A week before Oregon’s primary election, the secretary of state’s office is moving to protect the integrity of its online system where campaign finance records are published after a web hosting provider was hit by a ransomware attack.
New Malware Samples Indicate Return of REvil Ransomware
New malware samples and a new Tor-based leak website suggest that the REvil ransomware operation has been resumed.
Secureworks, which tracks the group behind REvil as Gold Southfield, has conducted an analysis of malware samples apparently created in March and April, and determined that the developer likely has access to the original REvil source code.
DarkCrystal RAT Offers Many Capabilities for Very Low Price
BlackBerry’s security researchers have performed a deep analysis of the DarkCrystal RAT and the dark web activity of its developer.
Technical Details, IoCs Available for Actively Exploited BIG-IP Vulnerability
Indicators of compromise (IoCs) and other resources have been released to help defenders deal with the actively exploited F5 BIG-IP vulnerability tracked as CVE-2022-1388.
U.S. Offers $15 Million Bounty for Leaders of Conti Ransomware Gang
Eager to hunt down key leaders of the Conti ransomware gang, the United States Government is willing to pay up to $10 million for information leading to the identification and/or location of anyone holding a key leadership role in the group.
Ransomware Attack Hits Production Facilities of Agricultural Equipment Giant AGCO
Agricultural equipment giant AGCO says its business operations have been impacted after falling victim to a ransomware attack last week.
AGCO designs, makes, and distributes agricultural machinery and precision technology, offering equipment under brands such as Challenger, Fendt, Massey Ferguson, and Valtra.
Heroku Shares Details on Recent GitHub Attack
Platform-as-a-service company Heroku this week shared additional details on an April cyberattack that resulted in unauthorized access to multiple customers’ GitHub repositories.
FBI: Losses From BEC Scams Surpass $43 Billion
The Federal Bureau of Investigation says business email compromise (BEC) and email account compromise (EAC) losses have surpassed $43 billion globally.
China-Linked Winnti APT Group Silently Stole Trade Secrets for Years: Report
“CuckooBees” campaign operated by Chinese cyber espionage group went undetected since 2019
Chinese Hackers Abuse Cybersecurity Products for Malware Execution
Researchers at cybersecurity firm SentinelOne have observed a Chinese hacking group taking a trial-and-error approach to abusing antivirus applications for the sideloading of malicious DLLs.