The alarming messages came fast and furious in mid-March, popping up on the cellphone screens and social media feeds of millions of Americans grappling with the onset of the coronavirus pandemic. Spread the word, the messages said: The Trump administration was about to lock down the entire country. Since that wave of panic, United States intelligence agencies have assessed that Chinese operatives helped push the messages across platforms. READ MORE...
Unknown threat actors have allegedly dumped nearly 25,000 email addresses and passwords from notable organizations involved in the fight against the COVID-19 pandemic, including credentials from prominent health organizations. Hackers have been using information belonging to groups such as WHO, the US CDC, the World Bank, the US NIH, the Bill and Melinda Gates Foundation, and the Wuhan Institute of Virology, according to research by the SITE Intelligence Group. READ MORE...
Cybercriminals have seized on the novel coronavirus as a theme in their attacks, and it turns out that the most sophisticated players on that scene are no exception. According to Google's Threat Analysis Group (TAG), more than a dozen nation-state-backed APTs are using the COVID-19 pandemic as a cover for their various cyberespionage and malware activities. Separately, FireEye Mandiant this week pinpointed one such effort, aimed at Chinese government agencies. READ MORE...
A leading supplier of video delivery software solutions is reportedly the latest victim of the Sodinokibi Ransomware, who has posted images of data they claim to have stolen from the company during a cyberattack. SeaChange, a Waltham, Massachusetts company with locations in Poland and Brazil, is an on-premise or remotely managed video-on-demand and streaming platform provider. SeaChange's customers include the BBC, Verizon, DISH, COX, DirecTV, and COX. READ MORE...
Cyber attackers are increasingly leveraging web shell malware to get persistent access to compromised networks, the US National Security Agency and the Australian Signals Directorate warn. Web shells are malicious scripts that are uploaded to target systems (usually web servers) to enable attackers to control it remotely. In affect, they create a backdoor into the target system. READ MORE...
Bluetooth came to the fore in the fight against the novel coronavirus this month when Apple and Google announced a project to use the wireless technology to trace people infected with the virus. The ambitious program to build interoperable software for iPhone and Android devices inspired hope in some and privacy concerns in others. New research highlights the potential security implications of using Bluetooth to track smartphone users. READ MORE...