Jessica Molden

AerCap, a major aircraft leasing company, has confirmed a ransomware attack by an emerging cybercrime group called ‘Slug.’ The intrusion occurred on January 17, as reported in a Form 6-K filing with the US Securities and Exchange Commission. AerCap asserted control over its IT systems and has no financial losses. While the company notified law […]

On January 12, 2024, Microsoft’s security team detected a nation-state attack by the Russian state-sponsored actor Midnight Blizzard (Nobelium) on their corporate systems. The attack, initiated in late November 2023, involved a password spray attack to compromise a test tenant account, gaining access to a small percentage of corporate email accounts, including senior leadership and

The LockBit ransomware gang has claimed responsibility for an attack on Subway, alleging that it has stolen sensitive data about “all financial aspects” of the fast-food franchise. The hackers assert that they breached Subway’s database and exfiltrated data, including information on employee salaries, franchise payments, and restaurant turnovers. Subway has not yet officially responded to

As tax season approaches, experts warn about the prevalence of tax-related identity theft, where criminals use personal information to file fraudulent returns and claim refunds. The issue persists, with the IRS’ Identity Theft Victim Assistance program noting a significant increase in individual cases. Victims face lengthy resolution times, averaging almost 19 months for the IRS

Cybersecurity Professionals Report Psychological and Physical Strain Ransomware attacks are causing psychological and physical harm to cybersecurity professionals, according to research from the Royal United Services Institute (RUSI). Infosec professionals report stress, burnout, and serious health issues linked to dealing with ransomware incidents. The study reveals cases of hospitalization, heart attacks, and even suicidal thoughts

One of Taiwan’s major semiconductor manufacturers, Foxsemicon, fell victim to a cyberattack by the LockBit ransomware gang. The hackers threatened to publish customers’ data on their darknet websites unless a ransom was paid. The attackers claimed to have accessed five terabytes of the company’s data. Foxsemicon recovered its website after detecting the attack and is

The Kansas court system requires a minimum of $2.6 million in additional funds to recover from a cyberattack in October. The attack, attributed to a Russian ransomware group, disrupted the electronic filing of documents and online access to records. Chief Justice Marla Luckert outlined the funds’ purpose, including restoring computer systems, paying vendors, enhancing cybersecurity,

A Microsoft Defender SmartScreen vulnerability is actively being exploited in a Phemedrone information-stealing malware campaign. The critical vulnerability allows attackers to bypass Windows Defender SmartScreen checks by using a specially crafted Internet Shortcut (.URL) file. Despite being patched in November 2023, threat actors are still exploiting the vulnerability, infecting users with Phemedrone Stealer. The malware