Dubbed “PhantomLance”, the campaign has been active since at least 2015 and is still ongoing, featuring multiple versions of a complex spyware – software created to gather victims’ data – and smart distribution tactics.
The Department of Information and Communications Technology has directed all management information system (MIS) server operators to utilize the updated version of cryptographic protocols for all government websites.
In a joint advisory, the UK’s National Cyber Seurity Centre and the US Department of Homeland Security said cybercriminals are “scanning for known vulnerabilities in remote working tools and software, which is evidence that they are looking to take advantage of the increase in people working from home.”
More than half a million Zoom accounts and credentials are sold at dirt-cheap prices on the Dark Web. A few of these accounts are even given away for free.
Sophos has released a report showing how Apple device users are being targeted by applications that overcharge users through costly subscriptions or unscrupulous in-app purchases.
Based on the interviews conducted with nearly 300 IT business decision-makers in SEA last year, companies fear data loss and being exposed to a targeted attack the most (34%), followed by electronic leakage of data from internal systems (31%).
The lawsuit was filed against LeadCloak and its founder Basant Gajjar for selling the “cloaking” software to scammers that fool the ad-review systems both on Facebook and Instagram.
Zoom has zoomed to global stardom but a growing number of companies, which now includes Google, have barred their employees from using it due to security vulnerability concerns.