2011 and Internet - Cyber Security Informer

XDSpy APT remained undetected since at least 2011

Security Affairs

OCTOBER 2, 2020

Researchers from ESET uncovered the activity of a new APT group, tracked as XDSpy, that has been active since at least 2011. XDSpy is the name used by ESET researchers to track a nation-state actor that has been active since at least 2011. The post XDSpy APT remained undetected since at least 2011 appeared first on Security Affairs.

Malware

Malware Advertising Government Phishing

How Internet Savvy are Your Leaders?

Krebs on Security

DECEMBER 10, 2018

Those in charge of the purse strings for the “Friends of GOP New York State Senator Tom Croci” fund paid $65 in 2011 to keep his political Web site full of search engine goodness. Robert Montgomery , a former GOP state representative in Kansas, paid $85 (PDF) to Web Listings in 2012.

Internet

Internet Internet Scams Engineering

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

Security Affairs

APRIL 30, 2019

According to Bloomberg, Vodafone identified hidden backdoors in software that could have handed Huawei unauthorized access to the carrier’s fixed-line network in Italy used to connect to the internet. Bloomberg obtained Vodafone’s security briefing documents from 2009 and 2011 and spoke with people involved in the situation.

Internet

Internet Internet Advertising Software

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Security Affairs

NOVEMBER 10, 2024

government agency created in 2011 to protect consumers in the financial sector, ensuring fair, transparent, and competitive financial markets The agency has issued a directive to employees to reduce the use of their phones and invite them to use Microsoft Teams and Cisco WebEx for their meetings and conversations that involve nonpublic data.

Hacking

Hacking Internet Internet Government

The Link Between AWM Proxy & the Glupteba Botnet

Krebs on Security

JUNE 28, 2022

AWMproxy, the storefront for renting access to infected PCs, circa 2011. In 2011, researchers at Kaspersky Lab showed that virtually all of the hacked systems for rent at AWM Proxy had been compromised by TDSS (a.k.a An example of a cracked software download site distributing Glupteba. Image: Google.com. But on Dec.

Passwords

Passwords Malware Internet Internet

Who’s Behind the ‘Web Listings’ Mail Scam?

Krebs on Security

MARCH 23, 2020

Searching the Internet for some of these Web listing domains mentioned in the company’s Twitter account brings up a series of press releases once issued on behalf of the company. Cached versions of this site from 2011 show it naming Web Listings Inc. employed a number of people involved in the SEO business. as a business partner.

Scams

Scams Marketing Internet Internet

T-Mobile detected network intrusion attempts and blocked them

Security Affairs

NOVEMBER 28, 2024

Experts suspect the state-sponsored hackers have gathered extensive internet traffic and potentially compromised sensitive data. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.” The investigation into the breaches of the U.S. Wall Street Journal reported.

Mobile

Mobile Telecommunications Government Internet

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

NEROWOLFE A search on the ICQ number 669316 at Intel 471 shows that in April 2011, a user by the name NeroWolfe joined the Russian cybercrime forum Zloy using the email address d.horoshev@gmail.com , and from an Internet address in Voronezh, RU. 2011 said he was a system administrator and C++ coder. They just sit and wait.

Ransomware

Ransomware Cybercrime Accountability Malware

Who Is the Network Access Broker ‘Babam’?

Krebs on Security

DECEMBER 3, 2021

com back in 2011, and sanjulianhotels[.]com That search shows the user bo3dom registered at ipmart-forum.com with the email address devrian27@gmail.com , and from an Internet address in Vilnius, Lithuania. The username associated with that account was “ bo3dom.” com (2017). ” in the United Kingdom.

Ransomware

Ransomware Passwords Accountability Cybercrime

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

For several years beginning around 2010, a lone teenager in Vietnam named Hieu Minh Ngo ran one of the Internet’s most profitable and popular services for selling “ fullz ,” stolen identity records that included a consumer’s name, date of birth, Social Security number and email and physical address.

Identity Theft

Identity Theft Computers and Electronics Hacking Accountability

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

Kilmer said Faceless has emerged as one of the underground’s most reliable malware-based proxy services, mainly because its proxy network has traditionally included a great many compromised “Internet of Things” devices — such as media sharing servers — that are seldom included on malware or spam block lists.

Malware

Malware Passwords Accountability Advertising

Former Russian Cybersecurity Chief Sentenced to 22 Years in Prison

Krebs on Security

FEBRUARY 26, 2019

In a telephone interview with this author in 2011, Vrublevsky said he was convinced that Mikhailov was taking information gathered by Russian government cybercrime investigators and feeding it to U.S. law enforcement and intelligence agencies.

Cybersecurity

Cybersecurity Cybercrime Media Antivirus

Boston Public Library hit by Cyber Attack

CyberSecurity Insiders

AUGUST 29, 2021

From the year 2007, BPL has been assigned with the service of free to use wireless internet across all of its 24 branches and from 2011 the premises were also holding pay-for-print services for local public. Populace living in the district can access over 24 million books and are also entitled to participate in over 10,000 programs.

Cyber Attacks

Cyber Attacks Wireless Mobile Internet

Breach Exposes Users of Microleaves Proxy Service

Krebs on Security

JULY 28, 2022

Launched in 2013, Microleaves is a service that allows customers to route their Internet traffic through PCs in virtually any country or city around the globe. Microleaves works by changing each customer’s Internet Protocol (IP) address every five to ten minutes. The same account continues to sell subscriptions to Shifter.io.

Advertising

Advertising Software Computers and Electronics Internet

Iranian Charming Kitten APT targets various entities in Brazil, Israel, and the U.A.E. using a new backdoor

Security Affairs

SEPTEMBER 11, 2023

Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage group has been active since at least 2011 targeting journalists and activists in the Middle East, as well as organizations in the United States, and entities in the U.K., Israel, Iraq, and Saudi Arabia. ” concludes the post.

Internet

Internet Internet Healthcare Education

Zloader, another botnet, bites the dust

Malwarebytes

APRIL 14, 2022

There are a lot of those because the ZeuS banking Trojan source code was leaked in 2011, and so there’s been plenty of time for several new variants to emerge. A sinkhole is a way of redirecting malicious internet traffic so that it can be captured and analyzed by security professionals, and are often used to seize control of botnets.

Backups

Backups Banking Internet Internet

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

i-SOON CEO Wu Haibo, in 2011. But Will Thomas , a cyber threat intelligence researcher at Equinix, found an Internet address in the leaked data that corresponds to a domain flagged in a 2019 Citizen Lab report about one-click mobile phone exploits that were being used to target groups in Tibet. Image: nattothoughts.substack.com.

Government

Government Hacking Cyber threats Mobile

It’s Too Late for Threat Intelligence Vendors to Ignore IPv6

Webroot

MARCH 15, 2021

Drafted by the Internet Engineering Task Force (ITEF) in 1998, it became an Internet Standard in 2017. IP addresses, those numbers assigned to every internet-connected device, or node, were designed to contain 32 bits. What continued IPv6 adoption means for internet security. IPv6 has been a long time coming.

Manufacturing

Manufacturing Internet Internet IoT

Google disrupts the Glupteba botnet

Security Affairs

DECEMBER 7, 2021

The blockchain-enabled botnet has been active since at least 2011, researchers estimate that the Glupteba botnet is currently composed of more than 1 million Windows PCs around the world. Google partnered with Internet infrastructure providers and hosting providers, such as CloudFlare, to take down servers used by the gang.

Backups

Backups Advertising Accountability Malware

Future Focused: A Safer Way to Expose Private Server Names

Cisco Security

MARCH 27, 2021

It’s a new protocol that encrypts the DNS request to keep bad actors from discovering or altering domain names or snooping on users’ internet destinations. We’re fans: in fact, Cisco Umbrella has supported Encrypted DNS since 2011. Read more about DoH in this blog by my colleague Nancy Cam-Winget. What’s next.

DNS

DNS VPN Advertising Encryption

Patch Tuesday, November 2019 Edition

Krebs on Security

NOVEMBER 12, 2019

The November updates include patches for a zero-day flaw in Internet Explorer that is currently being exploited in the wild, as well as a sneaky bug in certain versions of Office for Mac that bypasses security protections and was detailed publicly prior to today’s patches.

Backups

Backups Internet Internet Media

News Alert: i2Coalition launches ‘VPN Trust Initiative’ to promote VPN operators’ best practices

The Last Watchdog

SEPTEMBER 26, 2023

26, 2023 — The Internet Infrastructure Coalition (i2Coalition) launched the VPN Trust Initiative (VTI) in 2020 to establish a baseline for how virtual private network (VPN) providers should operate. Social Responsibility: VPN providers will promote VPN technology to support access to the global Internet and freedom of expression.

VPN

VPN Internet Internet Technology

Silent Night Zeus botnet available for sale in underground forums

Security Affairs

MAY 23, 2020

The source code of the Zeus Trojan is available in the cybercrime underground since 2011 allowing crooks to develop their own release since. Experts found multiple variants in the wild, many of them belonging to the Terdot Zbot/Zloader malware family. Experts believe that Axe is the developer of the Axe Bot 1.4.1, comparing Axe Bot 1.4.1

Banking

Banking Advertising Malware Data collection

Microsoft Regional Director (Redux)

Troy Hunt

APRIL 12, 2018

Like the Microsoft Most Valuable Professional (MVP) role I've had since 2011, it's one that only comes from being an active member of the technology community and contributing to it in a meaningful way. And that's that - another 2 years of Regional Director and hopefully, another year of MVP come July.

InfoSec

InfoSec Technology Media Internet

KashmirBlack, a new botnet in the threat landscape that rapidly grows

Security Affairs

OCTOBER 26, 2020

KashmirBlack scans the internet for sites using vulnerable CMS versions and attempting to exploit known vulnerabilities to them and take over the underlying server. Experts observed a continuous growth of the botnet since its discovery along with an increasing level of complexity.

Advertising

Advertising Cryptocurrency Internet Internet

Aussie Telcos are Failing at Some Fundamental Security Basics

Troy Hunt

MARCH 27, 2018

Sidenote: she's an avid 1Password user and has been since 2011, this password dated back a couple of decades when, like most people still do today, she had reused it extensively). I'm like yo my credit cards and financial information your entering into this internet system isn't even fully encrypted.

Passwords

Passwords Banking Mobile Telecommunications

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

1988 — The Morris Worm — Robert Morris creates what would be known as the first worm on the Internet. 2002 – Internet Attack — By targeting the thirteen Domain Name System (DNS) root servers, a DDoS attack assaults the entire Internet for an hour. An industry expert estimates the attacks resulted in $1.2

Cybercrime

Cybercrime Computers and Electronics Banking Hacking

CIA Hacking unit APT-C-39 hit China since 2008

Security Affairs

MARCH 4, 2020

“Several industry sectors have been targeted including aviation organizations, scientific research institutions, petroleum industry, Internet companies, and government agencies.” The Chinese researchers also discovered that the WISTFULTOOL data plugin was used in an attack against a large Internet company in China in 2011.

Hacking

Hacking Advertising Government Engineering

Microsoft took control of 99 domains used by Iran-linked Phosphorus APT

Security Affairs

MARCH 31, 2019

Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage group has been active since at least 2011. “Plaintiff Microsoft Corporation (“Microsoft”) has sued Defendants John Does 1-2 associated with the Internet domains listed below.” Saudi Arabia, and Iraq. .

Advertising

Advertising Internet Internet Hacking

It's End of Life for ASafaWeb

Troy Hunt

NOVEMBER 5, 2018

A lot has changed in the Microsoft technology world in the last 7 years since I launched ASafaWeb in September 2011. Internet Explorer is no longer the dominant browser ( Chrome was in 3rd place back then ). Windows XP is no longer the dominant operating system ( Win 7 actually caught up the month I launched ASafaWeb ).

Technology

Technology Architecture Marketing Internet

Patch now! Insecure Hikvision security cameras can be taken over remotely

Malwarebytes

SEPTEMBER 22, 2021

According to global market data provider IHS Markit, Hikvision has 38% of the global market share, and it has been the market leader since 2011. In general it is a good idea not make your cameras accessible from the internet and if you do, put them behind a VPN. The vulnerability. The post Patch now!

Firmware

Firmware Surveillance Marketing VPN

Black Hat insights: Deploying ‘human sensors’ to reinforce phishing email detection and response

The Last Watchdog

AUGUST 4, 2021

I had a lively discussion about this with Rohyt Belani, co-founder and CEO of Cofense, which started out as PhishMe in 2011. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. (LW I’ll keep watch and keep reporting.

Phishing

Phishing Technology Passwords Mobile

NEW TECH: The march begins to make mobile app security more robust than legacy PC security

The Last Watchdog

SEPTEMBER 26, 2019

Related: Securing the Internet of Things I’ve been writing about organizations struggling to solve the productivity vs. security dilemma that’s part and parcel of the BYOD craze for some time now. By 2011 or so, it was clear the BYOD trend was unstoppable, and companies began to impose much tighter security constraints. Talk more soon.

Mobile

Mobile Encryption Internet Internet

Microsoft: Slow MFA adoption presents “dangerous mismatch” in security

Malwarebytes

FEBRUARY 9, 2022

Microsoft is not the only company to reveal that internet users have been reluctant to adopt MFA. Google introduced 2FA to Gmail in 2011. It’s a widely used JavaScript package manager and the largest repository of computer programming packages on the Internet. There’s low MFA adoption elsewhere, too. percent).

Authentication

Authentication Social Engineering Passwords Accountability

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

eSecurity Planet

SEPTEMBER 14, 2022

According to statistics from the FBI’s 2021 Internet Crime Report , complaints to the Internet Crime Complaint Center (IC3) have been rising since 2017. This made a lot of sense, especially in the earlier days of the Internet where cybersecurity measures were nowhere near as robust as they are today. Individuals. Businesses.

Social Engineering

Social Engineering Energy and Utilities Phishing Internet

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The above-mentioned AIDS Trojan hailing from the distant pre-Internet era was the progenitor of the trend, but its real-world impact was close to zero. The Archiveus Trojan from 2006 was the first one to use RSA cipher, but it was reminiscent of a proof of concept and used a static 30-digit decryption password that was shortly cracked.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Glupteba botnet is back after Google disrupted it in December 2021

Security Affairs

DECEMBER 19, 2022

The blockchain-enabled botnet has been active since at least 2011, researchers estimated that the Glupteba botnet was composed of more than 1 million Windows PCs around the world as of December 2021.

DNS

DNS Antivirus Cryptocurrency Software

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs

MAY 15, 2020

The Tropic Trooper APT that has been active at least since 2011, it was first spotted in 2015 by security experts at Trend Micro when it targeted government ministries and heavy industries in Taiwan and the military in the Philippines. “tracert -h 8 8.8.8.8”

Government

Government Malware Advertising Architecture

How DoS/DDoS Attacks Impact Machine Identity, Digital Certificates

Security Boulevard

NOVEMBER 22, 2022

OCSP is an internet protocol which browsers use to determine the revocation status of digital certificates that are deployed on websites. . But even OCSP stapling can be made vulnerable to DoS if the remote web server is using a vulnerable version of OpenSSL as has been uncovered by CVE-2011-0014 , published back in 2011. .

DDOS

DDOS Internet Internet Engineering

Law enforcement app SweepWizard leaks data on crime suspects

Malwarebytes

JANUARY 15, 2023

Although version 1 of SweepWizard has been available for download from the Apple App Store since 2016, according to archived information, Wired could access sweep data as far back as 2011. The report mentioned ( and we have confirmed this ) that SweepWizard's standalone website was around that same year.

Media

Media Internet Internet Accountability

More than 3,000 Openfire servers exposed to attacks using a new exploit

Security Affairs

AUGUST 24, 2023

Any version released before then is not vulnerable, and these older versions make up nearly 25% of the internet-facing Openfire servers. released in 2011.” ” “We found there are a variety of Openfire forks that may or may not be vulnerable, making up about 5% of the internet-facing servers.

Internet

Internet Internet Engineering Authentication

The Origins and History of the Dark Web

Identity IQ

FEBRUARY 8, 2024

The Origins and History of the Dark Web IdentityIQ The dark web is a hidden part of the internet that cannot be accessed as easily. The dark web consists of websites and services that operate anonymously and aren’t accessible in the “public” part of the internet. The deep web is far and away the largest part of the internet.

Identity Theft

Identity Theft Cryptocurrency Government Engineering

Google obtained a temporary court order against CryptBot distributors

Security Affairs

APRIL 28, 2023

The blockchain-enabled botnet has been active since at least 2011, researchers estimated that the Glupteba botnet was composed of more than 1 million Windows PCs around the world as of December 2021.

Malware

Malware Cybercrime Cryptocurrency Media

Group-IB blocked more than 180,000 links to pirated copies of Game of Thrones

Security Affairs

MAY 21, 2019

Group-IB‘s fight against digital piracy started in 2011, when the Anti-Piracy Department was established. The average time to detect the first pirated copy on the Internet is 30 minutes. 80% of pirated links are successfully blocked by Group-IB team within 24 hours of their appearance on the Internet.

Media

Media Advertising Internet Internet

XDSpy APT remained undetected since at least 2011

How Internet Savvy are Your Leaders?

Webinars

Trending Sources

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

Webinars

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

The Link Between AWM Proxy & the Glupteba Botnet

Who’s Behind the ‘Web Listings’ Mail Scam?

T-Mobile detected network intrusion attempts and blocked them

How Did Authorities Identify the Alleged Lockbit Boss?

Who Is the Network Access Broker ‘Babam’?

Confessions of an ID Theft Kingpin, Part I

Giving a Face to the Malware Proxy Service ‘Faceless’

Former Russian Cybersecurity Chief Sentenced to 22 Years in Prison

Boston Public Library hit by Cyber Attack

Breach Exposes Users of Microleaves Proxy Service

Iranian Charming Kitten APT targets various entities in Brazil, Israel, and the U.A.E. using a new backdoor

Zloader, another botnet, bites the dust

New Leak Shows Business Side of China’s APT Menace

It’s Too Late for Threat Intelligence Vendors to Ignore IPv6

Google disrupts the Glupteba botnet

Future Focused: A Safer Way to Expose Private Server Names

Patch Tuesday, November 2019 Edition

News Alert: i2Coalition launches ‘VPN Trust Initiative’ to promote VPN operators’ best practices

Silent Night Zeus botnet available for sale in underground forums

Microsoft Regional Director (Redux)

KashmirBlack, a new botnet in the threat landscape that rapidly grows

Aussie Telcos are Failing at Some Fundamental Security Basics

Cyber CEO: The History Of Cybercrime, From 1834 To Present

CIA Hacking unit APT-C-39 hit China since 2008

Microsoft took control of 99 domains used by Iran-linked Phosphorus APT

It's End of Life for ASafaWeb

Patch now! Insecure Hikvision security cameras can be taken over remotely

Black Hat insights: Deploying ‘human sensors’ to reinforce phishing email detection and response

NEW TECH: The march begins to make mobile app security more robust than legacy PC security

Microsoft: Slow MFA adoption presents “dangerous mismatch” in security

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Glupteba botnet is back after Google disrupted it in December 2021

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

How DoS/DDoS Attacks Impact Machine Identity, Digital Certificates

Law enforcement app SweepWizard leaks data on crime suspects

More than 3,000 Openfire servers exposed to attacks using a new exploit

The Origins and History of the Dark Web

Google obtained a temporary court order against CryptBot distributors

Group-IB blocked more than 180,000 links to pirated copies of Game of Thrones

Stay Connected