FBI implores developers to finally eradicate SQL injections
The FBI and the U.S. Cybersecurity and Infrastructure Agency (CISA) argue that SQL injections should be a thing of the past. Despite developers' knowledge for two decades of how to prevent this type of attack, it continues to cause widespread exploits.
SQL injections insert malicious code into S... Read more
FBI and European authorities neutralize MooBot: spying platform for Russia
The FBI worked with several partners to disrupt a malicious botnet. The Center for Cybersecurity Belgium (CCB) supported the action in part. They shared some more information about defusing MooBot, which was linked to Russian intelligence.
In January of this year, the U.S. Department of Justice... Read more
LockBit returns with updated encryptors and new servers
LockBit restarted its operations after receiving a crackdown from police forces last week. The ransomware group launched a new website over the weekend to extort the victims it makes. However, the conclusion about the international action against LockBit is positive. How does the operation impact t... Read more
LockBit ransomware is hampered by police departments, but won’t stop -update
The hacker collective LockBit already has thousands of victims to its name. Drawing this much attention causes police departments to get eager to stop the criminal organization. Steps have recently been taken to that end, with a joint operation by Europol, the FBI and the British security services ... Read more
FBI proactively removes Chinese botnet malware on hundreds of SOHO routers
The FBI hindered the operations of the Chinese hacker gang Volt Typhoon yesterday. The U.S. security agency removed proactively these hackers' KV Botnet malware on hundreds of Small business and Home Office (SOHO) routers. Potential future new infections were also prevented.
According to the FBI... Read more
FBI releases decryption tool for ALPHV/BlackCat ransomware victims
The U.S. Department of Justice has released a decryption tool to combat the effects from the infamous ALPHV/BlackCat ransomware variant. Developed by the FBI, the tool allows more than 500 victims to regain access to their data. However, ALPHV/BlackCat argues that the tool is not as effective as it... Read more
Cybercriminals entice victims to install rogue beta apps
Cybercriminals are increasingly trying to trick victims into installing malicious apps that are supposedly in a beta phase. These are mainly fake cryptocurrency apps, the FBI warns.
According to the U.S. investigative agency, cybercriminals are increasingly trying to trick victims into installin... Read more
Fortinet and Microsoft lead list of most abused exploits of 2022
A flaw in Fortinet software is the most abused vulnerability of 2022, as a recent survey by U.S. security and cybersecurity agencies showed. Microsoft also grossed in the number of commonly abused exploits.
In their overview, the security services FBI, NSA and cybersecurity watchdog CISA indicat... Read more
‘FBI and Europol take down ransomware group Hive’
Hive's infrastructure is down. Europol claims the ransomware group was tackled by a partnership of Dutch, German and US authorities.
"The FBI seized this site as part of a coordinated law enforcement action", reads the banner referred to by Hive's website since Thursday. The statement is signed ... Read more
Apple introduces end-to-end encryption for iCloud data
Apple launched Advanced Data Protection, an optional end-to-end encryption feature preventing data from iCloud from being decrypted on an "untrusted" device.
Advanced Data Protection should keep an iCloud account's data private even in the unlikely event that Apple is hacked. The Wall Street Jou... Read more