Cyber Security News


  • Israel Police Used NSO’s Pegasus Spyware Against Top Gov’t Officials, Journalists and Activists

    February 7, 2022

    Israel Police used NSO’s Pegasus spyware to hack the phones of public figures, including protest leaders, journalists, government employees and associates of former Prime Minister Benjamin Netanyahu, according to a report by Calcalist on Monday. According to the report, the hacking tool was used without a court order and against Netanyahu’s son, Avner Netanyahu, co-defendant in ...

  • Russia arrests third hacking group, reportedly seizes carding forums

    February 7, 2022

    Russia arrested six people today, allegedly part of a hacking group involved in the theft and selling of stolen credit cards. Russian media reports that the arrests come at the request of investigators from the Ministry of Internal Affairs of the Russian Federation. “The Tverskoy Court of Moscow received petitions from the investigation to select a measure ...

  • Medusa Malware Joins Flubot’s Android Distribution Network

    February 7, 2022

    Flubot, the Android spyware that’s been spreading virally since last year, has hitched its infrastructure wagon up to another mobile threat known as Medusa. That’s according to ThreatFabric, which found that Medusa is now being distributed through the same SMS-phishing infrastructure as Flubot, resulting in high-volume, side-by-side campaigns. The Flubot malware (aka Cabassous) is delivered to targets ...

  • Actinium hacking group is targeting emergency response and security organizations in Ukraine

    February 7, 2022

    Microsoft has detailed recent hacking activity of cyber actors, most likely aligned with the Russian Federal Security Service (FSB), who have targeted Ukraine government, security agencies and aid organizations. Microsoft says the hacking group, which it calls Actinium, has “targeted or compromised accounts” at Ukraine emergency response organizations since October. Actinium hackers also targeted organizations that ...

  • Ransomware groups are shifting towards smaller targets, but ones where they can still guarantee a significant payday

    February 7, 2022

    The cost and risk of executing ransomware attacks is going up, making it harder for cyber criminals to carry them out, which could lead to a decline in the number of overall ransomware attacks. But that could mean some ransomware victims end up paying a heavier price. Ransomware is still running rampant, with several major incidents ...

  • North Korea grows nuclear, missiles programs, profits from cyberattacks -U.N. report

    February 5, 2022

    North Korea continued to develop its nuclear and ballistic missile programs during the past year and cyberattacks on cryptocurrency exchanges were an important revenue source for Pyongyang, according to an excerpt of a confidential United Nations report seen on Saturday by Reuters. The annual report by independent sanctions monitors was submitted on Friday evening to the ...

  • Fortune 500 service provider says ransomware attack led to leak of more than 500k SSNs

    February 5, 2022

    Morley Companies, an organization that provides business services to dozens of Fortune 500 companies, said this week it was hit with a ransomware attack last year that led to the leak of sensitive information for more than 500,000 people. In a press release, the company said the ransomware attack began on August 1 and made their ...

  • Open-source Kubernetes tool Argo CD has a high-severity path traversal flaw: Patch now

    February 4, 2022

    A zero-day vulnerability in open-source Kubernetes development tool Argo lets malicious people steal passwords from git-crypt and other sensitive information by simply uploading a crafted Helm chart. Charts are the actual packaging format of ubiquitous tool-for-managing-Kubernetes applications Helm. The vuln, tracked as CVE-2022-24438, exists in Argo CD, a widely used open-source continuous delivery tool for Kubernetes. Patched ...

  • China suspected in hack of journalists at News Corp

    February 4, 2022

    Digital intruders broke into News Corp email accounts and compromised the data of an unspecified number of journalists, the company disclosed Friday. The media firm’s internet security adviser said the hack was likely aimed at gathering intelligence for Beijing’s benefit. News Corp, which publishes the Wall Street Journal, said the breach was discovered in late January and ...

  • Indicators of Compromise Associated with LockBit 2.0 Ransomware

    February 4, 2022

    LockBit 2.0 operates as an affiliate-based Ransomware-as-a-Service (RaaS) and employs a wide variety of tactics, techniques, and procedures (TTPs), creating significant challenges for defense and mitigation. LockBit 2.0 ransomware compromises victim networks through a variety of techniques, including, but not limited to, purchased access, unpatched vulnerabilities, insider access, and zero day exploits. After compromising a victim ...