TRU Security

Famed rock star Ozzy Osbourne recently announced a new NFT project by the name of CryptoBatz. After a change in promotional URLs, phishers were able to steal more than $40,000 from over 1,300 unsuspecting collectors looking to buy NFTs from CryptoBatz.

A new version of LockBit ransomware is designed to encrypt files on Linux servers. This threat is specifically targeting ESXi servers, allowing attackers to compromise many virtual machines at once with just one successful attack against a physical server.

A winter storm known as a bomb cyclone is predicted to hit the northeastern United States and southeastern Canada over the weekend. The storm is expected to bring high winds along with heavy rain and snow.

Recent research shows that a previously undocumented form of cyber-espionage malware, named DazzleSpy, exploited the Safari web browser in a watering hole attack. The intended targets appear to be Hong Kong-based pro-democracy political activists, including the D100 radio station, which reaches over 10,000 listeners every day.

An ongoing wave of spam is sending out emails with a dangerous PowerPoint attachment. This file contains an obfuscated macro that, once activated, uses a combination of PowerShell and Mshta to run its malicious payload — a script that downloads either the Ave Maria or AgentTesla malware.

A new infostealer called BHUNT is looting cryptocurrency wallet contents, passwords, and security phrases.

The infamous FIN8 hacking group appears to be entering the ransomware space with a new ransomware strain dubbed White Rabbit.