Ransomware has become one of the most dangerous cyber threats to organizations of all sizes. The Conti ransomware group is one of the most notorious ransomware gangs, responsible for hundreds of attacks on organizations and netting criminals over $150 million. Victims included the government of Costa Rica, which was forced to declare a national emergency…
A newly identified threat actor, dubbed YoroTrooper, has been observed targeting government and energy organizations in the Commonwealth of Independent States (CIS) region for espionage and data theft, Cisco warns. The group has been active since at least June 2022 and is believed to consist of Russian-speaking individuals. They have successfully compromised organizations in Azerbaijan,…
Fortinet recently announced that a zero-day vulnerability in FortiOS, tracked as CVE-2022-41328, had been identified and exploited in attacks aimed at government organizations. Google-owned cybersecurity firm Mandiant reported that the attacks were likely conducted by a Chinese state-sponsored threat actor, UNC3886. According to Mandiant, the attackers used custom implants and a deep understanding of FortiOS…
Cyber attacks are a growing threat in today’s digital world, and mobile phones are increasingly becoming the targets of these attacks. Phishing is the most common type of attack, where criminals send malicious links via emails, apps, SMS, or social media in an attempt to steal personal information or infect the phone with spyware. The…
The advanced persistent threat known as Winter Vivern has been linked to campaigns targeting government officials in India, Lithuania, Slovakia, and the Vatican since 2021. The activity targeted Polish government agencies, the Ukraine Ministry of Foreign Affairs, the Italy Ministry of Foreign Affairs, and individuals within the Indian government, SentinelOne said in a report shared…
Russia has been escalating its cyber operations against Ukraine and other countries in the past year. According to a new intelligence report from Microsoft, 17 European countries have been targeted in espionage campaigns in the first two months of 2023, and 74 countries have been targeted overall since the start of the war. The government…
SecurityWeek’s Cyber Madness Bracket Challenge is giving the cybersecurity community a chance to have some fun and compete for some great prizes. Today at 12PM ET, the challenge will kick off and it’s not too late to join in the action. The challenge is designed to bring the community together through one of America’s top…
Google’s Project Zero team recently revealed that multiple security flaws were found in Samsung’s Exynos chipsets. Project lead Tim Willis reported at least 18 zero-day vulnerabilities in the Exynos modems used in Samsung’s flagship Galaxy devices, some of which allow for ‘Internet-to-baseband remote code execution’ without any user interaction. Willis said that attackers with even…
# Google Pays $10M in Bug Bounties in 2023 Google paid out a total of $10 million in bug bounties in 2023, as reported by BleepingComputer. While this amount is $2 million less than the previous year, it still demonstrates the company’s commitment to cybersecurity. ## Bug Bounty Details The highest reward for a vulnerability…