Sergiu Gatlan reports: Clop ransomware leaked files stolen from U.S pharmaceutical company ExecuPharm after ransom negotiations allegedly failed. ExecuPharm is a contract research organization (CRO) that provides clinical research support services to companies from the pharmaceutical industry. The company has more than 18,000 global clinical operational specialists in its network and it is one largest…
Spear-phishing campaign compromises executives at 150+ companies
Catalin Cimpanu reports: A cybercrime group operating since mid-2019 has breached the email accounts of high-ranking executives at more than 150 companies, cyber-security firm Group-IB reported today. The group, codenamed PerSwaysion, appears to have targeted the financial sector primarily, which accounted for more than half of its victims; although, victims have been recorded at companies…
“Government” hackers cracked the mail of dignitaries of Estonia
The following is a Google translation of a story that appears on securitylab.ru: For hacking, it was enough for the victim to open a malicious email; no other action was required on her part. Government-sponsored hackers exploited the zero-day vulnerability in the Estonian email service Mail.ee and hacked the accounts of a number of dignitaries….
Tom Tugendhat, MP for Tonbridge and Malling says he has been hacked
Katie Heslop reports: An MP and vocal critic of the Chinese government has claimed a “pretty sophisticated” hacker is trying to impersonate him. In a tweet yesterday, Tom Tugendhat, MP for Tonbridge and Malling, said: “If you receive an email claiming to be from me – please check and do NOT open attachments unless you’re sure. A pretty…
Cybercriminals are using Google reCAPTCHA to hide their phishing attacks
Graham Cluley reports, “researchers at Barracuda say that they are seeing cybercriminals deploying Google’s reCAPTCHA anti-bot tool in an effort to avoid early detection of their malicious campaigns.” As the researchers explain, criminals are using reCAPTCHA walls to block the content of their phishing pages from being scanned by URL scanning services. Read more on Hot…
Ex-SEC Examiner’s Data Theft Trial Delayed Due To Pandemic
Law360 reports: A New York federal judge has postponed the trial of a former U.S. Securities and Exchange Commission compliance examiner accused of breaching classified government computer networks to score a job with a private equity firm, basing the decision on COVID-19 concerns. U.S. District Judge Gary R. Brown on Wednesday agreed to push back the…