At a glance.
- Cyberattacks hit Albania.
- Threat actors prospect journalists.
- GRU said to be trolling researchers who look into Sandworm.
- Malicious apps ejected from Google Play.
- SVR cyberespionage exploits penetration-testing tools.
- FBI warns of apps designed to defraud cryptocurrency speculators.
- Belgium accuses China of cyberespionage.
- LockBit ransomware spreading through compromised servers.
- Report: password stealing and impersonation risks in identity management product.
- Micodus GPS tracker vulnerabilities.
- A criminal talent broker.
- A developing threat to financial institutions.
- Phishing through PayPal.
- Lessons to be learned from LAPSUS$, post-flameout.
- Conti's fate and effects.
Cyberattacks hit Albania.
Albania sustained a major cyberattack Sunday, Balkan Insight and other sources report. Government sources stress the attacks' foreign origin and unprecedented scope. “Albania is under a massive cybernetic attack that has never happened before. This criminal cyber-attack was synchronized...from outside Albania,” the Council of Ministers said in a statement. Cybernews quotes the Albanian National Agency for the Information Society (AKSHI) on the government's decision to shutdown some of its online services: "In order to withstand these unprecedented and dangerous strikes, we have been forced to close down government systems until the enemy attacks are neutralized." Among the services disrupted are, according to Exit, "the websites of Parliament and the Prime Minister’s Office, as well as e-Albania—the government portal that all Albanians, as well as foreign residents and investors, have to use to use a slew of public services." Services were still undergoing restoration today. Little information is available about the details of the attacks, and so far there's been no attribution.