Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime Hackers Breach Software Libraries to Distribute Malware Akshaya Asokan (asokan_akshaya) • October 25, 2024 Recent investigations by security experts have revealed a disturbing trend involving backdoored software packages found within the NPM library, indicative of an ongoing cyber operation…
Understanding Trends in the Cybercriminal Underground: Insights from Cybersixgill The realm of cybercrime has become increasingly complex and sophisticated, as evidenced by the findings of Cybersixgill’s recent report, "State of the Underground 2024." This annual analysis details the evolving landscape of illicit activities within the deep and dark web throughout…
Cybercrime, Fraud Management & Cybercrime, Incident & Breach Response Also: Payment Card Theft Trends, Internet Archive Update Anviksha More (AnvikshaMore) • October 24, 2024 Image: Shutterstock This week’s cybersecurity roundup reveals significant developments globally, highlighting the U.S. government’s actions to restrict bulk data transfers to China, alongside Visa’s warnings about…
Polyfill.io Supply Chain Attack Compromises Over 110,000 Websites In a concerning development for e-commerce and web developers, Google has responded to a supply chain attack targeting the widely used Polyfill.io service. The attack follows the acquisition of the domain by a Chinese company, which has modified the JavaScript library "polyfill.js"…
Cyberattacks disrupting various businesses have become increasingly prevalent in today’s digital landscape, notably impacting fleet operations. These cyber threats compromise not just vehicle functionality and cargo but also safety, data integrity, and ultimately, the financial health of the organization. Acknowledging these challenges is the fundamental first step toward enhancing cybersecurity…
In a notable expansion of its operations, the banking trojan known as Mispadu has shifted its attention from its initial focus on Latin America to include targets in Italy, Poland, and Sweden. Initially identified in 2019, Mispadu has evolved into a significant threat, particularly against sectors including finance, law, motor…
As the browser becomes the dominant workspace in enterprises, it is increasingly exploited by cybercriminals as a key attack vector. Various threats ranging from account takeovers and phishing attacks to malicious browser extensions highlight the browser’s role in compromising sensitive data and breaching organizational systems. Security professionals tasked with developing…
Recent findings published in the Nokia Threat Intelligence Report reveal a troubling increase in vulnerabilities facing the global telecommunications industry, with a particular emphasis on North America. The incorporation of Generative AI (GenAI) and automated strategies by cybercriminals is significantly intensifying these threats, leading to heightened risks for telecom operators.…
North Korean Threat Actor Deploys New Golang-Based Backdoor Targeting South Korean Sectors Recent reports indicate that the North Korea-affiliated threat actor known as Andariel has introduced a new backdoor, identified as Dora RAT, into their cyberattack arsenal. This malware has been employed in attacks that primarily target educational institutions, manufacturing…
