2000 and Accountability - Cyber Security Informer

Interpol arrests 2000 criminals launching social engineering attacks

CyberSecurity Insiders

JUNE 17, 2022

In what appears as an operation first of its kind, Interpol has arrested over 2000 criminals who launched social engineering attacks worldwide. But in reality, they pose as others and perform acts in such a way that the victim reveals sensitive info, such as bank account details or e-wallet information disclosure.

Social Engineering

Social Engineering Engineering Scams Identity Theft

E-Crime Rapper ‘Punchmade Dev’ Debuts Card Shop

Krebs on Security

JANUARY 17, 2024

Images from Punchmade Dev’s Twitter/X account show him displaying bags of cash and wearing a functional diamond-crusted payment card skimmer. The official Punchmadedev account on Instagram links to many of the aforementioned rap videos and tutorials on cybercriming, as well as to Punchmadedev’s other profiles and websites.

Cybercrime

Cybercrime Media Banking Accountability

The Cyentia Library Relaunches

Adam Shostack

JUNE 22, 2020

There’s no ‘feature abuse’ or ‘account takeover.’ When I comment that “how attackers get access” is underserved, what I mean is that its insufficiently well addressed in 2000 reports to have emerged or been noticed by the NLP and manual analyses.

Ransomware

Ransomware Accountability Hacking

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

Security Affairs

AUGUST 31, 2023

The National Safety Council has leaked nearly 10,000 emails and passwords of their members, exposing 2000 companies, including governmental organizations and big corporations. The National Safety Council leaked thousands of emails and passwords of their members, including companies such as NASA and Tesla.

Backups

Backups Manufacturing Passwords Internet

It Might Be Our Data, But It’s Not Our Breach

Krebs on Security

AUGUST 11, 2022

For starters, email addresses ending in “ att.net ” accounted for 13.7 In contrast, Gmail users made up more than 30 percent of the data set, with Yahoo addresses accounting for 24 percent. Hold Security found these email domains account for 87% of all domains in the data set.

Mobile

Mobile Internet Internet Accountability

Breaking the Cycle: Embracing Change in Cybersecurity Practices

Security Boulevard

NOVEMBER 14, 2023

While checking my cybersecurity news feed a couple of days ago, an account (re-)publishing stories from years gone by was highlighting a late 2000 (actual year 2000, not the decade) event involving Microsoft and a hack that affected the company.

Cybersecurity

Cybersecurity Accountability Hacking Education

Credit Freezes are Free: Let the Ice Age Begin

Krebs on Security

SEPTEMBER 21, 2018

Box 2000 Chester, PA 19016. Having a freeze in place does nothing to prevent you from using existing lines of credit you may already have, such as credit, mortgage and bank accounts. By the same token, freezes do nothing to prevent crooks from abusing unauthorized access to these existing accounts. Online: Experian.

Identity Theft

Identity Theft Banking Insurance Marketing

Data Security Threat to UK Government Ministers and Civil Servants

CyberSecurity Insiders

JANUARY 5, 2023

The Government Communication Service website was publicly displaying information of about 45k Govt employees and details include email address, phone numbers and job titles, along with the social media account handles of some ministers and civil servants, including their Twitter and LinkedIn profiles.

Government

Government Social Engineering Advertising Media

The 773 Million Record "Collection #1" Data Breach

Troy Hunt

JANUARY 16, 2019

The post on the forum referenced "a collection of 2000+ dehashed databases and Combos stored by topic" and provided a directory listing of 2,890 of the files which I've reproduced here. Take logging onto a mobile app with @1Password on iOS: tap the email field, choose the account, Face ID, login button, job done!

Data breaches

Data breaches Passwords Password Management Accountability

Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months

Security Affairs

JANUARY 5, 2024

The Sandworm group (aka BlackEnergy , UAC-0082 , Iron Viking , Voodoo Bear , and TeleBots ) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for Special Technologies (GTsST). The SBU helped Kyivstar in recovering from the cyber attack.

Mobile

Mobile Telecommunications Cyber Attacks Internet

Skyscanner launches a public bug bounty program

Security Affairs

JANUARY 30, 2019

“Only interact with your own accounts or provided test accounts for security research purposes.” Only interact with your own accounts or provided test accounts for security research purposes contact us immediately if you inadvertently encounter traveller data. ” continues the announcement.

Accountability

Accountability Advertising Mobile Authentication

SonicWall warns of ‘imminent ransomware’ attacks on its EOL products

Security Affairs

JULY 15, 2021

SonicWall also provides recommendations to customers that can’t update their installs, the vendor suggests disconnecting devices immediately and reset their access passwords, and enable account multi-factor authentication, if supported. The affected end-of-life devices with 8.x x firmware are past temporary mitigations. 34 or 9.0.0.10

Firmware

Firmware Ransomware Passwords Mobile

Security Affairs newsletter Round 433 by Pierluigi Paganini – International edition

Security Affairs

AUGUST 20, 2023

Over 3,000 Android Malware spotted using unsupported/unknown compression methods to avoid detection WinRAR flaw enables remote code execution of arbitrary code #OpFukushima: Anonymous group protests against the plan to dump Fukushima RADIOACTIVE wastewater into Pacific Massive phishing campaign targets users of the Zimbra Collaboration email server (..)

Cybercrime

Cybercrime Hacking Malware Phishing

England Populace should know this Council Tax Rebate Cyber Scam

CyberSecurity Insiders

APRIL 20, 2022

Cybersecurity Insiders have learned that many people living in Hythe District, Solihull, Somerset, Ashford Borough, and Taunton are receiving emails and hoax calls demanding bank details in order to process the £150 direct to their accounts, respectively. Currently, most of the London populace is paying an energy bill of £2000 a year.

Scams

Scams Banking Government Accountability

Insider Threat Alert as employees take data while leaving a Job

CyberSecurity Insiders

FEBRUARY 2, 2022

The London based company involved over 2000 IT respondents in the survey and found most of the employees stealing or taking data with them in an illusion that it will help them in their new job, either to please their new company bosses or to use the data to provide leads to their sales department.

Data breaches

Data breaches Accountability Technology Cybersecurity

Tracing the Supply Chain Attack on Android

Krebs on Security

JUNE 25, 2019

An online search for the term “yehuo” reveals an account on the Chinese Software Developer Network which uses that same nickname and references the domain blazefire[.]com. com 2000-08-24 ALIBABA CLOUD COMPUTING (BEIJING) CO., More searching points to a Yehuo user on gamerbbs[.]cn 2333youxi[.]com blazefire[.]com blazefire[.]net

Mobile

Mobile Technology Manufacturing Malware

Collection #1 dump, 773 million emails, 21 million passwords

Security Affairs

JANUARY 17, 2019

Hunt pointed out that approximately 140 million email accounts and some 10.6 The post on the hacking forum referenced “a collection of 2000+ dehashed databases and Combos stored by topic” and included a directory listing of 2,890 of the files, Hunted reproduced it here. ” wrote Troy Hunt. ” concludes Hunt.

Passwords

Passwords Data breaches Advertising Hacking

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Security Affairs

OCTOBER 17, 2023

The Sandworm group (aka BlackEnergy , UAC-0082 , Iron Viking , Voodoo Bear , and TeleBots ) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for Special Technologies (GTsST). ” reads the advisory published by the CERT-UA. “Note (!)

Telecommunications

Telecommunications Authentication Data collection Passwords

Experts warn of critical flaws in Flexlan devices that provide WiFi on airplanes

Security Affairs

SEPTEMBER 19, 2022

“It is found that our wireless products, FLEXLAN FX3000/2000 series, have a firmware vulnerability. The second vulnerability ( CVE–2022–36159 ) ties the use of hard-coded, weak cryptographic keys and backdoor accounts. “[CVE-2022-36159] – Use of weak Hard-coded Cryptographic Keys and backdoor account.

Wireless

Wireless Firmware Passwords Engineering

Ransomware related news headlines trending on Google

CyberSecurity Insiders

DECEMBER 28, 2022

Preliminary Inquires revealed that at least 49 people fell prey to the fraudulent tactics and gave credentials related to their email accounts, respectively. More details about the ransomware group involved in the incident will be updated after confirmation!

Ransomware

Ransomware Insurance Healthcare Encryption

Imperva blocked the largest Layer 7 DDoS attack it has ever seen

Security Affairs

JULY 25, 2019

Experts noticed that most of the IPs that were involved in the attack had the same opened ports: 2000 and 7547. You can protect yourself, your business and your reputation by using the Account Takeover Protection capability of Imperva’s Application Security stack. These ports are usually associated with Mirai infections.

DDOS

DDOS Authentication IoT Hacking

19-Year-Old man arrested for misusing leaked record from Optus Breach

Security Affairs

OCTOBER 6, 2022

” The arrest is the result of Operation Guardian led by AFP which became aware of a number of text messages demanding some Optus customers transfer $2000 to a bank account or face their personal information being used for financial crimes.

Data breaches

Data breaches Scams Telecommunications Financial Services

Security Affairs newsletter Round 457 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 4, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Identity Theft

Identity Theft VPN Malware Ransomware

Why 83 Percent of Large Companies Are Vulnerable to This Basic Domain Hack

Adam Levin

JULY 8, 2020

Far from being jealously guarded assets with Fort Knox-level security, a new study of Forbes Global 2000 Companies suggests many domain names are imminently hackable. Hackers posing as Coincheck.com employees contacted the company’s customers and requested their account credentials.

Hacking

Hacking Retail Cyber Insurance Authentication

Data Breaches, Class Actions and Ambulance Chasing

Troy Hunt

APRIL 12, 2021

It soon became clear: Damages are already quantified into brackets in the UK, courts see minimal distress as being the lowest level of compensation with damages awarded up to £2000 and financial loss as the highest as these are easier to prove, where damages awarded can be in the tens of thousands. You know what this is?

Data breaches

Data breaches Phishing Scams Advertising

Ransomware attack on PrismHR and Worlds largest Dairy Farm Lactalis

CyberSecurity Insiders

MARCH 3, 2021

A ransomware attack is said to have taken place on the servers of PrismHR that offer Payroll related services to around 2000 companies across the world. The Massachusetts based company does payroll processing and human resource services to health and financial institutes, assisting them to account over $80 billion payments on an annual note.

Ransomware

Ransomware Data breaches Cyber Attacks Encryption

Ukraine cyber police arrested a man for selling data of 300M people

Security Affairs

APRIL 28, 2023

The man had information on passport data, taxpayer numbers, birth certificates, driver’s licenses, and bank account data. Depending on the amount of data offered for sale, the man demanded from 500 to 2000 dollars. ” reads the announcement published by the Ukraine Cyber Police.

Education

Education Accountability Banking Mobile

Russia-linked Sandworm APT uses WinRAR in destructive attacks on Ukraine’s public sector

Security Affairs

MAY 4, 2023

The Sandworm group (aka BlackEnergy , UAC-0082 , Iron Viking , Voodoo Bear , and TeleBots ) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for Special Technologies (GTsST). The CERT also provided Indicators of Compromise (IoCs) for these attacks.

VPN

VPN Education Accountability Cyber Attacks

Why big companies ignore SAP security patches ? and how that could bite them, big time

The Last Watchdog

JUNE 14, 2018

SAP serves as the digital plumbing for dozens of multinationals; it is deeply embedded in 87 percent of the top 2000 global companies, enabling and integrating ERP functions, such as sales, production, human resources and finance, as well as other core systems. It is SAP’s enterprise resource planning (ERP) applications.

Data breaches

Data breaches Software Internet Internet

A bug is about to confuse a lot of computers by turning back time 20 years

Malwarebytes

OCTOBER 22, 2021

Before the year 2000, lots of computer programs kept track of the year by remembering the last two digits instead of all four. Many GPS-enabled devices that were not properly designed to account for the rollover event exhibited problems on that date. through 3.22. If you don’t remember the Y2K bug, let me remind you quickly.

Authentication

Authentication System Administration Firmware Passwords

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing campaigns on Ukraine, with the country accounting for over 60% of observed Russian targeting. The campaigns have been relatively small in volume, sent from spoofed domains, and targeting users’ Gmail accounts.”

Phishing

Phishing Education Accountability Malware

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

Cisco Security

JULY 12, 2021

Chief Information Security Officers (CISOs) across the Global 2000 and Fortune 1000 are obsessed with protecting the workforce endpoints as critical vulnerabilities in the cybersecurity and risk management posture of their enterprises.

Security Awareness

Security Awareness Risk CISO Cybersecurity

Developer successfully compiled leaked source code for MS Windows XP and Windows Server 2003 OSs

Security Affairs

SEPTEMBER 30, 2020

The collection of torrent files leaked online is 43GB in size and include the source code for Windows Server 2003 and other older operating systems developed by Microsoft, including: Windows 2000 Windows CE 3 Windows CE 4 Windows CE 5 Windows Embedded 7 Windows Embedded CE Windows NT 3.5 Windows NT 4 MS-DOS 3.30 MS-DOS 6.0.

Advertising

Advertising Hacking Accountability Information Security

Atomic Stealer rings in the new year with updated version

Malwarebytes

JANUARY 10, 2024

From today until December 31, 2023, the price for a subscription to Atomic MacOs Stealer is only $2000. Stealing browser cookies can sometimes be even better than having the victim’s password, enabling authentication into accounts via session tokens. Happy New Year!

Passwords

Passwords Antivirus Malware Encryption

Cerberus, a new banking Trojan available as malware-as-a-service in the underground

Security Affairs

AUGUST 13, 2019

” The author is offering the malware for rent at a price of $2000 for 1-month use, $7000 for 6 months and up to $12,000 for an entire year. The malicious code users overlay attacks to steal sensitive and financial data from the victim, including credit card numbers, banking credentials and passwords for bank accounts.

Banking

Banking Malware Advertising Social Engineering

Hackers actively targeting unsecured SAP installs, DHS, SAP and Onapsis warn

SC Magazine

APRIL 6, 2021

Multiple hackers are actively targeting SAP installations that have not updated in nearly a year or use poor account management. By the company’s count, 92% of the Forbes Global 2000 use SAP, 91% of utilities in the Global 2000, 82% of total medical devices, 78% of global food distribution and 44 militaries.

Accountability

Accountability Software Media Information Security

CISA warns of a critical flaw affecting Illumina medical devices

Security Affairs

APRIL 29, 2023

and newer NextSeq 1000/2000 Control Software: v1.4.1 The issues impact the following products using the Illumina Universal Copy Service: iScan Control Software: v4.0.0 iScan Control Software: v4.0.5 iSeq 100: All versions MiniSeq Control Software: v2.0 and newer MiSeq Control Software: v4.0 (RUO RUO Mode) MiSeqDx Operating Software: v4.0.1

Software

Software Data breaches Education Media

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Krebs on Security

SEPTEMBER 26, 2024

Early in his career (circa 2000) Shakhmametov was known as “ v1pee ” and was the founder of the Russian hacker group nerf[.]ru ru , which periodically published hacking tools and exploits for software vulnerabilities. An ad for BriansClub has been using my name and likeness for years to peddle millions of stolen credit cards.

Cryptocurrency

Cryptocurrency Cybercrime Retail Government

Scammers, profiteers, and shady sites? It must be tax season

Malwarebytes

FEBRUARY 25, 2021

Most of the tax-related attacks follow a few tried and true methods: A phishing email or scam call from someone purporting to be from the IRS, or an accountant offering to help you get a big refund. ” The internet archive has a first snapshot dating back to October of 2000. They want your hard-earned dollars in their pockets.

Identity Theft

Identity Theft Adware Scams VPN

Ngrok Mining Botnet

Security Affairs

SEPTEMBER 22, 2018

The attacks broadly fall into three levels of sophistication: Low Complexity – Simply pulling a pre-baked mining image from Docker Hub and running it with parameterisation for the attackers mining pool / account. Ngrok account hash rate over time. An overview of the Ngrok infrastructure is shown above. Hash Rate & Payment History.

Accountability

Accountability Malware Advertising Internet

Thousands of publicly-exposed Apache Superset installs exposed to RCE attacks

Security Affairs

APRIL 26, 2023

Horizon3 found that at least 2000 servers are running with a dangerous default configuration. “Session Validation attacks in Apache Superset versions up to and including 2.0.1. The issue was discovered by Horizon3 researchers who reported that there are more than 3000 instances of the platform exposed to the Internet.

Authentication

Authentication Education Media Hacking

Tracing the Supply Chain Attack on Android

Krebs on Security

JUNE 25, 2019

An online search for the term “yehuo” reveals an account on the Chinese Software Developer Network which uses that same nickname and references the domain blazefire[.]com. com 2000-08-24 ALIBABA CLOUD COMPUTING (BEIJING) CO., More searching points to a Yehuo user on gamerbbs[.]cn 2333youxi[.]com blazefire[.]com blazefire[.]net

Mobile

Mobile Technology Manufacturing Software

Grandson of FISMA: Why We Desperately Need New Cybsersecurity Legislation from the 117th Congress

Cisco Security

AUGUST 12, 2021

Further to the topic of governance, FISMA decided to subordinate the CISO to the CIO, which is an organizational design no longer in favor among enterprises throughout the Fortune 500 and Global 2000. The Risk Management Framework doesn’t take into account that the human is the new perimeter of the enterprise.

CISO

CISO Information Security Risk Government

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

Security Affairs

APRIL 2, 2023

The Sandworm group (aka BlackEnergy , UAC-0082 , Iron Viking , Voodoo Bear , and TeleBots ) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for Special Technologies (GTsST). The documents demonstrate that it also developed hacking tools for the Russia-linked APT group Sandworm.

Energy and Utilities

Energy and Utilities Media Hacking Technology

Interpol arrests 2000 criminals launching social engineering attacks

E-Crime Rapper ‘Punchmade Dev’ Debuts Card Shop

Trending Sources

The Cyentia Library Relaunches

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

It Might Be Our Data, But It’s Not Our Breach

Breaking the Cycle: Embracing Change in Cybersecurity Practices

Credit Freezes are Free: Let the Ice Age Begin

Data Security Threat to UK Government Ministers and Civil Servants

The 773 Million Record "Collection #1" Data Breach

Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months

Skyscanner launches a public bug bounty program

SonicWall warns of ‘imminent ransomware’ attacks on its EOL products

Security Affairs newsletter Round 433 by Pierluigi Paganini – International edition

England Populace should know this Council Tax Rebate Cyber Scam

Insider Threat Alert as employees take data while leaving a Job

Tracing the Supply Chain Attack on Android

Collection #1 dump, 773 million emails, 21 million passwords

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Experts warn of critical flaws in Flexlan devices that provide WiFi on airplanes

Ransomware related news headlines trending on Google

Imperva blocked the largest Layer 7 DDoS attack it has ever seen

19-Year-Old man arrested for misusing leaked record from Optus Breach

Security Affairs newsletter Round 457 by Pierluigi Paganini – INTERNATIONAL EDITION

Why 83 Percent of Large Companies Are Vulnerable to This Basic Domain Hack

Data Breaches, Class Actions and Ambulance Chasing

Ransomware attack on PrismHR and Worlds largest Dairy Farm Lactalis

Ukraine cyber police arrested a man for selling data of 300M people

Russia-linked Sandworm APT uses WinRAR in destructive attacks on Ukraine’s public sector

Why big companies ignore SAP security patches ? and how that could bite them, big time

A bug is about to confuse a lot of computers by turning back time 20 years

Google TAG warns of Russia-linked APT groups targeting Ukraine

The Risk-Conscious, Security-Aware Culture: The Forgotten Critical Security Control

Developer successfully compiled leaked source code for MS Windows XP and Windows Server 2003 OSs

Atomic Stealer rings in the new year with updated version

Cerberus, a new banking Trojan available as malware-as-a-service in the underground

Hackers actively targeting unsecured SAP installs, DHS, SAP and Onapsis warn

CISA warns of a critical flaw affecting Illumina medical devices

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Scammers, profiteers, and shady sites? It must be tax season

Ngrok Mining Botnet

Thousands of publicly-exposed Apache Superset installs exposed to RCE attacks

Tracing the Supply Chain Attack on Android

Grandson of FISMA: Why We Desperately Need New Cybsersecurity Legislation from the 117th Congress

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

Stay Connected