TRU Security

A new phishing campaign, which uses fake WhatsApp voice messages to trick victims into installing infostealing malware, has already targeted over 27,000 users.

A new remote access Trojan (RAT) by the name of Borat has been appearing on darknet markets. Borat is designed to be easy-to-use, and gives attackers the ability to deploy ransomware, perform DDoS attacks, bypass user account control (UAC), access files and network devices, and even take complete control of a victim's mouse and keyboard.

After taking a week off, the Lapsus$ extortion group came back in force with the release of 70 GB of data from IT and software development firm Globant — making the Luxembourg-based company the latest in a string of victims that include the likes of DHL, Facebook, BNP Paribas Cardif, and Citibanamex.

Google has issued an update for its Chrome browser that patches the second "high severity" zero-day vulnerability this year. All 3.2 billion Chrome users are urged to update to Chrome 99.0.4844.84 for Windows, Mac, or Linux immediately.

The FBI's Internet Crime Report for 2021 contains statistics from 847,376 complaints, corresponding to more than $6.9 billion in losses. That represents a 7% increase from 2020.

The latest in a string of ransomware attacks has hit the computer systems of Italian railway operator Trenitalia, causing disruptions to ticket purchasing as well as the tablets and applications used by onboard staff members.

Tech giant Microsoft and secure identity platform Okta have both joined the ranks of high-profile organizations that have recently fallen victim to the Lapsus$ extortion gang.