December 15, 2024

Over 25,000 SonicWall VPN Firewalls exposed to critical flaws

A recent analysis by cybersecurity firm Bishop Fox uncovered that over 25,000 publicly accessible SonicWall SSLVPN devices are vulnerable to critical security flaws, with 20,000 running outdated SonicOS/OSX firmware that is no longer supported by the vendor. The study identified a total of 430,363 publicly exposed SonicWall firewalls, significantly expanding the potential attack surface for cyber threats. Many of these […]
November 2, 2024

US continues investigation into Chinese cyber espionage campaign, as Volt Typhoon resurfaces

SecurityScorecard researchers revealed that the Chinese-affiliated threat group Volt Typhoon has rebuilt its botnet, which was disrupted by the FBI in January. In response, the U.S. government disclosed an ongoing cyber espionage campaign by China targeting commercial telecommunications infrastructure. The FBI and CISA confirmed that PRC-linked actors have compromised multiple telecom networks to steal customer call data, intercept private communications, […]
October 2, 2024

Ukrainian pleads guilty to operating Raccoon Stealer malware

Ukrainian national Mark Sokolovsky has admitted guilt in connection with his participation in the Raccoon Stealer malware cybercrime scheme. Sokolovsky and his accomplices disseminated Raccoon Stealer through a Malware-as-a-Service (MaaS) model, enabling cybercriminals to lease the malware for $75 per week or $200 per month. The malware is designed to exfiltrate a broad spectrum of sensitive data from compromised devices, […]
September 9, 2024

Server Attacked, Risk of Information Leak | System Square

On September 9, 2024, System Square disclosed that it had been the target of a cyberattack on August 26, 2024. The attack was confirmed to have damaged several of the company’s servers. The compromised servers contained customer and technical information, which may have been exposed due to the incident.The legitimate project, however, has clarified that there is no connection between […]
July 19, 2024

North Korea likely behind takedown of Indian crypto exchange WazirX

Indian cryptocurrency exchange WazirX has disclosed the loss of virtual assets worth over $230 million due to a cyberattack that has been linked to North Korea. In a statement shared late Thursday on its Xeet platform, WazirX reported that the attack targeted one of its multi-signature wallets—a type of digital asset storage that provides enhanced security by requiring multiple private […]
August 15, 2022

PLAY ransomware hits Argentina’s Judiciary of Córdoba

On Saturday 13th of August 2022, Argentina’s Judiciary of Córdoba experienced a ransomware attack that resulted in them having to shut down its IT systems. The shutdown also resulted in the use of pen and paper for submitting official documents. Argentina’s Judiciary of Córdoba has confirmed they were hit by ransomware and have engaged with Microsoft, Cisco, Trend Micro, and […]
February 14, 2022

FBI releases joint Advisory with U.S. Secret Service against BlackByte ransomware

On Friday 11th of February 2022, the US Federal Bureau of Investigation (FBI) released a joint Cybersecurity Advisory with the U.S. Secret Service (USSS) about indicators of compromise associated with BlackByte ransomware. The joint advisory alert details indicators of compromise (IOCs) from previous BlackByte ransomware attack which organisations can use to detect and defend against future BlackByte’s attacks. The joint […]
January 27, 2022

Provider for major tech companies, Delta Electronics suffer ransomware attack by Conti group

On Friday 21st of January 2022, Delta Electronics, a Taiwanese electronics company and a provider for major tech companies like Apple, Tesla, HP, and Dell, disclosed they had experienced a ransomware attack resulted in the encryption of 1,500 servers and 12,000 computers out of roughly 65,000 devices on Delta’s network. Although Delta has claimed that only non-critical systems have been […]
December 1, 2021

Planned Parenthood LA reveals data breach of 400,000 patients after ransomware

On Tuesday 30th of November 2021, Planned Parenthood Los Angeles disclosed they had experienced a ransomware attack in October that has led to the exposure of the personal information of approximately 400,000 patients. In a letter sent to affected patients, Planned Parenthood said that the ransomware attack was conducted against their network between October 9th and October 17th. But Planned Parenthood discovered the […]