cyber2security blog

North Korean Hackers Behind Hospital Data Breach in Seoul

Data on more than 830K people exposed in the 2021 cyberattack. The…
Read more

Why Economic Downturns Put Innovation at Risk & Threaten Cyber Safety

Supplementing staff by hiring hackers to seek holes in a company's…
Read more

Dragos Employee Hacked, Revealing Ransomware, Extortion Scheme

Attackers compromised the personal email of a new employee and,…
Read more

Billy Corgan Paid Off Hacker Who Threatened to Leak New Smashing Pumpkins Songs

Corgan got FBI involved to track down the cybercriminal, who…
Read more

Multiple Ransomware Groups Adapt Babuk Code to Target ESXi VMs

Two years ago, a popular ransomware-as-a-service group's source…
Read more

Microsoft Authenticator to Enforce Number Matching

As a way to enhance MFA security, Microsoft will require users…
Read more

New ‘MichaelKors’ Ransomware-as-a-Service Targeting Linux and VMware ESXi Systems

A new ransomware-as-service (RaaS) operation called MichaelKors…
Read more

Microsoft Follina Bug Is Back in Meme-Themed Cyberattacks Against Travel Orgs

A two-bit comedian is using a patched Microsoft vulnerability…
Read more

TSA Official: Feds Improved Cybersecurity Response Post-Colonial Pipeline

US Transportation Security Agency (TSA) administrator reflects…
Read more

The new info-stealing malware operations to watch out for

The information-stealing malware market is constantly evolving,…
Read more

Stealthy MerDoor malware uncovered after five years of attacks

A new APT hacking group dubbed Lancefly uses a custom 'Merdoor'…
Read more

Why High Tech Companies Struggle with SaaS Security

It's easy to think high-tech companies have a security advantage…
Read more

Microsoft Advisories Are Getting Worse

A predictable patch cadence is nice, but the software giant can…
Read more

WhatsApp now lets you lock chats with a password or fingerprint

Meta is now rolling out 'Chat Lock,' a new WhatsApp privacy feature…
Read more

VirusTotal AI code analysis expands Windows, Linux script support

Google has added support for more scripting languages to VirusTotal…
Read more

Ransomware gang steals data of 5.8 million PharMerica patients

Pharmacy services provider PharMerica has disclosed a massive…
Read more

New RA Group ransomware targets U.S. orgs in double-extortion attacks

A new ransomware group named 'RA Group' is targeting pharmaceutical,…
Read more

Hackers target WordPress plugin flaw after PoC exploit released

Hackers are actively exploiting a recently fixed vulnerability…
Read more

Capita warns customers they should assume data was stolen

Business process outsourcing firm Capita is warning customers…
Read more

Airline exposes passenger info to others due to a ‘technical error’

airBaltic, Latvia's flag carrier has acknowledged that a 'technical…
Read more

Discord discloses data breach after support agent got hacked

Discord is notifying users of a data breach that occurred after…
Read more

Brave unveils new “Forgetful Browsing” anti-tracking feature

The privacy-focused Brave Browser is introducing a new "Forgetful…
Read more

The Week in Ransomware – May 12th 2023 – New Gangs Emerge

This week we have multiple reports of new ransomware families…
Read more

FBI: Bl00dy Ransomware targets education orgs in PaperCut attacks

The FBI and CISA issued a joint advisory to warn that the Bl00dy…
Read more

Microsoft patches bypass for recently fixed Outlook zero-click bug

Microsoft fixed a security vulnerability this week that could…
Read more

Stealthier version of Linux BPFDoor malware spotted in the wild

A new, stealthier variant of the Linux malware 'BPFDoor' has…
Read more

Multinational tech firm ABB hit by Black Basta ransomware attack

Swiss multinational company ABB, a leading electrification and…
Read more

Philadelphia Inquirer operations disrupted after cyberattack

The Philadelphia Inquirer daily newspaper is working on restoring…
Read more

Babuk code used by 9 ransomware gangs to encrypt VMWare ESXi servers

An increasing number of ransomware operations are adopting the…
Read more

WordPress Elementor plugin bug let attackers hijack accounts on 1M sites

One of WordPress's most popular Elementor plugins, "Essential…
Read more

Brightly warns of SchoolDude data breach exposing credentials

U.S. tech company and Siemens subsidiary Brightly Software is…
Read more

Former Ubiquiti dev who extorted the firm gets six years in prison

Nickolas Sharp, a former senior developer of Ubiquiti, was sentenced…
Read more

Toyota: Car location data of 2 million customers exposed for ten years

Toyota Motor Corporation disclosed a data breach on its cloud…
Read more

Twitter rolls out encrypted DMs, but only for paying accounts

Twitter has launched its 'Encrypted Direct Messages' feature…
Read more

Google brings dark web monitoring to all U.S. Gmail users

Google announced today that all Gmail users in the United States…
Read more

U.S. Offers $10 Million Bounty for Capture of Notorious Russian Ransomware Operator

A Russian national has been charged and indicted by the U.S.…
Read more

RapperBot DDoS malware adds cryptojacking as new revenue stream

New samples of the RapperBot botnet malware have added cryptojacking…
Read more

Inside Qilin Ransomware: Affiliates Take Home 85% of Ransom Payouts

Ransomware affiliates associated with the Qilin ransomware-as-a-service…
Read more

Cyolo Product Overview: Secure Remote Access to All Environments

Operational technology (OT) cybersecurity is a challenging but…
Read more

Apple fixes three new zero-days exploited to hack iPhones, Macs

Apple has addressed three new zero-day vulnerabilities exploited…
Read more

LayerZero launches record-breaking $15M crypto bug bounty program

LayerZero Labs has launched a bug bounty on the Immunefi platform…
Read more

Cisco warns of critical switch bugs with public exploit code

Cisco warned customers today of four critical remote code execution…
Read more

Hackers target vulnerable WordPress Elementor plugin after PoC released

Hackers are now actively probing for vulnerable Essential Addons…
Read more

Cybercrime gang pre-infects millions of Android devices with malware

A large cybercrime enterprise tracked as the "Lemon Group" has…
Read more

18-year-old charged with hacking 60,000 DraftKings betting accounts

The Department of Justice revealed today that an 18-year-old…
Read more

Hackers use Azure Serial Console for stealthy access to VMs

A financially motivated cybergang tracked by Mandiant as 'UNC3944'…
Read more

New ZIP domains spark debate among cybersecurity experts

Cybersecurity researchers and IT admins have raised concerns…
Read more