Fake Job Interviews, Real Threats: The Rise of OtterCookie Malware

 

North Korean Hackers Unleash OtterCookie Malware in Sophisticated Job Scam

North Korean cyber operatives have unveiled a new weapon in their digital arsenal. Dubbed OtterCookie, this JavaScript-based malware is the latest addition to the Contagious Interview campaign, targeting job seekers with cunning precision.

Global Espionage? Chinese Cyber Centre Accuses U.S. of Tech Firm Hacks

 

U.S. Accused of Cyberattacks and Trade Secret Theft by Chinese Cybersecurity Centre

A Chinese cybersecurity organization has accused the United States of conducting cyberattacks to steal business secrets from a research center and a high-tech data company. The allegations come amidst a U.S. national security investigation into the Chinese router manufacturer TP-Link, further escalating cyber tensions between the two nations.

Auto Parts Leader LKQ Targeted in Major Cyberattack

 

LKQ Corporation Reports Cyberattack on Canadian Business Unit

LKQ Corporation, a leading US-based provider of auto parts, disclosed to the SEC late last week that it experienced a cyberattack that disrupted operations at one of its Canadian business units. The incident highlights the ongoing cybersecurity challenges faced by global enterprises.

Winnti's Glutton: A PHP Backdoor Targeting Rival Threat Actors

 

Winnti Hackers Leverage New Glutton PHP Backdoor to Target Rivals and Organizations

The notorious Chinese hacking group Winnti, also known as APT41, is deploying a new PHP-based backdoor named “Glutton” in attacks targeting organizations in China and the United States, as well as rival cybercriminals. This discovery sheds light on Winnti’s evolving strategies in cyberespionage and financial theft.

BadBox Malware: A New Threat Pre-loaded on Android Devices

 

Germany’s Federal Office for Information Security (BSI) Disrupts BadBox Malware Operation on Android IoT Devices

Germany’s Federal Office for Information Security (BSI) has successfully disrupted the BadBox malware operation, which had been pre-installed on over 30,000 Android IoT devices sold within the country. The affected devices include digital picture frames, media players, streaming devices, and potentially smartphones and tablets.

Russia Cracks Down on Cybercrime: Wazawaka Arrested for Ransomware Links

 

Russia Arrests Infamous Cybercriminal Mikhail Matveev, Known as Wazawaka, for Ransomware Ties

Russian authorities have arrested Mikhail Pavlovich Matveev, also known by aliases such as Wazawaka, Uhodiransomwar, m1x, and Boriselcin, on charges of developing ransomware and participating in multiple hacking groups.

Cybercrime Crackdown: The Fall of Phobos Ransomware's Admin

 

Phobos Ransomware Admin Extradited: A Major Win in the Fight Against Cybercrime

In a significant development in international cybercrime enforcement, Evgenii Ptitsyn, a Russian national and suspected administrator of the notorious Phobos ransomware operation, has been extradited from South Korea to face charges in the United States. This marks a pivotal moment in efforts to combat ransomware-as-a-service (RaaS) platforms that have wreaked havoc globally.