November 14, 2023
Via: SecurityWeekWeld Pond: hacker Is he a hacker? “Absolutely,” he says. “A hacker is someone who wants to understand how a system works, and then explore how that system can be manipulated to do something unintended by the developer. The interesting […]
November 3, 2023
Via: The RegisterA “debt management company” is itself facing a bill from Britain’s data regulator for sending hundreds of thousands of text messages to households that opted not to receive marketing junk mail. Digivo Media Ltd, which traded as Rid My Debt, […]
October 31, 2023
Via: The RegisterFor a period of two years between September 2019 and September 2021, two Americans and two Russians allegedly compromising the taxi dispatch system at John F. Kennedy International Airport in New York to sell cabbies a place at the front […]
October 12, 2023
Via: The RegisterThe Everest ransomware group is stepping up its efforts to purchase access to corporate networks directly from employees amid what researchers believe to be a major transition for the cybercriminals. In a post at the top of its dark web […]
September 1, 2023
Via: Help Net SecurityAdversary-sponsored research contests on cybercriminal forums focus on new methods of attack and evasion, according to Sophos. The contests mirror legitimate security conference ‘Call For Papers’ and provide the winners considerable financial rewards and recognition from peers and also potential […]
August 3, 2023
Via: The Hacker NewsA hacktivist group known as Mysterious Team Bangladesh has been linked to over 750 distributed denial-of-service (DDoS) attacks and 78 website defacements since June 2022. “The group most frequently attacks logistics, government, and financial sector organizations in India and Israel,” […]
July 18, 2023
Via: The Hacker NewsConor Brian Fitzpatrick, the owner of the now-defunct BreachForums website, has pleaded guilty to charges related to his operation of the cybercrime forum as well as having child pornography images. The development, first reported by DataBreaches.net last week, comes nearly […]
July 17, 2023
Via: DataBreach TodayThe administrator of the now-defunct BreachForums, a platform known for the illicit sale of stolen data, has pleaded guilty to two counts of hacking and one count of child pornographic possession. Conor Brian Fitzpatrick, a 20-year-old resident of Peekskill, New […]
June 5, 2023
Via: Help Net SecurityForced verification and deepfake cases multiply at alarming rates in the UK and continental Europe, according to Sumsub. In Germany alone, forced verification grew by 1500% as a proportion of all fraud cases, from 0.3% in the full year 2022 […]
Hacker, Threats & Malware, Vulnerabilities
June 5, 2023
Via: Help Net SecurityThe zero-day vulnerability attackers have exploited to compromise vulnerable Progress Software’s MOVEit Transfer installations finally has an identification number: CVE-2023-34362. Based on information shared by Mandiant, Rapid7 and other security researchers, the attackers seem to have opportunistically targeted as many […]
June 1, 2023
Via: Help Net SecurityGoogle Workspace (formerly G Suite) has a weak spot that can prevent the discovery of data exfiltration from Google Drive by a malicious outsider or insider, Mitiga researchers say. A problem for digital forensic analysts and incident responders “Google Workspace […]
May 22, 2023
Via: The Hacker NewsA U.K. national responsible for his role as the administrator of the now-defunct iSpoof online phone number spoofing service has been sentenced to 13 years and 4 months in prison. Tejay Fletcher, 35, of Western Gateway, London, was awarded the […]
May 18, 2023
Via: The Hacker NewsA U.S. national has pleaded guilty in a Missouri court to operating a darknet carding site and selling financial information belonging to tens of thousands of victims in the country. Michael D. Mihalo, aka Dale Michael Mihalo Jr. and ggmccloud1, […]
May 17, 2023
Via: Security AffairsThe US Justice Department charged Russian national Mikhail Pavlovich Matveev (30), aka Wazawaka, m1x, Boriselcin, and Uhodiransomwar, for his alleged role in multiple ransomware attacks. The DoJ unsealed two indictments charging the man with using three different ransomware families in […]
May 15, 2023
Via: The Hacker NewsA former employee of Ubiquiti has been sentenced to six years in jail after he pleaded guilty to posing as an anonymous hacker and a whistleblower in an attempt to extort almost $2 million worth of cryptocurrency while working at […]
April 18, 2023
Via: The Hacker NewsThe Iranian threat actor known as MuddyWater is continuing its time-tested tradition of relying on legitimate remote administration tools to commandeer targeted systems. While the nation-state group has previously employed ScreenConnect, RemoteUtilities, and Syncro, a new analysis from Group-IB has […]
April 3, 2023
Via: SecurityWeekAccording to data collected by Fortinet, based on the number of devices connecting to attacker-controlled infrastructure, the highest percentage of victims is in Italy, followed by Germany, Austria, the United States, South Africa, Australia, Switzerland, the Netherlands, Canada and the […]
March 24, 2023
Via: The Hacker NewsA recent campaign undertaken by Earth Preta indicates that nation-state groups aligned with China are getting increasingly proficient at bypassing security solutions. The threat actor, active since at least 2012, is tracked by the broader cybersecurity community under Bronze President, […]
March 10, 2023
Via: The Hacker NewsGoogle-owned Mandiant said the threat cluster shares “multiple overlaps” with a long-running operation dubbed “Dream Job” that employs job recruitment lures in email messages to trigger the infection sequence. UNC2970 is the new moniker designated by the threat intelligence firm […]
March 9, 2023
Via: Security AffairsFortinet researchers observed the mining group 8220 Gang using a new crypter called ScrubCrypt in cryptojacking attacks. “Between January and February 2023, FortiGuard Labs observed a payload targeting an exploitable Oracle Weblogic Server in a specific URI.” reads the analysis […]