Security Affairs

OCTOBER 27, 2021

Grief ransomware operators announced to have hacked US National Rifle Association (NRA) and threaten to leak the stolen data. The NRA was added to the list of compromised organizations on the leak site of the group, that gang also published a set of documents as proof of the hack. SecurityAffairs – hacking, NRA).

Ransomware 143

Ransomware Banking Cybercrime Hacking 143

Security Affairs

AUGUST 19, 2022

Undersecretary for Digital Transformation Luukas Ilves announced that Estonia was hit by the most extensive wave of DDoS attacks it has faced since 2007. Yesterday, Estonia was subject to the most extensive cyber attacks it has faced since 2007. SecurityAffairs – hacking, Estonia). Pierluigi Paganini.

DDOS 143

DDOS Computers and Electronics Digital transformation Government 143

Security Affairs

JUNE 21, 2023

Russia-linked APT28 group hacked into Roundcube email servers belonging to multiple Ukrainian organizations. The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide.

Hacking 98

Hacking Government Phishing Malware 98

Security Affairs

JUNE 30, 2021

for his key role in the distribution of the Gozi virus that infected more than a million computers from 2007 to 2012. The Gozi banking Trojan is not a new threat, it was first spotted by security researchers in 2007. SecurityAffairs – hacking, Gozi ). Paunescu was arrested in Romania in 2012, but was able to avoid extradition.

Banking 128

Banking Malware Hacking Information Security 128

Security Affairs

DECEMBER 6, 2020

Kopter Group is Switzerland-based company that was founded in 2007 that was acquired by Leonardo in April 2020. SecurityAffairs – hacking, ransomware). The helicopter maker Kopter was hit by LockBit ransomware, the attackers compromised its internal network and encrypted the company’s files. ” reported ZDNet.

Ransomware 140

Ransomware VPN Encryption Authentication 140

Security Affairs

JANUARY 11, 2021

court on Thursday sentenced the Russian hacker Andrei Tyurin to 12 years in prison for his role in an international hacking campaign. The man was arrested in Georgia at the request of US authorities, he was charged with multiple conspiracy counts, including wire fraud, aggravated identity theft and four counts of computer hacking.

Hacking 129

Hacking Marketing Identity Theft Banking 129

Security Affairs

NOVEMBER 10, 2018

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. The post Symantec shared details of North Korean Lazarus’s FastCash Trojan used to hack banks appeared first on Security Affairs.

Banking 112

Banking Hacking Malware Advertising 112

Security Affairs

MARCH 9, 2020

Multiple state-sponsored hacking groups are attempting to exploit a vulnerability recently addressed in Microsoft Exchange email servers. A couple of weeks ago, the popular security researcher Kevin Beaumont reported mass scanning for the CVE-2020-0688 (Microsoft Exchange 2007+ RCE vulnerability). Pierluigi Paganini.

Authentication 145

Authentication Advertising Hacking Malware 145

Security Affairs

AUGUST 6, 2019

The STRONTIUM APT group (aka APT28 , Fancy Bear , Pawn Storm , Sofacy Group , and Sednit ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. SecurityAffairs – Russia APT, hacking). link] #MSFTatBlackHat — Security Response (@msftsecresponse) August 5, 2019.

IoT 98

IoT Hacking Advertising Government 98

Security Affairs

OCTOBER 21, 2021

The Evil Corp cybercrime group (aka the Dridex gang Indrik Spider , the Dridex gang, and TA505 ) has been active in cybercrime activities since 2007. 32) and Igor Turashev (38) for distributing the infamous Dridex banking Trojan , and for their involvement in international bank fraud and computer hacking schemes. Pierluigi Paganini.

Ransomware 144

Ransomware Cybercrime Banking Encryption 144

Schneier on Security

JUNE 8, 2021

” It’s a similar attitude to corporate executives who believe that they can’t be hacked — and equally naive. Militaries around the world are now exploiting these vulnerabilities in weapons systems to carry out operations.

Software 363

Software Cybersecurity Backups Manufacturing 363

Security Affairs

JANUARY 8, 2024

Bandook has been active since 2007, it has been continuously developed since then and was employed in several campaigns by different threat actors. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Bandook)

Malware 139

Malware Phishing Passwords Hacking 139

Security Affairs

DECEMBER 28, 2019

Zynga Inc is an American social game developer running social video game services founded in April 2007, it primarily focuses on mobile and social networking platforms. The post 173 Million Zynga accounts were impacted in the September hack appeared first on Security Affairs. Pierluigi Paganini. SecurityAffairs – Zynga, data breach).

Accountability 95

Accountability Hacking Data breaches Passwords 95

Krebs on Security

FEBRUARY 7, 2024

In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. “Hiding with purely technical parameters will not help in a serious matter,” Djamix advised Maza members in September 2007. “In order to ESCAPE the law, you need to KNOW the law. This is the most important thing.

Cybercrime 290

Cybercrime Accountability Identity Theft Hacking 290

Security Affairs

OCTOBER 29, 2020

US Cyber Command shared technical details about malware implants employed by Russian hacking groups in attacks against multiple ministries of foreign affairs, national parliaments, and embassies. SecurityAffairs – hacking, US Cyber Command). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware 143

Malware Advertising Hacking Government 143

Quick Heal Antivirus

NOVEMBER 11, 2022

QBot, also known as Qakbot, QuackBot, and Pinkslipbot, is a Banking Trojan that was first observed in 2007. The post QBOT – A HTML Smuggling technique to target victims appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.

Banking 111

Banking Phishing Cybercrime Ransomware 111

Security Affairs

NOVEMBER 3, 2020

“As reflected in court documents, from 2007 through 2019, Brovko worked closely with other cybercriminals to monetize vast troves of data that had been stolen by “botnets,” or networks of infected computers. Brovko was involved in the illegal practice between 2007 and 2019. SecurityAffairs – hacking, Aleksandr Brovko).

Accountability 128

Accountability Banking Advertising Data collection 128

Heimadal Security

OCTOBER 22, 2021

About Evil Corp Also known as the Dridex gang or INDRIK SPIDER, the Russia-based hacking group Evil Corp has been around since at least 2007 and is notorious for developing and distributing […]. The post Macaw Locker, Evil Corp’s Latest Version Makes New Victims appeared first on Heimdal Security Blog.

Ransomware 90

Ransomware Hacking Cybersecurity 90

Security Affairs

AUGUST 29, 2020

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. “North Korea’s intelligence apparatus controls a hacking team dedicated to robbing banks through remote internet access.

Banking 145

Banking Malware Advertising Hacking 145

Security Affairs

NOVEMBER 15, 2021

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. SecurityAffairs – hacking, Operation Cyclone). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Cybersecurity 130

Cybersecurity Engineering Software Malware 130

Security Affairs

APRIL 22, 2024

The APT28 group (aka Forest Blizzard , Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. Microsoft reports include instructions for detecting, hunting, and responding to GooseEgg.

Government 144

Government Education Phishing Malware 144

Security Affairs

OCTOBER 24, 2020

This group has been active since at least 2007, in December 2019, the U.S. 32) and Igor Turashev (38) for distributing the infamous Dridex banking Trojan , and for their involvement in international bank fraud and computer hacking schemes. SecurityAffairs – hacking, WastedLocker). Pierluigi Paganini.

Ransomware 131

Ransomware Telecommunications Banking Advertising 131

Security Affairs

JUNE 3, 2024

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Russia)

Malware 144

Malware Phishing Surveillance Internet 144

Security Affairs

AUGUST 6, 2023

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, data breach) The post Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack appeared first on Security Affairs.

Education 98

Education Data breaches Ransomware Hacking 98

Security Affairs

SEPTEMBER 10, 2022

Since at least 2007, the MOIS coordinated a series of cyber operation against government entities and private organizations around the world. We have concluded that the Government of Iran conducted this reckless and irresponsible cyberattack and that it is responsible for subsequent hack and leak operations.”. “Today, the U.S.

Government 145

Government Cyber Attacks Hacking Cyber threats 145

Security Affairs

FEBRUARY 27, 2020

.” Now the popular security researcher Kevin Beaumont reported mass scanning for the CVE-2020-0688 (Microsoft Exchange 2007+ RCE vulnerability). That was quick, since 2 hours ago seeing likely mass scanning for CVE-2020-0688 (Microsoft Exchange 2007+ RCE vulnerability).

Internet 140

Internet Internet Authentication Advertising 140

Security Affairs

NOVEMBER 28, 2021

The software also allow dragnet surveillance, according to the brochures presented at Milipol it is an updated copy of Eagle, the program ceded to Gaddafi in 2007. . SecurityAffairs – hacking, IKEA). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Technology 141

Technology Surveillance Software Government 141

Security Affairs

DECEMBER 17, 2021

and above 2007 Workspace ONE UEM patch 20.7.0.17 SecurityAffairs – hacking, VMware Workspace ONE UEM). .” Below is the list of impacted versions: I mpacted Versions Fixed Version 2109 Workspace ONE UEM patch 21.9.0.13 and above 2105 Workspace ONE UEM patch 21.5.0.37 and above 2102 Workspace ONE UEM patch 21.2.0.27

Authentication 135

Authentication Hacking Software Information Security 135

Security Affairs

DECEMBER 25, 2020

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. SecurityAffairs – hacking, North Korea). If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Cryptocurrency 144

Cryptocurrency Malware Hacking Phishing 144

Security Affairs

OCTOBER 27, 2021

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. SecurityAffairs – hacking, supply chain attack). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Malware 134

Malware System Administration Hacking Media 134

Security Affairs

DECEMBER 2, 2020

The Turla APT group (aka Snake , Uroburos , Waterbug , Venomous Bear and KRYPTON ) has been active since at least 2007 targeting diplomatic and government organizations and private businesses in the Middle East, Asia, Europe, North and South America, and former Soviet bloc nations. SecurityAffairs – hacking, Crutch).

Malware 145

Malware Accountability Hacking Government 145

Security Affairs

MARCH 3, 2020

“ Two Chinese nationals were charged with laundering over $100 million worth of cryptocurrency from a hack of a cryptocurrency exchange. The group is considered responsible for the massive WannaCry ransomware attack, a string of SWIFT attacks in 2016, and the Sony Pictures hack. million from another exchange.

Cryptocurrency 141

Cryptocurrency Banking Hacking Accountability 141

Security Affairs

AUGUST 1, 2018

The hacker accessed user data, email addresses, and a 2007 backup database containing hashed passwords managed by the platform. “A hacker broke into a few of Reddit’s systems and managed to access some user data, including some current email addresses and a 2007 database backup containing old salted and hashed passwords.

Data breaches 82

Data breaches Backups Passwords Authentication 82

Security Affairs

SEPTEMBER 22, 2022

More than 350,000 open source projects can be potentially affected by an unpatched Python vulnerability, tracked as CVE-2007-4559 (CVSS score: 6.8), that was discovered 15 years ago. As we dug into the issue, we realized this was in fact CVE-2007-4559.” SecurityAffairs – hacking, Python). Pierluigi Paganini.

Hacking 110

Hacking Information Security 110

Security Affairs

SEPTEMBER 26, 2018

The flaw tracked as CVE-2018-14634 affects the kernel versions released between July 2007 and July 2017, Linux Kernel versions 2.6.x, Security Affairs – Linux, hacking ). x and 4.14.x, x, are vulnerable to the Mutagen Astronomy flaw. ” reads the security advisory published by Qualys. Pierluigi Paganini.

Advertising 111

Advertising Hacking 111

Security Affairs

MAY 22, 2020

The Winnti hacking group continues to target gaming industry, recently it used a new malware named PipeMon and a new method to achieve persistence. Winnti hacking group is using a new malware dubbed PipeMon and a novel method to achieve persistence in attacks aimed at video game companies. SecurityAffairs – Winnti, hacking).

Malware 140

Malware Hacking Advertising Architecture 140

Security Affairs

JUNE 28, 2022

Looking back at 2007, Estonia fell victim to a powerful cyber-attack that shut down government services, telecommunications, and banks in the country. SecurityAffairs – hacking, non-state actors). The attack was launched in response to the Estonian government’s removal of a Soviet war monument from downtown Tallinn.

Cyber Attacks 134

Cyber Attacks Cybercrime Telecommunications Government 134