The INPS website was attacked while about 339,000 applications for the €600 benefits for VAT-registered and self-employed Italians were being processed
Around 3,000 systems infected daily by a newly discovered campaign to infect Microsoft SQL servers with data-stealing malware and Monero cryptomining code.
Microsoft prompted to issue targeted notifications to healthcare organisations as Covid-stresses sector faces severe threats from cyber-criminals
Nigeria continues to be a hotspot for this particular threat (BEC scams), with SilverTerrier growing into a sophisticated threat group
Kaspersky discovered watering hole websites targeting Asian ethnic group; preferred method for toppers in ATP Who’s Who, said CYFIRMA researchers
UK’s rapid response unit set up to combat misinformation about Coronavirus tackles five to ten misinformation campaigns each day
Popular video conferencing app offers huge bounty after series of hacking allegations hits the headlines.
Paper letters with printed socially-engineered messages use gift cards as lure to encourage victims to use malware-laced USBs
Orders up 23 percent year-on-year in UK; scamsters target card details and user info as more and more stay online
Hackers have compromised WordPress-based websites of corporate sites and news blogs to plant backdoors onto victim’s systems. Compromised websites redirect victims to phishing sites.
Apart from cyber-criminals, even Android app developers are attempting to capitalise on the growing number of people who are turning to apps for Covid information, finds Bitdefender
KnowBe4 notes dismal results in phishing test; Barracuda Network notes surge in Covid-related phishing activity globally
SQL injection was the major network attack tactic of Q4 2019, with an enormous 8000 percent rise when compared to Q4 2018, says WatchGuard research
Hackers able to capture payment data from online shoppers buying from Tupperware and affiliated sites, finds Malwarebytes
Cyber-criminals continue to ride on Covid-19 scare, with WHO remaining the prime target
TrickMo malware steals transaction authorisation codes from victims
Attackers are exploiting unpatched Windows zero day flaws; “limited targeted attacks” could leverage two unpatched remote code executive (RCE) vulnerabilities in Windows.
UK fintech company informed that its customer and employee data was safe, two days after a ransomware attack was reported
A flaw found last month is used by hackers to compromise and controlZyxel NAS devices under attack from Mukashi Mirai variant
Cyber-criminals say they won’t attack healthcare IT systems, but security pros expect ransomware onslaught to continue - with attacks up 36% says Positive report: Avast, Twitter act to aid public.
If you receive an email that appears to be from WHO, use the following guideline before responding
Cyber-criminals use coronavirus tracking map created by Johns Hopkins University to deliver Android spyware
"The internet doesn't care about you." Yet another Covid-19-themed phishing campaign uses the World Health Organisation (WHO) as a guise
Difficult to exploit, new flaw discovered in Intel processors could allow hackers to steal data from the CPU's cache memory.
NCSC experts warned the public to be wary of cyber-criminals using the Coronavirus outbreak to launch online attacks
A cyber-attack on the US HHS Department resulted in the circulation of false information about state action to contain the coronavirus outbreak and Czechs declare state of emergency after hospital attack
Hackers launched cyber-attack on a hospital in Czech Republic, stalling dozens of coronavirus test results
Riding on the wave of the Coronavirus scare, cyber-criminals have added to their repertoire of health-themed campaigns with fake Aids results the latest; financial institutions become largest targets
Security researchers found an updated version of the Wi-Fi spreader used by the Emotet malware being delivered to multiple bots
New campaign uses fake digital certificate updates to infect systems of visitors to websites that have been compromised
A little over a billion attacks were recorded by F Secure honeypots for the whole of 2018; by 2019 the total was 5.7 billion attacks - dominated by attacks hitting the Server Message Block (SMB) protocol.
Working remotely without proper oversight or preparation, especially the presence of unsecured IoT devices in houses, raises security concerns
Hackers are exploiting a Windows 10 ActiveX control to download a malware downloader called Ostap, which has been used by TRickBot for delivery of malicious macros as part of phishing campaign
The UK Veterinary Medicines Directorate is currently reporting that its Web services, such as the Special Imports System and the PID are currently unavailable.
MAT recorded a two-digit growth in detected installation packages, while stalkerware incidents grew at least twice from that of 2018, reported Kaspersky
Around 60 apps at risk of data slurp by criminals by malware dubbed Racoon which has been discovered to extract data from up to 60 applications.
A gradual increase in adversaries’ internal reconnaissance skills and abilities has enabled them to target systems that are vital to support the chain of production.
“Clients want someone as trustworthy as approved staff, acting diligently, not causing an outage or leak. But they want to simulate a real attacker, who acts with impunity & runs wild. It's difficult to reconcile.” Laurie Love
Phishing campaign in the guise of Google Docs forms asks for updating of Office 365 accounts to create fake Microsoft login pages to harvest corporate user credentials.
Joker spyware reappeared on the Google Play store over the last few months, a few samples at a time
Google has updated its terms of service as part of the plan to move its UK user account data to the US
Business support service provider ISS suspended services after malware attack on 17 February
First significant example of Russia's GRU using cyber-attacks to disrupt or destroy since late 2017 according to UK report on cyber-attacks against Georgia.
Study identified 438 industrial control system (ICS) vulnerabilities in 2019; More than 25 percent of advisories had no patch available at the time of disclosure
Unsigned firmware in computer accessories used by major manufacturers could allow hackers to plant malware stealthily
Email-based extortion scheme targets website owners serving banner ads through Google AdSense
Despite the harm data breaches do to business reputation, several UK enterprises remain alarmingly unprepared in cyber-defence, even complacent
New Metamorfo trojan targets 32 financial institutions and bitcoin transactions, marks escalation in ongoing campaign
Ransomware operators have started using legitimate, digitally signed hardware drivers to delete security products from targeted computers
Is Zero Trust really achievable given the complexity in finance service organisations?
Brought to you in partnership with Forescout