Written By Shane Schick

The Dark Overlord Claims to Have Stolen Secrets of 9/11 Attacks in Law Firm Data Breach

The threat group known as The Dark Overlord has claimed responsibility for a law firm data breach involving files allegedly related to the 9/11 terrorist attacks.

New Variant of Mirai Malware Exploits Weak IoT Device Passwords to Conduct Brute-Force Attacks

Security researchers discovered a new variant of Mirai malware known as Miori that is targeting internet of things (IoT) devices to integrate into a larger botnet.

Threat Actors Utilize Spear Phishing Emails Impersonating US Department of State Employees

Microsoft Windows Defender Research discovered an attack campaign that utilized spear phishing emails impersonating U.S. Department of State employees to gain remote access to victims' machines.

Malspam Campaign Impersonates UK Businesses to Target Victims With Banking Trojan

Security researchers discovered a malspam campaign targeting British computer users with the Ursnif/Gozi/ISFB Trojan.

Magecart Group’s Use of Credit Card-Skimming JavaScript Attack on the Rise

An online retailer was hit by a JavaScript attack from a group associated with Magecart, a collective of cybercriminals that specializes in skimming credit card numbers from compromised websites.

SNAKEMACKEREL Group Uses Brexit-Themed Spear Phishing Attack to Target Government Agencies

Analysts discovered a new spear phishing attack campaign from the SNAKEMACKEREL group that uses fake Brexit-related documents to infiltrate major government agencies and steal information.

KingMiner Maxes Out Windows Server CPUs in Widespread Cryptomining Campaign

Researchers detected a cryptomining campaign brute-forcing IIS/SQL Microsoft servers using 100 percent of victims' compute resources.

FakeSpy And XLoader Mobile Malware May Come From Yanbian Gang

Security researchers revealed that two mobile malware threats, Xloader and FakeSpy, may have been developed and launched by the same cybercriminal group.

Marriott Data Breach Impacts Personal Information of up to 500 Million Guests

The Marriott data breach could impact the personal information of approximately 500 million guests, including payment card data for about 327 million customers.

OceanLotus Watering Hole Campaign Compromises 21 High-Profile Southeast Asian Websites

A watering hole campaign that has been active in Southeast Asia since September has compromised at least 21 websites, including government and media domains.