DarkSide ransomware gang is back as BlackMatter operation

The notorious DarkSide ransomware gang has been relaunched as a new BlackMatter ransomware operation, according to encryption algorithms discovered in a decryptor, and is aggressively attacking corporate organizations.   International…

PwnedPiper flaws in PTS systems affect major US hospitals

Researchers from cybersecurity firm Armis revealed a set of nine vulnerabilities labeled as PwnedPiper that could be used to launch a variety of attacks against a commonly used pneumatic tube…

Amazon fined €746M for violating privacy laws

Amazon has been fined a record-breaking €746 million for allegedly violating the General Data Protection Regulation (GDPR) in the way it conducts targeted behavioral advertising.   Luxembourg’s Commission nationale pour…

Estonia arrests hacker for stealing 286K ID scans

A Tallinn man was arrested in Estonia on suspicion of downloading ID scans of 286,438 Estonians from the Identity Documents Database by exploiting a government image transfer service vulnerability (KMAIS).…

Meteor wiper malware was used against Iran’s national railway system

Meteor, a wiper malware, was responsible for the cyber-attack on Iran’s national railway system, rather than ransomware as previously supposed.   Meteor was previously undetected malware, and it has yet…

Haron and BlackMatter ransomware groups appeared on hacker forum

Two new ransomware-as-a-service (RaaS) programs have emerged on the threat radar this month, one of which claims to be a successor to DarkSide and REvil, the two infamous ransomware organizations…

Oscorp is now UBEL – Info stealing Android malware

Oscorp, a mobile malware built to attack several financial targets with the purpose of stealing funds from unsuspecting victims, was revealed by Italy’s CERT-AGID in late January.   It has…

XCSSET MacOS malware steals Telegram password and Google Chrome data

New variants of the XCSSET macOS malware are able to steal login information from several apps, including Telegram and Google Chrome, and send it to C2, according to Trend Micro…

Signal fixed an old bug that sent random images to wrong contacts

Signal has fixed a bug in its Android app that caused random images to be sent to contacts in some cases.   The bug was first reported in December 2020;…

Kaseya obtained a universal decryptor for REvil ransomware attack

The REvil ransomware gang launched a massive supply chain attack against the cloud-based managed service provider platform Kaseya earlier this month, affecting both other MSPs using its VSA software and…