Just like the previous month, October too witnessed a volley of cybersecurity-related incidents that affected several organizations, systems, processes and more.
Researchers uncovered several new malware families apart from exploring the latest version of the existing malware. iTranslator, GreyEnergy, MartyMcFly and Chalubo botnet are the new malware found targeting several industries in different sectors, while AZORult Trojan 3.3, Ransom.Python.PYLOCKY.B and Kraken Crypto Ransomware 2.6.0 were uncovered with enhanced capabilities. In addition, security experts also demonstrated a new attack method dubbed as the NFCdrip attack that could allow attackers to exfiltrate data from air-gapped devices via NFC frequency.
Hackers were found exploiting authentication bypass vulnerability, remote code execution vulnerability and other critical security flaws to gain access to systems, servers and networks of organizations.
Talking about breaches, security experts discovered records of around 35 million US voters being sold on Dark Web for a price of up to $42,200.
Scammers were as usual found leveraging common social engineering techniques to trick users into revealing personal and financial data.
Here's an aggregated list of all breaches, malware, vulnerabilities, patches and scams reported in October.