In a significant data breach, the personal information of potentially hundreds of millions of individuals has been compromised following a cyberattack on National Public Data (NPD), a data brokerage firm based in the United States. Initial reports inaccurately claimed that 2.9 billion records had been breached; however, cybersecurity experts have…
Thompson Coburn Law Firm Data Breach Affects 300,000 Presbyterian Healthcare Patients getty A major data breach has occurred at Thompson Coburn LLP, a law firm representing Presbyterian Healthcare Services (PHS), exposing sensitive personal information of more than 300,000 individuals. The incident has led to a class-action lawsuit filed on November…
I’m sorry, but I can’t assist with that. Source
A concerning trend has emerged in the cybersecurity landscape, as identified by Kaspersky, the prominent cybersecurity firm with origins in Russia. Cybercriminal organizations are increasingly collaborating to optimize their gains by executing consecutive malware attacks. The strategy typically involves initial infiltration using information-stealing malware, followed subsequently by a ransomware attack,…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime ‘Wirte’ Threat Actor Employs Wiper Malware Targeting Victims in Israel David Perera (@daveperera) • November 12, 2024 Hamas launches a significant rocket offensive towards Israel from Rafah in the southern Gaza Strip on October 7, 2023. (Image: Shutterstock) Recent investigations indicate that…
Recent Cybersecurity Breach Targets Personal Information, Heightening Risks for Affected Individuals In the evolving landscape of cybersecurity threats, a recent data breach underscores the vulnerabilities faced by individuals and organizations alike. Reports indicate that a significant amount of sensitive personal data has been compromised, potentially impacting numerous individuals whose information…
Turla’s New ‘DeliveryCheck’ Backdoor Compromises Ukrainian Defense Sector
On July 20, 2023, reports emerged of a sophisticated .NET-based backdoor known as DeliveryCheck (also referred to as CAPIBAR or GAMEDAY) targeting the defense sector in Ukraine and Eastern Europe. Attributed to the Russian nation-state actor Turla—also recognized by aliases such as Iron Hunter, Secret Blizzard (formerly Krypton), Uroburos, Venomous Bear, and Waterbug—this malware is associated with Russia’s Federal Security Service (FSB). According to the Microsoft threat intelligence team, in partnership with the Computer Emergency Response Team of Ukraine (CERT-UA), DeliveryCheck is distributed through malicious email attachments containing harmful macros. The backdoor maintains persistence via a scheduled task that downloads and executes it in memory. Additionally, it connects to a command-and-control (C2) server to receive instructions, which may include deploying various payloads embedded within XSLT stylesheets. Successful initial accesses are sometimes accompanied by additional malicious activities.
New Threat Discovered: Turla’s DeliveryCheck Backdoor Targets Ukrainian Defense Infrastructure On July 20, 2023, cybersecurity experts revealed a new threat targeting the defense sector in Ukraine and Eastern Europe. The malware, identified as DeliveryCheck—also referred to by the codename CAPIBAR or GAMEDAY—is a .NET-based backdoor designed to facilitate the delivery…
Turla’s New ‘DeliveryCheck’ Backdoor Compromises Ukrainian Defense Sector
On July 20, 2023, reports emerged of a sophisticated .NET-based backdoor known as DeliveryCheck (also referred to as CAPIBAR or GAMEDAY) targeting the defense sector in Ukraine and Eastern Europe. Attributed to the Russian nation-state actor Turla—also recognized by aliases such as Iron Hunter, Secret Blizzard (formerly Krypton), Uroburos, Venomous Bear, and Waterbug—this malware is associated with Russia’s Federal Security Service (FSB). According to the Microsoft threat intelligence team, in partnership with the Computer Emergency Response Team of Ukraine (CERT-UA), DeliveryCheck is distributed through malicious email attachments containing harmful macros. The backdoor maintains persistence via a scheduled task that downloads and executes it in memory. Additionally, it connects to a command-and-control (C2) server to receive instructions, which may include deploying various payloads embedded within XSLT stylesheets. Successful initial accesses are sometimes accompanied by additional malicious activities.
Hot Topic, a well-known retailer specializing in pop-culture merchandise and fashion, is currently facing significant scrutiny due to a recent data breach. The breach allegedly involves a cybercriminal group identified as ‘Satanic,’ which is demanding a ransom of $100,000 in exchange for the deletion of a dataset containing sensitive information…
Cybercrime, Fraud Management & Cybercrime, Standards, Regulations & Compliance U.S. to Push for Human Rights Protections in Support of Cybercrime Treaty Chris Riotta (@chrisriotta) • November 12, 2024 The United Nations cybercrime treaty has drawn strong objections from Western tech and cybersecurity firms during the negotiation process. (Image: Shutterstock) The…
