Recent AD News

In a recently released cybersecurity advisory, the FBI revealed that Avoslocker, the Ransomware-as-a-Service group that surfaced in mid-2021, was responsible for targeting US-based critical infrastructure across multiple sectors. The statement was jointly authored by the US Treasury Department and the Financial Crimes Enforcement Network (FinCEN). The press release also shed light on the modus…

Since the onset of the war on Feb. 24, the Ukraine government has tallied 3,000 DDOS strikes, including a one-day high of 275. The State Service of Special Communication and Information Protection of Ukrainesays: “Russia’s aggression, the intensity of cyberattacks against Ukraine’s vital information infrastructure hasn’t decreased. While Russian missiles are…

Phishing attacks have been an age-old cybersecurity problem, with threat actors sending out bulk emails in an attempt to trick users into sharing confidential data, fraudulent bank transactions, or entering their passwords via bogus login portals. Threat actors are exploiting email accounts by hijacking ongoing conversations between the users to send out phishing emails. This method is more…

Lapsus$, the infamous hacking group, claims to have acquired around 200 GB of source code files, which represents over 5,000 GitHub repositories. The Vodafone source code that the hackers claim to have obtained has not been leaked. Instead, they are asking thousands of users to join their Telegram channel. Vodafone Portugal blamed certain service outages on a “malicious hack” in…

According to a report by Edgescan, organizations continue to take nearly two months to rectify critical risk vulnerabilities, with an average mean time to remediate (MTTR) of 60 days across the complete stack. High rates of “known” (i.e. patchable) vulnerabilities with live exploits employed by the well-known nation-state and cybercriminal groups are not prevalent. Significantly, 57…

According to the US Federal Bureau of Investigation (FBI), the RagnarLocker threat group breached 52 entities, of which 10 are critical infrastructure sectors including financial services, manufacturing, energy, government, and IT. To avoid suspicion and ensure administrators do not intervene with the deployment process, the ransomware operators breached and disabled remote management software…

An advanced banking malware known as SharkBot has been discovered on the Google Play Store for the second time. It was first discovered in November 2021, the treacherous malware is camouflaged as an antivirus app with virus detection and system cleaning capabilities. By exploiting the accessibility permission on Android devices and granting itself other necessary permissions, the updated version…

Samsung has confirmed a security breach after hacking group – Lapsus$ stole and exposed about 190 gigabytes of proprietary data, including source code for numerous technologies and algorithms for biometric unlock operations. The same group had previously broken into Nvidia and leaked hundreds of employee credentials on the internet. “We were recently made aware that there was a…