FBI warns “The Com” cyber criminal group is recruiting American teens for malicious, and sometimes violent, cybercrime sprees.
Posted inCybersecurity News

FBI warns “The Com” cyber criminal group is recruiting American teens for malicious, and sometimes violent, cybercrime sprees.

The Federal Bureau of Investigation (FBI) has released an alarming report highlighting the growing danger posed by an online cybercriminal ecosystem known as The Com (short for “The Community”). This decentralized and increasingly sophisticated network presents a significant cybersecurity risk, particularly to young users who are being actively recruited, targeted, and exploited by its members.
Trump’s AI Action Plan outlines strategic priorities designed to strengthen national security while allowing the AI field to grow virtually unchecked.
Posted inCybersecurity News

Trump’s AI Action Plan outlines strategic priorities designed to strengthen national security while allowing the AI field to grow virtually unchecked.

The Trump administration has unveiled a sweeping new artificial intelligence (AI) policy aimed at enhancing the cybersecurity of the nation’s critical infrastructure. The initiative places AI at the heart of America's cyber defense efforts, while reaffirming the importance of “secure by design” principles in the development and deployment of AI technologies.
New cyber campaign is targeting Magento CMS and Docker containers to deploy cryptocurrency mining software.
Posted inCybersecurity News

New cyber campaign is targeting Magento CMS and Docker containers to deploy cryptocurrency mining software.

A newly observed cyber campaign attributed to a threat actor known as Mimo (also referred to as "Hezb") is targeting unpatched Magento content management systems (CMS) and misconfigured Docker environments to deploy cryptocurrency mining software and proxyware. This dual-purpose monetization strategy represents a significant escalation in Mimo’s capabilities and tactics, according to research published by security experts at Cado Labs.
The agency responsible for overseeing America’s nuclear weapons stockpile was a victim of the China’s recent SharePoint Frenzy attack.
Posted inCybersecurity News

The agency responsible for overseeing America’s nuclear weapons stockpile was a victim of the China’s recent SharePoint Frenzy attack.

The U.S. National Nuclear Security Administration (NNSA), the agency responsible for overseeing America’s nuclear weapons stockpile, was among several government institutions recently targeted in a widespread cyberattack that exploited critical vulnerabilities in Microsoft’s on-premises SharePoint software.
Well, that was entertaining. Jetflicks streaming piracy operator sentenced to seven years in federal prison.
Posted inCybersecurity News

Well, that was entertaining. Jetflicks streaming piracy operator sentenced to seven years in federal prison.

The U.S. Department of Justice has announced that Kristopher Lee Dallmann, the operator of the now-defunct illegal streaming service Jetflicks, has been sentenced to seven years in federal prison. The decision marks one of the most significant enforcement actions in recent years against digital piracy operations in the United States.
Google launches OSS Rebuild to detect malicious code in open-source packages.
Posted inCybersecurity News

Google launches OSS Rebuild to detect malicious code in open-source packages.

In response to the rising threat of software supply chain attacks, Google has launched a new security initiative, OSS Rebuild, designed to detect and prevent malicious code in widely used open-source packages. The project aims to improve transparency, integrity, and trust in the software ecosystems that power much of today’s digital infrastructure.
Clorox sues IT service provider Cognizant for causing their 2023 cyberattack (but hey, that’s what happens when you treat cybersecurity as someone else’s job).
Posted inCybersecurity News

Clorox sues IT service provider Cognizant for causing their 2023 cyberattack (but hey, that’s what happens when you treat cybersecurity as someone else’s job).

The Clorox Company has filed a lawsuit against Cognizant Technology Solutions, alleging that the IT services company’s lax security practices directly enabled a major cyberattack that crippled Clorox’s operations in 2023, resulting in estimated damages of $380 million.
Lumma infostealer malware returns after disruption by law enforcement earlier this year.
Posted inCybersecurity News

Lumma infostealer malware returns after disruption by law enforcement earlier this year.

The notorious Lumma Stealer malware, disrupted earlier this year by a major international cybersecurity crackdown, has returned to active operations. Despite a coordinated law enforcement effort that dismantled key elements of Lumma's infrastructure, threat actors behind the info-stealing malware have rebuilt their network and resumed widespread distribution, employing new and increasingly stealthy techniques.