New DNS hijacking campaign
UK's National Cyber Security Centre (NCSC) is warning of an ongoing DNS hijacking campaign.
DHS warns of Iranian cybersecurity threats, issues guidance
The Director of the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) issued a warning about recent Iranian cybersecurity threats. The statement also included suggested tips and best practices to stay safe online.
Electrum DDoS botnet infects over 150K hosts
Hackers have infected nearly 152,000 hosts with a Distributed Denial of Service (DDoS) botnet targeting Electrum developers and their servers.
BabyShark malware expands targets to cryptocurrency industry
Attackers behind BabyShark malware and cyber campaigns is now targeting the cryptocurrency industry.
Microsoft takes down 99 websites used by APT35/Phosphorus
Microsoft used a court order last Wednesday to take control of 99 websites used by cyber threat group Phosphorus (also known as APT35 or Charming Kitten) widely associated with Iranian hackers.
Compromised WordPress, Joomla sites used to spread Shade ransomware
Cyber attackers have compromised hundreds of CMS sites running WordPress or Joomla to serve up Shade ransomware and phishing pages in the wild.
Hackers target European think tanks and non-profit organizations
Microsoft has seen a rise in recent cyberattack activity against European think tanks and non-profit organizations. The warning comes as European leaders warn attacks will continue across Europe in 2019.
Emotet malware threat re-emerges with new features
The infamous banking trojan Emotet is re-emerging via new cyber campaigns after a low period of activity over the recent Christmas holidays. Emotet is one of the most widely developed and distributed malware families used by cyber criminals.
Beware of Netflix phishing scam
The FTC warns users of a phishing scam involving fake Netflix email messages designed to steal personal and payment information.
Phishing attack via fake Office 365 non-delivery message
Attackers are using fake Office 365 non-delivery messages in new phishing attacks designed to steal your credentials.