Cybereason, creators of the leading Cyber Defense Platform, today released an investigative research report from its Nocturnus Research Group titled ‘Dropping Anchor: From a TrickBot Infection to the Discovery of the Anchor Malware’ looking at a new series of hacking campaigns against financial, manufacturing, and retail businesses across the United States and Europe. “We chose not to discuss attribution in this research, but the nature of these attacks appear to be aligned with the financially-motivated FIN6 threat actor, a group that is known to target POS systems and has been linked to TrickBot infections in the past. The gravity and danger that lies in commodity malware infections have the…
ISBuzz Team
Researchers monitoring activity on underground markets found that more than 460,000 payment card records were offered for sale in two days on a popular forum where such data is being traded. The card info is split into four databases sold separately and offered in two rounds, on October 28 and November 27. Eight-five to 90% of the cards were valid and all came with the CVV (card verification value) numbers that are necessary for card not present transactions like online shopping. https://twitter.com/anoufriev/status/1204918403963555841
Malwarebytes researchers have discovered a credit card skimmer injected into hundreds of fraudulent sites selling brand name shoes. Many of these sites have been infected with malware that skims credit card information during the checkout process. All of the sites were running outdated versions of the Magento e-commerce platform and the PHP programming language it utilizes. https://twitter.com/Gate_15_Analyst/status/1204740228751265794
This morning, Finnish security company F-Secure disclosed a number of vulnerabilities in the KeyWe Smart Lock, which is marketed as the “smartest lock ever” and advertised for unlocking doors through a mobile app. Security researchers discovered that cyberattackers could intercept network traffic between a user’s mobile app and the smart lock itself, ultimately gaining access to the keys to one’s home.
In light of WADA’s sporting ban of Russia, cyber security experts at ThreatConnect have warned that WADA itself, as well as the likes of FIFA and the IOC, must remain vigilant for potential malicious activity over the coming months. ThreatConnect has tracked Russian actors over the last several years, and found efforts to target WADA, and other organisations, after previous sport-related bans.
Scammers are masquerading as The Elder Scrolls Online developers and sending Playstation private messages that state your account will be banned if you do not provide your login credentials within 15 minutes, Bleeping Computer reported.
It has been reported that Apple has fixed a bug in iOS 13.3, out yesterday, which let anyone temporarily lock users out of their iPhones and iPads by forcing their devices into an inescapable loop. Kishan Bagaria found a bug in AirDrop, which allows users to share files between iOS devices. He found the bug let him repeatedly send files to all devices able to accept files within wireless range of an attacker. When a file is received, iOS blocks the display until the file is accepted or rejected. But because iOS didn’t limit the number of file requests a device can accept, an attacker can simply…
It has been reported that a range of connected toys available on the high street and online have been found to include serious security flaws which could put children at risk of exposure to strangers and inappropriate content. That is the conclusion of research from consumer group Which? after testing of a series of popular ‘smart’ toys fitted with internet and Bluetooth connectivity.
A UK pen testing company – Fidus Information Security found an unprotected AWS server that exposed the information of 750-thousand birth certificate applications. A Techcrunch report indicates that was a third-party supplier of data to the U.S. government left the server unprotected.
In response to reports that recent changes to the Ryuk ransomware encryption process resulted in a decryptor bug that could lead to data loss, an expert offers perspective below.