A novel two-step phishing strategy is targeting Microsoft Visio files (.vsdx) and SharePoint, signaling a new trend in cyber deception, according to experts. Researchers at Perception Point have noted a significant rise in attacks leveraging these previously uncommon .vsdx…
Tag: CySecurity News – Latest Information Security and Hacking Incidents
Cybercriminals Exploit Identity Verification Systems
Cybercriminals on the dark web have developed new ways to exploit identity verification systems. Rather than hacking or stealing personal information, they are purchasing it directly from individuals, as revealed by security researchers at iProov. This approach allows them…
Sanctions Imposed on North Korean Cyber Activities Supporting Nuclear Ambitions
South Korea has announced sanctions against 15 North Korean nationals and the Chosun Geumjeong Economic Information Technology Exchange Corporation for orchestrating schemes that finance North Korea’s nuclear weapons and missile programs. These measures target a global network involved in…
rth Korean Hackers Deploy OtterCookie Malware in Contagious Interview Campaign
The North Korean hackers behind the ongoing Contagious Interview campaign have been observed launching a new JavaScript malware named OtterCookie. The campaign includes social engineering techniques, with the hacker team frequently posing as recruiters to trick job seekers into…
Cyberattack Compromises European Space Agency Online Store Security
A malware attack on the European Space Agency’s official web shop revealed that the application was hacked by loading a JavaScript script that generated a fake Stripe payment page at checkout. With an annual budget of more than 10…
Protect Yourself from Zelle Scams: Prevention Tips and Recovery Steps
Zelle has become a popular choice for online money transfers due to its simplicity, zero fees, and support from over 1,700 banks. However, since its launch in June 2017, the peer-to-peer payment service has been plagued by fraud. On…
Rising Cyber Threats in Q3 2024: AI’s Dual Role in Attacks and Defense
The Q3 2024 Threat Report from Gen unveils a concerning rise in the sophistication of cyber threats, shedding light on how artificial intelligence (AI) is both a tool for attackers and defenders. As cybercriminals evolve their tactics, the line…
Understanding VoIP DDoS Attacks: Prevention and Mitigation Strategies
A distributed denial-of-service (DDoS) attack targets a VoIP server by overwhelming it with phony user requests. This excessive traffic can exceed the network’s capacity, causing service disruptions and making genuine user requests unprocessable. Online criminals exploit these attacks to…
Critical Infrastructure Faces Rising Ransomware Risks
In October 2024, Interlock claimed to have attacked several organizations, including Wayne County, Michigan, which is known for its cyberattacks. Ransomware is characterized by the fact that the encrypted data is encrypted by an encryptor specifically designed for the…
Builder.ai Data Breach Exposes Sensitive Information of Over 3 Million Users
A huge data security breach has come to light, with the data platform Builder.ai. It’s a service that lets organizations build their own proprietary, custom software applications, which don’t need heavy programming. According to a blog post by a…