Social media platforms are gradually becoming a hub for cybercriminals to perform cyberespionage. Facebook recently disrupted an Iranian nexus that exploited its platform to spy on U.S. military personnel. Security experts delve into an Android malware that compromised customers of dozens of European banks. Meanwhile, the U.S. introduced a one-stop hub for ransomware response resources for individuals, businesses, and other organizations. Continue to learn more about the top ten cybersecurity events from the past 24 hours.
01
Facebook claimed to take down an online cyberespionage campaign by Iranian hackers that targeted about 200 military personnel and companies in the defense and aerospace sectors in the U.S. and Europe.
02
Prodaft researchers warned of the emerging Android banking botnet, dubbed Teabot or Anasta, that has been targeting the customers of 60 banks in Europe and is growing rapidly.
03
The U.S. DoJ and DHS, along with other federal agencies, launched a new site StopRansomware.gov as part of the ongoing response to ransomware attacks.
04
The entire source code of DDoS-Guard, a Russian firm offering defenses against DDoS attacks, was made available on a hacker forum for a starting price of $350,000.
05
WooCommerce started deploying emergency patches for a critical SQL flaw that could allow hackers to pilfer gobs of data—from customer data to payment card info—from online stores.
06
Microsoft, in collaboration with the Citizen Lab, identified Israeli firm Sourgum as a threat actor that compromised Windows systems for hundreds of victims, including activists, politicians, journalists, and embassy workers.
07
HelloKitty ransomware actors were spotted leveraging a Linux variant to target VMware’s ESXi servers and virtual machines running on the platform.
08
According to Zscaler, malware attacks on IoT devices connected to corporate networks witnessed a 700% year-over-year surge. Gafgyt and Mirai accounted for 97% of the malware payloads detected.
09
Instagram issued a new security feature called Security Checkup that helps users secure compromised accounts by sending a prompt on their device about a suspicious login.
