Evgeny Gaevoy, the CEO of Wintermute, said that the company had been hacked and had lost $162.2 million in DeFi operations. Over 50 cryptocurrency exchanges and trading platforms, such as Binance, Coinbase, Kraken, and Bitfinex, receive liquidity via Wintermute. With…
A continuous phishing attacks that targets U.S. government contractors has grown in scope and is now pushing more effective lures and documents. These phishing emails entice victims by offering them the chance to submit bids for lucrative government projects. This…
Uber provided additional information on the security problem that occurred last week on Monday. Uber attributed the attack to a threat actor it thinks to be connected to the infamous LAPSUS$ hacker ring. The San Francisco-based company stated in an…
Cybercriminals use phishing and social engineering to divert payments. FBI Warns of Increase in Payment Scams in the Healthcare Sector. The FBI alerts the healthcare sector that cybercriminals are stealing multimillion-dollar payouts from healthcare payment processors by stealing user login…
Following Conti’s official retirement from the threat scene this year, ransomware-as-a-service (RaaS) organizations like Quantum and BlackCat Ransomware are now using the Emotet malware. Emotet began as a banking trojan in 2014, with time, upgraded and transformed the virus into…
FBI agent thanked by a group for inside knowledge of weaknesses As part of its bug bounty programme for researchers ready to assist in cybercrime, the LockBit ransomware-as-a-service organization. LockBit has paid the first payment of $50,000. The ransomware collective…
New connections between PrivateLoader, a popular pay-per-click (PPI) malware firm, and ruzki Pay-Per-Install Services provider. They have been discovered by cybersecurity researchers. According to SEKOIA, “the threat actor ruzki (aka les0k, zhigalsz) advertises their PPI service on unofficial Russian-language message…
Solution for password management Last month, LastPass development systems revealed additional information regarding the security breach. That includes the fact that the threat actor had access to its servers for four days in August 2022. CEO of LastPass Karim Toubba…
In order to further propagate its malicious package, a new malware packs exploits the YouTube channels of its victims. They lure to produce malicious video tutorials promoting phoney cheats and cracks for well-known video games. In YouTube videos aimed toward…
RCE (Remote Code Execution) and unknown backdoor threats are discovered by researchers. A researcher issues a warning on many flaws in the WAPPLES web application firewall (WAF) that made it possible to seize control of susceptible devices and issue arbitrary…
