Thousands of Avis car rental customers had personal data stolen in cyberattack

Car rental giant Avis is notifying hundreds of thousands of people that their personal information and driver’s license numbers were stolen in an August cyberattack. The New Jersey-headquartered company said in a data breach notice filed with several U.S. attorneys Read More …

Loki: a new private agent for the popular Mythic framework

In July 2024, Kaspersky researchers discovered the previously unknown Loki backdoor, which was used in a series of targeted attacks. By analyzing the malicious file and open sources, we determined that Loki is a private version of an agent for the Read More …

Disneyland, Disney Cruise guests and employees personal info leaked

Over the summer, Disney’s internal communications channels suffered a data breach. We now know that as a result of this breach, guests and employees were affected, with personal information being stolen by hackers. Earlier this summer, a hacker group called Read More …

UK: TfL still affected by ‘ongoing cyber incident’

Transport for London (TfL) has restricted its online services as its computer systems continue to be affected by a cyber attack. The organisation said it took action including limiting access to some live travel information services via apps and its Read More …

Russian Military Cyber Actors Target U.S. and Global Critical Infrastructure

The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and National Security Agency (NSA) assess that cyber actors affiliated with the Russian General Staff Main Intelligence Directorate (GRU) 161st Specialist Training Center (Unit 29155) are responsible for Read More …

Tropic Trooper spies on government entities in the Middle East

Tropic Trooper (also known as KeyBoy and Pirate Panda) is an APT group active since 2011. This group has traditionally targeted sectors such as government, healthcare, transportation and high-tech industries in Taiwan, the Philippines and Hong Kong. Kaspersky recent investigation Read More …

Victoria: Simmering anger from firies over cyber attack details

Two years on from a cyber attack firefighters say their systems are not fully restored and they still do not know if their information was leaked. Victoria’s fire service says it continues to update the workforce about a cyber attack, Read More …

Mallox ransomware: in-depth analysis and evolution

Mallox is a sophisticated and dangerous family of malicious software that has been causing significant damage to organizations worldwide. In 2023, this ransomware strain demonstrated an uptick in attacks, the overall number of discovered Mallox samples exceeding 700. In the Read More …

Planned Parenthood confirms cyber-attack as RansomHub threatens to leak data

Planned Parenthood of Montana’s chief exec says the org is responding to a cyber-attack on its systems, and has drafted in federal law enforcement and infosec professionals to help investigate and rebuild its IT environment. This comes as ransomware crew Read More …

North Korea Aggressively Targeting Crypto Industry with Well-Disguised Social Engineering Attacks

The Democratic People’s Republic of Korea (“DPRK” aka North Korea) is conducting highly tailored, difficult-to-detect social engineering campaigns against employees of decentralized finance (“DeFi”), cryptocurrency, and similar businesses to deploy malware and steal company cryptocurrency. North Korean social engineering schemes Read More …