2016, Accountability and Information Security

Married couple pleaded guilty to laundering billions in cryptocurrency stolen from Bitfinex in 2016

Security Affairs

AUGUST 4, 2023

A married couple from New York pleaded guilty this week to laundering billions of dollars stolen from Bitfinex in 2016. The couple pleaded guilty to money laundering charges in connection with the hack of the cryptocurrency stock exchange Bitfinex that took place in 2016. Law enforcement also seized over $3.6

Cryptocurrency

Cryptocurrency Hacking Accountability Banking

Cyber thieves move $760 million stolen in the 2016 Bitfinex heist

Security Affairs

APRIL 15, 2021

Over $760 million worth of Bitcoin that were stolen from cryptocurrency exchange Bitfinex in 2016 were moved to new accounts. More than $760 million worth of Bitcoin, stolen from Asian cryptocurrency exchange Bitfinex in 2016 , were moved on Wednesday to new accounts. No exchange will process them. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Hacking Accountability Marketing

US seizes $3.6 billion worth of cryptocurrency stolen in 2016 Bitfinex hack

Security Affairs

FEBRUARY 8, 2022

billion worth of cryptocurrency linked to the 2016 Bitfinex cryptocurrency exchange hack. Billion in stolen cryptocurrency stolen during the 2016 hack of Bitfinex. based business accounts to legitimize activity. The law enforcement seized $3.6 Law enforcement also seized over $3.6 billion in cryptocurrency linked to that hack.

Cryptocurrency

Cryptocurrency Hacking Accountability Marketing

Zendesk 2016 security breach may impact Uber, Slack, and other organizations

Security Affairs

OCTOBER 2, 2019

Zendesk discloses a data breach that took place in 2016 when a hacker accessed data of 10,000 users, including passwords, emails, names, and phone numbers. In 2016, customer service software company Zendesk suffered a security breach that exposed data of 10,000 users, including passwords, emails, names, and phone numbers.

Data breaches

Data breaches Passwords Accountability Authentication

Chinese state-sponsored hackers breached TeamViewer in 2016

Security Affairs

MAY 17, 2019

The German newspaper Der Spiegel revealed that the software company behind TeamViewer was compromised in 2016 by Chinese hackers. China-linked hackers breached German software company behind TeamViewer in 2016, this news was reported by the German newspaper Der Spiegel. “In autumn 2016, TeamViewer was target of a cyber-attack.

Advertising

Advertising Architecture Software Cyber Attacks

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Security Affairs

DECEMBER 5, 2023

Microsoft warns that the Russia-linked APT28 group is actively exploiting the CVE-2023-23397 Outlook flaw to hijack Microsoft Exchange accounts. The group was involved also in the string of attacks that targeted 2016 Presidential election. ” reads trhe announcement published by DKWOC.

Accountability

Accountability Government Phishing Authentication

Bitfinex hacker Ilya Lichtenstein was sentenced to 5 years in prison

Security Affairs

NOVEMBER 15, 2024

Bitfinex hacker, Ilya Lichtenstein , who stole 1 billion worth of Bitcoins from Bitfinex in 2016, has been sentenced to five years in prison. Billion in stolen cryptocurrency stolen during the 2016 hack of Bitfinex. ” reads the press release published by DoJ. Law enforcement also seized over $3.6

Cryptocurrency

Cryptocurrency Hacking Government Accountability

Russian national sentenced to 40 months for selling stolen data on the dark web

Security Affairs

AUGUST 16, 2024

The marketplace had been active since 2012, it was allowing sellers to offer stolen login credentials, including usernames and passwords for bank accounts, online payment accounts, mobile phone accounts, retailer accounts, and other online accounts. in restitution. These credentials were linked to $1.2

Banking

Banking Accountability Retail Mobile

Russia-linked group APT29 likely breached TeamViewer’s corporate network

Security Affairs

JUNE 30, 2024

The unauthorized access to the IT infrastructure of the company occurred on June 26, threat actors used the credentials of a standard employee account within its IT environment. Upon detecting the suspicious activity by this account, the company immediately started the incident response measures. said company spokesman. “Out

Accountability

Accountability Hacking Architecture Malware

Hackers compromised a Canonical GitHub account, Ubuntu source code was not impacted

Security Affairs

JULY 7, 2019

Yesterday, July 6, 2019, hackers breached the GitHub account of Canonical Ltd., On July 6, 2019, hackers have breached the GitHub account of Canonical Ltd., Hackers at least created 11 new GitHub repositories in compromised Canonical account. the company behind the Ubuntu Linux distribution. ” states the Canonical team.

Accountability

Accountability Advertising Cryptocurrency Hacking

SJW Group Appoints James P. Lynch as Chief Accounting Officer, Andrew Walters as Chief Financial Officer; San Jose Water Appoints Peter Fletcher as Vice President – Information Security Officer

CyberSecurity Insiders

JANUARY 28, 2022

Lynch as chief accounting officer and Andrew F. Peter Fletcher has been appointed vice president – information security officer of San Jose Water Co., Lynch has an extensive accounting and auditing background, with a 26-year career at KPMG LLP that included responsibilities as an audit partner. About SJW Group.

Information Security

Information Security Accountability Marketing Risk

Hackers threaten to leak a copy of the World-Check database used to assess potential risks associated with entities

Security Affairs

APRIL 22, 2024

Compromised data vary by individuals and organizations, it includes names, passport numbers, Social Security numbers, online crypto account identifiers and bank account numbers, and more. In June 2016, security researcher Chris Vickery found a copy of the World-Check database dated 2014 that was accidentally exposed online.

Risk

Risk Spyware Hacking Accountability

U.S. authorities charged an Iranian national for long-running hacking campaign

Security Affairs

MARCH 2, 2024

According to DoJ, from at least in or about 2016 through or about April 2021, Nasab and other co-conspirators carried out a coordinated multi-year campaign to breach computers worldwide. In one case, the hackers successfully compromised an administrator email account associated with a defense contractor. ” continues the DoJ.

Hacking

Hacking Identity Theft Social Engineering Accountability

A new Linux variant of FASTCash malware targets financial systems

Security Affairs

OCTOBER 15, 2024

The experts reported that the ATP group has been using this malware at least since 2016 to siphon millions of dollars from ATMs of small and midsize banks in Asia and Africa. The malicious code intercepts declined magnetic swipe transactions and authorizes them with random amounts in Turkish Lira for specific cardholder accounts.

Malware

Malware Banking Hacking Accountability

Uber hacked, internal systems and confidential documents were allegedly compromised

Security Affairs

SEPTEMBER 16, 2022

According to the New York Times , the threat actors hacked an employee’s Slack account and used it to inform internal personnel that the company had “suffered a data breach” and provided a list of allegedly hacked internal databases. “I This is not the first time that the company suffered a security breach.

Hacking

Hacking Data breaches Engineering Information Security

Sitting Ducks attack technique exposes over a million domains to hijacking

Security Affairs

AUGUST 1, 2024

In a Sitting Ducks attack scenario, threat actors take control of a registered domain at an authoritative DNS service or web hosting provider without accessing the domain owner’s accounts. The researcher Matt Bryant first detailed the attack vector in 2016 [ 1 , 2 ]]. This helps verify ownership.

DNS

DNS Accountability Risk Phishing

Iran-linked APT33 targets Defense Industrial Base sector with FalseFont backdoor

Security Affairs

DECEMBER 25, 2023

The APT33 group has been around since at least 2013, since mid-2016, the group targeted the aviation industry and energy companies with connections to petrochemical production. ” reads the report published by Microsoft. Most of the targets were in the Middle East, others were in the U.S., South Korea, and Europe.

Passwords

Passwords Accountability Authentication Malware

A member The Dark Overlord group sentenced to 5 years in prison

Security Affairs

SEPTEMBER 22, 2020

Wyatt admitted that starting in 2016, he operated as a member of the popular hacking group and stole sensitive data from its victims. Louis area beginning in 2016.” WYATT registered a telephone account (Account B) used in the course of the conspiracy to send threatening and extortionate text messages to victims.“.

Identity Theft

Identity Theft Accountability Hacking Advertising

Marriott's Breach Saga Underscores Need for Cybersecurity Review

SecureWorld News

OCTOBER 22, 2024

The data breach originated in 2014 when hackers infiltrated the Starwood reservation system, a property Marriott acquired in 2016. The attackers gained unauthorized access to the system and stole personal information of approximately 327 million guests.

Cybersecurity

Cybersecurity Data breaches Risk Authentication

DoJ charged 19 individuals in a transnational cybercrime investigation xDedic Marketplace

Security Affairs

JANUARY 8, 2024

The black marketplace has been active since 2014, it was first analyzed by experts at Kaspersky Lab in 2016. In 2016 the service was offering up to 70,000 hacked servers for as little as $6, and with 416 registered sellers in 173 countries, the platform was operating a highly successful global business model.

Cybercrime

Cybercrime Identity Theft Government Hacking

Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021

Security Affairs

JANUARY 2, 2022

billion from organizations in the industry and attacks against DeFi platforms accounted for $1.76 The percentage increase in the number of scams per year is up by 850% in the last decade. Threat actors stole $3.18 The top 5 breaches in history are: 1. Gox, $615M. Poly Network, $611M+. Coincheck, $534M. KuCoin, $281M. PancakeBunny, $200M .

Cryptocurrency

Cryptocurrency Scams Marketing Hacking

Czech Republic ‘s committee blames foreign state for Foreign Ministry Cyberattack

Security Affairs

AUGUST 14, 2019

A parliamentary committee in the Czech Republic revealed that the National Cyber and Information Security Agency blamed a foreign state for a cyber attack that targeted the Czech Foreign Ministry. The Czech experts discovered the security breach early January 2017.

Cyber Attacks

Cyber Attacks Advertising Information Security Government

Alexander Vinnik, the operator of BTC-e exchange, pleaded guilty to money laundering

Security Affairs

MAY 6, 2024

Vinnik set up numerous such shell companies and financial accounts across the globe to allow BTC-e to conduct its business.” French authorities accused Vinnik of defrauding more than 100 people in six French cities between 2016 and 2018.

Cryptocurrency

Cryptocurrency Computers and Electronics Identity Theft Hacking

Microsoft to notify Office 365 users of nation-state attacks

Security Affairs

FEBRUARY 8, 2021

Since 2016 , Microsoft has been alerting users of nation-state activity, now the IT giant added the same service to the Defender for Office 365 dashboard. The new security alert will notify companies when their employees are being targeted by state-sponsored attacks. It automatically investigates and remediates attacks.

System Administration

System Administration Hacking Cyber threats Accountability

Former Uber CISO Faces Prison Time For Mishandling Cyberattack: Justice, Scapegoating, or Both?

Joseph Steinberg

OCTOBER 6, 2022

A jury yesterday found former Uber security chief Joe Sullivan guilty of covering up a massive data breach; the conviction makes Sullivan likely to become the first executive to face prison time over the mishandling of a cyberattack. Serving as a Chief Information Security Officer is a daunting task. 0001% get through.

CISO

CISO Artificial Intelligence Data breaches Cybersecurity

Iranian Peach Sandstorm group behind recent password spray attacks

Security Affairs

SEPTEMBER 16, 2023

The APT33 group has been around since at least 2013, since mid-2016, the group targeted the aviation industry and energy companies with connections to petrochemical production. Most of the targets were in the Middle East, others were in the U.S., South Korean, and Europe. .”

Passwords

Passwords Accountability Authentication Hacking

North Korea ScarCruft APT used previously undetected Dolphin Backdoor against South Korea

Security Affairs

DECEMBER 1, 2022

Kaspersky first documented the operations of the group in 2016. A notable feature of earlier Dolphin versions we analyzed is the ability to modify the settings of victims’ signed-in Google and Gmail accounts to lower their security, most likely to maintain access to victims’ email inboxes.” ” continues the report.

Accountability

Accountability Malware Cyber Attacks Media

Taiwan Government faces 5 Million hacking attempts daily

Security Affairs

NOVEMBER 10, 2021

The attacks against the country attributed to China raised since the 2016 election of President Tsai Ing-wen, who always claimed the independence of the island from Beijing. The ministry’s information security and protection centre handled around 1.4

Government

Government Hacking Cyber Attacks Information Security

OP Glowing Symphony – How US military claims to have disrupted ISIS ‘s propaganda

Security Affairs

JANUARY 22, 2020

US military claims to have disrupted the online propaganda activity of the Islamic State (ISIS) in a hacking operation dating back at least to 2016. “Today the National Security Archive is releasing 6 USCYBERCOM documents obtained through FOIA which shed new light on the campaign to counter ISIS in cyberspace.”

Hacking

Hacking Advertising Accountability Media

APT28 targets key networks in Europe with HeadLace malware

Security Affairs

JUNE 3, 2024

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Malware

Malware Phishing Surveillance Internet

Linux variant of Cerber ransomware targets Atlassian servers

Security Affairs

APRIL 17, 2024

Cado Security Labs recently became aware that Cerber ransomware is being deployed into Confluence servers via the CVE-2023-22518 exploit. Cerber has been active since at least 2016, most recently it was involved in attacks against Confluence servers. ” states Cado Security.

Ransomware

Ransomware Encryption Malware Accountability

QQAAZZ crime gang charged for laundering money stolen by malware gangs

Security Affairs

OCTOBER 18, 2020

QQAAZZ attempted to launder tens of millions stolen from victims starting with 2016 by the world’s foremost cybercriminals. “The funds were then transferred to other QQAAZZ-controlled bank accounts and sometimes converted to cryptocurrency using ‘tumbling’ services designed to hide the original source of the funds. .

Malware

Malware Banking Cryptocurrency Cybercrime

Cybercriminals are Oversharing with Social Media Data Breaches

SiteLock

AUGUST 27, 2021

In May 2016, a massive set of data was stolen from Myspace to what’s said to be one of the largest breaches in history. Peace stole data from over 360 million Myspace accounts. If a hacker gets their hands on the correct email and password combination, they can break into the victims’ accounts on various sites.

Data breaches

Data breaches Media Passwords Accountability

France agency ANSSI warns of Russia-linked APT28 attacks on French entities

Security Affairs

OCTOBER 27, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Government

Government Accountability Phishing Hacking

SHARED INTEL: From airbags to malware: vehicle cyber safety arises in the age of connected cars

The Last Watchdog

MAY 15, 2023

The physical safety of things like airbags, rearview mirrors, and brakes is well accounted for; yet cybersecurity auto safety concerns are rising to the fore. Funso Richard , Information Security Officer at Ensemble , highlighted the gravity of these threats.

Malware

Malware Manufacturing IoT Software

Fortinet warns of a spike in attacks against TBK DVR devices

Security Affairs

MAY 2, 2023

[link] #cve -2018-9995 #dvr pic.twitter.com/gw37PA3jo4 — Ezequiel Fernandez (@Capitan_Alfa) May 1, 2018 Fortinet also warns of a spike in exploitation attempts targeting the CVE-2016-20016 (CVSS score of 9.8) in MVPower CCTV DVR models. Previously seen to be exploited in the wild through 2017 and on-going.”

Authentication

Authentication Retail Surveillance Education

British hacker arraigned for running The Real Deal dark web marketplace

Security Affairs

OCTOBER 26, 2022

“Kaye allegedly operated The Real Deal, a Dark Web market for illicit items, including stolen account login credentials for U.S. Kaye also trafficked login credentials for Twitter and LinkedIn accounts. The man is suspected to have run The Real Deal marketplace between early 2015 and November 2016 when it was shut down.

Marketing

Marketing Government Hacking Accountability

Hackers behind Uber and Lynda hacks plead guilty in data breaches

Security Affairs

OCTOBER 31, 2019

Two hackers have pleaded guilty to hacking Uber and LinkedIn’s Lynda.com service in 2016 and attempted to extort money from the two companies. Brandon Charles Glover and Vasile Mereacre are two hackers that have pleaded guilty to hacking Uber and LinkedIn’s Lynda.com service in 2016. In 2016, the company warned its 9.5

Data breaches

Data breaches Hacking Advertising Accountability

Ex CIA employee Joshua Adam Schulte sentenced to 40 years in prison

Security Affairs

FEBRUARY 2, 2024

According to his LinkedIn profile , Schulte worked for the NSA for five months in 2010 as a systems engineer, after this experience, he joined the CIA as a software engineer and he left the CIA in November 2016. Schulte was identified a few days after WikiLeaks started leaking the precious dumps.

Computers and Electronics

Computers and Electronics Engineering Hacking Data breaches

Operation TOURNIQUET: Authorities shut down dark web marketplace RaidForums

Security Affairs

APRIL 12, 2022

These contained information for millions of credit cards, bank account numbers and routing information, and the usernames and associated passwords needed to access online accounts.” ” According to Europol, the joint effort and intense information sharing were the key to the success of Operation TOURNIQUET.

Cybercrime

Cybercrime Banking Accountability Hacking

Facebook ads used to steal 615000+ credentials in a phishing campaign

Security Affairs

JANUARY 1, 2021

Researchers from security firm ThreatNix spotted a new large-scale campaign abusing Facebook ads. Threat actors are using Facebook ads to redirect users to Github accounts hosting phishing pages used to steal victims’ login credentials. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Phishing

Phishing Scams Accountability Malware

Data Enrichment, People Data Labs and Another 622M Email Addresses

Troy Hunt

NOVEMBER 22, 2019

For example, there's Dun & Bradstreet's NetProspex which leaked 33M records in 2017 , Exactis who had 132M records breached last year and the Apollo data breach which exposed 126M accounts, one of which was my own. i speak at conferences around the world and run workshops on how to build more secure software within organisations.

Data breaches

Data breaches Technology Software Accountability

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Security Affairs

DECEMBER 7, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Government

Government Telecommunications Accountability Phishing

Hackers actively targeting unsecured SAP installs, DHS, SAP and Onapsis warn

SC Magazine

APRIL 6, 2021

Multiple hackers are actively targeting SAP installations that have not updated in nearly a year or use poor account management. The warning, which came from the Department of Homeland Security, SAP and Onapsis, is based on research documenting activity in the wild. SAP warned users to change those account names in 2018.

Accountability

Accountability Software Media Information Security

Married couple pleaded guilty to laundering billions in cryptocurrency stolen from Bitfinex in 2016

Cyber thieves move $760 million stolen in the 2016 Bitfinex heist

Trending Sources

US seizes $3.6 billion worth of cryptocurrency stolen in 2016 Bitfinex hack

Zendesk 2016 security breach may impact Uber, Slack, and other organizations

Chinese state-sponsored hackers breached TeamViewer in 2016

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Bitfinex hacker Ilya Lichtenstein was sentenced to 5 years in prison

Russian national sentenced to 40 months for selling stolen data on the dark web

Russia-linked group APT29 likely breached TeamViewer’s corporate network

Hackers compromised a Canonical GitHub account, Ubuntu source code was not impacted

SJW Group Appoints James P. Lynch as Chief Accounting Officer, Andrew Walters as Chief Financial Officer; San Jose Water Appoints Peter Fletcher as Vice President – Information Security Officer

Hackers threaten to leak a copy of the World-Check database used to assess potential risks associated with entities

U.S. authorities charged an Iranian national for long-running hacking campaign

A new Linux variant of FASTCash malware targets financial systems

Uber hacked, internal systems and confidential documents were allegedly compromised

Sitting Ducks attack technique exposes over a million domains to hijacking

Iran-linked APT33 targets Defense Industrial Base sector with FalseFont backdoor

A member The Dark Overlord group sentenced to 5 years in prison

Marriott's Breach Saga Underscores Need for Cybersecurity Review

DoJ charged 19 individuals in a transnational cybercrime investigation xDedic Marketplace

Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021

Czech Republic ‘s committee blames foreign state for Foreign Ministry Cyberattack

Alexander Vinnik, the operator of BTC-e exchange, pleaded guilty to money laundering

Microsoft to notify Office 365 users of nation-state attacks

Former Uber CISO Faces Prison Time For Mishandling Cyberattack: Justice, Scapegoating, or Both?

Iranian Peach Sandstorm group behind recent password spray attacks

North Korea ScarCruft APT used previously undetected Dolphin Backdoor against South Korea

Taiwan Government faces 5 Million hacking attempts daily

OP Glowing Symphony – How US military claims to have disrupted ISIS ‘s propaganda

APT28 targets key networks in Europe with HeadLace malware

Linux variant of Cerber ransomware targets Atlassian servers

QQAAZZ crime gang charged for laundering money stolen by malware gangs

Cybercriminals are Oversharing with Social Media Data Breaches

France agency ANSSI warns of Russia-linked APT28 attacks on French entities

SHARED INTEL: From airbags to malware: vehicle cyber safety arises in the age of connected cars

Fortinet warns of a spike in attacks against TBK DVR devices

British hacker arraigned for running The Real Deal dark web marketplace

Hackers behind Uber and Lynda hacks plead guilty in data breaches

Ex CIA employee Joshua Adam Schulte sentenced to 40 years in prison

Operation TOURNIQUET: Authorities shut down dark web marketplace RaidForums

Facebook ads used to steal 615000+ credentials in a phishing campaign

Data Enrichment, People Data Labs and Another 622M Email Addresses

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Hackers actively targeting unsecured SAP installs, DHS, SAP and Onapsis warn

Stay Connected