Cyber Threat solutions provider Cygilant hit by NetWalker Ransomware Attack

    Cygilant, a Cybersecurity company that offers threat monitoring solutions, was hit by a NetWalker Ransomware attack. Although the ransomware variant hasn’t been confirmed yet, Christina Lattuca, the CFO of the security firm confirmed that a file encrypting malware attack hit a portion of the company’s technology environment. Currently, Cygilant is working with the […]

New web skimmer steals credit card data, sends to crooks via Telegram

The digital credit card skimming landscape keeps evolving, often borrowing techniques used by other malware authors in order to avoid detection. As defenders, we look for any kind of artifacts and malicious infrastructure that we might be able to identify to protect our users and alert affected merchants. These malicious artifacts can range from compromised […]

BEC Attack Payments Are on the Rise, Report Finds

Criminals look for higher BEC payments Gift card frauds are the most common BEC incidents One Russian BEC operation tries to hit companies with $1.27 million attack The average payments made through Business Email Compromise (BEC) attacks are increasing significantly, according to a new report APWG Phishing Activity Trends Report. While data breaches and ransomware […]

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Iran-linked APT group Pioneer Kitten is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers. Iran-linked APT group Pioneer Kitten, also known as Fox Kitten or Parisite, is now trying to monetize its efforts by selling access to some of the networks it has […]

No Rest for the Wicked: Evilnum Unleashes PyVil RAT

Over the course of the last few months, the Cybereason Nocturnus team has been investigating the activity of the Evilnum group. The group first emerged in 2018, and since then, Evilnum’s activity has been varied, with recent reports using different components written in Javascript and C# as well as tools bought from the Malware-as-a-Service provider […]

WastedLocker Ransomware Attacks Against Large U.S. Corporations

A group of attackers called EvilCorp, according to the researchers of Symantec and NCC Group, have launched complex and sophisticated attacks against more than 30 large U.S. companies. Among the organizations involved are manufacturing companies, companies in the energy and chemical sectors, transport organizations and some entities in the healthcare sector. The attack downloads a […]

Targeted Malware Attacks Against U.S. Utilities

According to a recent article by a security company called Proofpoint, in the summer of 2019, traces of a malware attack were discovered, unnoticed for at least two months, targeting primarily U.S. utilities. According to the analysis, the attackers spread malware called FlowCloud, which was hidden in a portable executable file (PE file) during the […]

ICS Systems Targeted by Seven Different Families of Ransomware

FireEye has published the results of a rather interesting study, according to which financially motivated attackers (commonly referred to as cybercriminals) are increasingly beginning to extend their attacks to systems important in industrial process control after home users and enterprise IT systems. The researchers divided the ransomware targeting ICS systems into two groups according to […]

Last month’s huge leakage of 500 million Facebook users turns out to be quite a different story

Since the data leakage in early June of over half a billion private accounts from Facebook has a certain Cambridge Analytica vibe around it, we’ve tried to give a shot and find out how this dataset is being sold, who the vendors and the interested buyers are. The initial hint was that the dataset is […]