2013 and Hacking - Cyber Security Informer

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

In December 2023, KrebsOnSecurity revealed the real-life identity of Rescator , the nickname used by a Russian cybercriminal who sold more than 100 million payment cards stolen from Target and Home Depot between 2013 and 2014. “Helkern was my friend, I [set up a] meeting with Golubov and him in 2013,” Shefel said.

Retail

Retail Advertising Cryptocurrency Marketing

Leaked NSA Hacking Tools

Schneier on Security

MAY 8, 2019

In 2016, a hacker group calling itself the Shadow Brokers released a trove of 2013 NSA hacking tools and related documents. Most people believe it is a front for the Russian government.

Hacking

Hacking Government

Details of an NSA Hacking Operation

Schneier on Security

MARCH 3, 2022

Pangu Lab in China just published a report of a hacking operation by the Equation Group (aka the NSA). It noticed the hack in 2013, and was able to map it with Equation Group tools published by the Shadow Brokers (aka some Russian group).

Hacking

Hacking Cybersecurity

Stalkerware Vendor Hacked

Schneier on Security

JUNE 28, 2023

The stalkerware company LetMeSpy has been hacked : TechCrunch reviewed the leaked data, which included years of victims’ call logs and text messages dating back to 2013. The database we reviewed contained current records on at least 13,000 compromised devices, though some of the devices shared little to no data with LetMeSpy.

Hacking

Hacking Spyware Accountability Data breaches

Hacking Kia cars made after 2013 using just their license plate

Security Affairs

SEPTEMBER 26, 2024

Researchers discovered critical flaws in Kia’s dealer portal that could allow to hack Kia cars made after 2013 using just their license plate. This hack potentially allows access to other dealer-endpoints using a valid dealer account and token. This will allow us to send arbitrary commands to the vehicle.”

Hacking

Hacking Accountability Mobile Internet

A Basic Timeline of the Exchange Mass-Hack

Krebs on Security

MARCH 8, 2021

Here’s a brief timeline of what we know leading up to last week’s mass-hack, when hundreds of thousands of Microsoft Exchange Server systems got compromised and seeded with a powerful backdoor Trojan horse program. 2, Microsoft patched four flaws in Exchange Server 2013 through 2019.

Hacking

Hacking Technology Software

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

On March 2, Microsoft released emergency security updates to plug four security holes in Exchange Server versions 2013 through 2019 that hackers were actively using to siphon email communications from Internet-facing systems running Exchange. The web shell gives the attackers administrative access to the victim’s computer servers.

Hacking

Hacking Software Government Internet

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Krebs on Security

AUGUST 6, 2020

Hacked or ill-gotten accounts at consumer data brokers have fueled ID theft and identity theft services of various sorts for years. In 2013, KrebsOnSecurity broke the news that the U.S. Also in 2013, KrebsOnSecurity broke the news that ssndob[.]ms Dun & Bradstreet , and Kroll Background America Inc.

Accountability

Accountability Identity Theft Hacking Insurance

U.S. Offered $10M for Hacker Just Arrested by Russia

Krebs on Security

DECEMBER 4, 2024

image: x.com/vxunderground The golden rule of cybercrime in Russia has always been that as long as you never hack, extort or steal from Russian citizens or companies, you have little to fear of arrest. An image tweeted by Matveev showing the Justice Department’s wanted poster for him on a t-shirt. “Mother Russia will help you.

Cybercrime

Cybercrime Ransomware Cryptocurrency Government

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The epidemic went truly mainstream with the release of CryptoLocker back in 2013, and it has since transformed into a major dark web economy spawning the likes of Sodinokibi, Ryuk, and Maze lineages that are targeting the enterprise on a huge scale in 2020. FBI spoofs 2012 – 2013. File encryption 2013 – 2015.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Ecuador’s Attempt to Resettle Edward Snowden

Schneier on Security

JUNE 29, 2022

Someone hacked the Ecuadorian embassy in Moscow and found a document related to Ecuador’s 2013 efforts to bring Edward Snowden there. If you remember, Snowden was traveling from Hong Kong to somewhere when the US revoked his passport, stranding him in Russia.

Hacking

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Krebs on Security

APRIL 30, 2024

A 26-year-old Finnish man was sentenced to more than six years in prison today after being convicted of hacking into an online psychotherapy clinic, leaking tens of thousands of patient therapy records, and attempting to extort the clinic and patients. Kivimäki was 15 years old at the time.

DDOS

DDOS Cybercrime Hacking Passwords

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

JUNE 22, 2022

last week said they dismantled the “ RSOCKS ” botnet, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. Authorities in the United States, Germany, the Netherlands and the U.K.

Advertising

Advertising Cybercrime System Administration Hacking

Who Stole 3.6M Tax Records from South Carolina?

Krebs on Security

APRIL 16, 2024

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 billion in 2013. million people. Internal Revenue Service (IRS).

Identity Theft

Identity Theft Banking Cybercrime Hacking

Chinese Hackers Stole an NSA Windows Exploit in 2014

Schneier on Security

MARCH 4, 2021

Check Point has evidence that (probably government affiliated) Chinese hackers stole and cloned an NSA Windows hacking tool years before (probably government affiliated) Russian hackers stole and then published the same tool. This allows someone with a foothold on a machine to commandeer the whole box.

System Administration

System Administration Government Hacking

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Kislitsin also was indicted in Nevada in 2013, but the Nevada indictment does not name his alleged victim(s) in that case.

Cybersecurity

Cybersecurity Cybercrime Hacking Government

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

Troy Hunt

JANUARY 10, 2018

Which brings us back to Aadhaar and some rather unpleasant headlines of late, particularly the likes of The World's Largest Biometric ID System Keeps Getting Hacked. They claim that they're hack-proof. But claiming the service is "hack-proof", that's something I definitely have an issue with. Can you prove otherwise?

Hacking

Hacking Government Encryption InfoSec

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Krebs on Security

MARCH 10, 2020

District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations. An example seller’s panel at deer.io. Click image to enlarge.

Accountability

Accountability Advertising Hacking Cybercrime

FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy

Krebs on Security

JUNE 18, 2020

An information technology specialist at the Federal Emergency Management Agency (FEMA) was arrested this week on suspicion of hacking into the human resource databases of University of Pittsburgh Medical Center (UPMC) in 2014, stealing personal data on more than 65,000 UPMC employees, and selling the data on the dark web.

Identity Theft

Identity Theft Healthcare Hacking Technology

The FBI Identified a Tor User

Schneier on Security

JANUARY 17, 2023

I wrote about it for the Guardian in 2013, an essay that reads so dated in light of what we’ve learned since then.) Without the FBI deploying some form of surveillance technique, or Al-Azhari using another method to visit the site which exposed their IP address, this should not have been possible.

Surveillance

Surveillance Media Hacking

Mariposa Botnet Author, Darkcode Crime Forum Admin Arrested in Germany

Krebs on Security

OCTOBER 1, 2019

In December 2013, a Slovenian court sentenced Škorjanc to four years and ten months in prison for creating the malware that powered the ‘ Mariposa ‘ botnet. Very soon after its inception, Mariposa was estimated to have infected more than 1 million hacked computers — making it one of the largest botnets ever created.

Cybercrime

Cybercrime Malware Antivirus Banking

XE Group shifts from credit card skimming to exploiting zero-days

Security Affairs

FEBRUARY 10, 2025

Active since at least 2013 , XE Group is a cybercriminal group focused on credit card skimming and password theft via supply chain attacks. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, newsletter) ” reads the analysis published by Intezer.

Manufacturing

Manufacturing Cybercrime Passwords Authentication

OpenSSH bugs allows Man-in-the-Middle and DoS Attacks

Security Affairs

FEBRUARY 19, 2025

Introduced in December 2014 (OpenSSH 6.8p1), this flaw remained active, with FreeBSD enabling VerifyHostKeyDNS by default from 2013 to 2023, increasing exposure. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,DoS)

Authentication

Authentication System Administration DNS Hacking

Ukraine Nabs Suspect in 773M Password ?Megabreach?

Krebs on Security

MAY 19, 2020

The SBU said they found on Sanix’s computer records showing he sold databases with “logins and passwords to e-mail boxes, PIN codes for bank cards, e-wallets of cryptocurrencies, PayPal accounts, and information about computers hacked for further use in botnets and for organizing distributed denial-of-service (DDoS) attacks.”

Passwords

Passwords Accountability Hacking Password Management

A Member of the FIN7 Hacking Gang Was Sentenced to Five Years in Jail

Heimadal Security

APRIL 8, 2022

A financial-motivated threat organization that has been active since 2013, FIN7 has targeted the retail, restaurant, and hospitality industries in the United States, often deploying point-of-sale malware to achieve its objectives. Combi Security, a front firm for FIN7, was used to administer a component of the organization.

Hacking

Hacking Retail Malware Cybersecurity

A Light at the End of Liberty Reserve’s Demise?

Krebs on Security

FEBRUARY 14, 2020

In May 2013, the U.S. Federal officials charged that Liberty Reserve facilitated a “broad range of criminal activity, including credit card fraud, identity theft, investment fraud, computer hacking, child pornography, and narcotics trafficking.”

Identity Theft

Identity Theft Government Scams Cybercrime

Finland’s Most-Wanted Hacker Nabbed in France

Krebs on Security

FEBRUARY 5, 2023

In 2013, Kurittu worked on an investigation involving Kivimäki’s use of the Zbot botnet, among other activities Kivimäki engaged in as a member of the hacker group Hack the Planet (HTP).” The DDoS-for-hire service allegedly operated by Kivimäki in 2012.

Cybercrime

Cybercrime DDOS Hacking Accountability

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

Ngo got his treasure trove of consumer data by hacking and social engineering his way into a string of major data brokers. By the time the Secret Service caught up with him in 2013, he’d made over $3 million selling fullz data to identity thieves and organized crime rings operating throughout the United States. BEGINNINGS.

Identity Theft

Identity Theft Computers and Electronics Hacking Accountability

PgMiner botnet exploits disputed CVE to hack unsecured PostgreSQL DBs

Security Affairs

DECEMBER 13, 2020

SecurityAffairs – hacking, PGminer). The post PgMiner botnet exploits disputed CVE to hack unsecured PostgreSQL DBs appeared first on Security Affairs. It is interesting to note that threat actors have started to weaponize disputed CVEs, not only confirmed ones. ” reads the analysis published by Palo Alto Networks Unit42.

Hacking

Hacking Cryptocurrency Passwords Authentication

Chinese hacking group Aoqin Dragon quietly spied orgs for a decade

Bleeping Computer

JUNE 9, 2022

A previously unknown Chinese-speaking threat actor has been uncovered by threat analysts SentinelLabs who were able to link it to malicious activity going as far back as 2013. [.].

Hacking

North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI

Security Affairs

JUNE 19, 2021

Currently, the Atomic Energy Research Institute is investigating the subject of the hacking and the amount of damage, etc. ? North Korea-linked cyber espionage group Kimsuky (aka Black Banshee, Thallium , Velvet Chollima) was first spotted by Kaspersky researcher in 2013. SecurityAffairs – hacking, North Korea).

Hacking

Hacking VPN Internet Internet

MY TAKE: Massive Marriott breach continues seemingly endless run of successful hacks

The Last Watchdog

DECEMBER 3, 2018

Related: Uber hack shows DevOps risk. The Starwood hack appears to come in second in scale only to the 2013 Yahoo breac h, which affected as many as 3 billion accounts, while a subsequent Yahoo breach also hit 500 million accounts. In 2014, a JP Morgan Chase hack exposed 76 million households.

Hacking

Hacking eCommerce Authentication Social Engineering

PoC Released for Critical CVE-2020-1147 flaw, SharePoint servers exposed to hack

Security Affairs

JULY 23, 2020

depending on the Windows version), SharePoint Enterprise Server 2013 Service Pack 1, SharePoint Enterprise Server 2016 , SharePoint Server 2010 Service Pack 2, SharePoint Server 2019, Visual Studio 2017 version 15.9, SecurityAffairs – hacking, CVE-2020-1147). The CVE-2020-1147 vulnerability impacts.NET Core 2.1,NET NET Framework 2.0

Hacking

Hacking Advertising Software Information Security

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Security Affairs

SEPTEMBER 19, 2021

A Pakistani national has been sentenced to 12 years of prison in the US for his role in a hacking scheme against the telecom giant AT&T. “Later in the conspiracy, Fahd had the bribed employees install custom malware and hacking tools that allowed him to unlock phones remotely from Pakistan. ” Pierluigi Paganini.

Hacking

Hacking Malware Cybercrime Information Security

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Krebs on Security

SEPTEMBER 30, 2024

” Islam and Woody were both core members of UGNazi, a hacker collective that sprang up in 2012 and claimed credit for hacking and attacking a number of high-profile websites. In 2017, Taylor was sentenced to three years probation for participating in multiple swatting attacks, including the one against my home in 2013.

Cryptocurrency

Cryptocurrency Government Internet Internet

Have I Been Pwned Employee 1.0: Stefán Jökull Sigurðarson

Troy Hunt

MAY 21, 2024

I started Have I Been Pwned (HIBP) in 2013 as a pet project that scratched an itch, so I never really thought of myself as an "employee" Over time, it grew (and I tell you what, nobody is more surprised by that than me!) We often do that in this industry, the whole "1.0" " thing, but it seems apt here.

Passwords

Passwords Hacking

New Mirai botnet variant Murdoc Botnet targets AVTECH IP cameras and Huawei HG532 routers

Security Affairs

JANUARY 21, 2025

Gayfemboy exploits various vulnerabilities, including CVE-2013-3307 , CVE-2021-35394 , CVE-2024-8957 , and others in DVRs, routers, and security appliances. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,botnet)

IoT

IoT Malware Hacking Cybercrime

REvil Ransom Arrest, $6M Seizure, and $10M Reward

Krebs on Security

NOVEMBER 8, 2021

” These last two nicknames correspond to accounts on several top cybercrime forums way back in 2013, where a user named “Yaroslav2468” registered using the email address yarik45@gmail.com. Prosecutors say Vasinskyi also used the monikers “ Yarik45 ,” and “ Yaroslav2468.” 3 was Lublin, Poland.

Ransomware

Ransomware Cybercrime System Administration Passwords

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Security Affairs

JUNE 9, 2023

Two Russian nationals have been charged with the hack of the cryptocurrency exchange Mt. Russian nationals Alexey Bilyuchenko (43) and Aleksandr Verner (29) have been charged with the hack of the cryptocurrency exchange Mt. Gox ) The post Russians charged with hacking Mt. Gox ) The post Russians charged with hacking Mt.

Hacking

Hacking Cryptocurrency Advertising Banking

Who’s Behind the SWAT USA Reshipping Service?

Krebs on Security

NOVEMBER 6, 2023

Last week, KrebsOnSecurity broke the news that one of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. Cyber intelligence firm Intel 471 says Fearlless first registered on Verified in February 2013.

Passwords

Passwords Cybercrime Accountability Hacking

Aoquin Dragon from China hacking Australian Government Servers

CyberSecurity Insiders

JUNE 13, 2022

A newly detected hacking group named Aoquin Dragon from China has been found infiltrating servers from Southeast Asia and Australia. The post Aoquin Dragon from China hacking Australian Government Servers appeared first on Cybersecurity Insiders.

Government

Government Hacking Cyber Attacks Cybersecurity

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Krebs on Security

SEPTEMBER 26, 2024

ru , which periodically published hacking tools and exploits for software vulnerabilities. By 2004, v1pee had adopted the moniker “ Vega ” on the exclusive Russian language hacking forum Mazafaka , where this user became one of the more reliable vendors of stolen payment cards. A screenshot of a website reviewing PM2BTC.

Cryptocurrency

Cryptocurrency Cybercrime Retail Government

North Korea-linked APT Emerald Sleet is using a new tactic

Security Affairs

FEBRUARY 12, 2025

Kimsukycyberespionage group (aka ARCHIPELAGO, Black Banshee, Thallium , Velvet Chollima, APT43 ) was first spotted by Kaspersky researchers in 2013. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, Emerald Sleet)

Phishing

Phishing Malware Security Intelligence Hacking

Ticketmaster will pay $10 Million fine over hacking a competitor

Security Affairs

JANUARY 2, 2021

Ticketmaster agreed to pay a $10 million fine for hacking into the computer system of the startup rival CrowdSurge. The intrusions into the competitor’s systems took place repeatedly between 2013 and 2015. The intrusions into the competitor’s systems took place repeatedly between 2013 and 2015. Pierluigi Paganini.

Hacking

Hacking Passwords Accountability Cybercrime

An Interview With the Target & Home Depot Hacker

Leaked NSA Hacking Tools

Trending Sources

Details of an NSA Hacking Operation

Stalkerware Vendor Hacked

Hacking Kia cars made after 2013 using just their license plate

A Basic Timeline of the Exchange Mass-Hack

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

U.S. Offered $10M for Hacker Just Arrested by Russia

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Ecuador’s Attempt to Resettle Edward Snowden

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Meet the Administrators of the RSOCKS Proxy Botnet

Who Stole 3.6M Tax Records from South Carolina?

Chinese Hackers Stole an NSA Windows Exploit in 2014

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy

The FBI Identified a Tor User

Mariposa Botnet Author, Darkcode Crime Forum Admin Arrested in Germany

XE Group shifts from credit card skimming to exploiting zero-days

OpenSSH bugs allows Man-in-the-Middle and DoS Attacks

Ukraine Nabs Suspect in 773M Password ?Megabreach?

A Member of the FIN7 Hacking Gang Was Sentenced to Five Years in Jail

A Light at the End of Liberty Reserve’s Demise?

Finland’s Most-Wanted Hacker Nabbed in France

Confessions of an ID Theft Kingpin, Part I

PgMiner botnet exploits disputed CVE to hack unsecured PostgreSQL DBs

Chinese hacking group Aoqin Dragon quietly spied orgs for a decade

North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI

MY TAKE: Massive Marriott breach continues seemingly endless run of successful hacks

PoC Released for Critical CVE-2020-1147 flaw, SharePoint servers exposed to hack

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Have I Been Pwned Employee 1.0: Stefán Jökull Sigurðarson

New Mirai botnet variant Murdoc Botnet targets AVTECH IP cameras and Huawei HG532 routers

REvil Ransom Arrest, $6M Seizure, and $10M Reward

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Who’s Behind the SWAT USA Reshipping Service?

Aoquin Dragon from China hacking Australian Government Servers

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

North Korea-linked APT Emerald Sleet is using a new tactic

Ticketmaster will pay $10 Million fine over hacking a competitor

Stay Connected