Krebs on Security

JUNE 22, 2022

The user “RSOCKS” on the Russian crime forum Verified changed his name to RSOCKS from a previous handle: “ Stanx ,” whose very first sales thread on Verified in 2016 quickly ran afoul of the forum’s rules and prompted a public chastisement by the forum’s administrator. ” the post enthuses.

Advertising 291

Advertising Cybercrime System Administration Hacking 291

Security Affairs

FEBRUARY 8, 2021

Since 2016 , Microsoft has been alerting users of nation-state activity, now the IT giant added the same service to the Defender for Office 365 dashboard. The new security alert will notify companies when their employees are being targeted by state-sponsored attacks. . It automatically investigates and remediates attacks.

System Administration 141

System Administration Hacking Cyber threats Accountability 141

Security Affairs

APRIL 18, 2021

The Ukrainian national Fedir Hladyr (35), aka “das” or “AronaXus,” was sentenced to 10 years in prison for having served as a manager and systems administrator for the financially motivated group FIN7 , aka Carbanak. Between 2014 and 2016 the group used a new custom malware dubbed Carbanak that is considered a newer version of Anunak.

System Administration 137

System Administration Penetration Testing Malware Hacking 137

Security Affairs

APRIL 30, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

System Administration 98

System Administration Government Phishing Malware 98

Security Affairs

JUNE 17, 2020

According to an internal report drown up after the 2016 data breach that led to the ‘ Vault 7 ‘ data leak, a specialized CIA unit involved in the development of hacking tools and cyber weapons failed in protecting its operations and was able to respond after the leak of its secrets. ” reported The Washington Post. .”

Hacking 144

Hacking Engineering Data breaches Advertising 144

Security Affairs

MARCH 18, 2022

The China-linked hacking group has been active since at least 2016, according to the CrowdStrike researchers it is using a very sophisticated toolset. In order to identify CAKETAP running on a Solaris system, administrators can check for the presence of a hook installed in the ipcl_get_next_conn hook function.

Banking 144

Banking Telecommunications System Administration Hacking 144

Security Affairs

OCTOBER 27, 2021

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. “Our investigation revealed indications that point to Lazarus building supply-chain attack capabilities.

Malware 127

Malware System Administration Hacking Media 127