Cyber Attack

North Korean hacking group Kimsuky is using a custom RDP Wrapper and proxy tools to gain persistent, stealthy access to infected computers. This marks a shift in their tactics, moving away from noisy malware to more covert remote access techniques.

The New York Blood Center Enterprises suffered a ransomware attack on January 26, 2025, forcing it to cancel blood donation drives despite an ongoing blood shortage. The organization is working with cybersecurity experts and law enforcement to restore its systems, but processing times are delayed, and the timeline for full recovery is unknown.

The WantToCry ransomware group is targeting unsecured SMB services, encrypting shared files, and demanding ransom payments. Weak passwords and misconfigured networks allow these attacks to succeed. Organizations must secure their SMB settings to prevent data loss and ransomware infections.

Tata Technologies recently faced a ransomware attack that led to the temporary suspension of some IT services. The company has confirmed that all affected services have been restored, and an investigation is underway to strengthen cybersecurity and prevent future incidents.

Chinese AI startup DeepSeek faced a major cyberattack soon after its successful launch on Wall Street. The attack caused service disruptions, forcing the company to temporarily stop new user registrations. DeepSeek’s popular open-source AI model, DeepSeek-R1, is creating waves in the global market, shaking up the tech industry and affecting major tech stocks.

The BASHE ransomware group claims to have hacked ICICI Bank, threatening to release sensitive customer data if their demands are not met. This incident raises serious concerns for the banking industry and its cybersecurity measures.

A 66-year-old retired serviceman’s wife from Bengaluru was tricked by cybercriminals who posed as police officers. The scammers accused her of money laundering, put her under "digital arrest," and forced her to transfer ₹35 lakh over five days.

Russian hacking group Star Blizzard is targeting high-value diplomats and officials with a phishing campaign that exploits WhatsApp. By deceiving victims into linking their WhatsApp accounts to the hackers' devices, the group gains unauthorized access to private messages.

Wolf Haldenstein Adler Freeman & Herz LLP has confirmed a data breach that affected nearly 3.5 million individuals. The breach occurred on December 13, 2023, but the investigation and notifications have been delayed. Sensitive personal data like Social Security numbers and medical information have been exposed, increasing the risk of scams and fraud.

Hackers are hiding malicious software in images to deliver dangerous malware like VIP Keylogger and 0bj3ctivity Stealer. These tools are used to steal sensitive data, such as passwords, keystrokes, and screenshots, in separate phishing campaigns.