2013, Hacking and Information Security - Cyber Security Informer

Hacking Kia cars made after 2013 using just their license plate

Security Affairs

SEPTEMBER 26, 2024

Researchers discovered critical flaws in Kia’s dealer portal that could allow to hack Kia cars made after 2013 using just their license plate. The token allowed them to access backend dealer APIs, then they successfully extracted sensitive information like the vehicle owner’s name, email, phone number, and other details.

Hacking

Hacking Accountability Mobile Internet

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Security Affairs

JUNE 9, 2023

Two Russian nationals have been charged with the hack of the cryptocurrency exchange Mt. Russian nationals Alexey Bilyuchenko (43) and Aleksandr Verner (29) have been charged with the hack of the cryptocurrency exchange Mt. Gox ) The post Russians charged with hacking Mt. Gox ) The post Russians charged with hacking Mt.

Hacking

Hacking Cryptocurrency Advertising Banking

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The epidemic went truly mainstream with the release of CryptoLocker back in 2013, and it has since transformed into a major dark web economy spawning the likes of Sodinokibi, Ryuk, and Maze lineages that are targeting the enterprise on a huge scale in 2020. FBI spoofs 2012 – 2013. File encryption 2013 – 2015.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

JUNE 22, 2022

last week said they dismantled the “ RSOCKS ” botnet, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. Authorities in the United States, Germany, the Netherlands and the U.K.

Advertising

Advertising Cybercrime System Administration Hacking

US offers $2.5M reward for Belarusian man involved in mass malware distribution

Security Affairs

AUGUST 28, 2024

The indictment alleges that from 2013 to 2022, Kadariya played a key role in distributing the Angler Exploit Kit, which was used to spread various malware, including ransomware, through malvertising and other methods. Kadariya has been indicted for distributing the Angler Exploit Kit and other malware to millions of victims.

Malware

Malware Computers and Electronics Cybercrime Internet

North Korea-linked APT Kimsuky targeted German defense firm Diehl Defence

Security Affairs

OCTOBER 1, 2024

“Researchers from Mandiant, a Google subsidiary, uncovered and analyzed a cyberattack by the North Korean hacking group Kimsuky targeting Diehl Defence.” A spokesperson for Germany’s Federal Office for Information Security (BSI) confirmed that Kimsuky (aka APT43 ) is conducting a broader cyber campaign targeting Germany.

Manufacturing

Manufacturing Hacking Cyber Attacks Malware

Notorious Finnish Hacker sentenced to more than six years in prison

Security Affairs

APRIL 30, 2024

Finnish hacker was sentenced to more than six years in prison for hacking into an online psychotherapy clinic and attempted extortion. Threat actors hacked the clinic and stole a database containing information of some 33,000 clients. Kivimäki was deported to Finland and his trial concluded in March 2024.

Hacking

Hacking Cybercrime Data breaches Information Security

North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI

Security Affairs

JUNE 19, 2021

Currently, the Atomic Energy Research Institute is investigating the subject of the hacking and the amount of damage, etc. ? North Korea-linked cyber espionage group Kimsuky (aka Black Banshee, Thallium , Velvet Chollima) was first spotted by Kaspersky researcher in 2013. SecurityAffairs – hacking, North Korea).

Hacking

Hacking VPN Internet Internet

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Security Affairs

SEPTEMBER 19, 2021

A Pakistani national has been sentenced to 12 years of prison in the US for his role in a hacking scheme against the telecom giant AT&T. “Later in the conspiracy, Fahd had the bribed employees install custom malware and hacking tools that allowed him to unlock phones remotely from Pakistan. ” Pierluigi Paganini.

Hacking

Hacking Malware Cybercrime Information Security

France police arrested Telegram CEO Pavel Durov

Security Affairs

AUGUST 25, 2024

Telegram Messenger is a cloud-based, cross-platform instant messaging service launched in 2013 for iOS and Android. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganin ( SecurityAffairs – hacking, newsletter ) Telegram and the French Interior Ministry have not yet commented on the news.

Media

Media Encryption Hacking Cybercrime

PoC Released for Critical CVE-2020-1147 flaw, SharePoint servers exposed to hack

Security Affairs

JULY 23, 2020

depending on the Windows version), SharePoint Enterprise Server 2013 Service Pack 1, SharePoint Enterprise Server 2016 , SharePoint Server 2010 Service Pack 2, SharePoint Server 2019, Visual Studio 2017 version 15.9, SecurityAffairs – hacking, CVE-2020-1147). The CVE-2020-1147 vulnerability impacts.NET Core 2.1,NET NET Framework 2.0

Hacking

Hacking Advertising Software Information Security

Ticketmaster will pay $10 Million fine over hacking a competitor

Security Affairs

JANUARY 2, 2021

Ticketmaster agreed to pay a $10 million fine for hacking into the computer system of the startup rival CrowdSurge. The intrusions into the competitor’s systems took place repeatedly between 2013 and 2015. The intrusions into the competitor’s systems took place repeatedly between 2013 and 2015. Pierluigi Paganini.

Hacking

Hacking Passwords Accountability Cybercrime

Alleged Extortioner of Psychotherapy Patients Faces Trial

Krebs on Security

NOVEMBER 16, 2023

Security experts soon discovered Ransom Man had mistakenly included an entire copy of their home folder, where investigators found many clues pointing to Kivimäki’s involvement. By that time, Kivimäki was no longer in Finland, but the Finnish government nevertheless charged Kivimäki in absentia with the Vastaamo hack.

Cybercrime

Cybercrime Hacking Data breaches Banking

CISA adds Stuxnet bug to its Known Exploited Vulnerabilities Catalog

Security Affairs

SEPTEMBER 17, 2022

CVE-2013-6282 : Linux Kernel – The get_user and put_user API functions of the Linux kernel fail to validate the target address when being used on ARM v6k/v7 platforms. CVE-2013-2596 Linux Kernel – Linux kernel fb_mmap function in drivers/video/fbmem.c SecurityAffairs – hacking, CISA). Pierluigi Paganini.

Hacking

Hacking Cybersecurity Risk Information Security

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

A new data leak that appears to have come from one of China’s top private cybersecurity firms provides a rare glimpse into the commercial side of China’s many state-sponsored hacking groups. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government

Government Hacking Cyber threats Mobile

CERT-UA warns of a phishing campaign targeting government entities

Security Affairs

AUGUST 13, 2024

UAC-0006 has been active since at least 2013. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Security Service of Ukraine) .” concludes the CERT-UA.

Government

Government Phishing Malware Banking

PoC exploit code for ProxyNotShell Microsoft Exchange bugs released online

Security Affairs

NOVEMBER 20, 2022

they impact Exchange Server 2013, 2016, and 2019, an authenticated attacker can trigger them to elevate privileges to run PowerShell in the context of the system and gain arbitrary or remote code execution on vulnerable servers. It's perhaps just Exchange 2013 that requires a tweak. SecurityAffairs – hacking, ProxyNotShell).

Authentication

Authentication Hacking Cybersecurity Information Security

Iran-linked Phosphorous APT hacked emails of security conference attendees

Security Affairs

OCTOBER 29, 2020

Iran-linked APT group Phosphorus successfully hacked into the email accounts of multiple high-profile individuals and security conference attendees. “Phosphorus, an Iranian actor, has targeted with this scheme potential attendees of the upcoming Munich Security Conference and the Think 20 (T20) Summit in Saudi Arabia.”

Hacking

Hacking Security Intelligence Advertising Accountability

3 of the Worst Data Breaches in the World That Could Have Been Prevented

Security Affairs

DECEMBER 1, 2022

In 2013, Yahoo suffered one of the worst data breaches in history, exposing over 3 billion user accounts. While no plaintext passwords or financial data was stolen, the hack did expose answers to security questions. Weak passwords are the easiest way hackers can hack into a system. Pierluigi Paganini.

Data breaches

Data breaches Passwords Social Engineering Encryption

CERT-UA warns of malware campaign conducted by threat actor UAC-0006

Security Affairs

MAY 26, 2024

UAC-0006 has been active since at least 2013. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Ukraine) The Computer Emergency Response Team of Ukraine (CERT-UA) warned of surge in in cyberattacks linked to the financially-motivated threat actor UAC-0006.

Malware

Malware Banking Accountability Phishing

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Security Affairs

AUGUST 6, 2023

At the time of this writing, no ransomware group has claimed responsibility for the security breach. CDHE provides free access to the identify theft monitoring Experian IdentityWorks SM for 24 months.

Education

Education Data breaches Ransomware Hacking

Police seized 50,000 Bitcoin from operator of the now-defunct piracy site movie2k

Security Affairs

JANUARY 31, 2024

It was operating between 2008 and 2013. In 2013, the Motion Picture Association of America (MPAA) shut down the website due to concerns related to copyright infringement. According to German media , one of the two operators was also involved in the operations of the site mega-downloads.net.

Media

Media Cybercrime Advertising Information Security

A job ad published by the UK’s Ministry of Defence revealed a secret hacking squad

Security Affairs

AUGUST 15, 2021

.” “ MAB5 was described in gushing terms and with incredible detail, even naming the military leader – a Lieutenant Colonel (Lt Col) in the Royal Corps of Signals, who was awarded the MBE in the Queen’s Birthday Honours List 2013 when he was a Major. SecurityAffairs – hacking, cybercrime). Pierluigi Paganini.

Computers and Electronics

Computers and Electronics Hacking Engineering Mobile

Google expert detailed a 5-Year-Old flaw in Apple Safari exploited in the wild

Security Affairs

JUNE 20, 2022

The vulnerability, tracked as CVE-2022-22620 , was fixed for the first time in 2013, but in 2016 experts discovered a way to bypass the fix. CVE-2022-22620 was initially fixed in 2013, reintroduced in 2016, and then disclosed as exploited in-the-wild in 2022.” SecurityAffairs – hacking, Apple Safari). Pierluigi Paganini.

Hacking

Hacking Software Cybersecurity Data breaches

CISA urges to fix actively exploited Firefox zero-days by March 21

Security Affairs

MARCH 8, 2022

SecurityAffairs – hacking, SIM swapping). The post CISA urges to fix actively exploited Firefox zero-days by March 21 appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Authentication

Authentication Hacking Cybersecurity Risk

CIRWA Project tracks ransomware attacks on critical infrastructure

Security Affairs

SEPTEMBER 14, 2020

The project was launched in September 2019 and as of August 2020, the experts collected 680 records of ransomware attacks that took place since November 2013. These are based on publicly disclosed incidents in the media or security reports.” SecurityAffairs – hacking, ransomware). ” reads the project description.

Ransomware

Ransomware Advertising Data collection Healthcare

North Korea-linked APT used a new RAT called MoonPeak

Security Affairs

AUGUST 21, 2024

Kimsuky cyberespionage group (aka Springtail, ARCHIPELAGO, Black Banshee, Thallium , Velvet Chollima, APT43 ) was first spotted by Kaspersky researcher in 2013. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, MoonPeak malware)

Malware

Malware Phishing Hacking Information Security

The phone monitoring app LetMeSpy disclosed a data breach

Security Affairs

JUNE 29, 2023

. “It’s not clear who is behind the LetMeSpy hack or their motives. A copy of the hacked database also appeared online later the same day.” The hacker intimated that they deleted LetMeSpy’s databases stored on the server. ” reported TechCrunch. India, and Africa.

Data breaches

Data breaches Spyware Hacking Accountability

Iranian hackers breached Albania’s Institute of Statistics (INSTAT)

Security Affairs

FEBRUARY 2, 2024

The attack did not impact systems employed in the 2013 census. The Record Media reported that the Iran-linked hacking group Homeland Justice claimed responsibility for the attack. The group also claimed to have hacked Air Albania. National Security Council spokesperson Adrienne Watson said. “We NATO , and the U.K.

Cyber Attacks

Cyber Attacks Computers and Electronics Government Hacking

Google announced the completion of the acquisition of Mandiant for $5.4 billion

Security Affairs

SEPTEMBER 12, 2022

Mandiant is considered a leading cyber security firm, in 2013 FireEye acquired it, but FireEye separated Mandiant Solutions in 2021 as part of a $1.2 SecurityAffairs – hacking, Google). billion appeared first on Security Affairs. per share in an all-cash transaction valued at approximately $5.4 Pierluigi Paganini.

Cyber threats

Cyber threats Cybersecurity Hacking Technology

Crooks used rare Steganography technique to hack fully patched websites in Latin America

Security Affairs

JULY 28, 2019

This steganography technique is rare, according to the expert it was observed the last time in the wild in 2013 when hackers have hidden the entire webshell backdoor in the header. The post Crooks used rare Steganography technique to hack fully patched websites in Latin America appeared first on Security Affairs.

Hacking

Hacking Advertising Information Security

U.S. sanctioned virtual currency exchanges Cryptex and PM2BTC for facilitating illegal activities

Security Affairs

SEPTEMBER 27, 2024

billion in transactions between July 2013 and August 2023, with 32% of the traced bitcoin linked to criminal activity. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, virtual currency exchanges) This included over $158 million from fraud, $8.8

Cybercrime

Cybercrime Cryptocurrency Banking Ransomware

N. Korean Kimsuky APT targets S. Korea-US military exercises

Security Affairs

AUGUST 20, 2023

“The hackers were believed to be linked to a North Korean group that researchers call Kimsuky, and they carried out their hack via emails to South Korean contractors working at the South Korea-U.S. “It was confirmed that military-related information was not stolen,” police said in a statement on Sunday.

Phishing

Phishing Hacking Cyber Attacks Government

Russia-linked group APT29 likely breached TeamViewer’s corporate network

Security Affairs

JUNE 30, 2024

Russia-linked APT group, reportedly APT29, is suspected to be behind a hack of TeamViewer ‘s corporate network. The Winnti group was first spotted by Kaspersky in 2013, according to the researchers, the nation-state actor has been active since at least 2007. wrote the company.

Accountability

Accountability Hacking Architecture Malware

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

Security Affairs

FEBRUARY 23, 2022

The Bvp47 backdoor was first discovered in 2013 while conducting a forensic investigation into a security breach suffered by a Chinese government organization. In 2016 and 2017, the hacking group The Shadow Brokers l eaked a bunch of data allegedly stolen from the Equation Group, including many hacking tools and exploits.

Encryption

Encryption Hacking Government Engineering

A new variant of Cicada ransomware targets VMware ESXi systems

Security Affairs

SEPTEMBER 2, 2024

A second round of puzzles began one year later on January 4, 2013, and then a third round following the confirmation of a fresh clue posted on Twitter on January 4, 2014. Cicada 3301 is the name given to three sets of puzzles posted under the name “3301” online between 2012 and 2014. The third puzzle has not been solved yet.

Ransomware

Ransomware Encryption Malware Cybercrime

Misconfigured WBSC server leaks thousands of passports

Security Affairs

SEPTEMBER 29, 2023

The WBSC, headquartered in Switzerland, was established in 2013 and currently has 141 countries as members located in Asia, Africa, the Americas, Europe, and Oceania. Worryingly, among the contents of the misconfigured AWS bucket, which the WBSC closed after being contacted by the team, were copies of 4,600 national passports.

Identity Theft

Identity Theft Social Engineering Banking Risk

Snowden Ten Years Later

Schneier on Security

JUNE 6, 2023

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. I wrote the essay below in September 2013. I started doubting my own security procedures. Reading about the NSA’s hacking abilities will do that to you. Probably not.

Surveillance

Surveillance Computers and Electronics Government Encryption

Prestige reservation platform exposes millions of hotel guests

Security Affairs

NOVEMBER 10, 2020

Exposed data, some of which go back to 2013, include sensitive information and credit card details. However, if it did, there would be enormous implications for the privacy, security and financial wellbeing of those exposed.”. SecurityAffairs – hacking, Prestige). ” reads a post published by Website Planet.

Identity Theft

Identity Theft Scams Phishing Malware

Law enforcement shutdown a long-standing DDoS-for-hire service

Security Affairs

JUNE 17, 2023

Polish police, as part of the international law enforcement operation PowerOFF, dismantled a DDoS-for-hire service that has been active since at least 2013. An international operation codenamed PowerOff led to the shutdown of a DDoS-for-hire service that has been active since at least 2013.

DDOS

DDOS Computers and Electronics Cybercrime Cryptocurrency

Iran-linked APT33 targets Defense Industrial Base sector with FalseFont backdoor

Security Affairs

DECEMBER 25, 2023

The APT33 group has been around since at least 2013, since mid-2016, the group targeted the aviation industry and energy companies with connections to petrochemical production. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, APT33) South Korea, and Europe.

Passwords

Passwords Accountability Authentication Malware

Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.

Krebs on Security

SEPTEMBER 24, 2022

Denis Emelyantsev , as the apparent owner of RSOCKS, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. “Thanks to you, we are now developing in the field of information security and anonymity!

Cybercrime

Cybercrime Data breaches Malware Ransomware

Microsoft recommends Exchange admins to disable the SMBv1 protocol

Security Affairs

FEBRUARY 13, 2020

. “To make sure that your Exchange organization is better protected against the latest threats (for example Emotet, TrickBot or WannaCry to name a few) we recommend disabling SMBv1 if it’s enabled on your Exchange (2013/2016/2019) server.” Please see this KB for more information. ” continues Microsoft.

Authentication

Authentication Malware Advertising Hacking

Two former NSA Officials appointed by Joe Biden for prominent cyber roles

Security Affairs

APRIL 12, 2021

Inglis retired from NSA in 2014 where he served the US government for 28 years, since 2013 as the agency’s deputy director. President Biden also appointed a former deputy for counterterrorism at the NSA, Jen Easterly, as the chief of the Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security.

Government

Government Hacking Cybersecurity Information Security

Hacking Kia cars made after 2013 using just their license plate

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Trending Sources

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Meet the Administrators of the RSOCKS Proxy Botnet

US offers $2.5M reward for Belarusian man involved in mass malware distribution

North Korea-linked APT Kimsuky targeted German defense firm Diehl Defence

Notorious Finnish Hacker sentenced to more than six years in prison

North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

France police arrested Telegram CEO Pavel Durov

PoC Released for Critical CVE-2020-1147 flaw, SharePoint servers exposed to hack

Ticketmaster will pay $10 Million fine over hacking a competitor

Alleged Extortioner of Psychotherapy Patients Faces Trial

CISA adds Stuxnet bug to its Known Exploited Vulnerabilities Catalog

New Leak Shows Business Side of China’s APT Menace

CERT-UA warns of a phishing campaign targeting government entities

PoC exploit code for ProxyNotShell Microsoft Exchange bugs released online

Iran-linked Phosphorous APT hacked emails of security conference attendees

3 of the Worst Data Breaches in the World That Could Have Been Prevented

CERT-UA warns of malware campaign conducted by threat actor UAC-0006

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Police seized 50,000 Bitcoin from operator of the now-defunct piracy site movie2k

A job ad published by the UK’s Ministry of Defence revealed a secret hacking squad

Google expert detailed a 5-Year-Old flaw in Apple Safari exploited in the wild

CISA urges to fix actively exploited Firefox zero-days by March 21

CIRWA Project tracks ransomware attacks on critical infrastructure

North Korea-linked APT used a new RAT called MoonPeak

The phone monitoring app LetMeSpy disclosed a data breach

Iranian hackers breached Albania’s Institute of Statistics (INSTAT)

Google announced the completion of the acquisition of Mandiant for $5.4 billion

Crooks used rare Steganography technique to hack fully patched websites in Latin America

U.S. sanctioned virtual currency exchanges Cryptex and PM2BTC for facilitating illegal activities

N. Korean Kimsuky APT targets S. Korea-US military exercises

Russia-linked group APT29 likely breached TeamViewer’s corporate network

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

A new variant of Cicada ransomware targets VMware ESXi systems

Misconfigured WBSC server leaks thousands of passports

Snowden Ten Years Later

Prestige reservation platform exposes millions of hotel guests

Law enforcement shutdown a long-standing DDoS-for-hire service

Iran-linked APT33 targets Defense Industrial Base sector with FalseFont backdoor

Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.

Microsoft recommends Exchange admins to disable the SMBv1 protocol

Two former NSA Officials appointed by Joe Biden for prominent cyber roles

Stay Connected