News – April 2023

  • UK spies waging cyber attacks to ‘weaken adversaries’ including Russia and Iran

    April 4, 2023

    GCHQ has revealed details of the UK’s National Cyber Force (NCF), which it says carries out cyber operations on a daily basis to protect against threats to the UK, including espionage, terrorism and serious crime. With weeks to go until England’s local elections, the intelligence agency said the secretive unit was also working to “reduce the ...

  • Western Digital suffers cyber attack, shuts down systems

    April 3, 2023

    The company said on 3 April that it identified a network security incident on 26 March. It confirmed that an unauthorised third party gained access to a number of the company’s systems. After realising it had been breached, Western Digital enacted its incident response protocols and hired external security and forensic experts. Read more… Source: IT Pro  

  • Not just an infostealer: Gopuram backdoor deployed through 3CX supply chain attack

    April 3, 2023

    On March 29, Crowdstrike published a report about a supply chain attack conducted via 3CXDesktopApp, a popular VoIP program. Since then, the security community has started analyzing the attack and sharing their findings. The following has been discovered so far: The infection is spread via 3CXDesktopApp MSI installers. An installer for macOS has also been trojanized. The ...

  • Unpacking the Structure of Modern Cybercrime Organizations

    April 3, 2023

    Trend Micro reearchers examine three differently sized criminal groups to know how they compare to similarly sized legitimate businesses in terms of how they are organized. Trend Micro also discuss how threat researchers can use their knowledge of the size and structure of a target criminal organization to aid their investigation. The last 20 years have ...

  • CISA Adds One Known Exploited Vulnerability to Catalog

    April 3, 2023

    CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation. CVE-2022-27926 Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Note: Read more… Source: U.S. Cybersecurity and Infrastructure Security Agency  

  • Urgent warning issued to Irish Gmail and Chrome users as hackers access personal data

    April 3, 2023

    People are being urged to be aware of hackers attempting to gain access to personal emails through Google Chrome with a new type of malware. Scammers are using a fake Chrome browser extension known as AF in a bid to get data from Gmail inboxes, with cybersecurity experts warning that victims of this scam were tricked ...

  • Ukrainian cops nab suspects accused of stealing $4.3m from victims across Europe

    April 1, 2023

    Ukrainian cops have arrested two suspects and detained 10 others for their alleged roles in a cybercrime gang that used phishing scams and phony online marketplaces to steal more than $4.3 million from over 1,000 victims across Europe. The fraudsters created more than 100 phishing sites to obtain victims’ bank card information and access their accounts, ...