Cybercrime

January 27, 2021

Even dead employees pose a security risk when their accounts are still active

Ransomware attackers compromised deceased employee's account to access a domain admin account. The incident is a sad reminder of some cyber hygiene standards too often overlooked.

The post Even dead employees pose a security risk when their accounts are still active appeared first on SC Media.

January 27, 2021

Law enforcement strikes back at Emotet, one of the world’s most popular ransomware loaders

The voluntary, collaborative posture taken by different private and public stakeholders is what sets this takedown apart from others.

The post Law enforcement strikes back at Emotet, one of the world’s most popular ransomware loaders appeared first on SC Media.

January 27, 2021

Law enforcement strikes back at Emotet, one of the world’s most popular ransomware loaders

The voluntary, collaborative posture taken by different private and public stakeholders is what sets this takedown apart from others.

The post Law enforcement strikes back at Emotet, one of the world’s most popular ransomware loaders appeared first on SC Media.

January 27, 2021

Phishing scheme shows CEOs may be ‘most valuable asset,’ and ‘greatest vulnerability’

Cybercriminals have been using a phishing kit featuring fake Office 365 password alerts as a lure to target the credentials of chief executives, business owners and other high-level corporate leaders – often companies' biggest security liabilities.

The post Phishing scheme shows CEOs may be ‘most valuable asset,’ and ‘greatest vulnerability’ appeared first on SC Media.

January 23, 2021

SonicWall network attacked via zero days in its VPN and secure access solutions

Cybersecurity firm SonicWall disclosed Friday night that hackers attacked the company’s internal networks by first exploiting zero-day vulnerabilities in its very own secure remote access products. SC Media received an anonymous tip Friday that SonicWall had suffered an attack, but did not get confirmation ahead of the disclosure by the company. SonicWall, whose product line…

The post SonicWall network attacked via zero days in its VPN and secure access solutions appeared first on SC Media.

January 16, 2021

FIN11 e-crime group shifted to CL0P ransomware and big game hunting

FIN11 has increasingly factored CL0P ransomware into its operations, and its clear they also put a substantial amount of effort into each follow-up compromise.

The post FIN11 e-crime group shifted to CL0P ransomware and big game hunting appeared first on SC Media.

January 8, 2021

Linux machines again targeted by hackers with new memory loader

The Ezuri loader filelessly executes malware on Linux machines from memory, using a technique that is more common in Windows.

The post Linux machines again targeted by hackers with new memory loader appeared first on SC Media.

January 7, 2021

Malspam campaign spoofs email chains to install IcedID info-stealer

A phishing campaign has been disguising its spam as an email chain, using messages taken from email clients on previously compromised hosts.

The post Malspam campaign spoofs email chains to install IcedID info-stealer appeared first on SC Media.

December 29, 2020

Treasury asks financial sector to watch out for COVID vaccine scams, ransomware

The Financial Crime Enforcement Network detailed for banks or other financial services organizations potential issues, asking the sector to be particularly attuned to ransomware attacks on distribution networks and the supply chains for the manufacture of vaccines.

The post Treasury asks financial sector to watch out for COVID vaccine scams, ransomware appeared first on SC Media.