Government-Targeted Attacks Trigger State of Emergency in Costa Rica Due to Sustained Cyberattacks
Government-Targeted Attacks Trigger State of Emergency in Costa Rica Due to Sustained Cyberattacks
  • Alert & Advisory
  • May 3, 2022

The Conti Ransomware gang has promised more government-targeted attacks after crippling Costa Rica's treasury, prompting the new leadership of President Rodrigo Chaves to declare a state of national cybersecurity emergency. In April 2022, the group carried out a ransomware attack on the Costa Rican government, severely disrupting the country's foreign trade by disrupting its customs and taxes platforms. The group has described the attack on Costa Rica's government as merely a "Demo Version," emphasizing the need for Nigeria to take proactive measures to protect itself from such attacks.

Joker Trojan-Infected Android Apps Reappear on Google Play Store
Joker Trojan-Infected Android Apps Reappear on Google Play Store
  • Alert & Advisory
  • May 10, 2022

The Joker trojan malware, which targets Android devices, first showed up in 2017 and has resurfaced intermittently ever since. In April 2021, it was embedded in an App that was downloaded over seven hundred thousand (700,000) times before discovery and subsequent removal from the Google Play Store. Its latest emergence has so far triggered the removal of three (3) apps from the Play Store.

FBI Warns of BlackCat Ransomware That Breached Over 60 Organisations Worldwide
FBI Warns of BlackCat Ransomware That Breached Over 60 Organisations Worldwide
  • Alert & Advisory
  • April 25, 2022

The U.S. Federal Bureau of Investigation (FBI) has raised the alarm on the BlackCat ransomware-as-a-service (RaaS), which it said victimized at least 60 entities worldwide as of March 2022 since its emergence last November. The FBI disseminated known indicators of compromise (IOCs) and tactics, techniques and procedures (TTPs) associated with ransomware variants identified through FBI investigations. BlackCat is the first ransomware group to do so successfully using RUST, considered to be a more secure programming language that offers improved performance and reliable concurrent processing. BlackCat-affiliated threat actors typically request ransom payments of several million dollars in Bitcoin and Monero. Many of the developers and money launderers for BlackCat/ALPHV are linked to Darkside/Blackmatter, indicating they have extensive networks and experience with ransomware operations.

Hackers Using Fake Windows 11 Upgrade to Install Malware & Steals Information
Hackers Using Fake Windows 11 Upgrade to Install Malware & Steals Information
  • Alert & Advisory
  • April 20, 2022

It has been discovered that through clever manipulation of internet search results, hackers are tricking people into installing a fake malware-infected, information-stealing Windows 11 upgrade. The hackers created a near-exact replica of the Microsoft website but infected it with malicious software. When people search for "Windows 11 upgrade" or something similar, it's possible that one of the top results is the hackers' shady website.

New Browser-In-The Browser (BITB) Phishing Attacks
New Browser-In-The Browser (BITB) Phishing Attacks
  • Alert & Advisory
  • March 29, 2022

A coding ruse that is invisible to the naked eye can now be used to trick targets into disclosing sensitive information. The novel phishing technique is known as a browser-in-the-browser (BitB) attack. This type of attack employs bogus popup SSO windows to steal credentials from Google, Facebook, and Microsoft, among others.

Related Articles