Month: April 2021

How can organizations tackle the growing menace of attacks that shake trust in software? Cybersecurity is only as good as the weakest link, and in a supply chain this could be virtually anywhere. The big questions may be, “what and where is the weakest link?” and “is it something that you have control over and…

Easy to redeem and hard to trace, gift cards remain a hot commodity in the criminal underground A cybercriminal has sold almost 900,000 gift cards and over 300,000 payment cards on a top-tier cybercrime forum on the dark web. The total value of the cards was claimed to be some US$38 million. The hacker probably…

ESET researchers discover a new Lazarus backdoor deployed against a freight logistics firm in South Africa ESET researchers have discovered a previously undocumented Lazarus backdoor used to attack a freight logistics company in South Africa, which they have dubbed Vyveva. The backdoor consists of multiple components and communicates with its C&C server via the Tor…

The company was left to deal with three months’ worth of IT problems An IT contractor has been sentenced to two years in prison and ordered to pay $567,000 in restitution to cover the damage he caused by deleting the majority of a company’s Microsoft Office 365 user accounts in an act of revenge, according…

Money doesn’t buy you happiness – cryptocurrency doesn’t buy you a genuine COVID-19 vaccine INTERPOL and the United States’ Homeland Security Investigations (HSI) have joined the chorus of warnings about online campaigns peddling bogus COVID-19 vaccines as cybercriminals are increasingly attempting to exploit nations’ vaccination programs. “With criminal groups producing, distributing, and selling fake vaccines,…

The bug is under active exploitation by unknown attackers and affects a wide range of devices, including iPhones, iPads and Apple Watches Apple has released an emergency update for its iOS, iPadOS, and watchOS operating systems to patch a zero-day security flaw that is being actively exploited in the wild. The vulnerability affects multiple models…

Had the incident gone unnoticed, the attackers could have taken over websites using the tainted code Unknown attackers compromised the official PHP Git server and planted a backdoor in the source code of the programming language, potentially putting websites using the tainted code at risk of complete takeover. The bad actor pushed two malicious commits…

From losing cherished memories to missing deadlines, the impact of not having backups when a data disaster strikes can hardly be overstated Losing valuable data is one of the worst things that can happen to anyone – digitally, at least. Imagine losing critical data that you need to deliver a time-sensitive project with a deadline…

Does every device in your home really need to be connected to the internet? And could your smart appliance be turned against you? If you try to purchase a new appliance these days, there is a good chance you will be guided toward the most up-to-date, state-of-the-art, smart appliances first. Whether you are in the…

ESET Research uncovers a new threat that targets organizations operating in various sectors in Brazil ESET Research has been tracking a new banking trojan that has been targeting corporate users in Brazil since 2019 across many verticals affecting sectors such as engineering, healthcare, retail, manufacturing, finance, transportation, and government. This new threat, which we named…