Category: security
CDN network cache hacked to spread malware across the globe
Threat actors known as CoralRaider have been using the Bynny content delivery network (CDN) to distribute infostealers to victims around the world. Rresearchers Cisco Talos have revealed who said CoralRaider abused the CDN to hide from security solutions, as they delivered LummaC2, Rhadamanthys, and Cryptobot. CoralRaider is a financially motivated…
Read More
Antivirus updates hijacked to drop dangerous malware
Imagine if your antivirus program infected your computer with malware – that’s exactly what happened to some eScan antivirus users recently. A new report from Avast has explained how a threat actor, possibly of North Korean affiliation, used a vulnerability in the antivirus program to sideload a backdoor called GuptiMiner. …
Read More
UnitedHealth confirms major cyberattack, says hackers stole “substantial” amount of patient data
UnitedHealth Group has issued an update on the data breach that recently struck its subsidiary, Change Healthcare. The healthcare giant suffered a ransomware attack that knocked some of its services offline and affected different pharmacies and other adjacent businesses across the United States. In an update, UnitedHealth Group said that…
Read More
South Korea defense firms hit by North Korean attacks
Multiple North Korean state-sponsored hacking groups have been attacking South Korean defense companies for more than a year, stealing login credentials and sensitive data. A Reuters report, citing South Korea’s law enforcement, claims three major threat actors – Lazarus, Kimsuky, and Andariel, have been going after defense organizations and third-party…
Read More
UK government cannot protect businesses and services from cyber attacks, IT pros say
UK businesses are rapidly losing confidence in the government’s ability to protect them from cyberattacks. This is according to a new report from cybersecurity researchers Armis, which states that the lack of faith is higher than anywhere else in Europe. To draft the report, Armis surveyed more than 2,600 global…
Read More
Dead ransomware HelloKitty reanimates in rebrand and releases CD Projekt and Cisco data
HelloKitty is back. The dreaded ransomware, which died in late 2023 after the developer leaked both the builder and the source code on a hacker forum, is back with a new name and a new data leak website. According to BleepingComputer, both the ransomware and the dark web portal are…
Read More