Author: Admin

Authored by Oliver Devane, Vallabh Chole, and Aayush Tyagi  McAfee has recently observed several malicious Chrome Extensions which, once installed, will redirect users to phishing sites, insert Affiliate IDs and modify legitimate websites to exfiltrate personally identifiable information (PII) data. According to the Google Extension Chrome Store, the combined install base is 100,000  McAfee Labs has observed these extensions are prevalent in USA, Europe and India as we can observe in the heatmap below.  The…

Authored by Oliver Devane, Vallabh Chole, and Aayush Tyagi  McAfee has recently observed several malicious Chrome Extensions which, once installed, will redirect users to phishing sites, insert Affiliate IDs and modify legitimate websites to exfiltrate personally identifiable information (PII) data. According to the Google Extension Chrome Store, the combined install base is 80,000  One extension, ‘Netflix Party’, mimics the original Netflix Party extension, which allows groups of people to watch Netflix shows at the same…

By Omar Zarabi, Founder and CEO, Port53 Technologies As in previous years, the DefCon of the cybersecurity industry is best illustrated by the headlines – each a cautionary tale. The past two years were witness to a virtual House of Horrors that has propelled cybersecurity to the top of corporate agendas. The 2020 supply-chain attack on SolarWinds’ network monitoring application Orion affected thousands of the company’s customers around the world, including several government agencies here…

Two 66-year-old women from Colorado have been accused of interfering with election equipment and official misconduct. On Tuesday, a Mesa County grand jury returned a 13-count indictment against clerk and recorder Tina Peters and deputy clerk Belinda Knisley. According to the indictment, the women tampered with the security of Dominion Voting Systems machines in late May 2021. It is alleged that the duo turned off security cameras in the room where the voting machines were stored then allowed an…

Who loves tax season besides accountants? Scammers.   Emotions can run high during tax time. Even if you’re pretty sure you did everything right, you may still have a few doubts kicking around. Did I file correctly? Did I claim the right deductions? Will I get audited? As it turns out, these are the very same anxieties that criminals use as the cornerstone of their attacks.    So yes, crooks indeed love tax season. Particularly online. And…

Who loves tax season besides accountants? Scammers.   Emotions can run high during tax time. Even if you’re pretty sure you did everything right, you may still have a few doubts kicking around. Did I file correctly? Did I claim the right deductions? Will I get audited? As it turns out, these are the very same anxieties that criminals use as the cornerstone of their attacks.    So yes, crooks indeed love tax season. Particularly online. And…

A notorious botnet with a RAP sheet going back 15 years has been spotted using a novel attack technique.  Qakbot, also known as Qbot, was observed by researchers at Sophos Labs inserting itself into the middle of active email threads, using the compromised accounts of victims whose systems had already succumbed to the malware.  Cyber-criminals have long used variations of Qakbot to gather data and perform reconnaissance inside victims’ networks illegally.  In research published Thursday, researchers said that the…

A Ukrainian man has been extradited to the United States to face criminal charges connected with the deployment of REvil Ransomware, also known as Sodinokibi. Yaroslav Vasinskyi is accused of orchestrating ransomware attacks against multiple commercial targets in America. Alleged victims of the 22-year-old include the multi-national information technology software company Kaseya, which was hit in July 2021. “In the alleged attack against Kaseya, Vasinskyi caused the deployment of malicious Sodinokibi/REvil code throughout a Kaseya product that caused the…