Ransomware Demands Spike 320%, Payments Rise
Remote work continues to fueling a spike in phishing and cyberattacks, particularly in the U.S.
Source: Threadpost
Fake Forcepoint Google Chrome Extension Hacks Windows Users
In a unique attack, cybercriminals locally install an extension to manipulate data in internal web applications that the victims have access to.
Source: Threadpost
WestRock Ransomware Attack Hinders Packaging Production
The ransomware attack, affecting OT systems, resulted in some of WestRock's facilities lagging in production levels.
Source: Threadpost
Industrial Networks See Sharp Uptick in Hackable Security Holes
Claroty reports that adversaries, CISOs and researchers have all turned their attention to finding critical security bugs in ICS networks.
Source: Threadpost
Unpatched WordPress Plugin Code-Injection Bug Afflicts 50K Sites
An CRSF-to-stored-XSS security bug plagues 50,000 'Contact Form 7' Style users.
Source: Threadpost
Google Chrome Zero-Day Afflicts Windows, Mac Users
Google warns of a zero-day vulnerability in the V8 open-source engine that's being actively exploited by attackers.
Source: Threadpost
Ransomware Attacks Hit Major Utilities
Eletrobras, the largest power company in Latin America, faces a temporary suspension of some operations.
Source: Threadpost
Android Devices Prone to Botnet’s DDoS Onslaught
A new DDoS botnet propagates via the Android Debug Bridge and uses Tor to hide its activity.
Source: Threadpost
Spotify Suffers Second Credential-Stuffing Cyberattack in 3 Months
As many as 100,000 of the music streaming service's customers could face account takeover.
Source: Threadpost
Nespresso Smart Cards Brewed with Weak Security
A researcher hacked Nespresso Pro smart cards to dispense free, unlimited coffee.
Source: Threadpost