HackRead reports that more than $1 million worth of cryptocurrency has been stolen by a newly emergent task scam cluster involving a network of websites spoofing leading companies.
SiliconANGLE reports that over 900 organizations across various sectors, most of which are in the U.S., have been subjected to attacks spreading a trojanized version of the ConnectWise ScreenConnect remote monitoring and management tool as part of an ongoing campaign.
U.S.-based supply chain-critical manufacturing organizations including those involved in machinery, semiconductors, pharmaceuticals, biotechnology, and consumer goods have been primarily targeted with the MixShell in-memory malware as part of the sophisticated ZipLine social engineering campaign, which also sought to compromise similar entities in Switzerland, Japan, and Singapore, The Hacker News reports.
Cybersecurity experts are warning that enterprises must urgently address both technology gaps and human vulnerabilities after a wave of social engineering attacks targeted SaaS platforms.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
