Ionut Arghire reports: A threat group possibly originating from North Korea has been targeting academic institutions since at least May of this year, NetScout’s security researchers reveal. The attackers use spear-phishing emails that link to a website where a lure document attempts to trick users into installing a malicious Google Chrome extension. Following initial compromise,…
Category: Malware
Those annoying sextortion scams are redirecting users to GandCrab ransomware now
Okay, I tend to laugh at the sextortion emails and have tweeted or posted some of them at times, usually after I check the referenced BTC wallet to see if anyone actually fell for the scam and paid. But Catalin Cimpanu reports on a new – and important – development: This past week, users in…
Hackers steal $800,000 from Cape Cod Community College
Laura Krantz reports: Hackers stole more than $800,000 from Cape Cod Community College last week when they infiltrated the school’s bank accounts, the school notified its employees Friday. Several computers in the school’s Nickerson Administration Building were hacked by a phishing scheme that used malware to obtain access to the school’s accounts, according to an…
Clothing company OppoSuits hit by Magecart attack
Sam Varghese reports: Customers of Dutch clothing company OppoSuits have been warned to monitor their credit card accounts after the firm reported that malware planted on its website could have stolen the details of customers who made purchases from its Australian, Canadian, EU and UK websites. In a statement on Monday (Tuesday Australian time), the…
Credit card stealing malware on Canada’s 1-800-FLOWERS website went undetected for four years
Zack Whittaker reports: It’s going to take more than a bunch of posies to make up for this one. The Canadian branch of 1-800-FLOWERS revealed in a filing with the California attorney general’s office that malware on its website had siphoned off customers’ credit cards over a four-year period. Four years. Let that sink in….
Cyber-espionage group uses Chrome extension to infect victims
Catalin Cimpanu reports: In what appears to be a first on the cyber-espionage scene, a nation-state-backed hacking group has used a Google Chrome extension to infect victims and steal passwords and cookies from their browsers. This is the first time an APT (Advanced Persistent Threat –an industry term for nation-state hacking groups) has been seen…