CISA warns of notable increase in LokiBot malware
The U.S. government's cyber-security agency issued a security advisory Tuesday warning federal agencies and the private sector about "a notable increase in the use of LokiBot malware by malicious cyber actors since July 2020." The Cybersecurity and Infrastructure Security Agency (CISA) said that its in-house security platform (the EINSTEIN Intrusion Detection System) has detected persistent malicious activity traced back to LokiBot infections.
Billions of devices vulnerable to new 'BLESA' Bluetooth security flaw
Billions of smartphones, tablets, laptops, and IoT devices are using Bluetooth software stacks that are vulnerable to a new security flaw disclosed over the summer. Named BLESA (Bluetooth Low Energy Spoofing Attack), the vulnerability impacts devices running the Bluetooth Low Energy (BLE) protocol.
How ransomware operators are joining forces to carry out attacks
Lately, ransomware operators have been upping their game by teaming up with fellow criminals as a type of organized cybercrime. The Maze and Sodinokibi groups were the most active culprits of this type of extortion during the second quarter, according to Positive Technologies. DoppelPaymer, NetWalker, Ako, Nefilim, and Clop are also engaged in this type of threat. Some gangs, such as Ako, employ a "double extortion" scheme by demanding separate ransoms for decryption and nondisclosure of data.