Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.
Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack.
https://threatpost.com/iphone-users-urged-to-update-to-patch-2-zero-days-under-attack/180448/
The North Korean APT is using a fake job posting for Coinbase in a cyberespionage campaign targeting users of both Apple and Intel-based systems.
‘Summer Camp’ for hackers features a compromised satellite, a homecoming for hackers and cyberwarfare warnings.
https://threatpost.com/black-hat-and-def-con-roundup/180409/
A uniquely politically motivated site called DUMPS focuses solely on threat activity directed against Russia and Belarus
Networking giant says attackers gained initial access to an employee’s VPN client via a compromised Google account.
U.S. Treasury blocked the business of the virtual currency mixer for laundering more than $7 billion for hackers, including $455 million to help fund North Korea’s missile program.
https://threatpost.com/virtual-currency-platform-tornado-cash-accused-of-aiding-apts/180367/
Attackers are spoofing the widely used cryptocurrency exchange to trick users into logging in so they can steal their credentials and eventually their funds.
Separate phishing campaigns targeting thousands of victims impersonate FedEx and Microsoft, among others, to trick victims.
https://threatpost.com/open-redirect-flaw-snags-amex-snapchat-user-data/180354/
Cybercriminals turn to container files and other tactics to get around the company’s attempt to thwart a popular way to deliver malicious phishing payloads.
https://threatpost.com/threat-pivot-microsofts-macro/180319/