Security Research

The Lazarus APT cybercrime group is carrying out a spear-phishing campaign that dangles fake job opportunities at Lockheed Martin.

A security researcher has disclosed a vulnerability in Microsoft Windows 10, tracked as CVE-2022-21882, that allows an attacker with limited access to a device to easily escalate their privileges to those of an administrator.

KP Snacks, a popular snacks producer in England, has fallen victim to an attack from the Conti ransomware group. The company has over 2,000 employees and an estimated annual revenue of over $600 million, making them an undeniably high-value target.

The major fuel supplier Oiltanking GmbH, which supplies gasoline to 26 companies across Germany — including Shell and 1,995 of their gasoline stations — from its 13 tank farms, has fallen victim of a cyberattack.

Famed rock star Ozzy Osbourne recently announced a new NFT project by the name of CryptoBatz. After a change in promotional URLs, phishers were able to steal more than $40,000 from over 1,300 unsuspecting collectors looking to buy NFTs from CryptoBatz.

A new version of LockBit ransomware is designed to encrypt files on Linux servers. This threat is specifically targeting ESXi servers, allowing attackers to compromise many virtual machines at once with just one successful attack against a physical server.

A winter storm known as a bomb cyclone is predicted to hit the northeastern United States and southeastern Canada over the weekend. The storm is expected to bring high winds along with heavy rain and snow.

Recent research shows that a previously undocumented form of cyber-espionage malware, named DazzleSpy, exploited the Safari web browser in a watering hole attack. The intended targets appear to be Hong Kong-based pro-democracy political activists, including the D100 radio station, which reaches over 10,000 listeners every day.

An ongoing wave of spam is sending out emails with a dangerous PowerPoint attachment. This file contains an obfuscated macro that, once activated, uses a combination of PowerShell and Mshta to run its malicious payload — a script that downloads either the Ave Maria or AgentTesla malware.

A new infostealer called BHUNT is looting cryptocurrency wallet contents, passwords, and security phrases.

The infamous FIN8 hacking group appears to be entering the ransomware space with a new ransomware strain dubbed White Rabbit.

DHL has dethroned Microsoft as the most imitated brand for phishing attacks in the final quarter of 2021.