Summary: The video discusses the vulnerabilities associated with browser extensions, particularly a polymorphic extension that impersonates legitimate plugins. It highlights concerns about Google Chrome’s security checks and emphasizes that malware development is increasingly targeting browsers. Key issues include the difficulty in maintaining security amid numerous package managers and the necessity of robust monitoring systems in enterprise environments, exemplified by a case involving the Volt Typhoon threat actor.…
Read More Tag: BANK
This article discusses a new phishing campaign targeting Microsoft advertisers, leveraging Google ads to obtain user login information. The research identified a variety of IoCs linked to this campaign, including domains, email addresses, and IP addresses. Findings noted a mix of old and newly created domains, with most registrations occurring in the U.S.…
Read More 
Summary: Europol has dismantled a criminal network that executed a €6.7 million healthcare subsidy fraud against France’s public health insurance system, utilizing fake diplomas and stolen patient data. The operation, which began in July 2024, involved fictitious businesses billing for non-existent hearing aids and laundering funds through shell companies across Europe.…
Read More Victim: Cayman National Bank
Country : KY
Actor: killsec
Source: http://ks5424y3wpr5zlug5c7i6svvxweinhbdcqcfnptkfcutrncfazzgz5id.onion/posts.php?pid=gCiAXzlog0OieRHNJmxy4V90
Discovered: 2025-03-21 15:45:27.027235
Published: 2025-03-21 15:44:02.838794
Description :
Cayman National Bank, located in the Cayman Islands, recently fell victim to a ransomware attack attributed to the malicious actor known as KillSec. This cyber assault has raised significant concerns regarding the security measures in place at financial institutions, highlighting the evolving threats posed by sophisticated criminal organizations in the digital landscape.…
Read More 
Summary: This week’s cybersecurity news roundup highlights key developments, including significant legal rulings, vulnerability disclosures, and actions against malicious activities. Notably, a former Uber security chief’s conviction was upheld, and critical security vulnerabilities were identified in popular software. The roundup aims to provide a broader understanding of the evolving cybersecurity landscape.…
Read More 
Summary: Russian internet users experienced significant outages this week due to disruptions linked to Russia’s blocking of Cloudflare, affecting various online platforms and banking services. The internet regulator Roskomnadzor attributes these issues to reliance on foreign server infrastructure while suggesting a switch to local hosting providers.…
Read More Summary: The video discusses the daily cyber threat briefing hosted by Dr. Gerald Auger, addressing various cyber security issues, updates, and news. It includes discussions on audio challenges faced during the live podcast and introduces the audience to a meme segment and sponsor promotions. The host also engages with viewers’ comments and questions while examining significant cyber attacks and breaches, such as the attacks on the Pennsylvania Teachers Union and Infosys.…
Read More Victim: Cargills Bank
Country : lk
Actor: hunters
Source: https://hunters55rdxciehoqzwv7vgyv6nt37tbwax2reroyzxhou7my5ejyid.onion/companies/9192254142
Discovered: 2025-03-20 12:27:35.101928
Published: 2025-03-20 12:24:56.000000
Description :
Cargills Bank, a financial institution in Sri Lanka, recently fell victim to a ransomware attack attributed to the hacker group known as Hunters. In this incident, the attackers not only compromised the bank’s systems but also exfiltrated sensitive data, although the encrypted data itself was not involved in the breach.…
Read More 
This article describes an ongoing malware campaign utilizing malicious WordPress plugins to spread the LummaStealer trojan. The malware trick users into running harmful PowerShell commands, thus collecting sensitive data from infected PCs. The campaign exploits fake human verification prompts primarily targeting Windows users. Affected: WordPress websites, Windows operating system users
Read More Keypoints :
LummaStealer is an infostealer malware designed to collect sensitive data.…
Summary: California Cryobank, a major US sperm donor service, has reported a data breach that compromised personal information of its customers. The breach occurred between April 20 and April 22, 2024, exposing sensitive data such as social security numbers and bank account information. The company is now offering free credit monitoring to affected individuals and has implemented additional security measures to safeguard data.…
Read More 
Summary: Western Alliance Bank has informed nearly 22,000 customers that their personal information was compromised due to a breach of a third-party vendor’s secure file transfer software in October. A zero-day vulnerability was exploited during this breach, and affected data includes names, Social Security numbers, and financial account information.…
Read More 
Summary: Western Alliance Bank has reported a data breach affecting over 20,000 individuals due to a vulnerability in a widely-used file sharing tool, which allowed unauthorized access to sensitive information. The breach, linked to the Clop ransomware gang, affected personal details such as Social Security numbers, financial account numbers, and more.…
Read More 
Summary: Western Alliance Bank is informing around 22,000 individuals that their personal information was compromised due to a vulnerability in a third-party secure file transfer software. The breach occurred in October 2024, and the stolen data includes sensitive information such as Social Security numbers and financial account details.…
Read More 
Summary: A new report from JUMPSEC’s DART team reveals a disturbing trend of cybercriminals exploiting health fears through sophisticated phishing attacks. The report outlines how attackers used enticing health-related emails to deceive victims into providing sensitive information, employing multi-stage tactics to enforce these scams. Investigations into the infrastructure of the attackers revealed connections to poorly-reputed networks and the use of legitimate platforms to mask phishing activities.…
Read More 
Summary: Intel’s Tiber Secure Federated AI service enhances AI training security by enabling data to remain within its source system while allowing model training through a secure tunnel. This innovative approach targets industries like healthcare and finance, facilitating collaboration in AI projects without compromising data privacy.…
Read More Victim: Belarus E-commerce & Energy Data
Country : BY
Actor: babuk2
Source: http:/bxwu33iefqfc3rxigynn3ghvq4gdw3gxgxna5m4aa3o4vscdeeqhiqad.onion/blog/82b3572f2dadeca89f06a17fd17a8f05f10e23aff09bfc7071d7b6d29e6238e5/
Discovered: 2025-03-15 10:23:47.937201
Published: 2025-03-15 10:22:41.152730
Description :Belarus has seen significant growth in its e-commerce sector, driven by increased internet penetration and smartphone usage.
The total e-commerce market in Belarus is projected to continue expanding, with a focus on both B2C and B2B transactions.…
Read More
Summary: Rick Tariq Rahim, a businessman from Great Falls, Virginia, has been sentenced to 78 months in prison for a scheme involving tax evasion and wire fraud, causing a loss of at least .4 million to the IRS. He also defrauded customers through deceptive automated trading services, promising unrealistic profits while failing to deliver.…
Read More ![[Law] Fraudster gets five years in prison for large-scale phone scams](https://www.hendryadrian.com/tweet/image/cybersecuritynews.png "[Law] Fraudster gets five years in prison for large-scale phone scams")
Summary: Nooruddin Bhai Nasruddin, a 52-year-old man from India, was sentenced to five years in prison in the US for wire fraud, resulting in over 4,000 in restitution to victims. His fraudulent scheme involved impersonating a federal agent to convince individuals that their bank accounts and social security numbers were compromised.…
Read More 
This report highlights recent cyber threats targeting the financial sector, specifically focusing on malware and phishing incidents, credit card information leaks, database breaches, and ransomware attacks. Notable cases include the sale of Indian credit card details on forums, a significant database leak from Union**** bank, and ransomware infections affecting fintech companies.…
Read More 
The finance industry is facing an increasing number of cyberattacks, with significant recent incidents exposing vast amounts of sensitive data. Notable breaches have involved major financial institutions and data theft, highlighting vulnerabilities and the need for robust cybersecurity measures. The financial sector must adapt to evolving threats, including ransomware attacks and Dark Web exploitation, to safeguard personal and financial information.…
Read More