Bradley Barth

Editor
Shamoon disk wiper attack on Saipem signals new affront against energy sector, Middle Eastern interests

Shamoon disk wiper attack on Saipem signals new affront against energy sector, Middle Eastern interests

The malware used to disrupt the global operations of Italian energy contractor Saipem S.p.A. earlier this week was none other than Shamoon, a disk wiper that's been used in two prior attacks against Saudi interests.

'Sharpshooter' cyber-espionage campaign scopes out defence, critical infrastructure sectors

'Sharpshooter' cyber-espionage campaign scopes out defence, critical infrastructure sectors

A global phishing campaign called Operation Sharpshooter was discovered using fake job recruitment documents to infect defence, government and critical infrastructure organisations with a malicious backdoor implant, presumably for cyber-espionage purposes.

Cyber-attack sidelines Middle East servers of Italian energy contractor Saipem

Cyber-attack sidelines Middle East servers of Italian energy contractor Saipem

Italian oil and gas industry contractor Saipem S.p.A. has reportedly confirmed that a Monday cyber-attack impacted its servers and infrastructure in the Middle East as well as in Scotland.

Cyber-criminal phishing campaign spoofs Russian critical infrastructure domains

Cyber-criminal phishing campaign spoofs Russian critical infrastructure domains

A cyber-criminal phishing operation designed to infect victims with a malicious backdoor was recently discovered using command-and-control domains that intentionally spoofed the real-life domains of various Russian critical infrastructure firms.

Researchers discover 40,000+ compromised credentials for global gov't websites

Researchers discover 40,000+ compromised credentials for global gov't websites

Over the last year and a half, attackers compromised more than 40,000 credentials for various global government websites and portals, using a combination of spyware tools and phishing tactics.

Cryptomining campaign pulls new 'Linux Rabbit' malware out of its black hat

Cryptomining campaign pulls new 'Linux Rabbit' malware out of its black hat

A two-month Monero cryptomining campaign targeted both Linux-based servers and Internet of Things devices with a newly discovered malware family called "Linux Rabbit," researchers have reported.

Researchers: Syrian Electronic Army targeting secure messaging app users with spyware

Researchers: Syrian Electronic Army targeting secure messaging app users with spyware

The Syrian Electronic Army hacker group has reportedly been investing heavily in a scheme to infect Android device users with a spyware tool hidden inside fake app updates.

Company's ransomware decryption service is a sham, researchers report

Company's ransomware decryption service is a sham, researchers report

A Russian company that claims to specialise in decrypting ransomware is actually just secretly brokering deals with the malware distributors and charging victims for this middle-man service, researchers say.

DanaBot banking trojan adds sly spam feature, distributes GootKit malware

DanaBot banking trojan adds sly spam feature, distributes GootKit malware

The DanaBot banking trojan is branching out into new territories, adding email address harvesting and spam distribution to its bag of tricks, while apparently partnering with the actors behind GootKit, another banking malware program.

Adobe fixes zero-day Flash bug after attackers target Russian clinic with exploit

Adobe fixes zero-day Flash bug after attackers target Russian clinic with exploit

Adobe Systems today issued an emergency security update for Flash Player following the discovery of a critical vulnerability that attackers were actively exploiting in a 29 November phishing operation targeting a Russian state health care institution.