Tag: cybercrime

Phishers use encrypted file attachments to steal Microsoft 365 account credentials

May 26, 2023

Help net security* reports phishers are using encrypted restricted-permission messages (.rpmsg) attached in phishing emails to steal Microsoft 365 account credentials. The phishing emails are sent from a compromised Microsoft 365 account to individuals working in the billing department of the recipient company. The emails contain a .rpmsg (restricted permission message) attachment and a “Read … More Phishers use encrypted file attachments to steal Microsoft 365 account credentials

Digital security for the self‑employed: Staying safe without an IT team to help

May 26, 2023

Nobody wants to spend their time dealing with the fallout of a security incident instead of building up their business. Approximately one in seven people in Europe and the United States are self-employed, often realizing their dream to be in charge of their own destiny and having more freedom and control over their careers. But with nominally more freedom … More Digital security for the self‑employed: Staying safe without an IT team to help

New PowerExchange malware backdoors Microsoft Exchange servers

May 25, 2023

Bleeping computer reports* that A new PowerShell-based malware dubbed PowerExchange was used in attacks linked to APT34 Iranian state hackers to backdoor on-premise Microsoft Exchange servers. After infiltrating the mail server via a phishing email containing an archived malicious executable, the threat actors deployed a web shell named ExchangeLeech (first observed by the Digital14 Incident … More New PowerExchange malware backdoors Microsoft Exchange servers

ESET Research reveals new analysis of AceCryptor: used by crimeware, it hits computers 10,000 times every month

May 25, 2023

ESET researchers revealed today details about a prevalent cryptor malware, AceCryptor, which operates as a cryptor-as-a-service used by tens of malware families. This threat has been around since 2016, and has been distributed worldwide, with multiple threat actors actively using it to spread packed malware in their campaigns. During 2021 and 2022, ESET telemetry detected … More ESET Research reveals new analysis of AceCryptor: used by crimeware, it hits computers 10,000 times every month

Ireland fines Facebook owner Meta €1.2bn for mishandling user information

May 24, 2023

Facebook’s owner, Meta, has been fined a record €1.2bn (£1bn) and ordered to suspend the transfer of user data from the EU to the US by Ireland’s Data Protection Commission. The €1.2bn fine imposed by Ireland’s Data Protection Commission (DPC), which regulates Meta across the EU, is a record for a breach of the bloc’s … More Ireland fines Facebook owner Meta €1.2bn for mishandling user information