[SecurityWeek] Russia-Linked TA505 Back at Targeting Financial Institutions

Russia-linked threat actor TA505 has been observed using a lightweight Office file for malware distribution in a new campaign targeting financial institutions in multiple geographies.

The attacks target organizations across multiple sectors in Canada, the United States, Hong Kong, Europe, and more, and have seen low detection rates in Google’s VirusTotal scanning engine.

read more

Source: Read More (SecurityWeek RSS Feed)

You might be interested in …

Daily NCSC-FI news followup 2021-10-30

Hackers Breach iOS 15, Windows 10, Google Chrome During Massive Cyber Security Onslaught www.forbes.com/sites/daveywinder/2021/10/30/hackers-breach-ios-15-windows-10-google-chrome-during-massive-cyber-security-onslaught/ During the weekend of 16-17 October, Chinese hackers went on something of a rampage that saw all but three of the 15 target products breached during the exploit onslaught that was the Tianfu Cup. This annual competition, held in the Sichuan […]

Read More

[TheRecord] American Dental Association confirms cyberattack after ransomware group claims credit

The American Dental Association (ADA) confirmed Wednesday that it was hit with a cyberattack on April 21.  The professional association for dentists, which has more than 160,000 members, told The Record in a statement that it is currently investigating the incident alongside third-party cybersecurity specialists and federal authorities.  The ADA did not provide details about […]

Read More

Daily NCSC-FI news followup 2020-05-04

F-Secure varoitti äsken haavoittuvuuksista nyt alkoivat hyökkäykset www.tivi.fi/uutiset/tv/45c37640-e8d3-416b-a501-b10979428311 Salt-sovellus ei välttämättä ole tuttu suurelle yleisölle, mutta järjestelmien ylläpitäjille se on. Sitä käytetään palvelinten hallintaan datakeskuksissa, pilvessä ja yritysten omissa konesaleissa. ZDnet kirjoittaa, että viikonlopun aikana hakkerit ovat uutterasti nuuskineet verkosta Salt-asennuksia. Hyökkäyksiä on myös tehty. Kohteiksi ovat joutuneet ainakin LineageOS -mobiilikäyttöjärjestelmän kehittäjät, Ghost-blogialusta sekä sertifikaattiviranomainen […]

Read More