Bombardier Recreational Products (BRP) suffered a cybercriminal attack last August 8, which the RansomEXX ransomware group claimed was their doing. The affected Canadian manufacturer of Sea-Doo jet skis, Ski-Doo snowmobiles, motorcycles, Rotax engines, watercraft, and ATVs has immediately released an advisory and stopped all its operations after detecting malicious cyber activity. BRP has approximately 20,000...Continue Reading
A new botnet, dubbed Mantis, that security researchers spotted last June was said to have performed a record-breaking DDoS (distributed denial-of-service) attack against its targets, being described as one of the most powerful botnet variants. From the reports about the Mantis botnet, its attacks had topped at 26 million HTTPS requests per second, coming from...Continue Reading
YouTube content creators are again targeted by a new attack campaign that utilises an infostealer, dubbed YTStealer, to steal their authentication tokens and hack their YouTube channels. The infostealer has a specialised objective, which empowers it to be an effective tool for attacking its targets. The threat operators spread the infostealer through masquerading video editing...Continue Reading
Researchers recently spotted a new remote access trojan (RAT) dubbed ZuoRAT that has targeted remote employees through their SOHO (small office/home office) routers within North America and Europe. According to the findings, the threat operators showed attack tactics highly associated with state-backed groups. Since the pandemic began and most employees have worked from home, the...Continue Reading
The FBI, alongside the CISA and other security agencies, recently published a joint threat advisory regarding the illegal activities done by the Karakurt cybercriminal group. According to the advisory, the group has been attempting to extort millions of dollars from its victims in North America and Europe. Moreover, the agencies’ joint statement suggests that victims...Continue Reading
Microsoft has recently revealed four vulnerabilities that are in high severity level under pre-installed Android apps with millions of user downloads found on most smartphones. The now-patched critical flaws could have enabled threat actors to launch cyberattacks through several vectors to steal users’ data. From the tech giant’s post, they shared that most of the...Continue Reading
Researchers discovered a new attack campaign attributed to the Chinese-sponsored advanced persistent threat group known as Winnti. Based on reports, the recently discovered campaign remained undetected for several years. The researchers called the campaign ‘Operation CuckooBees’, which leveraged a past undocumented malware and stole confidential trade data from several organisations worldwide. An incident response team...Continue Reading
Cybersecurity researchers have published a new advisory regarding the notorious BlackByte ransomware group. The advisory includes information and assessment regarding the newly discovered BlackByte samples from the group’s recent attacks. Based on reports, the analysts responsible for examining the group’s behaviour discovered several variants of BlackByte ransomware circulating in the wild. The variants are coded...Continue Reading
An advanced persistent threat (APT) group known as Cicada or APT10 has widened its targets, which first started by attacking only Japanese enterprises, to now a wide range of new countries so that they could conduct more widespread espionage attacks. The Chinese-speaking Cicada APT group is also known for its other titles, such as Stone...Continue Reading
Mars Stealer, one of the newest info stealers in 2022, is now rising to the spotlight upon cybersecurity researchers noticing its recent launches of large-scale attack campaigns. From its past name, Oski malware, which has shut down in 2020, Mars Stealer presents its improved and extensive information-stealing features that target a wide range of software...Continue Reading
