MFA Prompt Bombing: Why Your Second Factor Isn’t Saving You

Attackers repeatedly trigger the prompt, attempting to trick the target or wear them down to approve the request. Sometimes, attackers will pair prompt bombing with a vishing call pretending to be from IT, where they will try to socially engineer the target. The danger is that these methods only need to work once.

Microsoft says China-backed cybercriminals hacked into US nuclear weapons agency

“The early exploitation resembled government-sponsored activity, and then spread more widely to include hacking that ‘looks like China’,” Meyers told Bloomberg News. CrowdStrike’s investigation into the campaign remains ongoing.

Schneider Electric hit by Ransomware Demand of $125,000 in baguettes.

Schneider Electric confirmed that it is investigating a breach as a ransomware group Hellcat claims to have stolen more than 40 GB of compressed data — and demanded the French multinational energy management company pay $125,000 in baguettes or else see its sensitive customer and operational information leaked.

6 things hackers know that they don’t want security pros to know that they know | CSO Online

“Hackers know that the average CISO has a lot on their plates and they don’t have enough [resources] to get everything done.

Ascension worker unknowingly downloads malicious file, leading to cyberattack

Officials say a worker accidentally downloaded a malicious file they thought was legitimate, causing the alleged cyber attack at Ascension.

Disney’s biggest cybersecurity threat could be…Club Penguin fans? | TechRadar

The feud between Disney and the fans of its defunct Club Penguin game has taken an unexpected security-focused turn after a seemingly fresh database full of sensitive company information was leaked online.

Hackers phish finance orgs using trojanized Minesweeper clone

Hackers are utilizing code from a Python clone of Microsoft’s venerable Minesweeper game to hide malicious scripts in attacks on European and US financial organizations.

Hackers Exploiting Quick Assist Tool To Deliver Ransomware

Hackers often target remote assist tools because they create a direct channel to access desired systems with minimum effort. 

Phishing statistics that will make you think twice before clicking – Help Net Security

This article includes excerpts from various reports that offer statistics and insights into the current phishing landscape.

How to know if your computer got hacked, what to do next | Fox News

Have you ever had that sinking feeling that something’s not quite right with your computer? Maybe it’s running slower than usual or there are new icons on your desktop that you don’t recognize. Well, you might not be just imagining things; you could have been hacked