Top

Category: Hacker


Hacker, Threats & Malware

Hacker Conversations: Chris Wysopal, AKA Weld Pond

November 14, 2023

Via: SecurityWeek

Weld Pond: hacker Is he a hacker? “Absolutely,” he says. “A hacker is someone who wants to understand how a system works, and then explore how that system can be manipulated to do something unintended by the developer. The interesting […]


Hacker, Threats & Malware

UK data watchdog fines three text spammers for flouting electronic marketing rules

November 3, 2023

Via: The Register

A “debt management company” is itself facing a bill from Britain’s data regulator for sending hundreds of thousands of text messages to households that opted not to receive marketing junk mail. Digivo Media Ltd, which traded as Rid My Debt, […]


Hacker, Threats & Malware

Now Russians accused of pwning JFK taxi system to sell top spots to cabbies

October 31, 2023

Via: The Register

For a period of two years between September 2019 and September 2021, two Americans and two Russians allegedly compromising the taxi dispatch system at John F. Kennedy International Airport in New York to sell cabbies a place at the front […]


Hacker, Threats & Malware

Everest cybercriminals offer corporate insiders cold, hard cash for remote access

October 12, 2023

Via: The Register

The Everest ransomware group is stepping up its efforts to purchase access to corporate networks directly from employees amid what researchers believe to be a major transition for the cybercriminals. In a post at the top of its dark web […]


Hacker, Threats & Malware

Cybercriminals use research contests to create new attack methods

September 1, 2023

Via: Help Net Security

Adversary-sponsored research contests on cybercriminal forums focus on new methods of attack and evasion, according to Sophos. The contests mirror legitimate security conference ‘Call For Papers’ and provide the winners considerable financial rewards and recognition from peers and also potential […]


Hacker, Threats & Malware

“Mysterious Team Bangladesh” Targeting India with DDoS Attacks and Data Breaches

August 3, 2023

Via: The Hacker News

A hacktivist group known as Mysterious Team Bangladesh has been linked to over 750 distributed denial-of-service (DDoS) attacks and 78 website defacements since June 2022. “The group most frequently attacks logistics, government, and financial sector organizations in India and Israel,” […]


Hacker, Threats & Malware

Owner of BreachForums Pleads Guilty to Cybercrime and Child Pornography Charges

July 18, 2023

Via: The Hacker News

Conor Brian Fitzpatrick, the owner of the now-defunct BreachForums website, has pleaded guilty to charges related to his operation of the cybercrime forum as well as having child pornography images. The development, first reported by DataBreaches.net last week, comes nearly […]


Hacker, Threats & Malware

BreachForums’ Admin Pleads Guilty, Faces 40 Years in Prison

July 17, 2023

Via: DataBreach Today

The administrator of the now-defunct BreachForums, a platform known for the illicit sale of stolen data, has pleaded guilty to two counts of hacking and one count of child pornographic possession. Conor Brian Fitzpatrick, a 20-year-old resident of Peekskill, New […]


Hacker, Threats & Malware

A new wave of sophisticated digital fraud hits Europe

June 5, 2023

Via: Help Net Security

Forced verification and deepfake cases multiply at alarming rates in the UK and continental Europe, according to Sumsub. In Germany alone, forced verification grew by 1500% as a proportion of all fraud cases, from 0.3% in the full year 2022 […]


Hacker, Threats & Malware, Vulnerabilities

MOVEit Transfer zero-day was exploited by Cl0p gang (CVE-2023-34362)

June 5, 2023

Via: Help Net Security

The zero-day vulnerability attackers have exploited to compromise vulnerable Progress Software’s MOVEit Transfer installations finally has an identification number: CVE-2023-34362. Based on information shared by Mandiant, Rapid7 and other security researchers, the attackers seem to have opportunistically targeted as many […]


Hacker, Threats & Malware

Threat actors can exfiltrate data from Google Drive without leaving a trace

June 1, 2023

Via: Help Net Security

Google Workspace (formerly G Suite) has a weak spot that can prevent the discovery of data exfiltration from Google Drive by a malicious outsider or insider, Mitiga researchers say. A problem for digital forensic analysts and incident responders “Google Workspace […]


Hacker, Threats & Malware

U.K. Fraudster Behind iSpoof Scam Receives 13-Year Jail Term for Cyber Crimes

May 22, 2023

Via: The Hacker News

A U.K. national responsible for his role as the administrator of the now-defunct iSpoof online phone number spoofing service has been sentenced to 13 years and 4 months in prison. Tejay Fletcher, 35, of Western Gateway, London, was awarded the […]


Hacker, Threats & Malware

Darknet Carding Kingpin Pleads Guilty: Sold Financial Info of Tens of Thousands

May 18, 2023

Via: The Hacker News

A U.S. national has pleaded guilty in a Missouri court to operating a darknet carding site and selling financial information belonging to tens of thousands of victims in the country. Michael D. Mihalo, aka Dale Michael Mihalo Jr. and ggmccloud1, […]


Hacker, Threats & Malware

US Gov offers a $10M reward for a Russian ransomware actor

May 17, 2023

Via: Security Affairs

The US Justice Department charged Russian national Mikhail Pavlovich Matveev (30), aka Wazawaka, m1x, Boriselcin, and Uhodiransomwar, for his alleged role in multiple ransomware attacks. The DoJ unsealed two indictments charging the man with using three different ransomware families in […]


Hacker, Threats & Malware

Former Ubiquiti Employee Gets 6 Years in Jail for $2 Million Crypto Extortion Case

May 15, 2023

Via: The Hacker News

A former employee of Ubiquiti has been sentenced to six years in jail after he pleaded guilty to posing as an anonymous hacker and a whistleblower in an attempt to extort almost $2 million worth of cryptocurrency while working at […]


Hacker, Threats & Malware

Iranian Hackers Using SimpleHelp Remote Support Software for Persistent Access

April 18, 2023

Via: The Hacker News

The Iranian threat actor known as MuddyWater is continuing its time-tested tradition of relying on legitimate remote administration tools to commandeer targeted systems. While the nation-state group has previously employed ScreenConnect, RemoteUtilities, and Syncro, a new analysis from Group-IB has […]


Hacker, Threats & Malware

Europe, North America Most Impacted by 3CX Supply Chain Hack

April 3, 2023

Via: SecurityWeek

According to data collected by Fortinet, based on the number of devices connecting to attacker-controlled infrastructure, the highest percentage of victims is in Italy, followed by Germany, Austria, the United States, South Africa, Australia, Switzerland, the Netherlands, Canada and the […]


Hacker, Threats & Malware

Researchers Uncover Chinese Nation State Hackers’ Deceptive Attack Strategies

March 24, 2023

Via: The Hacker News

A recent campaign undertaken by Earth Preta indicates that nation-state groups aligned with China are getting increasingly proficient at bypassing security solutions. The threat actor, active since at least 2012, is tracked by the broader cybersecurity community under Bronze President, […]


Hacker, Threats & Malware

North Korean UNC2970 Hackers Expands Operations with New Malware Families

March 10, 2023

Via: The Hacker News

Google-owned Mandiant said the threat cluster shares “multiple overlaps” with a long-running operation dubbed “Dream Job” that employs job recruitment lures in email messages to trigger the infection sequence. UNC2970 is the new moniker designated by the threat intelligence firm […]


Hacker, Threats & Malware

8220 Gang used new ScrubCrypt crypter in recent cryptojacking attacks

March 9, 2023

Via: Security Affairs

Fortinet researchers observed the mining group 8220 Gang using a new crypter called ScrubCrypt in cryptojacking attacks. “Between January and February 2023, FortiGuard Labs observed a payload targeting an exploitable Oracle Weblogic Server in a specific URI.” reads the analysis […]