2012, Accountability and Hacking - Cyber Security Informer

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Prosecutors in Northern California indicted Kislitsin in 2014 for his alleged role in stealing account data from Formspring.

Cybersecurity

Cybersecurity Cybercrime Hacking Technology

Who Stole 3.6M Tax Records from South Carolina?

Krebs on Security

APRIL 16, 2024

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 26, 2012, the state announced the breach publicly. million people.

Identity Theft

Identity Theft Banking Cybercrime Hacking

Red Cross Hack Linked to Iranian Influence Operation?

Krebs on Security

FEBRUARY 16, 2022

The ICRC said the hacked servers contained data relating to the organization’s Restoring Family Links services, which works to reconnect people separated by war, violence, migration and other causes. .” In their online statement about the hack (updated on Feb. Image: Ke-la.com. and other western audiences. com, sachtimes[.]com,

Hacking

Hacking Ransomware Media Accountability

Horde Webmail Software is affected by a dangerous bug since 2012

Security Affairs

FEBRUARY 23, 2022

Experts found a nine-year-old unpatched flaw in the Horde Webmail software that could allow access to email accounts. A feature in the Horde Webmail is affected by a nine-year-old unpatched security vulnerability that could be abused to gain complete access to email accounts simply by previewing an attachment. disable' => true.

Software

Software Accountability Hacking Government

Microsoft Issues Emergency Fix for IE Zero Day

Krebs on Security

DECEMBER 19, 2018

Satnam Narang , senior research engineer at Tenable , said the vulnerability affects the following installations of IE: Internet Explorer 11 from Windows 7 to Windows 10 as well as Windows Server 2012, 2016 and 2019; IE 9 on Windows Server 2008; and IE 10 on Windows Server 2012.

Internet

Internet Internet Software Engineering

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities. .”

Hacking

Hacking Cybercrime Ransomware Government

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

Ngo got his treasure trove of consumer data by hacking and social engineering his way into a string of major data brokers. Ngo’s businesses enabled an entire generation of cybercriminals to commit an estimated $1 billion worth of new account fraud , and to sully the credit histories of countless Americans in the process.

Identity Theft

Identity Theft Computers and Electronics Hacking Accountability

Who’s Behind the Botnet-Based Service BHProxies?

Krebs on Security

FEBRUARY 24, 2023

BHProxies has authored 129 posts on Black Hat World since 2012, and their last post on the forum was in December 2022. BHProxies initially was fairly active on Black Hat World between May and November 2012, after which it suddenly ceased all activity. The account didn’t resume posting on the forum until April 2014.

Accountability

Accountability Advertising Marketing Malware

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

According to cyber intelligence firm Flashpoint , MrMurza has been active in the Russian underground since at least September 2012. Verified and other Russian language crime forums where MrMurza had a presence have been hacked over the years, with contact details and private messages leaked online.

Malware

Malware Passwords Accountability Advertising

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Security Affairs

JULY 11, 2020

The Russian hacker Yevgeniy Nikulin found guilty for LinkedIn, Dropbox, and Formspring data breach back in 2012 and the sale of their users’ data. A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces.

Hacking

Hacking Cybercrime Data breaches Advertising

620 million accounts stolen from 16 hacked websites available for sale on the dark web

Security Affairs

FEBRUARY 11, 2019

620 million accounts stolen from 16 hacked websites (Dubsmash, Armor Games, 500px, Whitepages, ShareThis) available for sale on the dark web. The Register revealed in exclusive that some 617 million online account details stolen from 16 hacked websites are available for sale on the dark web. “I need the money.

Accountability

Accountability Hacking Advertising Data breaches

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Security Affairs

JANUARY 25, 2020

Chinese hackers have exploited a zero-day vulnerability the Trend Micro OfficeScan antivirus in the recently disclosed hack of Mitsubishi Electric. The remote process execution is bound to a web service account, which depending on the web platform used may have restricted permissions. SecurityAffairs – Mitsubishi Electric, hacking).

Antivirus

Antivirus Hacking Advertising Media

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Krebs on Security

APRIL 30, 2024

A 26-year-old Finnish man was sentenced to more than six years in prison today after being convicted of hacking into an online psychotherapy clinic, leaking tens of thousands of patient therapy records, and attempting to extort the clinic and patients. Kivimäki was 15 years old at the time.

DDOS

DDOS Cybercrime Hacking Passwords

A flaw in the connected vehicle service SiriusXM allows remote car hacking

Security Affairs

DECEMBER 6, 2022

The experts analyzed the NissanConnect app and reached out to some Nissan owners who signed into their accounts to inspect the HTTP traffic. We recently found a vulnerability affecting Hyundai and Genesis vehicles where we could remotely control the locks, engine, horn, headlights, and trunk of vehicles made after 2012.

Hacking

Hacking Engineering Mobile Internet

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Security Affairs

JUNE 9, 2023

Two Russian nationals have been charged with the hack of the cryptocurrency exchange Mt. Russian nationals Alexey Bilyuchenko (43) and Aleksandr Verner (29) have been charged with the hack of the cryptocurrency exchange Mt. million to overseas bank accounts controlled by Bilyuchenko, Verner, and their co-conspirators.”

Hacking

Hacking Cryptocurrency Advertising Banking

Who Is the Network Access Broker ‘Babam’?

Krebs on Security

DECEMBER 3, 2021

Verified was hacked at least twice in the past five years, and its user database posted online. Cyber intelligence platform Constella Intelligence told KrebsOnSecurity that the operns@gmail.com address was used in 2016 to register an account at filmai.in , which is a movie streaming service catering to Lithuanian speakers.

Ransomware

Ransomware Passwords Accountability Cybercrime

Canada Charges Its “Most Prolific Cybercriminal”

Krebs on Security

DECEMBER 8, 2021

There is a now-dormant Myspace account for a Matthew Philbert from Orleans, a suburb of Ottawa, Ontario. The information tied to the Myspace account matches the age and town of the defendant. The Myspace account was registered under the nickname “ Darkcloudowner ,” and to the email address dark_cl0ud6@hotmail.com.

Cybercrime

Cybercrime Ransomware Accountability Advertising

Serial Swatter and Stalker Mir Islam Arrested for Allegedly Dumping Body in River

Krebs on Security

DECEMBER 23, 2018

He briefly rose to Internet infamy as one of the core members of UGNazi , an online mischief-making group that claimed credit for hacking and attacking a number of high-profile Web sites. On June 25, 2012, Islam and nearly two-dozen others were caught up in an FBI dragnet dubbed Operation Card Shop.

Internet

Internet Internet Government Accountability

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Krebs on Security

SEPTEMBER 30, 2024

KrebsOnSecurity has learned that many of the man’s alleged targets were members of UGNazi , a hacker group behind multiple high-profile breaches and cyberattacks back in 2012. One of many self portraits published on the Instagram account of Enzo Zelocchi. “ JoshTheGod ,” referred to in the Iza complaint as “M.I.”

Cryptocurrency

Cryptocurrency Government Internet Internet

Actions Target Russian Govt. Botnet, Hydra Dark Market

Krebs on Security

APRIL 7, 2022

Security experts say both VPNFilter and Cyclops Blink are the work of a hacking group known as Sandworm or Voodoo Bear , the same Russian team blamed for disrupting Ukraine’s electricity in 2015. SANDWORM AND TRITON. energy facilities. and international companies and entities, including U.S. ” HYDRA. . ” HYDRA. .

Marketing

Marketing Energy and Utilities Malware Ransomware

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

That same email address also is tied to two forum accounts for a user with the handle “ O.R.Z.” user account — this one on Verified[.]ru Prior to that, akafitis@gmail.com was used as the email address for the account “ Fitis ,” which was active on Exploit between September 2006 and May 2007.

Malware

Malware Cybercrime Software Accountability

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

Security Affairs

SEPTEMBER 30, 2020

Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison for hacking LinkedIn, Dropbox, and Formspring in 2012. The Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison in the United States for hacking LinkedIn, Dropbox, and Formspring in 2012.

Identity Theft

Identity Theft Cybercrime Advertising Hacking

U.S. CISA adds Microsoft Internet Explorer and Twilio Authy bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

JULY 24, 2024

Remote attackers can exploit the flaw to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (2) is deleted, as demonstrated by a CDwnBindInfo object, and exploited in the wild in December 2012. is a use-after-free issue in Microsoft Internet Explorer 6 through 8.

Internet

Internet Internet Hacking Accountability

Finland’s Most-Wanted Hacker Nabbed in France

Krebs on Security

FEBRUARY 5, 2023

In 2013, Kurittu worked on an investigation involving Kivimäki’s use of the Zbot botnet, among other activities Kivimäki engaged in as a member of the hacker group Hack the Planet (HTP).” The DDoS-for-hire service allegedly operated by Kivimäki in 2012. Kivimäki was 15 years old at the time.

Cybercrime

Cybercrime DDOS Hacking Accountability

Threat actors are offering for sale 550 million stolen user records

Security Affairs

MAY 15, 2020

Data appears to come from past data breaches, the oldest one dates back as 2012 while the latest one dates April 2020. million April 2018 Netlog.com (Twoo.com) 57 million November 2012 Dubsmash.com Phone numbers 47.1 million September 2012 Bukalapak.com 13 million February 2018 Bookmate.com 8 million July 2018 ReverbNation.com 7.9

Data breaches

Data breaches Advertising Passwords Hacking

Russian national sentenced to 40 months for selling stolen data on the dark web

Security Affairs

AUGUST 16, 2024

The marketplace had been active since 2012, it was allowing sellers to offer stolen login credentials, including usernames and passwords for bank accounts, online payment accounts, mobile phone accounts, retailer accounts, and other online accounts. Those credentials were subsequently linked to $1.2

Banking

Banking Accountability Retail Mobile

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. “Shevlyakov also attempted to acquire computer hacking tools.” electronics manufacturers and distributors between approximately October 2012 and January 2022.

Computers and Electronics

Computers and Electronics Hacking Penetration Testing Manufacturing

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

Security Affairs

NOVEMBER 22, 2019

The Neverquest malware is able to log in to the victim’s online banking account and perform fraudulent transactions. Lisov operated the infrastructure behind the NeverQuest malware between June 2012 and January 2015, the managed a network of servers containing lists of millions of stolen login credentials.

Banking

Banking Malware Advertising Passwords

MY TAKE: Iran’s cyber retaliation for Soleimani assassination continues to ramp up

The Last Watchdog

FEBRUARY 3, 2020

Historical context There was strong anti-American sentiment woven into the Shamoon “wiper” virus that devastated Saudi oil company Aramaco in August of 2012. It’s notable that hacks to gain access to, and maintain control of, industrial control systems are a recurring theme in cyber warfare. As geopolitical tensions between the U.S.

Energy and Utilities

Energy and Utilities Malware Hacking Passwords

Expert released DOS Exploit PoC for Critical Windows RDP Gateway flaws

Security Affairs

JANUARY 24, 2020

The Danish security researcher Ollypwn has published a proof-of-concept (PoC) denial of service exploit for the CVE-2020-0609 and CVE-2020-0610 vulnerabilities in the Remote Desktop Gateway (RD Gateway) component on Windows Server (2012, 2012 R2, 2016, and 2019) devices. SecurityAffairs – RDP Gateway, hacking).

Advertising

Advertising Firewall Education Engineering

Mitsubishi Electric Corp. was hit by a new cyberattack

Security Affairs

NOVEMBER 20, 2020

20 said they were checking the 8,653 accounts of those it has business transactions with to determine if information related to bank accounts of the other parties as well as other information leaked.” Data exposed after the incident data includes names, addresses, and phone numbers of account holders. Pierluigi Paganini.

Banking

Banking Cyber Attacks Accountability Media

GAO report reveals new Pentagon weapon systems vulnerable to hack

Security Affairs

OCTOBER 10, 2018

According to a new report published by the Government Accountability Office (GAO) almost any new weapon systems in the arsenal of the Pentagon is vulnerable to hack. “In some cases, system operators were unable to effectively respond to the hacks.” Security Affairs – weapon system, hacking ).

Hacking

Hacking Passwords Password Management Advertising

US deported NeverQuest operator Stanislav Vitaliyevich Lisov to Russia

Security Affairs

JUNE 21, 2020

The Neverquest malware is able to log in to the victim’s online banking account and perform fraudulent transactions. Lisov operated the infrastructure behind the NeverQuest malware between June 2012 and January 2015, he managed a network of servers containing lists of millions of stolen login credentials. Pierluigi Paganini.

Banking

Banking Malware Advertising Hacking

British Court rejects the US’s request to extradite Julian Assange

Security Affairs

JANUARY 4, 2021

“Taking account of all of the information available to him, he considered Mr Assange’s risk of suicide to be very high should extradition become imminent. SecurityAffairs – hacking, Julian Assange). This was a well-informed opinion carefully supported by evidence and explained over two detailed reports.”

Government

Government Risk Passwords Hacking

North Korea ScarCruft APT used previously undetected Dolphin Backdoor against South Korea

Security Affairs

DECEMBER 1, 2022

ScarCruft has been active since at least 2012, it made the headlines in early February 2018 when researchers revealed that the APT group leveraged a zero-day vulnerability in Adobe Flash Player to deliver malware to South Korean users. . SecurityAffairs – hacking, Dolphin backdoor). ” reads the post published by ESET.

Accountability

Accountability Malware Cyber Attacks Media

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

For example, in 2010 Spamdot and its spam affiliate program Spamit were hacked, and its user database shows Sal and Icamis often accessed the forum from the same Internet address — usually from Cherepovets , an industrial town situated approximately 230 miles north of Moscow. bank accounts. ws was registered to an Andrew Artz.

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

DoJ announced to have shut down Slilpp marketplace in international operation

Security Affairs

JUNE 11, 2021

The marketplace had been active since 2012, it was allowing sellers to offer stolen login credentials, including usernames and passwords for bank accounts, online payment accounts, mobile phone accounts, retailer accounts, and other online accounts. SecurityAffairs – hacking, SlilPP marketplace).

Cybercrime

Cybercrime Accountability Retail Cyber threats

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Krebs on Security

SEPTEMBER 26, 2024

ru , which periodically published hacking tools and exploits for software vulnerabilities. By 2004, v1pee had adopted the moniker “ Vega ” on the exclusive Russian language hacking forum Mazafaka , where this user became one of the more reliable vendors of stolen payment cards.

Cryptocurrency

Cryptocurrency Cybercrime Retail Government

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

Facebook has suspended some accounts linked to APT32 that were involved in cyber espionage campaigns to spread malware. Facebook has suspended several accounts linked to the APT32 cyberespionage that abused the platform to spread malware. SecurityAffairs – hacking, Facebook). ” Pierluigi Paganini.

Retail

Retail Malware Mobile Accountability

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

But not long after KrebsOnSecurity reported in April that Shefel/Rescator also was behind the theft of Social Security and tax information from a majority of South Carolina residents in 2012, Mr. Shefel began contacting this author with the pretense of setting the record straight on his alleged criminal hacking activities.

Retail

Retail Advertising Cryptocurrency Marketing

Vyacheslav Igorevich Penchukov was sentenced to prison for his role in Zeus and IcedID operations

Security Affairs

JULY 13, 2024

In 2012, Vyacheslav Igorevich Penchukov was accused of being a member of a cybercrime gang known as JabberZeus crew. At the time, DoJ accused Penchukov of coordinating the exchange of stolen banking credentials and money mules and received alerts once a bank account had been compromised.

Cybercrime

Cybercrime Banking Malware Hacking

Mitsubishi Electric discloses data breach, media blame China-linked APT

Security Affairs

JANUARY 20, 2020

The hacker group has been targeting Japanese heavy industry, manufacturing and international relations at least since 2012, According to the experts, the group is linked to the People’s Republic of China and is focused on exfiltrating confidential data. SecurityAffairs – data breach, hacking). ” reported Kyodo News.

Data breaches

Data breaches Media Computers and Electronics Cyber Attacks

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

Security Affairs

JULY 25, 2022

The ransomware gang Lockbit claims to have hacked the Italian Revenue Agency (Agenzia delle Entrate) and added the government agency to the list of victims reported on its dark web leak site. It has its own statute and specific regulations governing administration and accounting. SecurityAffairs – hacking, Lockbit).

Ransomware

Ransomware Government Scams Hacking

Microsoft issues emergency patch for IE Zero Day exploited in the wild

Security Affairs

DECEMBER 20, 2018

An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.” SecurityAffairs –Windows zero-day, hacking). If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system.

Engineering

Engineering Internet Internet Advertising

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Who Stole 3.6M Tax Records from South Carolina?

Trending Sources

Red Cross Hack Linked to Iranian Influence Operation?

Horde Webmail Software is affected by a dangerous bug since 2012

Microsoft Issues Emergency Fix for IE Zero Day

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Confessions of an ID Theft Kingpin, Part I

Who’s Behind the Botnet-Based Service BHProxies?

Giving a Face to the Malware Proxy Service ‘Faceless’

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

620 million accounts stolen from 16 hacked websites available for sale on the dark web

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

A flaw in the connected vehicle service SiriusXM allows remote car hacking

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Who Is the Network Access Broker ‘Babam’?

Canada Charges Its “Most Prolific Cybercriminal”

Serial Swatter and Stalker Mir Islam Arrested for Allegedly Dumping Body in River

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Actions Target Russian Govt. Botnet, Hydra Dark Market

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

U.S. CISA adds Microsoft Internet Explorer and Twilio Authy bugs to its Known Exploited Vulnerabilities catalog

Finland’s Most-Wanted Hacker Nabbed in France

Threat actors are offering for sale 550 million stolen user records

Russian national sentenced to 40 months for selling stolen data on the dark web

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

MY TAKE: Iran’s cyber retaliation for Soleimani assassination continues to ramp up

Expert released DOS Exploit PoC for Critical Windows RDP Gateway flaws

Mitsubishi Electric Corp. was hit by a new cyberattack

GAO report reveals new Pentagon weapon systems vulnerable to hack

US deported NeverQuest operator Stanislav Vitaliyevich Lisov to Russia

British Court rejects the US’s request to extradite Julian Assange

North Korea ScarCruft APT used previously undetected Dolphin Backdoor against South Korea

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

DoJ announced to have shut down Slilpp marketplace in international operation

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Facebook links cyberespionage group APT32 to Vietnamese IT firm

An Interview With the Target & Home Depot Hacker

Vyacheslav Igorevich Penchukov was sentenced to prison for his role in Zeus and IcedID operations

Mitsubishi Electric discloses data breach, media blame China-linked APT

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

Microsoft issues emergency patch for IE Zero Day exploited in the wild

Stay Connected