From a joint advisory by CISA and the FBI: The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) are releasing this joint advisory to disseminate known Ghost (Cring)— (“Ghost”)—ransomware IOCs and TTPs identified through FBI investigation as recently as January 2025. Beginning early […]
Back in May 2024, the FBI issued a warning about the increasing threat of cybercriminals using AI in their scams to make it difficult for users to spot. Unilad reports: Cybercriminals are seemingly using all the right tricks to take advantage of innocent web users and recently, they have been targeting Gmail customers, which sees them use AI […]
Everything old is exploitable again? DarkReading reports: Abandoned cloud storage buckets present a major, but largely overlooked, threat to Internet security, new research has shown. The risks arise when bad actors discover and re-register these neglected digital repositories under their original name, and then use them to deliver malware or carry out other malicious actions […]
If you haven’t been paying attention to warnings that criminals are using artificial intelligence (AI) to help them research targets, craft better phishing lures, and writing malware, here’s another warning. This one comes from Google. As reported by Forbes: While AI assistants like Google’s Gemini and OpenAI’s ChatGPT offer incredible benefits, they are also being […]
Need a well-written phishing email but your English is not up to snuff? For a mere $50.00, you can get a chatbot to write malicious code for you. Abnormal Security reports: Artificial intelligence (AI) tools have changed the way we tackle day-to-day tasks, but cybercriminals are twisting that same technology for illegal activities. In 2023, WormGPT made […]
That invitation to a Teams call on which IT promises to mop up a spamstorm may not be what it seems Seen on The Register: Two ransomware campaigns are abusing Microsoft Teams to infect organizations and steal data, and the crooks may have ties to Black Basta and FIN7, according to Sophos. The antivirus maker’s […]
Forbes reports that some new research suggests that 100 million macOS users are at risk from a new attack involving a Banshee Stealer variant: A new variant of the macOS Banshee Stealer threat, capable of hacking browser credentials, cryptocurrency wallets and other sensitive data, has been monitored by security researchers since late last year. Now those […]
As Forbes reports, hijacking internet domains is nothing new, but a new Infoblox report reveals how the threat has evolved into an ongoing attack methodology. Forbes explains: The sitting duck cyber attacks are, Infoblox said, “easy to execute for actors, hard to detect for security teams.” To understand why you need to look at what vulnerability […]
Forbes explains: New threat analysis from researchers at Kaspersky has revealed a dramatic rise in the number of password-stealing attacks targeting Amazon, Facebook and, most of all, Google users. Here’s what you need to know. Amazon, Facebook And Gmail Are A Magnet For Password Hackers It should come as no surprise that the likes of […]
Microsoft says North Korean hackers stole crypto through Chromium
A vulnerability on multiple web browsers was exploited by the Citrine Sleet threat actor to steal crypto from its victims, according to Microsoft. A Microsoft report claims a North Korean threat actor has been exploiting a flaw on Chromium to steal cryptocurrency. The company’s security blog attributed the exploitation of this bug “with medium confidence” […]