Continuing the trend of the latest cyberattacks in the IT sector, researchers are expecting another wave of attacks impacting business operations worldwide.

Experts have reported several malware and threat actors attempting to steal credentials from apps and browsers of organizations worldwide for the purposes of selling it on underground forums.

A group of academic researchers demonstrated how light can be used to manipulate a myriad range of digital assistants, including Amazon Echo devices, using a laser beam.

Dataprotector and CyberSeal encrypted and hid malware inside legitimate code to appear harmless to antivirus software. The price of the services ranged between $40 and $300.

Between the second half of 2019 and the first half of 2020, Group-IB researchers have uncovered dozens of attack campaigns carried out by state-sponsored APT groups across different countries.

The new malware campaign uses npm registry for distribution and steals Discord app tokens, personal information such as payment information, and web browser files of the users.

Researchers have found that criminals are using mainstream ISPs, hosting companies, and free internet services in phishing and domain spoofing scams, especially when major events are around.

Any cybersecurity mishap in media firms that hold a lot of confidential data, will not only harm its reputation but also pose risks to institutions and the general public from various malicious actors.

In a recent incident, a new cybercrime gang leveraged vulnerable WordPress sites to install scammy e-commerce stores with the purpose of lowering a site’s search engine ranking and reputation.

Earlier this month, a hacker posted a list of IP addresses from almost 50,000 Fortinet VPN devices that are vulnerable to a path traversal vulnerability tracked as CVE-2018-13379.