Ukrainian government networks breached via trojanized Windows 10 installers

Ukrainian government entities were hacked in targeted attacks after their networks were first compromised via trojanized ISO files posing as legitimate Windows 10 installers. These malicious installers delivered malware capable of collecting data from compromised computers, deploying additional malicious tools, Read More …

Apple should pay €6m to French data watchdog for tracking users without consent, says official

Apple tracked users without their consent and deserves to be fined €6 million, according to a top advisor to France’s data privacy watchdog. The Commission nationale de l’informatique et des libertés (CNIL) launched an investigation into Apple after a complaint Read More …

Ransomware group Play threatens to publish Antwerp’s data

Ransomware group Play claims to hold 557GB of data from the city of Antwerp. The local government fell victim to a ransomware attack last week. Play listed the city of Antwerp on its darkweb page on Sunday. The ransomware group Read More …

DeathStalker targets legal entities with new Janicab variant

“Dosen’t matter how long you wait for the bus on a rainy day, X seconds was enough to get wet?” Just to clarify, the above subheading isn’t a normal quote, but a message that Janicab malware attempted to decode in Read More …

Four suspects cuffed, face extradition to US over tax refund scam plot

Four men suspected of plotting to commit wire fraud and identity theft have been arrested and now face extradition to America. It is alleged they conspired to break into US companies’ servers, steal people’s personally identifiable information (PII), use that Read More …

Russian VTB bank reports major DDoS attack on bank from overseas

VTB’s technical infrastructure is currently under a major cyberattack from abroad. The bank’s customers may face temporary problems when using the application and the web version of VTB online due to the measures in tackling the attack that are in Read More …

Ransomware hits city of Antwerp

Cybercriminals infected the city’s IT systems with ransomware. Residents are unable to make appointments for public affairs. Antwerp’s police and museums are partially offline. The attack took place on the night of December 5-6. A city spokesperson told De Standaard Read More …

New details on commercial spyware vendor Variston

Threat Analysis Group (TAG) has been tracking the activities of commercial spyware vendors for years, using our research to improve the safety and security of Google’s products and share intelligence with our industry peers. TAG’s research underscores that the commercial Read More …

Crafty threat actor uses ‘aged’ domains to evade security platforms

A sophisticated threat actor named ‘CashRewindo’ has been using ‘aged’ domains in global malvertising campaigns that lead to investment scam sites. Malvertising involves the injection of malicious JavaScript code in digital ads promoted by legitimate advertising networks, taking website visitors Read More …