2012 and Phishing - Cyber Security Informer

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Kislitsin is accused of hacking into the now-defunct social networking site Formspring in 2012, and conspiring with another Russian man convicted of stealing tens of millions of usernames and passwords from LinkedIn and Dropbox that same year. Nikita Kislitsin, at a security conference in Russia. prison system.

Cybersecurity

Cybersecurity Cybercrime Hacking Government

LLMs and Phishing

Schneier on Security

APRIL 10, 2023

Here’s an experiment being run by undergraduate computer science students everywhere: Ask ChatGPT to generate phishing emails, and test whether these are better at persuading victims to respond or click on the link than the usual spam. In 2012, researcher Cormac Herley offered an answer : It weeded out all but the most gullible.

Phishing

Phishing Scams Internet Internet

Padlocks, Phishing and Privacy; The Value Proposition of a VPN

Troy Hunt

SEPTEMBER 17, 2020

As I started delving back through my own writing over the years, the picture became much clearer and it really crystallised just this week after I inadvertently landed on a nasty phishing site. In the end I broke it down into 3 Ps: padlocks, phishing and privacy. Here's the value proposition of a VPN in the modern era: 1.

VPN

VPN Phishing DNS Encryption

The Cost of Cybercrime

Schneier on Security

JUNE 4, 2019

Really interesting paper calculating the worldwide cost of cybercrime: Abstract: In 2012 we presented the first systematic study of the costs of cybercrime. The move to the cloud means that system misconfiguration may now be responsible for as many breaches as phishing. In this paper,we report what has changed in the seven years since.

Cybercrime

Cybercrime Scams Cryptocurrency Antivirus

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

Krebs on Security

SEPTEMBER 17, 2020

The government alleges the men used malware-laced phishing emails and “supply chain” attacks to steal data from companies and their customers. One of the alleged hackers was first profiled here in 2012 as the owner of a Chinese antivirus firm. Image: FBI.

Antivirus

Antivirus Hacking Software Government

Gen Z’s Rising Susceptibility to Social Engineering Attacks

Security Boulevard

MARCH 31, 2025

Gen Z, or individuals born between 1997 and 2012, have certain types of lifestyles, upbringings and character traits that make them ideal for social engineering exploitation. The post Gen Zs Rising Susceptibility to Social Engineering Attacks appeared first on Security Boulevard.

Social Engineering

Social Engineering Engineering Scams Phishing

SideWinder phishing campaign targets maritime facilities in multiple countries

Security Affairs

JULY 30, 2024

SideWinder (also known as Razor Tiger, Rattlesnake, and T-APT-04) has been active since at least 2012, the group mainly targeted Police, Military, Maritime, and the Naval forces of Central Asian countries. The phishing emails include a malicious document which contains a plain text URL linking to a site controlled by the attacker.

Phishing

Phishing Malware Hacking Information Security

Microsoft Patches Six Zero-Day Security Holes

Krebs on Security

JUNE 8, 2021

CVE-2021-31959 affects everything from Windows 7 through Windows 10 and Server versions 2008 , 2012 , 2016 and 2019. .” Microsoft also patched five critical bugs — flaws that can be remotely exploited to seize control over the targeted Windows computer without any help from users.

Backups

Backups Ransomware Cyber threats Phishing

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Security Affairs

JULY 11, 2020

The Russian hacker Yevgeniy Nikulin found guilty for LinkedIn, Dropbox, and Formspring data breach back in 2012 and the sale of their users’ data. A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces.

Hacking

Hacking Cybercrime Data breaches Advertising

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Security Affairs

APRIL 14, 2020

PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. The attacks against the Canadian healthcare organizations were discovered between March 24 and March 26, they started with coronavirus -themed phishing campaigns that were carried out in the last months.

Healthcare

Healthcare Ransomware Phishing Government

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

Security Affairs

SEPTEMBER 30, 2020

Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison for hacking LinkedIn, Dropbox, and Formspring in 2012. The Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison in the United States for hacking LinkedIn, Dropbox, and Formspring in 2012.

Identity Theft

Identity Theft Cybercrime Advertising Hacking

NEW TECH: How the emailing of verified company logos actually stands to fortify cybersecurity

The Last Watchdog

JULY 26, 2021

Over the long term, VMCs, and the underlying Brand Indicators for Message Identification (BIMI) standards, could very well give rise to a bulwark against email spoofing and phishing. I first wrote about DMARC shortly after it was launched, with some fanfare, back in 2012. Sometimes good things do happen as a collateral benefit.

Marketing

Marketing Cybersecurity Phishing Authentication

Actions Target Russian Govt. Botnet, Hydra Dark Market

Krebs on Security

APRIL 7, 2022

The Justice Department said that in Dragonfly’s first stage between 2012 and 2014, the defendants hacked into computer networks of industrial control systems (ICS) companies and software providers, and then hid malware inside legitimate software updates for such systems. energy facilities. ” HYDRA. . ” HYDRA.

Marketing

Marketing Energy and Utilities Malware Ransomware

Hackers exploit old Microsoft Vulnerability to drop Zloader Malware

CyberSecurity Insiders

JANUARY 5, 2022

Highly placed sources say that the malware has been distributed via phishing campaign by a cyber threat group named MalSmoke. Microsoft that fixed this security vulnerability in 2012-13 by implementing strict file verification policies is busy urging admins to follow its legacy advisory published in August 2013 in order to fix the issue.

Malware

Malware Spyware Antivirus Cyber threats

North Korean APT group targets email credentials in social engineering campaign

CSO Magazine

JUNE 8, 2023

Operating since at least 2012, the group often employs targeted phishing and social engineering tactics to gather intelligence and access sensitive information." To read this article in full, please click here

Social Engineering

Social Engineering Engineering Phishing Government

Pwned or Bot

Troy Hunt

JANUARY 19, 2023

Of course there's all the nasty stuff (phishing, identity theft, spam), but there are also some amazingly positive uses for data illegally taken from someone else's system. It's fascinating to see how creative people can get with breached data.

Data breaches

Data breaches Risk Identity Theft Accountability

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Krebs on Security

SEPTEMBER 30, 2024

KrebsOnSecurity has learned that many of the man’s alleged targets were members of UGNazi , a hacker group behind multiple high-profile breaches and cyberattacks back in 2012. A photo released by the government allegedly showing Iza posing with several LASD officers on his payroll.

Cryptocurrency

Cryptocurrency Government Internet Internet

New Mustang Panda campaign targets Asia with a backdoor dubbed DOPLUGS

Security Affairs

FEBRUARY 21, 2024

Mustang Panda has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. “Based on our observations, we believe Earth Preta tends to use spear-phishing emails and Google Drive links in its attacks.”

Malware

Malware Phishing Government Passwords

State-Sponsored Cybercrime Group`s Infrastructure Revealed

Heimadal Security

MAY 18, 2023

At least since 2012, SideWinder has been active, using spear-phishing attacks to gain access to targeted environments. Researchers have uncovered previously unknown attack infrastructure used by Pakistani and Chinese entities operated by the state-sponsored group SideWinder.

Cybercrime

Cybercrime Phishing Cybersecurity

Ransomware attack on Saudi Aramco leaks critical data

CyberSecurity Insiders

JULY 21, 2021

According to a press release from Associated Press, the Saudi Arabia-based petroleum producer was hit by a cyber attack in 2012 where the servers of the company were targeted by a malware named ‘Shamoon’ via a ‘spear phishing’ attack deceptively launched by Iran.

Ransomware

Ransomware Encryption Cryptocurrency Cyber Attacks

Experts disclose security flaws in Oracle’s iPlanet Web Server

Security Affairs

MAY 11, 2020

.” The second issue, tracked as CVE-2020-9314 , could be exploited to inject external images which can be used for phishing and social engineering attacks. When used in combination with the “ productNameHeight ” and “ productNameWidth ” parameters, this can be used to inject an external image into a site to facilitate phishing.

Social Engineering

Social Engineering Phishing Advertising Encryption

Financial cyberthreats in 2023

SecureList

MAY 6, 2024

A significant share of scam, phishing and malware attacks is about money. Methodology In this report, we present an analysis of financial cyberthreats in 2023, focusing on banking Trojans and phishing pages that target online banking, shopping accounts, cryptocurrency wallets and other financial assets. million in 2022. of attacks.

Phishing

Phishing Banking Mobile Scams

Are You Vulnerable To Ransomware? 6 Questions to Ask Yourself

Vipre

MAY 5, 2021

For instance, failing to educate users on the dangers of phishing amounts to business malpractice. Your answers should make it obvious in which areas of security you need to invest: Are you training users on the dangers of phishing? 66% of ransomware infections are due to spam and phishing emails.

Ransomware

Ransomware Backups Phishing Education

Half a billion cyber attacks thwarted by Tokyo Olympics 2021

CyberSecurity Insiders

OCTOBER 24, 2021

times the amount observed during the 2012 London Olympics. According to a finding discovered by NTT Corporation that was assigned operating the digital services across the event, state funded hackers tried their best to disrupt the event that counted over 2.5

Cyber Attacks

Cyber Attacks Cyber Risk Backups Cyber threats

DeathStalker cyber-mercenary group targets the financial sector

Security Affairs

AUGUST 26, 2020

A hack-for-hire group, tracked as DeathStalker, has been targeting organizations in the financial sector since 2012 Kaspersky researchers say. DeathStalker is a hack-for-hire group discovered by Kaspersky, it has been targeting organizations worldwide, mainly law firms and financial entities, since 2012.

Malware

Malware Hacking Advertising Cybercrime

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. ” reads a press release published by DoJ. ’ (aka Dragonfly , Berzerk Bear, Energetic Bear, and Crouching Yeti ).

Government

Government Energy and Utilities Malware Hacking

Security firm accidentally exposed an unprotected database with 5 Billion previously leaked records

Security Affairs

MARCH 22, 2020

The expert Bob Diachenko has discovered an unsecured Elasticsearch install belonging to a UK security firm that contained 5 billion records of data leaked in previous incidents that took place between 2012 and 2019. Most of the data come from previously known source s, it could expose affected people to scams and phishing campaigns.

Data breaches

Data breaches Advertising DNS Engineering

Don’t trust links with known domains: BMW affected by redirect vulnerability

Security Affairs

JANUARY 3, 2024

They were used to access the internal workplace systems for BMW dealers and could have been useful to attackers for spear-phishing campaigns or malware distribution. This exploit could also be used for mass phishing campaigns, targeting customers,” our researchers said.

Phishing

Phishing Manufacturing Firewall Cybercrime

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

FBI spoofs 2012 – 2013. It surfaced in November 2012 and was making thousands of victims a day. The logic of the raid mainly comes down to using unsecured RDP ports or spear-phishing to infiltrate networks and gain a foothold in them. None of these early threats went pro.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Security Affairs

OCTOBER 7, 2020

The threat actor that employed the Kraken technique, likely an APT group, launched a phishing attack that used messages with a.ZIP file attachment. The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists.

Advertising

Advertising Hacking Manufacturing Phishing

SideWinder APT targets maritime and nuclear sectors with enhanced toolset

Security Affairs

MARCH 11, 2025

SideWinder (also known as Razor Tiger, Rattlesnake, and T-APT-04) has been active since at least 2012, the group mainly targeted Police, Military, Maritime, and the Naval forces of Central Asian countries. The infection flow is the same as past attacks, threat actors send spear-phishing emails with a DOCX file attached.

Malware

Malware Government Phishing Hacking

APT32 state hackers target human rights defenders with spyware

Security Affairs

FEBRUARY 24, 2021

“Amnesty Tech’s Security Lab found technical evidence in phishing emails sent to two prominent Vietnamese human rights defenders, one of whom lives in Germany, and a Vietnamese NGO based in the Philippines, showing that Ocean Lotus is responsible for the attacks between 2018 and November 2020.”

Spyware

Spyware Government Surveillance Phishing

October 2023 Patch Tuesday Includes Three Zero-Days Flaws

eSecurity Planet

OCTOBER 11, 2023

“This is typically achieved through social engineering attacks with spear phishing to gain initial access to a host before searching for other internal vulnerable targets. For Server 2012/2012 R2 it is highly recommended to subscribe to ESU or migrate to a newer server edition.”

DDOS

DDOS Engineering Authentication Social Engineering

Cyber mercenaries group DeathStalker uses a new backdoor

Security Affairs

DECEMBER 5, 2020

DeathStalker is a hack-for-hire group discovered by Kaspersky, it has been targeting organizations worldwide, mainly law firms and financial entities, since 2012. The PowerPepper attack chain is being delivered through weaponized Word documents distributed through spear-phishing messages.

DNS

DNS Phishing Encryption Antivirus

Kimsuky APT continues to target South Korean government using AppleSeed backdoor

Malwarebytes

JUNE 1, 2021

The Kimsuky APT—also known as Thallium, Black Banshee, and Velvet Chollima—is a North Korean threat actor that has been active since 2012. On December 2020, KISA (Korean Internet & Security Agency) provided a detailed analysis about the phishing infrastructure and TTPs used by Kimsuky to target South Korea. Phishing Infrastructure.

Government

Government Phishing Encryption Media

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

Google experts are tracking ARCHIPELAGO since 2012 and have observed the group targeting individuals with expertise in North Korea policy issues. The attack chain associated with ARCHIPELAGO starts with phishing emails that embed malicious links.

Phishing

Phishing Media Passwords Malware

A new variant of Asruex Trojan exploits very old Office, Adobe flaws

Security Affairs

AUGUST 23, 2019

. “However, when we encountered Asruex in a PDF file, we found that a variant of the malware can also act as an infector particularly through the use of old vulnerabilities CVE-2012-0158 and CVE-2010-2883 , which inject code in Word and PDF files respectively.” ” reads the report published by Trend Micro.

Malware

Malware Advertising Spyware Encryption

Keepnet Labs accidentally exposed an unprotected database with 5 Billion previously leaked records

Security Affairs

MARCH 22, 2020

The expert Bob Diachenko has discovered an unsecured Elasticsearch install belonging to the security firm Keepnet Labs that contained 5 billion records of data leaked in previous incidents that took place between 2012 and 2019. ” wrote Security Discovery’s researcher Bob Diachenko. Adobe, Last.

Data breaches

Data breaches Advertising DNS Engineering

BazarBackdoor phishing campaign eschews links and files to avoid raising red flags

SC Magazine

MAY 5, 2021

A pair of related phishing campaigns this year took the unusual step of intentionally avoiding malicious links or attachments in its emails – a sign that threat actors may recognize the need to come up with new tactics. Here, workers prepare a presentation the day before the CeBIT 2012 technology trade fair.

Phishing

Phishing Scams Malware Social Engineering

Chinese APT group Mustang Panda targets European and Russian organizations

CSO Magazine

MAY 5, 2022

A cyberespionage group whose targeting has historically been aligned with China's geopolitical interests has been targeting European and Russian entities using topical spear-phishing lures connected to the war in Ukraine.

Telecommunications

Telecommunications Phishing Cybersecurity

Platinum APT and leverages steganography to hide C2 communications

Security Affairs

JUNE 6, 2019

According to Microsoft, the Platinum has been active since at least 2009, it was responsible for spear phishing attacks on ISPs, government organizations, intelligence agencies, and defense institutes. The campaign, which may have started as far back as 2012, featured a multi-stage approach and was dubbed EasternRoppels.”

Encryption

Encryption Government Advertising Cyber Attacks

Vietnam-linked APT32 group launches COVID-19-themed attacks against China

Security Affairs

APRIL 23, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. According to FireEye, the nation-state hackers targeted the Wuhan Government and the Chinese Ministry of Emergency Management with spear-phishing attacks.

Government

Government Advertising Phishing Malware

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. Threat actors were contacting people of interest with romantic lures, they set up pages that were specifically designed to target followers with malware and phishing attacks.

Retail

Retail Malware Mobile Accountability

A Clear and Present Need: Bolster Your Identity Security with Threat Detection and Response

Duo's Security Blog

NOVEMBER 20, 2023

“It took nearly 11 months (328 days) to identity and contain data breaches resulting from stolen or compromised credentials.” – IBM’s Cost of Data Breach Report 2023 I recently came across a 2012 article from CSO Online , and realized that it has been more than 11 years since the phrase “Identity is the new perimeter” was coined!

Threat Detection

Threat Detection Authentication Accountability Data breaches

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

LLMs and Phishing

Trending Sources

Padlocks, Phishing and Privacy; The Value Proposition of a VPN

The Cost of Cybercrime

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

Gen Z’s Rising Susceptibility to Social Engineering Attacks

SideWinder phishing campaign targets maritime facilities in multiple countries

Microsoft Patches Six Zero-Day Security Holes

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

NEW TECH: How the emailing of verified company logos actually stands to fortify cybersecurity

Actions Target Russian Govt. Botnet, Hydra Dark Market

Hackers exploit old Microsoft Vulnerability to drop Zloader Malware

North Korean APT group targets email credentials in social engineering campaign

Pwned or Bot

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

New Mustang Panda campaign targets Asia with a backdoor dubbed DOPLUGS

State-Sponsored Cybercrime Group`s Infrastructure Revealed

Ransomware attack on Saudi Aramco leaks critical data

Experts disclose security flaws in Oracle’s iPlanet Web Server

Financial cyberthreats in 2023

Are You Vulnerable To Ransomware? 6 Questions to Ask Yourself

Half a billion cyber attacks thwarted by Tokyo Olympics 2021

DeathStalker cyber-mercenary group targets the financial sector

US indicted 4 Russian government employees for attacks on critical infrastructure

Security firm accidentally exposed an unprotected database with 5 Billion previously leaked records

Don’t trust links with known domains: BMW affected by redirect vulnerability

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

SideWinder APT targets maritime and nuclear sectors with enhanced toolset

APT32 state hackers target human rights defenders with spyware

October 2023 Patch Tuesday Includes Three Zero-Days Flaws

Cyber mercenaries group DeathStalker uses a new backdoor

Kimsuky APT continues to target South Korean government using AppleSeed backdoor

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

A new variant of Asruex Trojan exploits very old Office, Adobe flaws

Keepnet Labs accidentally exposed an unprotected database with 5 Billion previously leaked records

BazarBackdoor phishing campaign eschews links and files to avoid raising red flags

Chinese APT group Mustang Panda targets European and Russian organizations

Platinum APT and leverages steganography to hide C2 communications

Vietnam-linked APT32 group launches COVID-19-themed attacks against China

Facebook links cyberespionage group APT32 to Vietnamese IT firm

A Clear and Present Need: Bolster Your Identity Security with Threat Detection and Response

Stay Connected