USCellular hit by a data breach after hackers access CRM software
Mobile network operator USCellular suffered a data breach after hackers gained access to its CRM and viewed customers' accounts. In a data breach notification filed with the Vermont attorney general's office, USCellular states that retail store's employees were scammed into downloading software onto a computer. This software allowed an attacker to access the computer remotely, and as the employee was logged into the customer relationship management (CRM), they gained access to that as well. READ MORE...
Breach Data Highlights a Pivot to Orgs Over Individuals
In 2020, breaches were down by 19%, while the impact of those compromises -- measured in people affected -- fell by nearly two-thirds. Both the number of data breaches and the number of individuals affected by data breaches plummeted in 2020, as attackers moved away from collecting mass amounts of information and instead targeted user credentials as a way to infiltrate corporate networks to install ransomware. That's according to a new report, out Jan. 28 from the Identity Theft Resource Center. READ MORE...
Hezbollah hackers attack unpatched Atlassian servers at telcos, ISPs
Volatile Cedar, an advanced hacker group believed to be connected to the Lebanese Hezbollah Cyber Unit, has been silently attacking companies around the world in espionage operations. The threat actor likely accessed more than 250 Oracle and Atlassian servers belonging mainly to organizations providing mobile communications and internet-based services. Also known as Lebanese Cedar, the actor has been active since at least 2012 but fell of the researchers' radar in 2015. READ MORE...
Elusive Lebanese Threat Actor Compromised Hundreds of Servers
A threat actor believed to be tied to the Lebanese government has compromised hundreds of servers pertaining to organizations worldwide, while maintaining a low profile, threat intelligence firm ClearSky reveals. Referred to as Lebanese Cedar or Volatile Cedar, the advanced persistent threat (APT) group has been active since 2012, but operated under the radar since 2015, after its activity was detailed by cybersecurity companies. READ MORE...
Extortion demands grow as cybercriminals target new online industries
There was a 154 percent increase in the number of attacks between 2019 and 2020, with growth in ransom-related DDoS (RDDoS) attacks and a rise in use of existing attack vectors, including web applications, a Neustar report reveals. The report also provides key details around the amount, size, duration and intensity of DDoS attacks throughout 2020 to keep cybersecurity professionals informed. DDoS extortion demands on the rise. READ MORE...
Europol: Emotet malware will uninstall itself on April 25th
Law enforcement has started to distribute an Emotet module to infected devices that will uninstall the malware on April 25th, 2021. Today, Europol announced the disruption of the infamous Emotet email spamming botnet used to distribute malicious Word spam attachments that install malware such as TrickBot and Qbot. These attacks usually lead to the full network compromise of infected companies and the deployment of Ryuk and Conti by TrickBot, and ProLock or Egregor by Qbot. READ MORE...
Lazarus Affiliate 'ZINC' Blamed for Campaign Against Security Researcher
Microsoft has attributed a recently discovered campaign to target security researchers with custom malware through elaborate socially-engineered attacks to an APT group affiliated with North Korea-linked Lazarus Group. Google's Threat Analysis Group (TAG) on Monday already sounded a warning about the attacks, which play the long game and leverage social media to set up trust relationships with researchers and then infect their systems with malware. READ MORE...
BEC Scammers Take Advantage of "Out-of-Office" Microsoft 365 Users
Fraudsters found a way during the recent holiday season to take advantage of users' "Out of office" messages to sneak messages into business inboxes. That's the finding of researchers at Abnormal Security who say that in December 2020 they saw attempts to evade automatic detection by corporate email security systems when many users had their automatic "Out of office" message enabled in Microsoft 365. According to researchers, the "Out of office" attack works like this. READ MORE...
Many WordPress Sites Affected by Vulnerabilities in 'Popup Builder' Plugin
Multiple vulnerabilities patched recently in the popular WordPress plugin Popup Builder could be exploited to perform various malicious actions on affected websites. With over 200,000 installations to date, "Popup Builder - Responsive WordPress Pop up - Subscription & Newsletter" is a plugin that helps WordPress site owners create, customize, and manage promotion modal popups. Discovered by researchers at website security company WebARX. READ MORE...
Encrypted Services Providers Concerned About EU Proposal for Encryption Backdoors
European encrypted services providers ProtonMail, Threema, Tresorit and Tutanota on Thursday urged European Union policy makers to rethink plans that would require the implementation of encryption backdoors. The Council of the European Union in December adopted a resolution on "security through encryption and security despite encryption." The council said it supports the development and use of strong encryption to protect citizens and organizations. READ MORE...
- ...in 1737, political theorist Thomas Paine ("Common Sense", "The Rights of Man") is born in Norfolk, Great Britain.
- ...in 1845, Edgar Allen Poe's "The Raven" is first published in the New York Evening Mirror.
- ...in 1886, Karl Benz receives a patent for his 3-wheeled "Motorwagen", the first automobile to be powered by an internal-combustion engine.
- ...in 1954, television host and producer Oprah Winfrey is born in Kosciusko, MS.
- ...in 1964, Stanley Kubrick's "Dr. Strangelove or: How I Learned to Stop Worrying and Love the Bomb" debuts in theaters.
