National CSIRT-CY | National Computer Security Incident Response Team of Cyprus

The Zeus Sphinx banking Trojan has recently resurfaced after a three years hiatus as part of a coronavirus-themed phishing campaign, the most common theme behind most attacks by far during the current pandemic.

A new phishing campaign has been spotted that pretends to be from a local hospital telling the recipient that they have been exposed to the Coronavirus and that they need to be tested.

Σε συνέχεια ανακοίνωσης στην ιστοσελίδα μας για ψευδείς ειδήσεις σχετικά με τον Κορωνοϊό, η Αρχή Ψηφιακής Ασφάλειας Κύπρου προειδοποίησε τους συμπολίτες μας με μήνυμα στα κινητά τους τηλέφωνα.

As many around the world struggle to come to terms with the full impact that the Coronavirus will have on each of our families and communities, people are desperate for both information and hope. Threat actors exploit vulnerabilities, and many see the uncertainty of our circumstances as an opportunity. They are capitalizing on the need for news, guidance, supplies, and treatments by targeting businesses and individuals who need this information with a barrage of COVID-19-related attacks and scams.

The Tor Project released Tor Browser 9.0.7 today with a permanent fix for a bug that allowed JavaScript code to run on the Safest security level in some situations while using the previous Tor Browser version.

The TrickBot​​​​​ gang is using a malicious Android application they developed to bypass two-factor authentication (2FA) protection used by various banks after stealing transaction authentication numbers.

Three more ransomware families have created sites that are being used to leak the stolen data of non-paying victims and further illustrates why all ransomware attacks must be considered data breaches.