Zack Whittaker reports: The U.S. government has stepped up its hunt for six Russian intelligence officers, best known as the state-backed hacking group dubbed “Sandworm,” by offering a $10 million bounty for information that identifies or locates its members. The Sandworm hackers — who work for a division of Russia’s GRU, the country’s military intelligence division — are known…
Microsoft discloses onslaught of Russian cyberattacks on Ukraine
Raphael Satter, Christopher Bing and James Pearson report: Russian government hackers carried out multiple cyber operations against Ukraine that appeared to support Moscow’s military attacks and online propaganda campaigns, Microsoft (MSFT.O) said in a report on Wednesday. The reported intrusions – some of which have not been previously disclosed – suggest that hacking has played a bigger…
Cybercriminals Using New Malware Loader ‘Bumblebee’ in the Wild
Ravie Lakshmanan reports: Cybercriminal actors previously observed delivering BazaLoader and IcedID as part of their malware campaigns are said to have transitioned to a new loader called Bumblebee that’s under active development. “Based on the timing of its appearance in the threat landscape and use by multiple cybercriminal groups, it is likely Bumblebee is, if…
Ph: BSP sanctions BDO, UBP over December hacking incident
CNN Philippines reports: The Bangko Sentral ng Pilipinas (BSP) on Thursday announced it will sanction BDO Unibank and the Union Bank of the Philippines over the hundreds of unauthorized bank transfers last December. The BSP said its monetary board arrived at the decision following the conclusion of its investigation into the hacking incident. CNN Philippines…
Austin Peay State University resumes after ransomware cyber attack
Ax Sharma reports: Austin Peay State University (APSU) confirmed yesterday that it had been a victim of a ransomware attack. The university, located in Clarksville, Tennessee advised students, staff, and faculty to disconnect their computers and devices from the university network immediately as a precaution. Read more at BleepingComputer. Employees have reported as normal today. Those of…
New Black Basta ransomware springs into action with a dozen breaches
Lawrence Abrams reports: A new ransomware gang known as Black Basta has quickly catapulted into operation this month, breaching at least twelve companies in just a few weeks. The first known Black Basta attacks occurred in the second week of April, as the operation quickly began attacking companies worldwide. While ransom demands likely vary between victims,…