Quotidien Shaarli

Recently, we identified a new BEC group leveraging blind third-party impersonation tactics to swindle companies around the world. The group, which we call Crimson Kingsnake, impersonates real attorneys, law firms, and debt recovery services to deceive accounting professionals into quickly paying bogus invoices.

Over the last ten years, we have seen the industrialization of the content management space. A decade ago, it felt like every individual and business had a dynamic WordPress blog, loaded up with a hundred plugins to do everything from add widgets to improve performance. Over time, we realised this was a bad idea, as ensuring the security of third-party plugins seemed increasingly impossible.

Black Basta operational TTPs are described here in full detail, revealing previously unknown tools and techniques and a link to FIN7.

A family of malicious apps from developer Mobile apps Group are listed on Google Play and infected with Android/Trojan.HiddenAds.BTGTHB. In total, four apps are listed, and together they have amassed at least one million downloads.

Older versions of these apps have been detected in the past as different variants of Android/Trojan.HiddenAds. Yet, the developer is still on Google Play dispensing its latest HiddenAds malware.

A report shows four Bluetooth-centered apps by the same developer have been downloaded 1 million times combined while containing malicious code.

• U.S. banks and financial institutions processed more than $1 billion in potential ransomware-related payments in 2021.
• It’s a new record and almost triple the amount that was reported the previous year.
• Over half the ransomware attacks are attributed to suspected Russian cyber hackers, according to a new report.