2017, Accountability and Information Security

Expert identifies new Nazar APT group referenced in 2017 Shadow Brokers leak

Security Affairs

APRIL 23, 2020

A security expert uncovered an old APT operation, tracked Nazar, by analyzing the NSA hacking tools included in the dump leaked by Shadow Brokers in 2017. Somehow, this operation found its way onto the NSA’s radar pre-2013, as far as I can tell, it’s eluded specific coverage from the security industry. Pierluigi Paganini.

Hacking

Hacking Advertising Malware Engineering

Facebook’s official Twitter and Instagram accounts hacked by OurMine

Security Affairs

FEBRUARY 8, 2020

The social network giant Facebook is still the target of hackers, its Facebook and Instagram accounts have been hijacked by the popular hacking group Our M ine. Yesterdat the popular hacking group OurMine hacked the Twitter and Instagram accounts for Facebook and Messenger. The company accounts have been quickly restored.

Accountability

Accountability Hacking Media Advertising

Data Enrichment, People Data Labs and Another 622M Email Addresses

Troy Hunt

NOVEMBER 22, 2019

For example, there's Dun & Bradstreet's NetProspex which leaked 33M records in 2017 , Exactis who had 132M records breached last year and the Apollo data breach which exposed 126M accounts, one of which was my own. i speak at conferences around the world and run workshops on how to build more secure software within organisations.

Data breaches

Data breaches Technology Software Accountability

FC Barcelona and the International Olympic Committee Twitter accounts hacked

Security Affairs

FEBRUARY 17, 2020

The popular hacker group OurMine has hacked the official Twitter account of the FC Barcelona, along with the accounts of Olympics and the International Olympic Committee (IOC). The popular hacker group has hacked the official Twitter account of the FC Barcelona, along with the accounts of and the International Olympic Committee (IOC).

Accountability

Accountability Hacking Advertising Media

SEC announces sanctions against entities over email account hacking

Security Affairs

SEPTEMBER 1, 2021

Securities and Exchange Commission (SEC) announced sanctions against several organizations over email account hacking. Securities and Exchange Commission (SEC) announced sanctions against eight entities belonging to three companies over email account hacking due to cybersecurity failures. Pierluigi Paganini.

Accountability

Accountability Hacking Financial Services Cybersecurity

Hundreds of C-level executives credentials available for $100 to $1500 per account

Security Affairs

NOVEMBER 28, 2020

A credible threat actor is offering access to the email accounts of hundreds of C-level executives for $100 to $1500 per account. Access to the email accounts of hundreds of C-level executives is available on the Exploit.in for $100 to $1500 per account. Exploit.in ” reported ZDNet. Pierluigi Paganini.

Accountability

Accountability Cybercrime Hacking Retail

COMB breach: 3.2B email and password pairs leaked online

Security Affairs

FEBRUARY 7, 2021

The database includes a script named count_total.sh, which was also included in 2017’s Breach Compilation. Much like 2017’s Breach Compilation, COMB’s data is organized by alphabetical order in a tree-like structure, and it contains the same scripts for querying emails and passwords. COMB also includes the query.sh

Passwords

Passwords Hacking Accountability Banking

Microsoft is blocking Tutanota email addresses from registering a MS Teams account

Security Affairs

AUGUST 7, 2022

Microsoft is actively blocking Tutanota email addresses from registering a Microsoft Teams account. Tutanota is an end-to-end encrypted email app and a freemium secure email service, as of March 2017, Tutanota’s owners claimed to have over 2 million users. Follow me on Twitter: @securityaffairs and Facebook.

Accountability

Accountability Marketing Encryption Hacking

CISA adds 15 new vulnerabilities to its Known Exploited Vulnerabilities Catalog

Security Affairs

FEBRUARY 11, 2022

One of the vulnerabilities is an elevation of privilege vulnerability in Microsoft Windows SAM (Security Accounts Manager) vulnerability. “An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.An ” reads the advisory published by Microsoft.

IoT

IoT Accountability Authentication Hacking

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

Security Affairs

JANUARY 7, 2024

Researchers from Dutch security firm Hunt & Hackett observed Sea Turtle cyber espionage group (aka Teal Kurma, Marbled Dust, SILICON and Cosmic Wolf) targeting telco, media, ISPs, IT service providers, and Kurdish websites in the Netherlands. Between 2017 and 2019, the APT group mainly used DNS hijacking in its campaigns.

Media

Media Accountability Telecommunications Government

A member The Dark Overlord group sentenced to 5 years in prison

Security Affairs

SEPTEMBER 22, 2020

” According to the 2017 indictment , Wyatt used email and telephone accounts to send messages used to threaten the hacked companies of releasing their information. “a. WYATT registered a telephone account (Account B) used in the course of the conspiracy to send threatening and extortionate text messages to victims.“.

Identity Theft

Identity Theft Accountability Hacking Advertising

Iran-Linked APT TA450 embeds malicious links in PDF attachments

Security Affairs

MARCH 25, 2024

sender account. “Additionally, this campaign is the first time Proofpoint has observed TA450 using a sender email account that matches the lure content. For example, this campaign used an email account of salary[@]<compromisedorg>co[.]il, Some of the messages were also sent using a likely a compromised.IL

Phishing

Phishing Social Engineering Telecommunications Accountability

Uber hacked, internal systems and confidential documents were allegedly compromised

Security Affairs

SEPTEMBER 16, 2022

According to the New York Times , the threat actors hacked an employee’s Slack account and used it to inform internal personnel that the company had “suffered a data breach” and provided a list of allegedly hacked internal databases. “I This is not the first time that the company suffered a security breach.

Hacking

Hacking Data breaches Engineering Information Security

Russian APT28 hacker accused of the NATO think tank hack in Germany

Security Affairs

JUNE 20, 2022

The attack took place in April 2017 and the man is accused of conducting the attack for the Russian military intelligence service GRU. Kozachek hacked the computed of the NATO think tank in 2017 and installed a keylogger to spy on the organization. ” reported the Tagesschau website. ” continues the post.

Hacking

Hacking Accountability Malware Cybersecurity

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

This exposure of sensitive credential and network access information, especially privileged user accounts, could lead to subsequent cyber attacks against individual users or affiliated organizations.” Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means.

Cybercrime

Cybercrime Education Accountability Phishing

One of the hackers behind EtherDelta hack also involved in TalkTalk hack

Security Affairs

SEPTEMBER 21, 2019

US authorities have indicted two men for hacking the exchange EtherDelta in December 2017, one of them was also accused of TalkTalk hack. US authorities have indicted two men, Elliot Gunton and Anthony Tyler Nashatka, for hacking the cryptocurrency exchange EtherDelta in 2017. Six days later, on December 19, 2017.

Hacking

Hacking DNS Cryptocurrency Accountability

T-Mobile customers were hit with SIM swapping attacks

Security Affairs

FEBRUARY 27, 2021

Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts. The criminals could hijack social media accounts and bypass 2FA services based on SMS used by online services, including financial ones. .

Mobile

Mobile Data breaches Telecommunications Identity Theft

Imperva explains how hackers stole AWS API Key and accessed to customer data

Security Affairs

OCTOBER 14, 2019

“Here is what we know about the situation today: On August 20, 2019, we learned from a third party of a data exposure that impacts a subset of customers of our Cloud WAF product who had accounts through September 15, 2017. Elements of our Incapsula customer database through September 15, 2017 were exposed.

Firewall

Firewall Passwords Accountability Data breaches

Russian hackers defaced local British news sites

Security Affairs

MAY 13, 2024

“The operations have primarily targeted audiences in Lithuania, Latvia, and Poland with anti-North Atlantic Treaty Organization (NATO) narratives, often leveraging website compromises or spoofed email accounts to disseminate fabricated content, including falsified correspondence from military officials” reads the report published by FireEye.

Media

Media Accountability Cyber Attacks Hacking

Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021

Security Affairs

JANUARY 2, 2022

billion from organizations in the industry and attacks against DeFi platforms accounted for $1.76 The percentage increase in the number of scams per year is up by 850% in the last decade. Threat actors stole $3.18 The top 5 breaches in history are: 1. Gox, $615M. Poly Network, $611M+. Coincheck, $534M. KuCoin, $281M.

Cryptocurrency

Cryptocurrency Scams Marketing Hacking

Telstra Telecom discloses data breach impacting former and current employees

Security Affairs

OCTOBER 5, 2022

Narelle Devine, the company’s chief information security officer for the Asia Pacific region, added that no customer account information was stored on the third-party platform. It seems that the security breach also impacted other companies. ” reads the statement published by the company.

Data breaches

Data breaches Telecommunications Accountability Information Security

North Korea-linked actors breached the emails of a Presidential Office member

Security Affairs

FEBRUARY 15, 2024

The office of the South Korean President explained that the compromise of the account occurred due to the staff member utilizing commercial email services for official responsibilities. panel of experts announced an investigation into 58 suspected North Korean cyberattacks between 2017 and 2023 valued at approximately $3 billion.

Hacking

Hacking Government Accountability Information Security

Ex CIA employee Joshua Adam Schulte sentenced to 40 years in prison

Security Affairs

FEBRUARY 2, 2024

. “SCHULTE’s theft is the largest data breach in the history of the CIA, and his transmission of that stolen information to WikiLeaks is one of the largest unauthorized disclosures of classified information in the history of the U.S.”

Computers and Electronics

Computers and Electronics Engineering Hacking Data breaches

MY TAKE: 3 privacy and security habits each individual has a responsibility to embrace

The Last Watchdog

JANUARY 28, 2019

Worldwide spending on information security products and services rose to $114 billion in 2018, up from $102 billion in 2017, an increase of 12.4 The perpetrators deploy botnets to automate the injection of surreptitiously obtained usernames and password pairs until they gain fraudulent access to a targeted account.

Passwords

Passwords Password Management Antivirus Internet

DarkGate malware campaign abuses Skype and Teams

Security Affairs

OCTOBER 16, 2023

The researchers speculate the originating accounts of the instant messaging applications were compromised through the leaked credentials available on cybercrime forums. The message sent to the victims from a compromised Skype account contains a VBS script with a filename following the following format: <filename.pdf> www.skype[.]vbs.

Malware

Malware Cryptocurrency Accountability Cybercrime

Alexander Vinnik, the operator of BTC-e exchange, pleaded guilty to money laundering

Security Affairs

MAY 6, 2024

Alexander Vinnik , a Russian national, pleaded guilty to conspiracy to commit money laundering for his involvement in operating the cryptocurrency exchange BTC-e from 2011 to 2017. In July 2017 law enforcement shut down the virtual currency exchange.

Cryptocurrency

Cryptocurrency Computers and Electronics Identity Theft Hacking

American Insurance firm State Farm victim of credential stuffing attacks

Security Affairs

AUGUST 7, 2019

Accessing an online account, users could make several actions, such as manage insurance claims and pay bills. “State Farm recently detected an information security incident in which a bad actor used a list of user IDs and passwords obtained from some other source, like the dark web, to attempt access to State Farm online accounts.

Insurance

Insurance Data breaches Financial Services Passwords

Czech intelligence report warns of Russian and Chinese activity in the country

Security Affairs

NOVEMBER 26, 2019

According to a report published by the NUKIB Czech National Cyber and Information Security Agency (NUKIB) in September, China carried out a major cyber attack on a key government institution in the Czech Republic last year. The Czech experts discovered the security breach in early January 2017.

Cyber Attacks

Cyber Attacks Advertising Information Security Government

Threat actors are offering for sale 550 million stolen user records

Security Affairs

MAY 15, 2020

million January 2017 CafeMom.com 2.6 million October 2017 ModaOperandi.com 1.3 Those who have their account exposed in one of the above incidents are recommended to change their password. million April 2018 Netlog.com (Twoo.com) 57 million November 2012 Dubsmash.com Phone numbers 47.1 million December 2018 CafePress.com 23.6

Data breaches

Data breaches Advertising Passwords Hacking

Meta disrupted two influence campaigns from China and Russia

Security Affairs

SEPTEMBER 5, 2023

Meta disrupted two influence campaigns orchestrated by China and Russia, the company blocked thousands of accounts and pages. The social network giant revealed it has blocked thousands of accounts and pages across its platform. The entities were removed for violating our policy against coordinated inauthentic behavior.

Accountability

Accountability Government Media Hacking

Russian cybercriminal Aleksandr Brovko sentenced to 8 years in jail

Security Affairs

NOVEMBER 3, 2020

The scripts developed by the cyber criminal were used to parse log data collected from botnet and searched for personally identifiable information (PII) and account credentials. In some cases, the man manually chacked the stolen information. ” reads the press release published by the DoJ.

Accountability

Accountability Banking Advertising Data collection

Fort Worth IT Professionals Fired for Reporting Cybersecurity Issues: What We Know

Security Affairs

JUNE 7, 2019

In October 2017, the city of Fort Worth, Texas became the target of a phishing scam. Their accounts payable department received an email that appeared to be from Imperial Construction, a company that was doing business with the city at the time. Fadipe, requested a change of account. However, this wasn’t the case.

Cybersecurity

Cybersecurity Scams Banking Accountability

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Security Affairs

FEBRUARY 25, 2022

The Computer Emergency Response Team of Ukraine (CERT-UA) is warning of an ongoing spear-phishing campaign targeting private email accounts belonging to Ukrainian armed forces personnel. According to FireEye, the campaign tracked as GhostWriter, has been ongoing since at least March 2017 and is aligned with Russian security interests.

Phishing

Phishing Social Engineering Government Accountability

Czech Republic ‘s committee blames foreign state for Foreign Ministry Cyberattack

Security Affairs

AUGUST 14, 2019

A parliamentary committee in the Czech Republic revealed that the National Cyber and Information Security Agency blamed a foreign state for a cyber attack that targeted the Czech Foreign Ministry. The Czech experts discovered the security breach early January 2017.

Cyber Attacks

Cyber Attacks Advertising Information Security Government

Police arrest two people over stealing sensitive data from defense giant

Security Affairs

DECEMBER 6, 2020

In January 2017, the internal cybersecurity structure of Leonardo SpA reported anomalous network traffic, outgoing from some workstations of the Pomigliano D’Arco plant. The duo has used the malware to steal the data between 2015 and 2017 and it back to a command and control server (‘fujinama.altervista.org.’).

Computers and Electronics

Computers and Electronics Malware Media Accountability

Google warned users of 33,015 nation-state attacks since January

Security Affairs

OCTOBER 17, 2020

Google delivered 33,015 alerts to its users during the first three quarters of 2020 to warn them of phishing attacks, launched by nation-state actors, targeting their accounts. The threat actor behind this campaign was primarily acquiring or hijacking existing accounts and using them to spread content crafted for their intent.

DDOS

DDOS Phishing Advertising Accountability

Alexander Vinnik, the popular cyber criminal goes on trial in Paris

Security Affairs

OCTOBER 19, 2020

In 2017, Greek Police arrested the Russian national Alexander Vinnik and they accused the man of running the BTC-e Bitcoin exchange to launder more than US$4bn worth of the cryptocurrency. The Russian man Alexander Vinnik goes on trial in Paris for having defrauded nearly 200 victims across the world of 135M euros using ransomware.

Advertising

Advertising Hacking Cybercrime Cryptocurrency

Oleg Koshkin was convicted for operating a crypting service also used by Kelihos botnet

Security Affairs

JUNE 17, 2021

Levashov used these services on and off from at least May 2014 until his arrest in April 2017 and paid the operators of the crypting services approximately $3,000 per month” reads the criminal compliant. Koshkin was arrested in California in September 2019 , while Tsurkan was arrested in April 2017. Pierluigi Paganini.

Antivirus

Antivirus Malware Software Cryptocurrency

Imperva data Breach: WAF customers’ data exposed

Security Affairs

AUGUST 27, 2019

. “Here is what we know about the situation today: On August 20, 2019, we learned from a third party of a data exposure that impacts a subset of customers of our Cloud WAF product who had accounts through September 15, 2017. Elements of our Incapsula customer database through September 15, 2017 were exposed.

Data breaches

Data breaches Firewall Passwords Advertising

PoC exploit code for two Apache Struts 2 flaws available online

Security Affairs

AUGUST 15, 2020

In 2017, the credit reporting agency Equifax suffered a massive data breach, attackers exploited the CVE-2017-5638 Apache Struts vulnerability. . Apache Struts 2 is an open-source, extensible framework for creating enterprise-ready Java web applications. Unpatched installs could allow attackers to carry out malicious activities.

Advertising

Advertising Data breaches Hacking Accountability

Alleged FruitFly malware creator ruled incompetent to stand trial

Malwarebytes

JANUARY 16, 2024

On January 4, 2017, Case Western Reserve University (CWRU), located in Cleveland, Ohio, became aware of an infection on more than 100 of its computers. The university was notified by an undisclosed third party, who provided information to help the team find and identify the malware. Who is Phillip Durachinsky?

Malware

Malware Passwords Identity Theft Data collection

US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks

Security Affairs

JUNE 24, 2019

industries and government agencies, the statement was also published by the CISA Director Chris Krebs via his Twitter account. ” Experts recommend to have secure working backup procedures, in case of attack, victims could simply recover data from a backup. The attacks are targeting U.S. ” continues the statement.

Backups

Backups Advertising Passwords Accountability

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

Security Affairs

NOVEMBER 22, 2019

Lisov was arrested in January 2017 at the Barcelona airport by the Guardia Civil. The Neverquest malware is able to log in to the victim’s online banking account and perform fraudulent transactions. The arrest is the result of the collaboration between the Spanish law enforcement and the FBI. The United States Attorney Geoffrey S.

Banking

Banking Malware Advertising Passwords

Researchers unmasked the notorious threat actor USDoD

Security Affairs

AUGUST 27, 2024

Among them, it was possible to identify tax registration, email addresses, registered domains, IP addresses, social media accounts, telephone number and city . More precise information was not revealed to TecMundo so as not to completely expose the attacker’s identity.”

Media

Media Cybercrime Accountability Hacking

Expert identifies new Nazar APT group referenced in 2017 Shadow Brokers leak

Facebook’s official Twitter and Instagram accounts hacked by OurMine

Trending Sources

Data Enrichment, People Data Labs and Another 622M Email Addresses

FC Barcelona and the International Olympic Committee Twitter accounts hacked

SEC announces sanctions against entities over email account hacking

Hundreds of C-level executives credentials available for $100 to $1500 per account

COMB breach: 3.2B email and password pairs leaked online

Microsoft is blocking Tutanota email addresses from registering a MS Teams account

CISA adds 15 new vulnerabilities to its Known Exploited Vulnerabilities Catalog

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

A member The Dark Overlord group sentenced to 5 years in prison

Iran-Linked APT TA450 embeds malicious links in PDF attachments

Uber hacked, internal systems and confidential documents were allegedly compromised

Russian APT28 hacker accused of the NATO think tank hack in Germany

FBI: Compromised US academic credentials available on various cybercrime forums

One of the hackers behind EtherDelta hack also involved in TalkTalk hack

T-Mobile customers were hit with SIM swapping attacks

Imperva explains how hackers stole AWS API Key and accessed to customer data

Russian hackers defaced local British news sites

Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021

Telstra Telecom discloses data breach impacting former and current employees

North Korea-linked actors breached the emails of a Presidential Office member

Ex CIA employee Joshua Adam Schulte sentenced to 40 years in prison

MY TAKE: 3 privacy and security habits each individual has a responsibility to embrace

DarkGate malware campaign abuses Skype and Teams

Alexander Vinnik, the operator of BTC-e exchange, pleaded guilty to money laundering

American Insurance firm State Farm victim of credential stuffing attacks

Czech intelligence report warns of Russian and Chinese activity in the country

Threat actors are offering for sale 550 million stolen user records

Meta disrupted two influence campaigns from China and Russia

Russian cybercriminal Aleksandr Brovko sentenced to 8 years in jail

Fort Worth IT Professionals Fired for Reporting Cybersecurity Issues: What We Know

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Czech Republic ‘s committee blames foreign state for Foreign Ministry Cyberattack

Police arrest two people over stealing sensitive data from defense giant

Google warned users of 33,015 nation-state attacks since January

Alexander Vinnik, the popular cyber criminal goes on trial in Paris

Oleg Koshkin was convicted for operating a crypting service also used by Kelihos botnet

Imperva data Breach: WAF customers’ data exposed

PoC exploit code for two Apache Struts 2 flaws available online

Alleged FruitFly malware creator ruled incompetent to stand trial

US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

Researchers unmasked the notorious threat actor USDoD

Stay Connected