Microsoft Says One Million Devices Impacted by Infostealer Campaign
Newly one million devices have been impacted by a malvertising campaign redirecting users to information stealer malware hosted on GitHub, Microsoft reports. The campaign, attributed to a threat actor tracked as Storm-0408, targeted the visitors of illegal streaming websites, where malvertising redirectors led to an intermediate site and then to the Microsoft-owned code hosting platform. READ MORE...
Many Schools Report Data Breach After Retirement Services Firm Hit by Ransomware
Dozens of school districts and thousands of individuals in the United States are impacted by a data breach resulting from a ransomware attack aimed at retirement services provider Carruth Compliance Consulting. Carruth Compliance Consulting (CCC) provides administrative services to public school districts and non-profit organizations for retirement savings plans. Carruth revealed that it had detected suspicious activity on its computer systems on December 21, 2024. READ MORE...
Cybercrime 'crew' stole $635,000 in Taylor Swift concert tickets
New York prosecutors say that two people working at a third-party contractor for the StubHub online ticket marketplace made $635,000 after almost 1,000 concert tickets and reselling them online. As the prosecutors explain, the vast majority of stolen tickets were for Taylor Swift's Eras Tour. However, the criminals also targeted other high-value and high-profile events, including Ed Sheeran concerts, Adele concerts, NBA games, and the US Open Tennis Championships. READ MORE...
Ransomware threat mailed in letters to business owners
Business owners and CEOs across the United States received customized ransomware threats this month from the most unusual of places-letters in the mail. The letters, which were first reported by multiple cybersecurity researchers, claim to come from a ransomware group called BianLian. But since Malwarebytes first started tracking BianLian nearly one year ago, our intelligence analysts have never seen the cybercriminal gang resort to sending physical letters to make their ransom demands. READ MORE...
Ransomware gang encrypted network from a webcam to bypass EDR
The Akira ransomware gang was spotted using an unsecured webcam to launch encryption attacks on a victim's network, effectively circumventing Endpoint Detection and Response (EDR), which was blocking the encryptor in Windows. Cybersecurity firm S-RM team discovered the unusual attack method during a recent incident response at one of their clients. Notably, Akira only pivoted to the webcam after attempting to deploy encryptors on Windows, which were blocked by the victim's EDR solution. READ MORE...
Like whitebox servers, rent-a-crew crime 'affiliates' have commoditized ransomware
There's a handful of cybercriminal gangs that Jason Baker, a ransomware negotiator with GuidePoint Security, regularly gets called in to respond to these days, and a year ago only one of these crews - Akira - was on threat hunters' radars and infecting organizations with the same ferocity as it is today. "As far as the ones that we're seeing most often in the last couple of months: Akira remains quite a prolific one," Baker tells The Register. READ MORE...
37K+ VMware ESXi instances vulnerable to critical zero-day
Broadcom on Tuesday disclosed three zero-day vulnerabilities that affect multiple VMware products, including ESXi, Workstation and Fusion. The vulnerabilities have been exploited in the wild. More than 37,000 VMware ESXi instances remain vulnerable to CVE-2025-22224, a critical zero-day vulnerability, according to scanning data from the Shadowserver Foundation. Some customers have been unable to download the patches because of an issue with the Broadcom Support Portal. READ MORE...
- ...in 1872, Dutch abstract painter Piet Mondrian, who co-founded the minimalist De Stijl art movement, is born in Amersfoort, Netherlands.
- ...in 1876, Alexander Graham Bell is granted a patent on his invention of the telephone.
- ...in 1900, the German ocean liner SS Kaiser Wilhelm der Grosse becomes the first ship to transmit wireless signals (via telegraph) to shore.
- ...in 1985, the charity single "We Are the World" by USA for Africa is released internationally, going on to sell more than 20 million copies.
