U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Credit to Author: BrianKrebs| Date: Thu, 09 Feb 2023 20:23:58 +0000

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “Trickbot,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. The U.S. Department of the Treasury says the Trickbot group is associated with Russian intelligence services, and that this alliance led to the targeting of many U.S. companies and government entities.

Read more

Massive increase in XorDDoS Linux malware in last six months

Credit to Author: Malwarebytes Labs| Date: Wed, 25 May 2022 15:48:19 +0000

Malware attacks against Linux systems are on the rise. And when it comes to bot malware, XorDDoS is the frontrunner.

The post Massive increase in XorDDoS Linux malware in last six months appeared first on Malwarebytes Labs.

Read more

Tampa Bay Times hit with Ryuk ransomware attack

Credit to Author: David Ruiz| Date: Fri, 24 Jan 2020 20:11:10 +0000

Florida newspaper The Tampa Bay Times suffered a Ryuk ransomware attack Thursday, making it the latest major victim of the notorious ransomware family that continues to rise in popularity.

Categories:

Tags:

(Read more…)

The post Tampa Bay Times hit with Ryuk ransomware attack appeared first on Malwarebytes Labs.

Read more

iNSYNQ Ransom Attack Began With Phishing Email

Credit to Author: BrianKrebs| Date: Fri, 09 Aug 2019 18:18:55 +0000

A ransomware outbreak that hit QuickBooks cloud hosting firm iNSYNQ in mid-July appears to have started with an email phishing attack that snared an employee working in sales for the company, KrebsOnSecurity has learned. It also looks like the intruders spent roughly ten days rooting around iNSYNQ’s internal network to properly stage things before unleashing the ransomware. iNSYNQ ultimately declined to pay the ransom demand, and it is still working to completely restore customer access to files.

Read more

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Credit to Author: BrianKrebs| Date: Mon, 18 Feb 2019 13:51:01 +0000

The U.S. government — along with a number of leading security companies — recently warned about a series of highly complex and widespread attacks that allowed suspected Iranian hackers to siphon huge volumes of email passwords and other sensitive data from multiple governments and private companies. But to date, the specifics of exactly how that attack went down and who was hit have remained shrouded in secrecy. This post seeks to document the extent of those attacks, and traces the origins of this overwhelmingly successful cyber espionage campaign back to a cascading series of breaches at key Internet infrastructure providers.

Read more

Blowing the Whistle on Bad Attribution

Credit to Author: BrianKrebs| Date: Fri, 18 Aug 2017 04:29:51 +0000

The New York Times this week published a fascinating story about a young programmer in Ukraine who’d turned himself in to the local police. The Times says the man did so after one of his software tools was identified by the U.S. government as part of the arsenal used by Russian hackers suspected of hacking into the Democratic National Committee (DNC) last year. It’s a good read, as long as you can ignore that the premise of the piece is completely wrong.

Read more

DNI: Putin Led Cyber, Propaganda Effort to Elect Trump, Denigrate Clinton


Russian President Vladimir Putin directed a massive propaganda and cyber attack operation aimed at discrediting Hillary Clinton and getting Donald Trump elected, the top U.S. intelligence agencies said in a remarkable yet unshocking report released on Friday.

Read more