Ravie Lakshmanan reports: Cybercriminal actors previously observed delivering BazaLoader and IcedID as part of their malware campaigns are said to have transitioned to a new loader called Bumblebee that’s under active development. “Based on the timing of its appearance in the threat landscape and use by multiple cybercriminal groups, it is likely Bumblebee is, if…
Ph: BSP sanctions BDO, UBP over December hacking incident
CNN Philippines reports: The Bangko Sentral ng Pilipinas (BSP) on Thursday announced it will sanction BDO Unibank and the Union Bank of the Philippines over the hundreds of unauthorized bank transfers last December. The BSP said its monetary board arrived at the decision following the conclusion of its investigation into the hacking incident. CNN Philippines…
Austin Peay State University resumes after ransomware cyber attack
Ax Sharma reports: Austin Peay State University (APSU) confirmed yesterday that it had been a victim of a ransomware attack. The university, located in Clarksville, Tennessee advised students, staff, and faculty to disconnect their computers and devices from the university network immediately as a precaution. Read more at BleepingComputer. Employees have reported as normal today. Those of…
New Black Basta ransomware springs into action with a dozen breaches
Lawrence Abrams reports: A new ransomware gang known as Black Basta has quickly catapulted into operation this month, breaching at least twelve companies in just a few weeks. The first known Black Basta attacks occurred in the second week of April, as the operation quickly began attacking companies worldwide. While ransom demands likely vary between victims,…
Coca-Cola investigates hackers’ claims of breach and data theft
Bill Toulas reported this yesterday: Coca-Cola, the world’s largest soft drinks maker, has confirmed in a statement to BleepingComputer that it is aware of the reports about a cyberattack on its network and is currently investigating the claims. The American beverage giant has started to investigate after the Stormous gang said that it successfully breached some…
Fighting Fake EDRs With ‘Credit Ratings’ for Police
On April 20, DataBreaches reported claims that a security researcher had been scared away after threat actors allegedly obtained his details from Twitter by using a fraudulent Emergency Data Request. Twitter has yet to respond to numerous inquiries from the media as to whether that actually happened, but there is no doubt that fake law…