Microsoft has filed a lawsuit in an effort to seize control of several domains used to launch COVID-19-themed cyberattacks against the company’s customers in 62 countries.The tech company started tracking the malicious activity in December 2019, after identifying it as a phishing scheme attempting to compromise Microsoft customer accounts and access emails,

Renewable energy company EDP Renewables North America (EDPR NA) has started informing customers that its internal systems were breached by cybercriminals.EDPR NA is part of energy provider EDP Renováveis, which is headquartered in Madrid, Spain, and is a subsidiary of Energias de Portugal, the electric utilities company founded in 1976 by the government of P

A Nigerian national who has more than 2.5 million followers on Instagram, where he flaunts his lavish lifestyle, was extradited from the United Arab Emirates (UAE) and appeared in court in the United States to face cybercrime-related charges.The man, Ramon Olorunwa Abbas, 37, who is also known as “Ray Hushpuppi” and “Hush,” is accused of targeting multiple o

The developers of the Purple Fox exploit kit (EK) have added two new exploits to their arsenal, including one for a vulnerability addressed in February this year.Initially detailed in September 2018, the EK was designed for the distribution of the Purple Fox Trojan/Rootkit. Previously, the Trojan was being disseminated through the RIG EK, but its operators w

A former Yahoo! employee who hacked into the accounts of thousands of users was sentenced to five years of probation. In September the former Yahoo software engineer Reyes Daniel Ruiz has admitted in court to hacking into 6,000 Yahoo! accounts back in 2018. Last week Ruis (35), of Tracy, California, was sentenced to five years of probation after he adm

A former Yahoo! employee who admitted to hacking into the accounts of thousands of users was sentenced last week to five years of probation.The man, Reyes Daniel Ruiz, 35, of Tracy, California, pleaded guilty in September 2019 to hacking roughly 6,000 Yahoo! accounts, looking for sexual photos and videos.To access the victim accounts, he used cracked user pa

G Data security researchers have identified a new ransomware family that attempts to spread using infected USB drives.Dubbed Try2Cry, the new piece of ransomware borrows functionality from Spora, which first emerged three years ago. Written in .NET, Try2Cry features a USB worm component similar to that previously observed in the njRAT remote access Trojan.Th

A Nigerian national appeared in federal court in Chicago Friday accused of orchestrating an international cyber fraud scheme that federal prosecutors say defrauded U.S. businesses in six states out of tens of millions of dollars.Olalekan Jacob Ponle, 29, originally of Lagos, Nigeria, was arrested last month in the United Arab Emirates, where he was living, a

Hackers linked to the North Korean government appear to be behind the Magecart attacks on fashion retailer Claire’s and other online stores, Netherlands-based e-commerce security company Sansec reported on Monday.Threat actors linked to North Korea have been known to launch — in addition to espionage and destructive campaigns — financially-motivated attacks,

Hackers have already started exploiting a recently patched vulnerability affecting F5 Networks’ BIG-IP application delivery controller (ADC).F5 informed customers last week that a BIG-IP configuration utility named Traffic Management User Interface (TMUI) is impacted by a critical remote code execution vulnerability whose exploitation can result in “complete

A joint operation conducted by European police arrested hundreds of criminals after that agents infiltrated into EncroChat encrypted chat network. In a joint operation conducted by European and British law enforcement agencies resulted in the arrest of hundreds of alleged drug dealers and other crooks. The police infiltrated into a global network of an en

Recent samples of the Snake ransomware were observed isolating the infected systems to ensure that nothing interferes with the file encryption process, security researchers warn.Initially detailed in January this year, Snake (also known as EKANS) has emerged as a prevalent threat to industrial control systems (ICS), due to the targeting of processes specific

Morocco's prime minister has demanded Amnesty International provide evidence to support its allegations that Rabat used spyware to bug a journalist's phone.Amnesty said in June the Moroccan authorities used software developed by Israeli security firm NSO to insert spyware onto the cellphone of Omar Radi, a journalist convicted in March over a social media po

The threat actor behind the Sodinokibi (REvil) ransomware is demanding a $14 million ransom from Brazilian-based electrical energy company Light S.A.The company has confirmed that it was hit with a cyberattack without providing specific information on the type of compromise, but AppGate’s security researchers, who have obtained a sample of the malware believ

The Valak information stealer is being distributed in ongoing campaigns aimed at enterprises in North America, South America, Europe and likely other regions as well, Cisco Talos reports.Employed in numerous attacks over the past year, Valak is being distributed through malicious spam and typically alongside secondary payloads such as Gozi/Ursnif and IcedID.