Cybercrime & Digital Threats

The U.S. National Wildfire Coordinating Group’s (NWCG) website was discovered hosting a JavaScript downloader used to deliver the infamous Cerber ransomware.

A new barrage of ransom attacks targeted MongoDB databases, affecting tens of thousands of servers.

CeX, a UK company, has informed over two million of its customers that they have recently been subject to an online security breach.

Legitimate tools used by IT/system administrators have become valuable cybercriminal targets because of the privilege they provide for greater network access. Here are some best practices for mitigating the abuse of sysadmin tools.

The ransomware business continues to expand with the discovery of a ransomware development kit on underground forums.

Having infected 23 million emails in just the span of 24 hours, the new Locky campaign is now considered the largest to hit the second half of 2017.

Hackers abused a bug in Instagram’s API and gained access to prominent users’ contact information. The company confirmed that email addresses and phone numbers were stolen.

Email is a major entry point for all kinds of threats. Onliner is a massive operation that uses account data harvested from previous breaches to spread malware.

While all organizations from the largest multinational corporation to smaller single proprietorship businesses are vulnerable to security risks, Small and Medium Businesses (SMBs) are particularly exposed to malicious attacks.