Category: Guest blog
-
Europol says Telegram post about 50,000 Qilin ransomware award is fake
Europol says Telegram post about 50,000 Qilin ransomware award is fake Some cybersecurity news outlets were duped a few days ago by a claim that Europol was offering a $50,000 bounty for information about two members of the Qilin ransomware group. Turns out it was all a hoax. Read more details about what happened in…
-
Warlock ransomware: What you need to know
Warlock ransomware: What you need to know The Warlock ransomware has hit a number of organisations including government agencies and departments, and most recently UK-based telecoms firm Colt. Read more in my article on the Fortra blog. Graham Cluley Go to grahamcluley
-
Speed cameras knocked out after cyber attack
Speed cameras knocked out after cyber attack A hack of the Netherlands’ Public Prosecution Service has had an unusual side effect – causing some speed cameras to be no longer capturing evidence of motorists breaking the rules of the road. Read more in my article on the Hot for Security blog. Graham Cluley Go to…
-
The MedusaLocker ransomware gang is hiring penetration testers
The MedusaLocker ransomware gang is hiring penetration testers MedusaLocker, the ransomware-as-a-service group that has been active since 2019 is openly recruiting for penetration testers to help it compromise more businesses. Read more in my article on the Fortra blog. Graham Cluley Go to grahamcluley
-
US reveals it seized $1 million worth of Bitcoin from Russian BlackSuit ransomware gang
US reveals it seized $1 million worth of Bitcoin from Russian BlackSuit ransomware gang The United States Department of Justice has revealed that the recent takedown of the BlackSuit ransomware gang’s servers, domains, and dark web extortion site, also saw the seizure of US $1,091,453 worth of cryptocurrency. Read more in my article on the…
-
Ukraine claims to have hacked secrets from Russia’s newest nuclear submarine
Ukraine claims to have hacked secrets from Russia’s newest nuclear submarine Ukraine’s Defence Intelligence agency (HUR) claims that its hackers have successfully stolen secret files and classified data on a state-of-the-art Russian nuclear submarine, the “Knyaz Pozharsky.” Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Ransomware plunges insurance company into bankruptcy
Ransomware plunges insurance company into bankruptcy Collapsed company’s founder says that its fortunes were hampered by the refusal of authorities to release the criminals’ seized funds to victims. Read more in my article on the Fortra blog. Graham Cluley Go to grahamcluley
-
200,000 WordPress websites at risk of being hijacked due to vulnerable Post SMTP plugin
200,000 WordPress websites at risk of being hijacked due to vulnerable Post SMTP plugin Over 200,000 websites running a vulnerable version of a popular WordPress plugin could be at risk of being hijacked by hackers. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
French submarine secrets surface after cyber attack
French submarine secrets surface after cyber attack European defence giant Naval Group has confirmed that it is investigating an alleged cyber attack which has seen what purports to be sensitive internal data published on the internet by hackers. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Free decryptor for victims of Phobos ransomware released
Free decryptor for victims of Phobos ransomware released There is good news for any organisation which has been hit by the Phobos ransomware. Japanese police have released a free decryptor capable of recovering files encrypted by both the notorious Phobos ransomware, and its offshoot 8Base. Read more in my article on the Fortra blog. Graham…
-
UK to ban public sector from paying ransomware demands
UK to ban public sector from paying ransomware demands Ransomware, considered by British authorities to be the UK’s greatest cybercrime threat, costing the nation billions of pounds and with the capbility to bring essential services to a standstill, is in the gunsights of government. Read more in my article on the Hot for Security blog.…
-
Europol targets Kremlin-backed cybercrime gang NoName057(16)
Europol targets Kremlin-backed cybercrime gang NoName057(16) The hacking group NoName057(16) has been operating since 2022, launching cyber attacks on government organisations, media bodies, critical infrastructure, and private companies in Ukraine, America, Canada, and across Europe in a seeming attempt to silence voices that the group considers anti-Russian. Read more in my article on the Hot…
-
Police dismantle DiskStation ransomware gang targeting NAS devices, arrest suspected ringleader
Police dismantle DiskStation ransomware gang targeting NAS devices, arrest suspected ringleader Police have struck a blow against the DiskStation ransomware gang which targets Synology NAS devices, and arresting its suspected ringleader. Make sure that you have properly hardened the security of your Network Access Storage devices to reduce the chances of your data being locked…
-
SIM scammer’s sentence increased to 12 years, after failing to pay back victim $20 million
SIM scammer’s sentence increased to 12 years, after failing to pay back victim $20 million Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Russian basketball player arrested in ransomware case despite being “useless with computers”
Russian basketball player arrested in ransomware case despite being “useless with computers” A Russian professional basketball player has been arrested for allegedly acting as a negotiator for a ransomware gang… and despite his lawyer claiming he’s “useless” with computers. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
AiLock ransomware: What you need to know
AiLock ransomware: What you need to know The AiLock ransomware gang gives its victims just 72 hours to respond and five days to pay up… or else. If you don’t comply? They will grass you up to regulators, email your competitors, and leak your data for good measure. What a lovely bunch of cybercriminals… Read…
-
Employee arrested after Brazil’s central bank service provider hacked for US $140 million
Employee arrested after Brazil’s central bank service provider hacked for US $140 million This month could barely have started any worse for some financial institutions in Brazil. Approximately US $140 million was stolen from the reserve accounts of six financial institutions after a cyber attack hit a service provider. Read more in my article on…
-
Hunters International ransomware group shuts down – but will it regroup under a new guise?
Hunters International ransomware group shuts down – but will it regroup under a new guise? The notorious Hunters International ransomware-as-a-service operation has announced that it has shut down, in a message posted on its dark web leak site. In a statement on its extortion site, the ransomware group says that it has not only “decided…
-
Swiss government warns attackers have stolen sensitive data, after ransomware attack at Radix
Swiss government warns attackers have stolen sensitive data, after ransomware attack at Radix The Swiss government has issued a warning after a third-party service provider suffered a ransomware attack, which saw sensitive information stolen from its systems and leaked onto the dark web. Read more in my article on the Fortra blog. Graham Cluley Go…
-
50 customers of French bank hit after insider helped SIM swap scammers
50 customers of French bank hit after insider helped SIM swap scammers French police have arrested a business student interning at the bank Société Générale who is accused of helping SIM-swapping scammers to defraud 50 of its clients. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
BreachForums broken up? French police arrest five members of notorious cybercrime site
BreachForums broken up? French police arrest five members of notorious cybercrime site Suspected high-ranking members of one of the world’s largest online marketplaces for leaked data have been arrested by French police. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
SafePay ransomware: What you need to know
SafePay ransomware: What you need to know SafePay is a relatively new ransomware that is making a big impact. Find out how it is different from other ransomware, and read more in my article on the Fortra blog. Graham Cluley Go to grahamcluley
-
Cybercrime is surging across Africa
Cybercrime is surging across Africa A new INTERPOL report has sounded the alarm over a dramatic increase in cybercrime across Africa, with digital crime now accounting for a significant proportional of all criminal activity across the continent. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Qilin offers “Call a lawyer” button for affiliates attempting to extort ransoms from victims who won’t pay
Qilin offers “Call a lawyer” button for affiliates attempting to extort ransoms from victims who won’t pay Imagine for one moment that you are a cybercriminal. You have compromised an organisation’s network, you have stolen their data, you have encrypted their network, and you are now knee-deep in the ransomware negotiation. However, there’s a problem.…
-
Krispy Kreme hack exposed sensitive data of over 160,000 people
Krispy Kreme hack exposed sensitive data of over 160,000 people Krispy Kreme, the dispenser of delectable doughnuts, has revealed that an astonishingly wide range of personal information belonging to past and present employees, as well as members of their families, was accessed by hackers during a cyber attack last year. Read more in my article…
-
Ransomware gang busted in Thailand hotel raid
Ransomware gang busted in Thailand hotel raid In a dramatic raid at a hotel in central Pattaya this week, Thai police have unearthed a criminal gang that was operating a ransomware and illicit gambling operation. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Bert ransomware: what you need to know
Bert ransomware: what you need to know Bert is a recently-discovered strain of ransomware that encrypts victims’ files and demands a payment for the decryption key. Read more in my article on the Fortra blog. Graham Cluley Go to grahamcluley
-
Dutch police identify users as young as 11-year-old on Cracked.io hacking forum
Dutch police identify users as young as 11-year-old on Cracked.io hacking forum Dutch police have announced that they have identified 126 individuals linked to the now dismantled Cracked.io cybercrime forum. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
South African man imprisoned after ransom demand against his former employer
South African man imprisoned after ransom demand against his former employer Lucky Erasmus and a company insider installed software without authorisation on Ecentric’s systems which granted them remote access, enabling them to steal sensitive data and make unauthorised changes to senior managers’ passwords. Read more in my article on the Hot for Security blog. Graham…
-
Empty shelves after US’s largest natural and organic food distributor suffers cyber attack
Empty shelves after US’s largest natural and organic food distributor suffers cyber attack The spate of cyber attacks impacting the retail industry continues, with the latest victim being United Natural Foods (UNFI), which supplies organic produce to Whole Foods, Amazon, Target, and Walmart, amongst many others. Read more in my article on the Hot for…
-
Marks & Spencer’s ransomware nightmare – more details emerge
Marks & Spencer’s ransomware nightmare – more details emerge Over Easter, retail giant Marks & Spencer (M&S) discovered that it had suffered a highly damaging ransomware attack that left some shop shelves empty, shut down online ordering, some staff unable to clock in and out, and caused some of its major suppliers to resort to…
-
US offers $10 million reward for tips about state-linked RedLine hackers
US offers $10 million reward for tips about state-linked RedLine hackers How would you like to earn yourself millions of dollars? Well, it may just be possible – if you have information which could help expose the identities of cybercriminals involved with the notorious RedLine information-stealing malware. Read more in my article on the Tripwire…
-
Interlock ransomware: what you need to know
Interlock ransomware: what you need to know “We don’t just want payment; we want accountability.” The malicious hackers behind the Interlock ransomware try to justify their attacks. Learn more about what you need to know about Interlock in my article on the Tripwire State of Security blog. Graham Cluley Go to grahamcluley
-
Damascened Peacock: Russian hackers targeted UK Ministry of Defence
Damascened Peacock: Russian hackers targeted UK Ministry of Defence The UK’s Ministry of Defence has revealed that it was the target of a sophisticated cyber attack that saw Russia-linked hackers pose as journalists. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Adidas customers’ personal information at risk after data breach
Adidas customers’ personal information at risk after data breach Lovers of Adidas clothes would be wise to be on their guard against phishing attacks, after the German sportswear giant revealed that a cyber attack had exposed the personal information of customers. Read more in my article on the Hot for Security blog. Graham Cluley Go…
-
3AM ransomware attack poses as a call from IT support to compromise networks
3AM ransomware attack poses as a call from IT support to compromise networks Cybercriminals are getting smarter. Not by developing new types of malware or exploiting zero-day vulnerabilities, but by simply pretending to be helpful IT support desk workers. Find out how they do it in my article on the Tripwire State of Security blog.…
-
SEC Twitter hack: Man imprisoned for role in attack that caused Bitcoin’s price to soar.
SEC Twitter hack: Man imprisoned for role in attack that caused Bitcoin’s price to soar. Eric Council Jr. pleaded guilty to charges related to the January 2024 hack of the US Securities and Exchange Commission’s (SEC) Twitter account, which saw a fake announcement about the Bitcoin cryptocurrency posted to its followers. Read more in my…
-
Prescription for disaster: Sensitive patient data leaked in Ascension breach
Prescription for disaster: Sensitive patient data leaked in Ascension breach Ascension, one of the largest private healthcare companies in the United States, has confirmed that the personal data of some 437,329 patients has been exposed following an attack by cybercriminals. Read more in my article on the Fortra blog. Graham Cluley Go to grahamcluley
-
Two years’ jail for down-on-his-luck man who sold ransomware online
Two years’ jail for down-on-his-luck man who sold ransomware online A man has been jailed in Ireland for two years after pleading guilty to offences related to his illegal online business that sold ransomware and other malware, as well as stolen credit card details, and false bank accounts. Read more in my article on the…
-
Hackers hit deportation airline GlobalX, leak flight manifests, and leave an unsubtle message for “Donnie” Trump
Hackers hit deportation airline GlobalX, leak flight manifests, and leave an unsubtle message for “Donnie” Trump GlobalX Airlines, a charter airline being used by the US government for deportation flights, has been attacked by hacktivists who have made off with what they claim are detailed flight records and passenger manifests. Read more in my article…
-
LockBit ransomware gang breached, secrets exposed
LockBit ransomware gang breached, secrets exposed Oh dear, what a shame, never mind. Read more in my article on the Tripwire State of Security blog. Graham Cluley Go to grahamcluley
-
NCSC warns of IT helpdesk impersonation trick being used by ransomware gangs after UK retailers attacked
NCSC warns of IT helpdesk impersonation trick being used by ransomware gangs after UK retailers attacked The UK’s National Cyber Security Centre (NCSC) has warned the IT helpdesks of retailers to be on their guard against bogus support calls they might receive from hackers pretending to be staff locked out of their accounts. Read more…
-
Ransomware attacks on critical infrastructure surge, reports FBI
Ransomware attacks on critical infrastructure surge, reports FBI The FBI is set to report that ransomware was the most pervasive cybersecurity threat to US critical infrastructure during the year of 2024, with complaints of ransomware attacks against critical sectors jumping 9% over the previous year. Read more in my article on the Tripwire State of…
-
21 million employee screenshots leaked in bossware breach blunder
21 million employee screenshots leaked in bossware breach blunder If you thought only your boss was peeking at your work screen, think again. Employee-monitoring tool Work Composer has committed a jaw-dropping blunder, leaving a treasure trove of millions of workplace screenshots openly accessible on the internet with no encryption in place, and no password required.…
-
Hackers access sensitive SIM card data at South Korea’s largest telecoms company
Hackers access sensitive SIM card data at South Korea’s largest telecoms company Mobile network operator SK Telecom, which serves approximately 34 million subscribers in South Korea, has confirmed that it suffered a cyber attack earlier this month that saw malware infiltrate its internal systems, and access data related to customers’ SIM cards. Read more in…
-
Crosswalks hacked to play fake audio of Musk, Zuck, and Jeff Bezos
Crosswalks hacked to play fake audio of Musk, Zuck, and Jeff Bezos “Stop, look, and listen” is the standard advice we should allow follow when crossing the road – but pedestrians in some parts are finding that they cannot believe their ears – after a hacker compromised crosswalks to play deepfake audio mocking tech bosses…
-
Insurance firm Lemonade warns of breach of thousands of driving license numbers
Insurance firm Lemonade warns of breach of thousands of driving license numbers A data breach at insurance firm Lemonade left the details of thousands of drivers’ licenses exposed for 17 months. According to the company, on March 14 2025 Lemonade learnt that a vulnerability in its online car insurance application process contained a vulnerability that…
-
RansomHouse ransomware: what you need to know
RansomHouse ransomware: what you need to know RansomHouse is a cybercrime operation that follows a Ransomware-as-a-Service (RaaS) business model, where affiliates (who do not require technical skills of their own) use the ransomware operator’s infrastructure to extort money from victims. Read more in my article on the Fortra blog. Graham Cluley Go to grahamcluley
-
Medusa ransomware gang claims to have hacked NASCAR
Medusa ransomware gang claims to have hacked NASCAR The Medusa ransomware-as-a-service (RaaS) claims to have compromised the computer systems of NASCAR, the United States’ National Association for Stock Car Auto Racing, and made off with more than 1TB of data. Read more in my article on the Hot for Security blog. Graham Cluley Go to…
-
Ransomware reaches a record high, but payouts are dwindling
Ransomware reaches a record high, but payouts are dwindling Will you be shedding a tear for the cybercriminals? Read more in my article on the Tripwire blog. Graham Cluley Go to grahamcluley
-
King Bob pleads guilty to Scattered Spider-linked cryptocurrency thefts from investors
King Bob pleads guilty to Scattered Spider-linked cryptocurrency thefts from investors A Florida man, linked to the notorious Scattered Spider hacking gang, has pleaded guilty to charges related to cryptocurrency thefts which have netted hundreds of thousands of dollars. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
HellCat ransomware: what you need to know
HellCat ransomware: what you need to know HellCat – the ransomware gang that has been known to demand payment… in baguettes! Are they rolling in the dough? Bread it and weep in my article on the Tripwire State of Security blog. Graham Cluley Go to grahamcluley
-
Hackers exploit little-known WordPress MU-plugins feature to hide malware
Hackers exploit little-known WordPress MU-plugins feature to hide malware A new security issue is putting WordPress-powered websites at risk. Hackers are abusing the “Must-Use” plugins (MU-plugins) feature to hide malicious code and maintain long-term access on hacked websites. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
£3 million fine for healthcare MSP with sloppy security after it was hit by ransomware attack
£3 million fine for healthcare MSP with sloppy security after it was hit by ransomware attack A UK firm has been hit by a £3.07 million fine after being hit by a ransomware attack that exposed sensitive data related to almost 80,000 people, and disrupted NHS services. Read more in my article on the Exponential-e…
-
VanHelsing ransomware: what you need to know
VanHelsing ransomware: what you need to know First reported earlier in March 2025, VanHelsing is a new ransomware-as-a-service operation. Read more in my article on the Tripwire State of Security blog. Graham Cluley Go to grahamcluley
-
Malaysian PM says “no way” to $10 million ransom after alleged cyber attack against Kuala Lumpur airport
Malaysian PM says “no way” to $10 million ransom after alleged cyber attack against Kuala Lumpur airport According to some reports, Kuala Lumpur International Airport had to resort to using whiteboards to communicate with passengers. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
BlackLock ransomware: What you need to know
BlackLock ransomware: What you need to know BlackLock has become a big deal, very quickly. It has been predicted to be one of the biggest ransomware-as-a-service operations of 2025. Read more in my article on the Tripwire State of Security blog. Graham Cluley Go to grahamcluley
-
Supply-chain CAPTCHA attack hits over 100 car dealerships
Supply-chain CAPTCHA attack hits over 100 car dealerships A security researcher has discovered that the websites of over 100 car dealerships have been compromised in a supply-chain attack that attempted to infect the PCs of internet visitors. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Mandatory Coinbase wallet migration? It’s a phishing scam!
Mandatory Coinbase wallet migration? It’s a phishing scam! An ingenious phishing scam is targeting cryptocurrency investors, by posing as a mandatory wallet migration. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Free file converter malware scam “rampant” claims FBI
Free file converter malware scam “rampant” claims FBI Whether you’re downloading a video from YouTube or converting a Word document into a PDF file, there’s a chance that you might be unwittingly handing control of your PC straight into the hands of cybercriminals. Read more in my article on the Hot for Security blog. Graham…
-
Borked Chromecasts are beginning to receive their update – just hope you didn’t do a factory reset
Borked Chromecasts are beginning to receive their update – just hope you didn’t do a factory reset The news can’t have come too soon for the many Chromecast users who have found themselves unable to stream their favourite TV shows, movies, and other media. Read more in my article on the Hot for Security blog.…
-
Chromecast chaos – 2nd gen devices go belly-up as Google struggles to fix certificate issue
Chromecast chaos – 2nd gen devices go belly-up as Google struggles to fix certificate issue Has your old Chromecast suddenly developed a problem? You’re not alone it seems. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Medusa ransomware: FBI and CISA urge organisations to act now to mitigate threat
Medusa ransomware: FBI and CISA urge organisations to act now to mitigate threat The Medusa ransomware gang continues to present a major threat to the critical infrastructure sector, according to a newly-released – with at least one organisation hit with a “triple-extortion” threat. Read more in my article on the Tripwire State of Security blog.…
-
Man found guilty of planting infinite loop logic bomb on ex-employer’s system
Man found guilty of planting infinite loop logic bomb on ex-employer’s system Davis Lu had planted malicious Java code onto his employer’s network that would cause “infinite loops” that would ultimate result in the server crashing or hanging. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Fake police call cryptocurrency investors to steal their funds
Fake police call cryptocurrency investors to steal their funds Have you had a phone call from police about your cryptocurrency wallet? Be on your guard – you could be about to be scammed. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Cactus ransomware: what you need to know
Cactus ransomware: what you need to know Cactus is a ransomware-as-a-service (RaaS) group that encrypts victim’s data and demands a ransom for a decryption key. Read more about it in my article on the Tripwire State of Security blog. Graham Cluley Go to grahamcluley
-
CISA refutes claims it has been ordered to stop monitoring Russian cyber threats
CISA refutes claims it has been ordered to stop monitoring Russian cyber threats It’s been a confusing few days in the world of American cybersecurity… Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Stop targeting Russian hackers, Trump administration orders US Cyber Command
Stop targeting Russian hackers, Trump administration orders US Cyber Command The Trump administration has told US cyber command and CISA to stop following or reporting on Russian cyber threats. Yes, Russia! That country everyone used to agree was home to lots of ransomware gangs and hackers. Hmmm… Read more in my article on the Hot…
-
Warning issued as hackers offer firms fake cybersecurity audits to break into their systems
Warning issued as hackers offer firms fake cybersecurity audits to break into their systems Companies are being warned that malicious hackers are using a novel technique to break into businesses – by pretending to offer audits of the company’s cybersecurity. Read more in my article on the Tripwire State of Security blog. Graham Cluley Go…
-
Flaw found in stalkerware apps, exposing millions of people. Here’s how to find out if your phone is being spied upon
Flaw found in stalkerware apps, exposing millions of people. Here’s how to find out if your phone is being spied upon A serious security vulnerability has been found in popular stalkerware apps, exposing the sensitive personal information and communications of millions of people. Read more in my article on the Hot for Security blog. Graham…
-
Got a Microsoft Teams invite? Storm-2372 gang exploit device codes in global phishing attacks
Got a Microsoft Teams invite? Storm-2372 gang exploit device codes in global phishing attacks Security experts have warned that a cybercriminal group has been running a malicious and inventive phishing campaign since August 2024 to break into organizations across Europe, North America, Africa, and the Middle East. Read more in my article on the Tripwire…
-
US charges two Russian men in connection with Phobos ransomware operation
US charges two Russian men in connection with Phobos ransomware operation Roman Berezhnoy and Egor Nikolaevich Glebov are alleged to have extorted over US $16 million in ransom payments using the Phobos ransomware, impacting over 1000 organisations in the United States. Read more in my article on the Hot for Security blog. Graham Cluley Go…
-
US Coast Guard told to improve its cybersecurity, after warning raised that hacked ports could cost $2 billion per day
US Coast Guard told to improve its cybersecurity, after warning raised that hacked ports could cost $2 billion per day The US Coast Guard has been urged to improve the cybersecurity infrastructure of the Maritime Transportation System (MTS), which includes ports, waterways, and vessels essential for transporting over $5.4 trillion worth of goods annually. Read…
-
US woman faces years in federal prison for running laptop farm for N Korean IT workers
US woman faces years in federal prison for running laptop farm for N Korean IT workers Christian Marie Chapman, of Litchfield Park, Arizona, helped generate over US $17 million for North Korea after over 300 US companies unwittingly hired staff believing them to be US citizens. Read more in my article on the Hot for…
-
Toll booth bandits continue to scam via SMS messages
Toll booth bandits continue to scam via SMS messages North American drivers are continuing to be barraged by waves of scam text messages, telling them that they owe money on unpaid tolls. Do you know what to tell your friends and family to watch out for? Read more in my article on the Hot for…
-
Secret Taliban records published online after hackers breach computer systems
Secret Taliban records published online after hackers breach computer systems The Taliban government of Afghanistan is reeling after unidentified hackers successfully carried out a massive cyber attack against its computer systems and published over 50GB of stolen documents and files online. Read more in my article on the Hot for Security blog. Graham Cluley Go…
-
Data breaches at UK law firms are on the rise, research reveals
Data breaches at UK law firms are on the rise, research reveals British legal professionals have seen a “significant surge” in data breaches, according to new research from NetDocuments, a firm that provides a cloud-based content management platform for the legal sector. Read more in my article on the Tripwire State of Security blog. Graham…
-
Thailand cuts power and internet to areas of Myanmar to disrupt scam gangs
Thailand cuts power and internet to areas of Myanmar to disrupt scam gangs Well, this is a different approach to the scam problem… The government of Thailand has cut the power supply to areas near its border with Myanmar that are known to host brutal scam compounds. These heavily-guarded fraud factories house armies of people,…
-
Man sentenced to 7 years in prison for role in $50m internet scam
Man sentenced to 7 years in prison for role in $50m internet scam A California man has been sentenced to seven years in prison for his involvement in a fraudulent scheme that saw over 50 individuals and organisations lose millions of dollars. Read more in my article on the Tripwire State of Security blog. Graham…
-
Ex-worker arrested after ‘shutdown’ of British Museum computer systems
Ex-worker arrested after ‘shutdown’ of British Museum computer systems London’s world-famous British Museum was forced to partially close its doors at the end of last week, following a serious security breach involving a former IT contractor. Police were called to the museum on Friday after a recently dismissed worker allegedly trespassed onto the museum site…
-
Hacked buses blare out patriotic pro-European anthems in Tbilisi, attack government
Hacked buses blare out patriotic pro-European anthems in Tbilisi, attack government Residents of Tbilisi, the capital city of Georgia, experienced an unexpected and unusual start to their Friday morning commute. As they boarded their public transport buses, they were greeted by a barrage of sound emanating from the vehicles’ speakers. Read more in my article…
-
Be careful what you say about data leaks in Turkey, new law could mean prison for reporting hacks
Be careful what you say about data leaks in Turkey, new law could mean prison for reporting hacks The Turkish government is proposing a controversial new cybersecurity law that could make it a criminal act to report on data breaches. But might it stifle journalism and free speech? Read more in my article on the…
-
Half a million hotel guests at risk after hackers accessed sensitive data
Half a million hotel guests at risk after hackers accessed sensitive data The personal information of almost half a million people is now in the hands of hackers after a security breach of a company used by some of the world’s best known hotel brands. Read more in my article on the Hot for Security…
-
Medusa ransomware: what you need to know
Medusa ransomware: what you need to know Medusa is a ransomware-as-a-service (RaaS) platform that has targeted organisations around the world. Read more about it in my article on the Tripwire State of Security blog. Graham Cluley Go to grahamcluley
-
No, Brad Pitt isn’t in love with you
No, Brad Pitt isn’t in love with you No, Brad Pitt isn’t in love with you. A French woman was duped into believing a hospitalised Brad Pitt had fallen in love with her. The scammers even faked a “breaking news” report announcing the revelation of Brad’s new love… Read more in my article on the…
-
Pastor’s “dream” crypto scheme alleged to be a multi-million dollar scam
Pastor’s “dream” crypto scheme alleged to be a multi-million dollar scam Imagine trusting your pastor with your savings, only to find out he’s running a crypto scam. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Canadian man loses a cryptocurrency fortune to scammers – here’s how you can stop it happening to you
Canadian man loses a cryptocurrency fortune to scammers – here’s how you can stop it happening to you A Canadian man lost a $100,000 cryptocurrency fortune – all because he did a careless Google search. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Space Bears ransomware: what you need to know
Space Bears ransomware: what you need to know The Space Bears ransomware gang stands out from the crowd by presenting itself better than many legitimate companies, with corporate stock images and a professional-looking leak site. Read more in my article on the Tripwire State of Security blog. Graham Cluley Go to grahamcluley
-
United Nations aviation agency hacked, recruitment database plundered
United Nations aviation agency hacked, recruitment database plundered The ICAO, the UN aviation agency tasked with keeping our skies safe, just got hacked… again. This time, a hacker is offering to sell the personal data of 42,000 job applicants. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
It’s time to stop calling it “pig butchering”
It’s time to stop calling it “pig butchering” Online romance and investment scams are painful enough without its victims being described as “pigs.” Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
Rydox cybercrime marketplace seized by law enforcement, suspected admins arrested
Rydox cybercrime marketplace seized by law enforcement, suspected admins arrested Rydox, an online marketplace used by cybercriminals to sell hacked personal information and tools to commit fraud, has been seized in an international law enforcement operation and its suspected administrators arrested. Read more in my article on the Hot for Security blog. Graham Cluley Go…
-
Doughnut orders disrupted! Krispy Kreme suffers hack attack
Doughnut orders disrupted! Krispy Kreme suffers hack attack Krispy Kreme, the dispenser of delectable doughnuts, says that it suffered a cyber attack at the end of last month which saw its IT systems compromised and has disrupted online orders in parts of the United States. Read more in my article on the Hot for Security…
-
27 DDoS-for-hire services disrupted in run-up to holiday season
27 DDoS-for-hire services disrupted in run-up to holiday season Operation PowerOFF has disrupted what was anticipated to be a surge of distributed denial-of-service (DDoS) attacks over the Christmas period by taking over two dozen “booter” or “stresser” websites offline. Read more in my article on the Tripwire State of Security blog. Graham Cluley Go to…
-
“CP3O” pleads guilty to multi-million dollar cryptomining scheme
“CP3O” pleads guilty to multi-million dollar cryptomining scheme A man faces up to 20 years in prison after pleading guilty to charges related to an illegal cryptomining operation that stole millions of dollars worth of cloud computing resources. Read more in my article on the Hot for Security blog. Graham Cluley Go to grahamcluley
-
3AM ransomware: what you need to know
3AM ransomware: what you need to know The 3AM ransomware first emerged in late 2023. Like other ransomware, 3AM exfiltrates victims’ data (demanding a ransom is paid) and encrypts the copies left behind. Here’s what you need to know. Read more in my article on the Tripwire State of Security blog. Graham Cluley Go to…
-
Ransomware-hit vodka maker Stoli files for bankruptcy in the United States
Ransomware-hit vodka maker Stoli files for bankruptcy in the United States Stoli Group USA, the US subsidiary of vodka maker Stoli, has filed for bankruptcy – and a ransomware attack is at least partly to blame. The American branch of Stoli, which imports and distributes Stoli brands in the United States, as well as the…