Justin Ling reports: For years, cybersecurity professionals, watchdogs, and government agencies have warned that a malicious cyberattack on the US power grid could be devastating. With ample evidence that state-sponsored hacking groups are eyeing the decentralized and deeply vulnerable power grid, the risk is more acute than ever. Case in point: Hackers, believed to be…
Category: Commentaries and Analyses
US govt login portal could be one cyberattack away from collapse, say auditors
Brandon Vigliarolo reports: The US government’s Login.gov identity verification system could be one cyberattack, or just a routine IT hiccup, away from serious trouble, say auditors, because it hasn’t shown its backup testing policy is actually in use or effective. The US Government Accountability Office reported Tuesday that Login.gov, which is managed by the federal government’s General…
Lyrix Ransomware Targets Windows Users with Advanced Evasion Techniques
Aman Mishra reports: A formidable new strain of ransomware, dubbed Lyrix, has recently surfaced, posing a significant threat to Windows users worldwide. […] Lyrix ransomware stands out due to its ability to bypass traditional antivirus solutions by employing polymorphic code, which constantly mutates to avoid signature-based detection. Once infiltrated, the malware stealthily maps the target…
Beyond the Pond Phish: Unraveling Lazarus Group’s Evolving Tactics
Unchained reports: Researchers at crypto exchange BitMEX on Friday said that they had uncovered several critical missteps that North Korean state-sponsored hacker group Lazarus had made during its campaigns. Those lapses included exposed IP addresses, an accessible Supabase database, and tracking algorithms. One finding was a rare slip-up in which a hacker likely revealed their real IP…
Akira doesn’t keep its promises to victims — SuspectFile
Over on SuspectFile, @amvinfe has been busy exposing Akira’s false promises to its victims. In two posts this week, he reports on what happened with one business in New Jersey and one in Germany that decided to pay Akira’s ransom demands. He was able to report on it all because Akira failed to secure its…
Mysterious leaker GangExposed outs Conti kingpins in massive ransomware data dump
Jessica Lyons reports: A mystery whistleblower calling himself GangExposed has exposed key figures behind the Conti and Trickbot ransomware crews, publishing a trove of internal files and naming names. The leaks include thousands of chat logs, personal videos, and ransom negotiations tied to some of the most notorious cyber-extortion gangs —believed to have raked in…