News May 18, 2022

AcidRain Malware Shuts Down Thousands of Modems in Ukraine

2 min read - On Thursday, February 24, a cyber attack rendered Viasat KA-SAT modems inoperable in Ukraine, according to a recent Viasat report. Collateral damage from this attack also deactivated the remote monitoring or control of 5,800 Enercon wind turbines in Germany. The…

News May 11, 2022

Biden Urges US Businesses to Bolster Cybersecurity Protection

2 min read - President Joe Biden warned U.S. businesses of possible cyberattacks from the Russian government in March. His statement suggested business owners should work to reduce vulnerabilities and prevent attacks. President Addresses Cybersecurity Risks In his statement, Biden said, “I have previously…

News May 4, 2022

Arrests Made in Relation to LAPSUS$ Cyber Gang 

2 min read - The cyber criminal organization LAPSUS$ has claimed responsibility for a number of high-profile attacks. Did they give away too much in their bragging? It could be since the City of London police say they have arrested seven teenagers in relation…

News April 20, 2022

FBI Releases AvosLocker Ransomware Advisory

2 min read - On March 17, the FBI, the U.S. Treasury Financial Crimes Enforcement Network and the Department of the Treasury released a joint cybersecurity advisory about AvosLocker, a ransomware-as-a-service (RaaS) affiliate-based group. According to the advisory, AvosLocker has targeted victims across multiple…

News March 30, 2022

US Congress Approves Strengthening American Cybersecurity Act

2 min read - Federal agencies and critical infrastructure owners and operators may need to change how they respond to cyber attacks. The U.S. Congress passed new legislation mandating they report attacks within 72 hours. In addition, it requires them to report ransomware payments within…

News February 9, 2022

Attackers Used Malicious Telegram Installer to Distribute Purple Fox Rootkit

2 min read - Threat actors leveraged a malicious Telegram installer to infect users with the Purple Fox rootkit. A Case Study in Evasion With the help of MalwareHunterTeam, Minerva Labs looked into a malicious Telegram installer and found that it was a compiled…

News February 2, 2022

Over 1,200 Phishing Kits Found in the Wild With Ability to Steal 2FA Codes

2 min read - Academics discovered more than 1,200 phishing kits equipped with the ability to intercept users’ two-factor authentication (2FA) codes in the wild. Two Types of 2FA Phishing As noted by researchers from Stony Brook University sponsored by security firm Palo Alto…

News January 26, 2022

How a Cyber Criminal Justice System Resolves Disputes

2 min read - The darknet community uses its own underground justice system to solve disputes that arise between one cyber criminal and another. Crime and Punishment for Cyber Criminals In this underground justice system, a ‘case’ begins when two parties experience a disagreement.…

Identity & Access January 19, 2022

Don’t Ditch the Password Yet: Countering a Brute Force Attack

2 min read - There’s been a lot of chatter lately about moving on from passwords. But long passwords are still a good defense against some types of attacks. Brute force attack actors dedicate just a fraction of their efforts to cracking them, a…

Data Protection January 12, 2022

Sabbath Ransomware Gang Targets Critical Infrastructure, Backups

2 min read - A ransomware gang known as Sabbath is going after critical infrastructure groups in North America. In addition, it sets itself apart by targeting backups. Backups Singled Out A rebrand of UNC2190, Sabbath has targeted U.S. and Canadian critical infrastructure. That…