanctions leveled against Russia by former President Barack Obama for its alleged interference in the U.S. presidential election, but Flynn denied wrongdoing.

Cybercrime Blotter: 'Snowshoe spammer' faces flurry of fraud charges

Scottsdale, Arizona resident Michael Persaud has been indicted on federal fraud charges in Illinois for sending more than a million spam emails worldwide by abusing at least nine separate computer networks.

Mac malware reportedly first to infect machines using macros

Researchers have identified what they believe is the first in-the-wild instance of hackers using malicious macros in Word documents to execute malware on Mac computers, instead of Windows-based machines.

Return to sender: Smishing attack delivers fake Czech postal service texts

A newly discovered smishing campaign is faking texts from the Czech Republic's postal service, hoping to trick recipients into downloading a malicious app containing a trojan horse designed to steal credit card information.

Hummingbad overtaken as leading mobile malware in threat index

Triada, a modular backdoor for Android, the top of the "most wanted mobile malware".

Attackers steal from ATMs after infecting banks with memory-only malware

One or more unidentified hacker groups are leveraging free and commonly available pen testing tools to attack enterprises in the finance, government and telecom sectors with "fileless" malware that resides only in a machine's RAM, making it extremely difficult to detect and analyze.

Report: More than 100K WordPress web pages defaced following disclosure of patched bug

More than 100,000 WordPress web pages have been defaced, following last week's public disclosure of a patched vulnerability that allows attackers to remotely modify the content of pages and posts.