Scammers Compromised by Own Malware, Expose $4.67M Operation
Saturday, August 16, 2025
CloudSEK uncovered a Pakistan-based family cybercrime network that spread infostealers via pirated software, netting $4.67M and millions of… .. read more..
ERMAC V3.0 Banking Trojan Source Code Leak Exposes Full Malware Infrastructure
Saturday, August 16, 2025
Cybersecurity researchers have detailed the inner workings of an Android banking trojan called ERMAC 3.0, uncovering serious shortcomings in the operators' infrastructure. "The newly uncovered version 3.0 reveals a significant evolution of the malware, expanding its form injection and data theft ... .. read more..
Russian Group EncryptHub Exploits MSC EvilTwin Vulnerability to Deploy Fickle...
Saturday, August 16, 2025
The threat actor known as EncryptHub is continuing to exploit a now-patched security flaw impacting Microsoft Windows to deliver malicious payloads. Trustwave SpiderLabs said it recently observed an EncryptHub campaign that brings together social engineering and the exploitation of a vulnerabilit... .. read more..
RealDefense Opens $10M Fund to Help OEMs Monetize Installs With SmartScan Cyb...
Friday, August 15, 2025
.. read more..
New Crypto24 Ransomware Attacks Bypass EDR
Friday, August 15, 2025
While several cybercrime groups have embraced "EDR killers," researchers say the deep knowledge and technical skills demonstrated by Crypto24 signify a dangerous escalation. .. read more..
Mobile Phishers Target Brokerage Accounts in ‘Ramp and Dump’ Cashout Scheme
Friday, August 15, 2025
Cybercriminal groups peddling sophisticated phishing kits that convert stolen card data into mobile wallets have recently shifted their focus to targeting customers of brokerage services, new research shows. Undeterred by security controls at these trading platforms that block users from wiring f... .. read more..
Colt Telecommunications Struggles in Wake of Cyber Incident
Friday, August 15, 2025
The UK telco said it temporarily took some systems offline as a "protective" measure in its investigation. .. read more..
Cisco discloses maximum-severity defect in firewall software
Friday, August 15, 2025
The vulnerability, which Cisco said it discovered during internal security testing, could allow unauthenticated attackers to execute high-privilege commands. The post Cisco discloses maximum-severity defect in firewall software appeared first on CyberScoop . .. read more..
Court upholds FCC data breach reporting rules on telecom sector
Friday, August 15, 2025
The rules, introduced during the Biden administration, would force telecoms to notify customers when their personally identifiable information is exposed in a hack. The post Court upholds FCC data breach reporting rules on telecom sector appeared first on CyberScoop . .. read more..
Taiwan Web Servers Breached by UAT-7237 Using Customized Open-Source Hacking ...
Friday, August 15, 2025
A Chinese-speaking advanced persistent threat (APT) actor has been observed targeting web infrastructure entities in Taiwan using customized versions of open-sourced tools with an aim to establish long-term access within high-value victim environments. The activity has been attributed by Cisco Ta... .. read more..
Colt Telecom attack claimed by WarLock ransomware, data up for sale
Friday, August 15, 2025
UK-based telecommunications company Colt Technology Services is dealing with a cyberattack that has caused a multi-day outage of some of the company's operations, including hosting and porting services, Colt Online and Voice API platforms. [...] .. read more..
Cisco warns of max severity flaw in Firewall Management Center
Friday, August 15, 2025
Cisco is warning about a critical remote code execution (RCE) vulnerability in the RADIUS subsystem of its Secure Firewall Management Center (FMC) software. [...] .. read more..
Water Systems Under Attack: Norway, Poland Blame Russia Actors
Friday, August 15, 2025
Water and wastewater systems have become a favored target of nation-state actors, drawing increasing scrutiny following attacks on systems in multiple countries. .. read more..
How to write a data classification policy, with template
Friday, August 15, 2025
Data classification policies help organizations categorize, secure and manage sensitive information while maintaining regulatory compliance and reducing breach risks. .. read more..
Plex warns users to patch security vulnerability immediately
Friday, August 15, 2025
Plex has notified some of its users on Thursday to urgently update their media servers due to a recently patched security vulnerability. [...] .. read more..
U.S. Sanctions Garantex and Grinex Over $100M in Ransomware-Linked Illicit Cr...
Friday, August 15, 2025
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) on Thursday renewed sanctions against Russian cryptocurrency exchange platform Garantex for facilitating ransomware actors and other cybercriminals by processing more than $100 million in transactions linked to illicit ... .. read more..
New NIST Concept Paper Outlines AI-Specific Cybersecurity Framework
Friday, August 15, 2025
NIST has released a concept paper for new control overlays to secure AI systems, built on the SP… .. read more..
US sanctions Grinex crypto-exchange, Garantex’s successor
Friday, August 15, 2025
The U.S. Department of the Treasury has announced sanctions against Grinex, the successor to Russian cryptocurrency exchange Garantex, which was previously sanctioned for helping ransomware gangs launder their money. [...] .. read more..
US sanctions Grinex crypto-exchange, successor to Garantex
Friday, August 15, 2025
The U.S. Department of the Treasury has announced sanctions against Grinex, the successor to Russian cryptocurrency exchange Garantex, which was previously sanctioned for helping ransomware gangs launder their money. [...] .. read more..
Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution
Friday, August 15, 2025
Cisco has released security updates to address a maximum-severity security flaw in Secure Firewall Management Center (FMC) Software that could allow an attacker to execute arbitrary code on affected systems. The vulnerability, assigned the CVE identifier CVE-2025-20265 (CVSS score: 10.0), affects... .. read more..