A new remote access Trojan (RAT) by the name of Borat has been appearing on darknet markets. Borat is designed to be easy-to-use, and gives attackers the ability to deploy ransomware, perform DDoS attacks, bypass user account control (UAC), access files and network devices, and even take complete control of a victim's mouse and keyboard.
After taking a week off, the Lapsus$ extortion group came back in force with the release of 70 GB of data from IT and software development firm Globant — making the Luxembourg-based company the latest in a string of victims that include the likes of DHL, Facebook, BNP Paribas Cardif, and Citibanamex.
Google has issued an update for its Chrome browser that patches the second "high severity" zero-day vulnerability this year. All 3.2 billion Chrome users are urged to update to Chrome 99.0.4844.84 for Windows, Mac, or Linux immediately.
The FBI's Internet Crime Report for 2021 contains statistics from 847,376 complaints, corresponding to more than $6.9 billion in losses. That represents a 7% increase from 2020.
The latest in a string of ransomware attacks has hit the computer systems of Italian railway operator Trenitalia, causing disruptions to ticket purchasing as well as the tablets and applications used by onboard staff members.
Tech giant Microsoft and secure identity platform Okta have both joined the ranks of high-profile organizations that have recently fallen victim to the Lapsus$ extortion gang.
Researchers have discovered a previously unknown variant of the Gimmick malware targeting Mac systems. Gimmick is believed to be a form of spyware from a Chinese threat actor called Storm Cloud. This ongoing campaign takes aim at both macOS and Windows, and aims to be stealthy and hard to spot.
After a recent Microsoft Defender for Endpoint update, administrators started to receive multiple ransomware alerts on clean system files in relation to Office updates.
Pandora ransomware has hit the Japan-based DENSO Corporation, one of the largest automotive parts manufacturers in the world. DENSO — which has more than 200 subsidiaries, almost 170,000 employees, and an annual revenue of over $44 billion — provides parts to Toyota, who just dealt with their own cyberattack, as well as Mercedes-Benz, Fiat, and others.
Video game developer Ubisoft, known for games like the Assassins Creed, Far Cry, Just Dance, and Prince of Persia series, has suffered a ransomware attack at the hands of the very active Lapsus$ ransomware gang — who also recently claimed victims like Samsung and Nvidia.
The infamous Emotet botnet was crippled by a joint task force in early 2021, but it was only a matter of months before an improved version began spreading in November. Emotet now has more than 130,000 unique bots in 179 countries around the world.
Rompetrol, the operator of Romania's largest oil refinery — which produces more than 5 million tons of oil per year — has become a victim of Hive ransomware.