The Pandora Papers, a 2.94 terabyte leak of financial data about rulers, oligarchs, billionaires, and other prominent people, have been obtained and published by the International Consortium of Investigative Journalists.
Flubot's operators are running a scareware campaign. The come-on, CERT-NZ warns, is itself a warning against Flubot: "The installation page for #Flubot has changed to look like a warning page. If you see this page close the page IMMEDIATELY and DO NOT click 'Install security update'." Flubot, BleepingComputer explains, depends heavily on social engineering to access and eventually completely control an Android device and, effectively, its user's data.
The Conti ransomware gang really doesn't want its victims engaging the media. The gang has threatened to dump the data they've stolen should they get wind of a target's talking to reporters, the Record says.
Coinbase accounts use two-factor authentication, but attackers were able to access and steal from some six-thousand users, Infosecurity Magazine reports. The thieves obtained email address, password, and phone number from some other source, and then, Coinbase's disclosure explains, were able to exploit a weakness in Coinbase's account recovery system to get a second factor authentication code via SMS.
Late Friday, prompted by a nasty wave of recent ransomware privateering and the arrival of Cybersecurity Awareness Month, US President Biden announced plans to convene a discussion among some thirty countries where they might arrive at a joint, coordinated response to cybercrime. Which nations in particular the US intends to invite to the table have yet to be announced.