Cybercrime & Digital Threats
- July 25, 2019Cybercriminal group FIN8 reappeared with new PoS malware Badhatch, capable of scraping credit card data, installing a backdoor, and allowing remote access, among other routines.
- July 23, 2019The US Department of Education released a security advisory on ERP vulnerabilities after 62 institutions were infiltrated, stealing students' IDs to create fake accounts.
- July 18, 2019The total amount cybercriminals attempted to steal via business email compromise (BEC) scams rose to an alarming average of US$301 million per month — a substantial increase from the US$110 million monthly average that was tracked in 2016.
- July 17, 2019The GandCrab gang might be back to their old tricks. Various security researchers reported that the group might be responsible for releasing a more advanced ransomware variant called Sodinokibi.
- July 16, 2019New mobile malware Agent Smith targets Android devices to install malicious versions of popular apps. The malware displays fraudulent ads for the attackers' financial gain but can be further used for bigger attacks. Google has removed the malicious apps.
- July 15, 2019As ransomware becomes a bigger problem for local governments and other organizations, US mayors take a firm stand against paying ransom to hackers.
- July 12, 2019The government of the City of Griffin, Georgia, lost over US$800,000 to a business email compromise (BEC) scam last month.
- July 11, 2019A newly uncovered ransomware family was found targeting QNAP network-attached storage (NAS) devices. Named eCh0raix, the malware was reportedly designed for targeted ransomware attacks.
- July 09, 2019Microsoft found a malware campaign pushing the Astaroth info stealer into the memory of infected computers. This particular campaign was notable in its fileless distribution method and complex attack chain.