2014, Hacking and Information Security - Cyber Security Informer

The ASA flaw CVE-2014-2120 is being actively exploited in the wild

Security Affairs

DECEMBER 3, 2024

Cisco warns customers that a decade-old ASA vulnerability, tracked as CVE-2014-2120, is being actively exploited in the wild. Cisco warns that the decade-old ASA vulnerability CVE-2014-2120 is being actively exploited in attacks in the wild, and urges customers to review the updated advisory. ” reads the advisory.

Software

Software Hacking Information Security

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The CryptoLocker wave went into a decline in June 2014 as a result of the so-called Operation Tovar , an initiative orchestrated by law enforcement agencies from multiple countries. The newsmaking emergence of CTB-Locker in 2014 and the CryptoWall ransomware in 2015 fully demonstrated this multi-pronged shift.

Ransomware

Ransomware Hacking Encryption Penetration Testing

REvil ransomware gang hacked gaming firm Gaming Partners International

Security Affairs

OCTOBER 31, 2020

The REvil ransomware operators made the headlines again, this time the gang claims to have hacked the Gaming Partners International (GPI). “Absolutely all servers and working computers of the company are hacked and encrypted. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Hacking

Hacking Ransomware Advertising Encryption

Mazda Connect flaws allow to hack some Mazda vehicles

Security Affairs

NOVEMBER 9, 2024

The vulnerabilities impact the Mazda Connect Connectivity Master Unit (CMU) system installed in multiple car models, including the Mazda 3 model year 2014-2021. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Mazda Connect) ” reads the advisory.

Hacking

Hacking Firmware Software Manufacturing

Alleged Activision hack, 500,000 Call Of Duty players impacted

Security Affairs

SEPTEMBER 21, 2020

Over 500,000 Activision accounts may have been hacked in a new data breach that the gaming firm suffered on September 20. “All Call of Duty players should be on notice after a major Activision hack has left millions of accounts in limbo.” Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking

Hacking Data breaches Accountability Passwords

Thousands of Canadian government accounts hacked, Treasury Board of Canada Secretariat say

Security Affairs

AUGUST 17, 2020

The Treasury Board of Canada Secretariat confirmed that thousands of user accounts for online Canadian government services were recently hacked. According to a press release issued by the Treasury Board of Canada Secretariat, thousands of user accounts for online government services were recently hacked. Pierluigi Paganini.

Government

Government Accountability Hacking Advertising

Steel sheet giant Hoa Sen Group hacked by Maze ransomware operators

Security Affairs

AUGUST 21, 2020

During the ordinary monitoring of Deepweb and Darkweb , researchers at Cyble came across the leak disclosure post published by the Maze ransomware operators that claim the hack of the Hoa Sen Group. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, Maze Ransomware Operators).

Ransomware

Ransomware Hacking Advertising Backups

Thousands of WordPress WooCommerce stores potentially exposed to hack

Security Affairs

AUGUST 22, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, Discount Rules). The post Thousands of WordPress WooCommerce stores potentially exposed to hack appeared first on Security Affairs.

Hacking

Hacking Advertising Information Security Malware

Threat actor leaked data for U.S. gun exchange site on hacking forum

Security Affairs

AUGUST 13, 2020

To check if your information has been exposed in this and other data leaks, you can search for your email using the Cyble’s “ Am I Breached” data breach monitoring service. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, gun exchange). Pierluigi Paganini.

Hacking

Hacking Data breaches Cybercrime Passwords

Flaws in ‘Find My Mobile’ exposed Samsung phones to hack

Security Affairs

AUGUST 11, 2020

Below the speech made by the experts last week at DEF CON 28SM hacking virtual conference. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, Samsung Find My Mobile). Pierluigi Paganini.

Mobile

Mobile Hacking Advertising Cybersecurity

HP Device Manager flaws expose Windows systems to hack

Security Affairs

OCTOBER 4, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, HP). The post HP Device Manager flaws expose Windows systems to hack appeared first on Security Affairs. Pierluigi Paganini.

Hacking

Hacking Accountability Passwords InfoSec

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Security Affairs

OCTOBER 23, 2020

.” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, Energetic Bear). Pierluigi Paganini.

Government

Government Hacking Advertising Passwords

Cyber Defense Magazine – November 2020 has arrived. Enjoy it!

Security Affairs

NOVEMBER 4, 2020

150 PAGESLOADED WITH EXCELLENT CONTENT Learn from the experts, cybersecurity best practices Find out about upcoming information security related conferences, expos and trade shows. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, Cyber Defense Magazine November 2020 ).

InfoSec

InfoSec DNS Advertising Marketing

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

JUNE 22, 2022

last week said they dismantled the “ RSOCKS ” botnet, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. Authorities in the United States, Germany, the Netherlands and the U.K.

Advertising

Advertising Cybercrime System Administration Hacking

Administrator of RSOCKS Proxy Botnet Pleads Guilty

Krebs on Security

JANUARY 24, 2023

First advertised in the cybercrime underground in 2014, RSOCKS was the web-based storefront for hacked computers that were sold as “proxies” to cybercriminals looking for ways to route their Web traffic through someone else’s device. “Thanks to you, we are now developing in the field of information security and anonymity!,”

Cybercrime

Cybercrime Advertising IoT Malware

University of Utah pays a $457,000 ransom to ransomware gang

Security Affairs

AUGUST 21, 2020

The university notified appropriate law enforcement entities, and the university’s Information Security Office (ISO) investigated and resolved the incident in consultation with an external firm that specializes in responding to ransomware attacks.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Cyber Insurance Insurance Advertising

Israel announced to have foiled an attempted cyber-attack on defence firms

Security Affairs

AUGUST 13, 2020

’ The Lazarus APT is linked to North Korea, the activity of the Group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. In September, the US Treasury placed sanctions on three North Korea-linked hacking groups, the Lazarus Group, Bluenoroff, and Andarial. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Manufacturing Hacking Advertising

Hackers stole a six-figure amount from Swiss universities

Security Affairs

OCTOBER 5, 2020

Threat actors have hacked at least three Swiss universities, including the University of Basel and managed to drain employee salary transfers. According to our information, several universities in Switzerland have been affected,” explained Martina Weiss, Secretary General of the Rectors’ Conference of the Swiss Universities. .

Advertising

Advertising Phishing Cybercrime Hacking

A data breach broker is selling account databases of 17 companies

Security Affairs

NOVEMBER 1, 2020

The availability of the huge trove of account data was first reported by BleepingComputer , the threat actor told them that it is only acting as a broker and did not hack the seventeen companies. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, account databases).

Data breaches

Data breaches Accountability Advertising Passwords

Someone emptied a $1 billion BitCoin wallet ahead of Presidential Election

Security Affairs

NOVEMBER 4, 2020

It is still unclear if the funds were transferred by the owner themselves, or if someone has hacked the wallet. The wallet was monitored since 2015 because it was associated with hacking activities, it had been “ dormant ” since 2015. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency

Cryptocurrency Passwords Advertising Hacking

Hackers stole $5.4 million from cryptocurrency exchange ETERBASE

Security Affairs

SEPTEMBER 10, 2020

Slovak cryptocurrency exchange ETERBASE disclosed a security breach, the hackers stole Bitcoin, Ether, ALGO, Ripple, Tezos, and TRON assets worth $5.4 The company disclosed the hack on Thursday, threat actors have stolen various cryptocurrencies from its hot wallets, it also suspended all the transactions until September 10.

Cryptocurrency

Cryptocurrency Data breaches Advertising Hacking

Researchers found alleged sensitive documents of NATO and Turkey

Security Affairs

OCTOBER 12, 2020

“Based on the message body of the leak, the cyber attack indicates hacktivism, but last year, around May 23, 2019, UK warned NATO allies of hacking activities of Russia -> Link. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising

Advertising Manufacturing Hacking Cyber Attacks

HOW OPERATORS USE SANDVINE TO BLOCK INDEPENDENT MEDIA IN EGYPT

Security Affairs

SEPTEMBER 23, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, DPI). The post HOW OPERATORS USE SANDVINE TO BLOCK INDEPENDENT MEDIA IN EGYPT appeared first on Security Affairs. Pierluigi Paganini.

Media

Media Advertising Internet Internet

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Security Affairs

OCTOBER 7, 2020

The hacking technique was employed by an unidentified hacking group to avoid detection. Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors. SecurityAffairs – hacking, Kraken).

Advertising

Advertising Hacking Manufacturing Phishing

SANS Institute Email Breach – 28,000 User Records exposed

Security Affairs

AUGUST 12, 2020

On August 6, during a review of email configuration and rules, the staff at the SANS Institute discovered a security breach. 28,000 records of personally identifiable information (PII) have been forwarded to an unknown email address. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches

Data breaches Accountability Advertising Information Security

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Security Affairs

NOVEMBER 5, 2021

“They are officers of the ‘Crimean’ FSB and traitors who defected to the enemy during the occupation of the peninsula in 2014. This ‘line of work’ is coordinated by the FSB’s 18th Center (Information Security Center) based in Moscow.” SecurityAffairs – hacking, Gamaredon). Pierluigi Paganini.

Government

Government Software Cyber threats Cyber Attacks

Hackers stole more than $150 million from KuCoin cryptocurrency exchange

Security Affairs

SEPTEMBER 26, 2020

Singapore-based cryptocurrency exchange KuCoin disclosed a major security incident, the hackers breached its hot wallets and stole all the funds, around $150 million. It seems #Kucoin got hacked. Usually, after being hacked, the $BTC outflow increases rapidly and then becomes zero. SecurityAffairs – hacking, Norway).

Cryptocurrency

Cryptocurrency Hacking Advertising Internet

UberEats data leaked on the dark web

Security Affairs

AUGUST 4, 2020

UberEats is an American online food ordering and delivery platform launched by Uber in 2014. “During our research process, the Cyble Research Team got hold of some informative details related to this leak.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Banking

Banking Data breaches Advertising Mobile

North Korea-linked APT group BeagleBoyz targets banks

Security Affairs

AUGUST 29, 2020

The BeagleBoyz APT group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. “North Korea’s intelligence apparatus controls a hacking team dedicated to robbing banks through remote internet access. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Banking

Banking Malware Advertising Hacking

Second-ever UEFI rootkit used in North Korea-themed attacks

Security Affairs

OCTOBER 5, 2020

A China-linked threat actor used UEFI malware based on code from Hacking Team in attacks aimed at organizations with an interest in North Korea. The experts were investigating several suspicious UEFI firmware images when discovered four components, some of which were borrowing the source code a Hacking Team spyware. Pierluigi Paganini.

Firmware

Firmware Spyware Surveillance Hacking

Staples discloses data breach exposing customer order data

Security Affairs

SEPTEMBER 14, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, Staples). The post Staples discloses data breach exposing customer order data appeared first on Security Affairs. Pierluigi Paganini.

Data breaches

Data breaches Retail Identity Theft Advertising

The British government aims at improving its offensive cyber capability

Security Affairs

OCTOBER 13, 2020

The news is not surprising for people working in the cyber security sector, the British military claims to have had an offensive cyber capability for a decade. Intelligence experts pointed out that the British government already conducted offensive hacking operations, including the one that targeted the ISIS in 2017.

Government

Government Advertising Hacking Cyber Attacks

OpenSSL to fix the second critical flaw ever

Security Affairs

OCTOBER 26, 2022

This is the second critical vulnerability ever addressed by the OpenSSL Project after the critical Heartbleed vulnerability (CVE-2014-0160) in 2014. version is respected to be released next week, on November 1, with the maintainers that defined it as a ‘security-fix release.’. SecurityAffairs – hacking, encryption ).

Encryption

Encryption Hacking Information Security

City of Lafayette (Colorado) paid $45,000 ransom after ransowmare attack

Security Affairs

AUGUST 12, 2020

The City did not disclose technical details of the hack either the family of ransomware that infected its systems, it only stated that it does not believe any data was stolen. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Backups

Backups Advertising Ransomware Hacking

A powerful DDoS attack hit Hungarian banks and telecoms services

Security Affairs

SEPTEMBER 26, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, Hungary). The post A powerful DDoS attack hit Hungarian banks and telecoms services appeared first on Security Affairs. Pierluigi Paganini.

DDOS

DDOS Banking Telecommunications Advertising

Israeli man sentenced to 80 months in prison for providing hacker-for-hire services

Security Affairs

NOVEMBER 18, 2023

Azari orchestrated the international hacking-for-hire spearphishing campaign from his home in Israel. The company helped its customers to manage “Projects” that were officially described as intelligence-gathering efforts, but that actually were hacking campaigns specifically targeting certain groups of victims. and around worldwide.

Identity Theft

Identity Theft Phishing Hacking Accountability

IPG Photonics high-performance laser developer hit with ransomware

Security Affairs

SEPTEMBER 20, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, IPG Photonics). The post IPG Photonics high-performance laser developer hit with ransomware appeared first on Security Affairs.

Ransomware

Ransomware Manufacturing Advertising Encryption

New MrbMiner malware infected thousands of MSSQL DBs

Security Affairs

SEPTEMBER 16, 2020

According to security firm Tencent, the team of hackers has been active over the past few months by hacking into Microsoft SQL Servers (MSSQL) to install a crypto-miner. “Tencent Security Threat Intelligence Center detected a new type of mining Trojan family MrbMiner. SecurityAffairs – hacking, MrbMiner).

Malware

Malware Advertising Cryptocurrency Accountability

France will not ban Huawei from its upcoming 5G networks

Security Affairs

SEPTEMBER 1, 2020

It’s normal that … we want a European solution” because of the importance of “the security of our communication,” Macron told reporters. In July, the French information security agency ANSSI announced that Huawei Technologies Ltd. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Telecommunications

Telecommunications Advertising Technology Manufacturing

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

APRIL 29, 2021

A deeper analysis of some of these samples revealed that they were compiled in 2014 and used in the wild between 2014 and 2015. ” The Lambert APT (aka Longhorn APT ) has been active since at least 2008, but its first samples were spotted in 2014.

Malware

Malware Hacking Government Telecommunications

Hackers targeted the US Census Bureau network, DHS report warns

Security Affairs

OCTOBER 11, 2020

” In the past, the US Census has been hit by attacks, such as hacks and DDoS attacks during a 2018 test of census systems attributed to Russia-linked hackers and a 2015 hack attributed to the Anonymous collective. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Let me suggest to read it.

Government

Government Advertising Hacking Data collection

RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec

Security Affairs

JUNE 19, 2021

Experts attribute a series of cyber-espionage campaigns dating back to 2014, and focused on gathering military intelligence, to China-linked Unit 69010. SecurityAffairs – hacking, Unit 69010). The post RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec appeared first on Security Affairs. located in Wuhan.”

Telecommunications

Telecommunications Government Hacking Malware

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

The new versions of FinSpy spyware were used by a new unknown hacking group, Amnesty International speculates the involvement of a nation-state actor that employed them since September 2019. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, FinSpy). Pierluigi Paganini.

Spyware

Spyware Surveillance Advertising Mobile

US Cyber Command details implants used in attacks on parliaments and embassies

Security Affairs

OCTOBER 29, 2020

US Cyber Command shared technical details about malware implants employed by Russian hacking groups in attacks against multiple ministries of foreign affairs, national parliaments, and embassies. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, US Cyber Command).

Malware

Malware Advertising Hacking Government

The ASA flaw CVE-2014-2120 is being actively exploited in the wild

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Trending Sources

REvil ransomware gang hacked gaming firm Gaming Partners International

Mazda Connect flaws allow to hack some Mazda vehicles

Alleged Activision hack, 500,000 Call Of Duty players impacted

Thousands of Canadian government accounts hacked, Treasury Board of Canada Secretariat say

Steel sheet giant Hoa Sen Group hacked by Maze ransomware operators

Thousands of WordPress WooCommerce stores potentially exposed to hack

Threat actor leaked data for U.S. gun exchange site on hacking forum

Flaws in ‘Find My Mobile’ exposed Samsung phones to hack

HP Device Manager flaws expose Windows systems to hack

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Cyber Defense Magazine – November 2020 has arrived. Enjoy it!

Meet the Administrators of the RSOCKS Proxy Botnet

Administrator of RSOCKS Proxy Botnet Pleads Guilty

University of Utah pays a $457,000 ransom to ransomware gang

Israel announced to have foiled an attempted cyber-attack on defence firms

Hackers stole a six-figure amount from Swiss universities

A data breach broker is selling account databases of 17 companies

Someone emptied a $1 billion BitCoin wallet ahead of Presidential Election

Hackers stole $5.4 million from cryptocurrency exchange ETERBASE

Researchers found alleged sensitive documents of NATO and Turkey

HOW OPERATORS USE SANDVINE TO BLOCK INDEPENDENT MEDIA IN EGYPT

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

SANS Institute Email Breach – 28,000 User Records exposed

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Hackers stole more than $150 million from KuCoin cryptocurrency exchange

UberEats data leaked on the dark web

North Korea-linked APT group BeagleBoyz targets banks

Second-ever UEFI rootkit used in North Korea-themed attacks

Staples discloses data breach exposing customer order data

The British government aims at improving its offensive cyber capability

OpenSSL to fix the second critical flaw ever

City of Lafayette (Colorado) paid $45,000 ransom after ransowmare attack

A powerful DDoS attack hit Hungarian banks and telecoms services

Israeli man sentenced to 80 months in prison for providing hacker-for-hire services

IPG Photonics high-performance laser developer hit with ransomware

New MrbMiner malware infected thousands of MSSQL DBs

France will not ban Huawei from its upcoming 5G networks

Purple Lambert, a new malware of CIA-linked Lambert APT group

Hackers targeted the US Census Bureau network, DHS report warns

RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec

Unknown FinSpy Mac and Linux versions found in Egypt

US Cyber Command details implants used in attacks on parliaments and embassies

Stay Connected