Android spyware camouflaged as VPN, chat apps on Google Play
Three Android apps on Google Play were used by state-sponsored threat actors to collect intelligence from targeted devices, such as location data and contact lists.…
Category: Bleeping Computer
Reddit hackers threaten to leak data stolen in February breach
The BlackCat (ALPHV) ransomware gang is behind a February cyberattack on Reddit, where the threat actors claim to have stolen 80GB of data from the…
BlackCat ransomware gang behind Reddit breach from February
The BlackCat (ALPHV) ransomware gang is behind a February cyberattack on Reddit, where the threat actors claim to have stolen 80GB of data from the…
New Mystic Stealer malware increasingly used in attacks
A new information-stealing malware named ‘Mystic Stealer,’ has been promoted on hacking forums and darknet markets since April 2023, quickly gaining traction in the cybercrime…
Microsoft confirms Azure, Outlook outages caused by DDoS attacks
Microsoft has confirmed that recent outages to Azure, Outlook, and OneDrive web portals resulted from Layer 7 DDoS attacks against the company’s services. The attacks…
US govt offers $10 million bounty for info on Clop ransomware
The U.S. State Department’s Rewards for Justice program announced up to a $10 million bounty yesterday for information linking the Clop ransomware attacks to a…
SMS delivery reports can be used to infer recipient’s location
A team of university researchers has devised a new side-channel attack named ‘Freaky Leaky SMS,’ which relies on the timing of SMS delivery reports to…
Windows 11 ‘Win32 app isolation’ security feature now in preview
Microsoft announced the public preview launch of Win32 app isolation, a new Windows 11 security feature designed to sandbox 32-bit desktop applications. Recently announced during…
The Week in Ransomware – June 16th 2023
The MOVEit Transfer extortion attacks continue to dominate the news cycle, with the Clop ransomware operation now extorting organizations breached in the attacks. On Wednesday,…
Police cracks down on DDoS-for-hire service active since 2013
Polish police officers of the country’s Central Bureau for Combating Cybercrime detained two suspects believed to have been involved in operating a DDoS-for-hire service (aka…
Google targets fake business reviews network in new lawsuit
Google has filed a consumer protection lawsuit against Ethan QiQi Hu and his company, Rafadigital, accusing him of creating 350 fraudulent Business Profiles and 14,000…
Windows 11 KB5027231 also breaks Chrome for Cisco, WatchGuard EDR users
The Windows 11 22H2 KB5027231 cumulative update released during this month’s Patch Tuesday also breaks Google Chrome on systems protected by Cisco and WatchGuard EDR…