Stock exchange executive’s Outlook mailbox stolen over course of 5 months
The approximately 150-day espionage campaign incrementally exfiltrated emails to cloud services.
Financial
20 articles
Malicious Ads Target macOS Users with FlutterShell Backdoor
Hackers are leveraging large-scale malvertising campaigns to distribute a newly identified macOS backdoor dubbed FlutterShell, marking a significant evolutio...
IronWorm npm Attack Steals Developer Secrets
A newly uncovered supply chain attack dubbed “IronWorm” is leveraging malicious npm packages to compromise developer environments, steal sensitive credential...
Stock Exchange Executive’s Outlook Targeted in Credential Theft Attack
A prolonged and highly targeted espionage campaign has been uncovered involving the compromise of a senior executive’s Microsoft Outlook account at a major g...
Hackers Spied on a Stock Exchange Executive's Outlook Mailbox for Five Months
Unknown attackers spent at least five months inside the Outlook mailbox of a senior executive at a major global stock exchange, copying the inbox out in smal...
JINX-0164 Targets Crypto Firms With macOS Malware
A series of targeted intrusions against cryptocurrency organizations, attributing the activity to a newly identified threat actor tracked as JINX-0164. The c...
The missing link in cyber resilience: Bridging the identity visibility gap
The enterprise security perimeter didn’t evolve; it dissolved, and what replaced it isn’t a newer, stronger boundary. It’s the absence of one.
DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets
The U.S.
ETSI sets security requirements for AI data centers and cloud platforms
ETSI has published TS 104 033, a technical specification that defines security requirements for AI computing platforms. The specification establishes a secur...
Spanish hacker Alcasec sentenced to prison for stealing banking details
Spanish hacker José Luis Huertas, known online as Alcasec, has been sentenced to two years and seven months in prison after accepting a plea deal.
The U.S. sanctions Nobitex crypto exchange used by ransomware
The U.S.
Cyber espionage campaign targeted stock exchange executive’s Outlook account
Attackers spent five months silently stealing emails from a stock exchange executive’s Outlook account in a suspected espionage operation. A threat actor qui...
What 345 Days of Untested Exposure Looks Like at a Bank
A two-week penetration test can leave roughly 345 days of real-world exposure unvalidated. Sprocket Security explores why continuous testing is becoming crit...
Hackers Target Global Stock Exchange in Espionage Operation
The attackers had access to a senior executive’s email account for 150 days and exfiltrated data for months. The post Hackers Target Global Stock Exchange in...
Alcasec, “Robin Hood of Spanish Hackers,” Jailed for 31 Months Over Data Theft
Alcasec, the "Robin Hood of Spanish Hackers," is jailed for 31 months after admitting to stealing and selling Spanish citizens' banking data.
38% of GitHub Actions Workflows Exposed to Script Injection Risks
Analysis has revealed that 38% of organizations are running GitHub Actions workflows vulnerable to script injection or unsafe trigger configurations, highlig...
Lessons for life: Why children’s data is a long-term identity risk
Your child’s first data breach may happen before they’ve even opened a bank account. Here’s how to keep their digital life safe.
Critical Start expands MDR capabilities with multi-agent AI system
Critical Start has released SOC AI, a production-proven multi-agent framework powering its AI-led Managed Detection and Response (MDR). SOC AI coordinates te...
North Korean APT Targets macOS to Steal Crypto Wallets and SSH Keys
A newly uncovered macOS intrusion campaign attributed to the North Korean state-sponsored threat group Sapphire Sleet, also known as BlueNoroff or UNC1069, i...
What CISOs need to do about post-quantum migration in the next 24 months
In this Help Net Security video, Garfield Jones, SVP Global Strategy and Research, QuSecure, lays out what CISOs should do over the next 24 months. A recent ...