A well-organized Nigerian crime ring is exploiting the COVID-19 crisis by committing large-scale fraud against multiple state unemployment insurance programs, with potential losses in the hundreds of millions of dollars, according to a new alert issued by the U.S. Secret Service. The Secret Service said the fraud network is believed to consist of hundred of "mules," a term used to describe willing or unwitting individuals who are recruited to help launder the proceeds of fraudulent financial transactions. READ MORE...
Texas' transportation agency has become the second part of the state government to be hit by a ransomware attack in recent days. On Thursday, someone hacked into the Texas Department of Transportation's network in a "ransomware event," according to a statement the department posted on social media Friday. The departments' website says some features are unavailable due to technical difficulties, but it is not clear what functions were affected by the attack. READ MORE...
Several high-performance computers (HPCs) and data centers used for research projects have been shut down this week across Europe due to security incidents. About a dozen of these supercomputers are affected in Germany, U.K., and Switzerland, leaving researchers unable to continue their work. Some were compromised as early as January. Supercomputers are extremely powerful systems built on traditional hardware to perform high-speed computations. READ MORE...
Romanian authorities said Friday they had disrupted a cybercriminal group that planned to conduct ransomware attacks on hospitals in the country. The hackers intended to pose as government officials and send malicious emails to public health institutions that purported to contain information on the coronavirus, according to the Directorate for Investigating Organized Crime and Terrorism (DIICOT), one of Romania's top law enforcement agencies. READ MORE...
Security researchers at Bitdefender have identified a highly sophisticated Android spyware platform that managed to remain undetected for four years. Dubbed Mandrake, the platform targets only specific devices, as its operators are keen on remaining undetected for as long as possible. Thus, the malware avoids infecting devices in countries that might bring no benefit for the attackers. READ MORE...
Cyberattackers are targeting a post-authentication remote code-execution vulnerability in Symantec Secure Web Gateways as part of new Mirai and Hoaxcalls botnet attacks. Hoaxcalls first emerged in late March, as a variant of the Gafgyt/Bashlite family, it's named after the domain used to host its malware, Hoaxcalls.pw. Two new Hoaxcalls samples showed up on the scene in April, incorporating new commands from its command-and-control (C2) server. READ MORE...