HackDig : Dig high-quality web security articles

North Korea Lazarus Hackers Blamed for $100 Million Horizon Bridge Heist

The infamous North Korean Lazarus hacking group is the prime suspect in the $100 million hack of Harmony’s Horizon Bridge, according to new data and research from blockchain analytics firm Elliptic.The multi-million compromise, confirmed by Harmony earlier this month, led to the theft of ETH, BNB, USDT, USDC and Dai from the Horizon cross-chain bridge and no
Publish At:2022-06-30 16:13 | Read:67 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Network Sec

Oak9 Lands $8 Million in New Venture Investment

Chicago-based Infrastructure-as-Code (IaC) startup oak9 has attracted new interest from venture capitalists with Cisco Investments and Morgan Stanley’s Next Level Fund joining a new $8 million funding round.The latest financing, led by existing investor Menlo Ventures, brings the total raised by oak9 to $14 million following a $5.9 million seed round the com
Publish At:2022-06-30 16:13 | Read:76 | Comments:0 | Tags:Endpoint Security Mobile Security Network Security NEWS &

Cyolo Banks $60M Series B for ZTNA Technology

Cyolo, an Israeli startup building technology for zero trust networking, on Monday announced a new $60 million investment led by the venture investing arm of National Grid.In addition to National Grid Partners, Cyolo said it scored investments from Glilot Capital Partners, Flint Capital, Differential Ventures, and Merlin Ventures. The Series B financing
Publish At:2022-06-28 16:12 | Read:164 | Comments:0 | Tags:Cyberwarfare Endpoint Security Mobile Security Network Secur

Normalyze Announces $22 Million for DSPM Technology

Bay Area startup Normalyze on Monday announced a $22 million in Series A funding as venture capital investors rush to place bets on the newly coined Data Security Posture Management (DSPM) space.Normalyze, based in San Francisco, said the funding round was co-led by Lightspeed Venture Partners and Battery Ventures and brings the total raised to $26.6 million
Publish At:2022-06-28 16:12 | Read:119 | Comments:0 | Tags:Endpoint Security Mobile Security Network Security NEWS &

A week in security (June 20 – June 26)

Last week on Malwarebytes Labs: LinkedIn scams are a “significant threat”, warns FBIDDoS-for-hire service provider jailedInternet Safety Month: 7 tips for staying safe online while on vacationClient-side Magecart attacks still around, but more covertSecurity vulnerabilities: 5 times that organizations got hackedYou can be tracked online using
Publish At:2022-06-27 07:53 | Read:128 | Comments:0 | Tags:A week in security 311 7-zip APT28 catfishing chrome conti C

CrowdStrike: Ransomware Actor Caught Exploiting Mitel VOIP Zero-Day

Security researchers at CrowdStrike have stumbled upon ransomware actors deploying zero-day exploits against Mitel VOIP appliances sitting on the network perimeter.The discovery is added confirmation that ransomware criminals are increasingly investing in zero-day exploits for use in data-extortion attacks and that poorly configured network devices present a
Publish At:2022-06-24 12:02 | Read:321 | Comments:0 | Tags:Cyberwarfare Endpoint Security Network Security NEWS & I

Top Cryptographers Flag 'Devastating' Flaws in MEGA Cloud Storage

Cryptographers at Swiss university ETH Zurich have found at least five exploitable security flaws in the privacy-themed MEGA cloud storage service and warned that the issues could lead to “devastating attacks on the confidentiality and integrity of user data in the MEGA cloud.”The ETH Zurich team documented the security defects in a research paper 
Publish At:2022-06-23 12:02 | Read:232 | Comments:0 | Tags:Endpoint Security Network Security NEWS & INDUSTRY Priva

Rogue cryptocurrency billboards go phishing for wallets

Billboards and digital real world advertising has raised many questions of privacy and anonymity in recent years. Until now, the primary concern has been (mostly) legal, yet potentially objectionable geolocation and user profiling. Bluetooth beacons work in tandem with geofenced billboards to send you offers. Stores follow your movements and tailor products
Publish At:2022-06-23 11:51 | Read:209 | Comments:0 | Tags:Scams advert advertisement billboard bitcoin crypto cryptocu

Police seize and dismantle massive phishing operation

Europol has coordinated a joint operation to arrest members of a cybercrime gang and effectively dismantle their campaigns that netted million in Euros. This operation also led the Belgian Police (Police Fédérale/Federale Politie) and the Dutch Police (Politie) to nine arrests, 24 house searches, and the seizure of firearms, ammunition, jewelry, electronic d
Publish At:2022-06-23 07:53 | Read:232 | Comments:0 | Tags:Social engineering Belgian Police dutch police europol Feder

Belgian, Dutch Police Dismantle Cybercrime Group

Europol announced on Tuesday that police have dismantled a cybercrime group that made millions of euros through phishing and other types of schemes.The law enforcement operation was conducted by police in Belgium and the Netherlands, with support from Europol. The Dutch police arrested nine individuals — eight men and one woman, aged between 25 and 36 — and
Publish At:2022-06-22 11:11 | Read:284 | Comments:0 | Tags:NEWS & INDUSTRY Phishing Tracking & Law Enforcement

Watch out for the email that says “You have a new voicemail!”

A phishing campaign is using voicemail notification messages to go after victims’ Office 365 credentials. According to researchers at ZScaler, the campaign uses spoofed emails with an HTML attachment that contains encoded javascript. The email claims that you have a new voicemail and that you can listen to the message by clicking on the attachmen
Publish At:2022-06-22 07:02 | Read:219 | Comments:0 | Tags:Social engineering 2fa office 365 password manager phishing

RevealSecurity Raises $23M for Application Detection and Response

RevealSecurity, an Israeli data security startup building technology to thwart malicious insider threats, on Tuesday announced the closing of a $23 million funding round led by SYN Ventures.In addition to SYN Ventures, Hanaco Ventures, SilverTech Ventures and World Trade Ventures also joined as RevealSecurity investors.The Series A financing provides capital
Publish At:2022-06-21 13:11 | Read:221 | Comments:0 | Tags:Endpoint Security Network Security NEWS & INDUSTRY Priva

Cybercriminals Use Azure Front Door in Phishing Attacks

Experts identified a spike in phishing content delivered via Azure Front Door (AFD), a cloud CDN service provided by Microsoft. Resecurity, Inc. (USA) has identified a spike in phishing content delivered via Azure Front Door (AFD), a cloud CDN service provided by Microsoft. The identified resources in one of the malicious campaigns impersonate variou
Publish At:2022-06-21 06:34 | Read:204 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Azure Front Door Cybercrim

Q1 2022 Phishing Threat Trends and Intelligence Report

In 2022, phishing attacks have not only increased substantially, but they have also taken a new turn of events. According to the Agari and PhishLabs Quarterly Threat Trends & Intelligence report, phishing attacks are gradually being delivered through a wide range of online platforms.  The classic email phishing attack technique has increased slightl
Publish At:2022-06-21 02:14 | Read:202 | Comments:0 | Tags:Featured Articles IT Security and Data Protection intelligen

Volexity Blames 'DriftingCloud' APT For Sophos Firewall Zero-Day

Big-game malware hunters at Volexity are shining the spotlight on a sophisticated Chinese APT caught recently exploiting a Sophos firewall zero-day to plant backdoors and launch man-in-the-middle attacks.The Sophos firewall vulnerability -- tracked as CVE-2022-1040 -- was patched in March this year but only after Volexity intercepted a sophisticated zero-day
Publish At:2022-06-16 17:09 | Read:352 | Comments:0 | Tags:Cyberwarfare Disaster Recovery Endpoint Security Network Sec

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3