-
SYS01stealer is a new threat that uses fake Facebook ads
Cybersecurity researchers have discovered a new data thief called SYS01stealer. The malware targets employees of critical government infrastructure, manufacturing companies and other sectors.“The threats behind this campaign target Facebook business accounts. They use Google Ads and fake Facebook profiles that advertise games, adult content, hacked software, etc. to lure victims into downloading a malicious file. The attacks aim to steal sensitive information, including login information, cookies, and business account information,” Morphisec said in a report.Morphisec officials said the malware campaign was originally linked to a financially motivated cybercrime operation that Zscaler researchers dubbed "Ducktail." However,...
-
TikTok: Real Threat or Victim of Overblown Geopolitics?
Country after country bans TikTok for national security reasons - is that really the problem?The United States, the European Commission, Belgium and other countries have called on civil servants to remove TikTok - and do it as soon as possible. Countries that have banned the use of TikTok on government devices have cited non-specific security issues. For its part, the app claims to have not been informed of the issue and claims to be just as puzzled as anyone else.So is TikTok a major security issue that should be of concern to all of us?...
-
In the United States, losses from Internet fraud reached a record $10 billion in 2022
The Federal Bureau of Investigation released its annual Internet Crime Report.The US Federal Bureau of Investigation published its annual Internet Crime Report, which shows that in 2022, losses from Internet fraud reached a five-year high and amounted to more than $10 billion. The figure is $3 billion more than in 2021.The largest number of complaints about online fraud came from young citizens aged 30 to 40 years. However, older people bear the main losses from crimes of this kind. In particular, people over the age of 60 often fall for the tricks of attackers posing...
-
Emotet malware returns after a three-month hiatus
The Emotet malware campaign continues after a lull of 3 months. Malicious emails began to reach people all over the world.Emotet is a known malware distributed via email. It is delivered to the target computer via malicious Microsoft Word and Excel attachments. When users open these documents and enable macros, the Emotet DLL is loaded into memory and then silently waits for instructions from a remote C2 server.Eventually, the malware starts stealing victims' emails and contacts for use in future Emotet campaigns or downloading additional payloads such as Cobalt Strike or other malware.Although Emotet was...
-
Mustang Panda hackers use a freshly built backdor to advanced evasion of detection
The Chinese hacker group Mustang Panda, engaged in cyberspiospionage, was seen in the deployment of a new user backdor called MQsTTang.Mustang Panda is a group of attackers aimed at companies in various fields around the world. In their attacks, primarily aimed at the theft of information, cybercriminals use customary versions of malicious PlugX. The group is also known as TA416 and Bronze President.The new MQsTTang Backdor from Mustang Panda seems to be not based on well -known malicious programs. This fact indicates that hackers most likely developed MQsTTang from scratch in order to make it...
-
What are cookies, how they work and why they are needed?
A quick guide to managing your online privacy.The word "cookie" is translated from English as "cookies". However, we will not talk about flour confectionery products in this article.Cookies are widely used on websites and are an essential component of today's Internet. They are very useful in many ways and improve the user experience of interacting with websites, but they can also pose a threat to privacy and personal information.Now we will look at what cookies are, why websites use them, how they work in the browser, and how to reduce the risks of using them.What...
-
UK vows to stop Chinese cyber espionage
To do this, the country had to create a new advisory agency designed to reduce the number of leaks of intellectual property.Britain's domestic intelligence service MI5 will oversee a new agency tasked with helping local organizations fight Chinese cyber spies and other threats.British Prime Minister Rishi Sunak announced on 13 March the creation of the National Security Protection Agency (NPSA) as part of an update to the government's security strategy referred to as the "due diligence review".The NPSA will be required to provide cybersecurity training and consultation to businesses, schools and non-profit organizations while working...
-
Stimulant without addiction
Ephedrine is once the most popular stimulant and fat burner. It was used in the past - in sports and medicine.Some people began to make amphetamines from ephedrine, as a result of which its sales had to be limited, and in some countries banned completely.This substance came to us from Chinese medicine, from the herb Ephedra, which they used as a stimulant and to treat asthma. Mass production in China began in 1926 and in just 2 years the volume of exports increased by as much as 54 times - the substance was liked abroad.The...
-
Bidencash Darknet Market posted the data of credit cards for open access
Bidencash Darknet Market, selling credit cards and information about their owners, posted to open access to more than 2 million valid credit cards as part of an advertising campaign dedicated to the anniversary of its creation. It is worth noting that the site was created at the end of April 2022, but the data was posted on February 28, 2023.The leak contains information about credit cards from around the world, and a significant number of them were issued in the USA, China, Mexico, India, Canada and Great Britain.A set of data in size 260 MB...
-
Attackers are increasingly using AI in social engineering attacks
There is no end to customers - ChatGPT has made companies in the information security industry rich.Since the release of ChatGPT, cybercriminals have been increasingly using artificial intelligence to create sophisticated scams that can effectively deceive employees of various enterprises around the world, the British company Darktrace warned that since the release of ChatGPT. In particular, the ill-fated social engineering is even better for a chatbot than for a real person. Therefore, the neural network greatly facilitates the process of attacking enterprises for “hacktivists”.Ever since the launch of ChatGPT last November, Darktrace has seen an...