Threat Intelligence: Verity Healthcare Suffers Multiple Phishing Attacks

Verity Health System, a six medical clinic operation in Redwood City, California, has informed an undisclosed number of people that their information may have been accessed due to phishing. Through these phishing attempts, attackers were able to obtain three employee emails that had messages and attachments contained within them. Other emails included patient names, treatment […]

Threat Intelligence: Adware Installers Using Rumba Variant STOP

Threat Intelligence Adware Installers Using Rumba Variant STOP

DJVU and Tro STOP ransomware variants have been seen a lot over the past month, the new Rumba variant is similar but it adjoins its .rumba extension to a file once it’s encrypted. It is currently being dished out through adware bundles and software cracks. Software cracks used by websites typically enable adware bundles to […]

Threat Intelligence: WordPress Plugin WPML Hacked

WordPress Plugin WPML Hacked

WP MultiLingual (WPML) is home to 600,000 users who pay for their WordPress translation services. Recently they have suffered their first security issue since opening 12 years ago. The attack comes at the hands of who is believed to be a former employee. After gaining access to the website’s database, he used the email domains […]

Threat Intelligence: Nine Adware Apps Discovered on Play Store

Threat Intelligence Nine Adware Apps Discovered on Play Store

Unwanted ads are being hidden within nine apps found on the Google Play Store and have been flooding users’ devices. One of the apps has already been downloaded five million times while the total of the nine apps is nearly eight million globally. These apps are non-functioning and are placed specifically to deploy adware in […]

Threat Intelligence: Yokagawa Severe Vulnerability

Threat Intelligence Yokagawa Severe Vulnerability

With a 7.7 rate of severity, the vulnerability (CVE-1081-16196) has been affecting multiple Yokagawa products and it exists within the Vnet/IP Open Communication Driver. If taken advantage of, the vulnerability could give an attacker the ability to halt communication from the Vnet which could cause a DoS campaign. All the proper organizations have been notified […]

Threat Intelligence: Netflix Phishing Scam

A new Phishing campaign has been identified by authorities in Ohio that is targeting Netflix users. The campaign sends an email to a Netflix customer asking that user to update their payment information on their website with a link to do so. The email states that the account is “on hold” until the information is […]

Threat Intelligence: Customer Information Exposed in Caribou Coffee Data Breach

Threat Intelligence Customer Information Exposed in Caribou Coffee Data Breach

Caribou Coffee suffered a data breach which was disclosed last week by the company. The breach affected more than 200 of their locations around the country. The company notified its customers by email stating the breach included customer information and credit card information that they would have used at the establishment. The breach occurred through […]

Threat Intelligence: NASA Hit With Data Breach

Threat Intelligence NASA Hit With Data Breach

Current and former employees of NASA from July 2006 through October 2018 could have been affected by a data breach, but the exact number is not known at this time. A server containing PII (Personally Identifiable Information) of employee’s was discovered to have been hacked on October 23rd. Cybersecurity personnel belonging to NASA immediately began securing […]

Threat Intelligence: ZipRecruiter Suffers Data Breach

The issue is with part of ZipRecruiter’s site that enables a business with authorization to access the CV database to contact the person seeking a job. After an employer gets online and accesses a resume, they can decide to shortlist some of the candidates when they are provided with a candidate form. The problem is […]

Threat Intelligence: New LamePyre Mac Malware

The third malware strain targeting MacOS this month has been discovered and dubbed LamePyre. Although it appears to still be under development, the malware is able to perform a few functions. LamePyre traps its victims by showing up as a duplicate of the Discord app utilized by gamers. In actuality, it is only a shell […]