Attackers using a novel credential phishing attack that leverages Active Directory to verify a victim’s password and gain access to an Office 365 account targeted a top financial person in a division of a large American corporation. Once inside a victim’s account, bad actors could access sensitive financial documents, emails, calendar
Tag: attack
Emerging Products: Breach and attack simulation technologies
SC Labs tested seven breach and attack simulation products for August that will sharpen up your security assessments. (Source: Erikona, Getty Images) Manual security testing can’t keep pace with the threat landscape. Penetration testing takes time and it’s costly and labor-intensive. It’s also fully dependent on the expertise of the penetration
SEI Investments customer data exposed in ransomware attack on vendor
A May ransomware attack on M.J. Brunner Inc. exposed data pertaining to clients of SEI Investments Co., among them money managers like Pacific Investment Management Co. (Pimco), Fortress Investment Group LLC and Centerbridge Partners. SEI Investments said in a statement that the attack was not the result of any flaw in
Misconfigured S3 exposes Twilio users to Magecart attack
A misconfiguration in an S3 bucket that was hosting a Twilio Javascript library caused a bad threat actor to inject code that made Twilio users load an extraneous URL on their browsers that has been associated with the Magecart group of attacks. In a company blog, Twilio said this solely affected v1.20
Phishing attack hid in Google Cloud Services
Details of a phishing attack concealed in Google Cloud Services point to a fast-growing trend that has hackers disguising malicious activities in cloud service providers. In a report released today, researchers at Check Point unravel, step-by-step, how even security-savvy professionals could be tricked by a well-disguised ruse, which kicked off with
EDP Renewables says PII compromised in Ragnar Locker attack
An apparent Ragnar Locker ransomware attack on the parent company of EDP Renewables put information of some of its customers at risk although the firm said it has no evidence PII was accessed. The attack could have exposed names and Social Security numbers stored in the company’s systems, though in a
NetWalker ransomware group claims attack on Fort Worth transportation agency
Another Texas-based government institution has apparently fallen victim to ransomware actors, as the cybercriminals behind the malicious encryptor NetWalker have published online evidence of an attack on Trinity Metro, a transit agency that operates bus and commuter rail transportation services in Fort Worth and its nearby Tarrant County suburbs. According to
Xerox apparent victim of Maze attack
It appears that Xerox is among the victims of Maze ransomware attackers, if screenshots posted by the ransomware’s operators are legitimate. The hackers pilfered more than 100GB of information and are threatening to publish it, according to a report in BleepingComputer, which cited the ransom note as saying, “After the payment
NetWalker claims credit for attack on Crozer-Keystone Health System
The NetWalker ransomware group claimed to be behind an attack on Philadelphia area Crozer-Keystone Health System, prompting the health care provider to take systems offline. The hackers are threatening to begin releasing information nicked in the attack in six days, according to a Cyberscoop report. The company, which operates eight medical
Banking trojan attack exposes dangers of not securing MDM solutions
A global conglomerate had 75 percent of its mobile devices infected by a variant of the Cerberus Android banking trojan after an attack compromised the company’s mobile device management (MDM) server and used it to spread the malware. In a company blog post report, Check Point Software Technologies identifies MDM as