ICAO victim of a major cyberattack in 2016

The organization was the victim of a water-hole attack, likely attributable to the APT LuckyMouse group. The International Civil Aviation Organization (ICAO) was a victim of a large-scale cyberattack back in 2016. Indeed, in November of that year, a cyber-intelligence analyst at Lockheed Martin contacted the international organization after finding that cybercriminals took control of … More ICAO victim of a major cyberattack in 2016

Criminal hacking hits Managed Service Providers: Reasons and responses

Recent news articles show that MSPs are now being targeted by criminals, and for a variety of nefarious reasons. Why is this happening, and what should MSPs do about it? If you are an MSP, as in managed service provider, or your organization uses the services of an MSP, then you need to be aware … More Criminal hacking hits Managed Service Providers: Reasons and responses

LoJax: First UEFI rootkit found in the wild, courtesy of the Sednit group

ESET researchers have shown that the Sednit operators used different components of the LoJax malware to target a few government organizations in the Balkans as well as in Central and Eastern Europe. UEFI rootkits are widely viewed as extremely dangerous tools for implementing cyberattacks, as they are hard to detect and able to survive security … More LoJax: First UEFI rootkit found in the wild, courtesy of the Sednit group

Defending your company from cyberattack

ESET CTO Juraj Malcho outlines some of the ways in which organizations can reduce their cybersecurity risk. Given our growing digital dependency, cybersecurity incidents and the exploitation of security soft spots can have serious and cascading ramifications for businesses and their customers. Recent history has seen no shortage of high-profile cyberattacks and data breaches, giving … More Defending your company from cyberattack

DanaBot shifts its targeting to Europe, adds new features

ESET researchers have discovered new DanaBot campaigns targeting a number of European countries. Recently, we have spotted a surge in activity of DanaBot, a stealthy banking Trojan discovered earlier this year. The malware, first observed in campaigns targeting Australia and later Poland, has apparently expanded further, with campaigns popping up in Italy, Germany, Austria, and … More DanaBot shifts its targeting to Europe, adds new features

Bristol airport takes flight screens offline after apparent ransomware attack

The screens in “key locations” are back up and running again, while the airport paid no ransom to return its systems to working order. Bristol Airport in South West England has been hit by an apparent ransomware attack that prompted the airport to take flight information screens offline in an effort to keep the attack … More Bristol airport takes flight screens offline after apparent ransomware attack

How to stay safe on public WiFi networks?

Every now and then it’s good to remind readers of some basic security measures. Although we’ve written about it before, it’s time to look at public WiFi security again. There are several potential dangers when using public WiFi, ranging from privacy issues to cybercrime attacks. But most can be easily avoided by following these simple … More How to stay safe on public WiFi networks?