News & Updates

The GandCrab gang might be back to their old tricks. Various security researchers reported that the group might be responsible for releasing a more advanced ransomware variant called Sodinokibi.

New mobile malware Agent Smith targets Android devices to install malicious versions of popular apps. The malware displays fraudulent ads for the attackers' financial gain but can be further used for bigger attacks. Google has removed the malicious apps.

As ransomware becomes a bigger problem for local governments and other organizations, US mayors take a firm stand against paying ransom to hackers.

The government of the City of Griffin, Georgia, lost over US$800,000 to a business email compromise (BEC) scam last month.

A newly uncovered ransomware family was found targeting QNAP network-attached storage (NAS) devices. Named eCh0raix, the malware was reportedly designed for targeted ransomware attacks.

Two vulnerabilities, assigned CVE-2019-9629 and CVE-2019-9630, were uncovered in Sonatype’s Nexus Repository Manager (NXRM) — an open-source governance platform used by DevOps professionals.

Microsoft found a malware campaign pushing the Astaroth info stealer into the memory of infected computers. This particular campaign was notable in its fileless distribution method and complex attack chain.

In a new phishing campaign, audio recordings purportedly shared via OneNote were used as a lure to lead email recipients to a fake Microsoft login page that steals user account credentials.

A newly discovered backdoor malware dubbed Godlua was discovered conducting DDoS attacks. Unique to this Lua-based malware is its abuse of the DNS over HTTPS (DoH) protocol to secure its communication channels.