In this undated handout photo released by Ukrainian Foreign Ministry Press Service, the building of Ukrainian Foreign Ministry is seen during snowfall in Kyiv, Ukraine. Ukrainian officials and media reports say a number of government websites in Ukraine are down after a massive hacking attack. While it is not immediately clear who was behind the…
Read more
North Korean hackers stole nearly $400 million worth of cryptocurrency in 2021, making it one of the most profitable years yet for cybercriminals in the severely isolated country, according to a new report. Hackers launched at least seven different attacks last year, mostly targeting corporate investments and centralized exchanges with a variety of tactics including…
Read more
The downside with offering APIs to interact with a car is that someone else’s security problem might become your own. Getty Images A young hacker and computer security researcher has found a way to remotely interact with more than 25 Tesla electric vehicles in 13 countries, according to a Twitter thread he posted yesterday. …
Read more
This morning, Microsoft’s 365 Defender research team released details of a new macOS “Powerdir” vulnerability that allows an attacker to bypass transparency, consent, and control technology to gain unauthorized access to protected data. Apple has already fixed vulnerability CVE-2021-30970 in the macOS Monterey 12.1 Update released in December, so users who have upgraded to the…
Read more
Threat actors used a cloud-based video hosting service to perform a supply chain attack on more than 100 real estate websites operated by Sotheby’s Realty that involved the injection of malicious skimmers to steal sensitive personal information . “Others import videos, even their websites are embedded with skimmer codes,” researchers from Unit 42 at Palo…
Read more
The Telegram messaging app Trojan installers are used to deploy the Windows-based Purple Fox backdoor to compromised systems. That’s according to new research published by Minerva Labs, which describes the attack as different from intruders that typically exploit legitimate software to release malicious payloads. “This threat actor was able to keep most of the attack…
Read more
The operators behind the pernicious TrickBot malware have resurfaced with new tricks that aim to increase its foothold by expanding its distribution channels, ultimately leading to the deployment of ransomware such as Conti. The threat actor, tracked under the monikers ITG23 and Wizard Spider, has been found to partner with other cybercrime gangs known Hive0105,…
Read more