2019 and Hacking - Cyber Security Informer

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Krebs on Security

DECEMBER 19, 2024

Cyber threat analysts at Silent Push said they recently received reports from a partner organization that identified an aggressive scanning effort against their website using an Internet address previously associated with a campaign by FIN7 , a notorious Russia-based hacking group. co — first came online in February 2023.

Hacking

Hacking Cybercrime Advertising Data breaches

Latest on the SVR’s SolarWinds Hack

Schneier on Security

JANUARY 5, 2021

The New York Times has an in-depth article on the latest information about the SolarWinds hack (not a great name, since it’s much more far-reaching than that). There is also no indication yet that any human intelligence alerted the United States to the hacking. The October files, distributed to customers on Oct.

Hacking

Hacking System Administration Software Surveillance

Breached Data Indexer ‘Data Viper’ Hacked

Krebs on Security

JULY 13, 2020

Data Viper , a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. An online post by the attackers who broke into Data Viper. But on Aug.

Hacking

Hacking Marketing Cybercrime Accountability

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Account Hijacking Site OGUsers Hacked, Again

Krebs on Security

DECEMBER 2, 2020

For at least the third time in its existence, OGUsers — a forum overrun with people looking to buy, sell and trade access to compromised social media accounts — has been hacked. OGUsers was hacked at least twice previously, in May 2019 and again in March 2020. called Disco Payments. ”

Accountability

Accountability Hacking Scams Media

UAE Hack and Leak Operations

Schneier on Security

AUGUST 13, 2020

Interesting paper on recent hack-and-leak operations attributed to the UAE: Abstract: Four hack-and-leak operations in U.S. Although "hacking" tools enable easy access to secret information, they are a double-edged sword, as their discovery means the scandal becomes about the hack itself, not about the hacked information.

Hacking

Hacking Cybersecurity

Stalkerware Installations Up 60% in 2019

Adam Levin

FEBRUARY 25, 2020

The number of stalkerware apps detected on smartphones increased in 2019, a full 60% over the previous year according to a new report released by Kaspersky Labs. . This is thought to be the way Amazon founder and CEO Jeff Bezos was hacked in 2019. The post Stalkerware Installations Up 60% in 2019 appeared first on Adam Levin.

Malware

Malware Mobile Phishing Authentication

Four REvil Ransomware members sentenced for hacking and money laundering

Security Affairs

OCTOBER 27, 2024

Four former members of the REvil ransomware group were sentenced in Russia for hacking and money laundering, marking a rare case of Russian gang members being convicted in the country. Vasinskyi is a REvil ransomware affiliate since at least March 1st, 2019. Vasinskyi was extradited to the U.S. in March 2022.

Ransomware

Ransomware Hacking Malware Cybercrime

Hacking Digitally Signed PDF Files

Schneier on Security

MARCH 8, 2021

In 2019, Mladenov et al. Interesting paper: “ Shadow Attacks: Hiding and Replacing Content in Signed PDFs “: Abstract: Digitally signed PDFs are used in contracts and invoices to guarantee the authenticity and integrity of their content. A user opening a signed PDF expects to see a warning in case of any modification.

Hacking

Hacking Authentication

Account Hijacking Forum OGusers Hacked

Krebs on Security

MAY 18, 2019

com — a forum popular among people involved in hijacking online accounts and conducting SIM swapping attacks to seize control over victims’ phone numbers — has itself been hacked, exposing the email addresses, hashed passwords, IP addresses and private messages for nearly 113,000 forum users.

Accountability

Accountability Hacking Backups Passwords

Patch Tuesday, August 2019 Edition

Krebs on Security

AUGUST 13, 2019

“According to Microsoft, at least two of these vulnerabilities ( CVE-2019-1181 and CVE-2019-1182 ) can be considered ‘wormable’ and [can be equated] to BlueKeep,” referring to a dangerous bug patched earlier this year that Microsoft warned could be used to spread another WannaCry-like ransomware outbreak.

Backups

Backups Software Authentication Internet

WhatsApp disrupted a hacking campaign targeting journalists with Paragon spyware

Security Affairs

FEBRUARY 2, 2025

The hacking campaign targeted 90 users and was disrupted in December, WhatsApp already alerted them of a possible compromise of their devices. WhatsApp linked the hacking campaign to Paragon, an Israeli commercial surveillance vendor acquired by AE Industrial Partners for $900 million in December 2024.

Spyware

Spyware Hacking Surveillance Malware

A Basic Timeline of the Exchange Mass-Hack

Krebs on Security

MARCH 8, 2021

Here’s a brief timeline of what we know leading up to last week’s mass-hack, when hundreds of thousands of Microsoft Exchange Server systems got compromised and seeded with a powerful backdoor Trojan horse program. 2, Microsoft patched four flaws in Exchange Server 2013 through 2019.

Hacking

Hacking Technology Software

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

On March 2, Microsoft released emergency security updates to plug four security holes in Exchange Server versions 2013 through 2019 that hackers were actively using to siphon email communications from Internet-facing systems running Exchange. The web shell gives the attackers administrative access to the victim’s computer servers.

Hacking

Hacking Software Government Internet

Twitter Hacking for Profit and the LoLs

Krebs on Security

JULY 22, 2020

The New York Times last week ran an interview with several young men who claimed to have had direct contact with those involved in last week’s epic hack against Twitter. ” Twice in the past year, the OGUsers forum was hacked , and both times its database of usernames, email addresses and private messages was leaked online.

Hacking

Hacking Accountability Scams Media

Hackers Were Inside Citrix for Five Months

Krebs on Security

FEBRUARY 19, 2020

Networking software giant Citrix Systems says malicious hackers were inside its networks for five months between 2018 and 2019, making off with personal and financial data on company employees, contractors, interns, job candidates and their dependents. But in a letter sent to affected individuals dated Feb. 13, 2018 and Mar.

VPN

VPN Passwords Software Telecommunications

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Krebs on Security

FEBRUARY 4, 2025

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled , English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. Constella found that a user named Shoppy registered on Cracked in 2019 using the email address finn@shoppy[.]gg.

eCommerce

eCommerce Cybercrime Accountability Passwords

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Krebs on Security

FEBRUARY 28, 2025

And BEARHOST has been cultivating its reputation since at least 2019. government for its hacking operations, CEO Eugene Kaspersky says he ordered workers to delete the code. Bulletproof hosts are so named when they earn or cultivate a reputation for ignoring legal demands and abuse complaints. Image: Intrinsec. Last year, the U.S.

Malware

Malware Antivirus Software DDOS

Windows 7 End of Life Presents Hacking Risk, FBI Warns

Adam Levin

AUGUST 7, 2020

Another major vulnerability discovered in the operating system in 2019, called BlueKeep, has been traced back to several major hacking campaigns. . The post Windows 7 End of Life Presents Hacking Risk, FBI Warns appeared first on Adam Levin. Windows 7 users represented 98% of infected systems.

Risk

Risk Hacking Authentication Ransomware

No, Spotify Wasn't Hacked

Troy Hunt

JANUARY 8, 2019

I just went and looked at the pastes HIBP has collected since the clock ticked over to 2019 and found 20 of them already: Digging further, I found over a thousand pastes with "Spotify" in the title. And why would someone "hack" (I use the term loosely because they literally logged in with the correct username and password) Spotify accounts?

Hacking

Hacking Passwords Accountability Data breaches

U.S. Court rules against NSO Group in WhatsApp spyware Lawsuit

Security Affairs

DECEMBER 23, 2024

Court documents state that on October 29, 2019, plaintiffs filed this lawsuit, alleging that the defendants used WhatsApp to target approximately 1,400 mobile phones and devices to infect them with the surveillance software. said Gil Lanier, vice president of global communications for the Israeli firm.

Spyware

Spyware Surveillance Software Hacking

Malware Installed in Asus Computers Through Hacked Update Process

Schneier on Security

MARCH 28, 2019

In January 2019, we discovered a sophisticated supply chain attack involving the ASUS Live Update Utility. Kaspersky Labs is reporting on a new supply chain attack they call "Shadowhammer.". The attack took place between June and November 2018 and according to our telemetry, it affected a large number of users. [.].

Hacking

Hacking Malware

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

Justice Department today unsealed indictments against four Chinese officers of the People’s Liberation Army (PLA) accused of perpetrating the 2017 hack against consumer credit bureau Equifax that led to the theft of personal data on nearly 150 million Americans. in 2019 , according to data from S&P Global Market Intelligence.

Hacking

Hacking Identity Theft Government Phishing

Alleged Co-Founder of Garantex Arrested in India

Krebs on Security

MARCH 11, 2025

Launched in 2019, Garantex was first sanctioned by the U.S. Treasury Office of Foreign Assets Control in April 2022 for receiving hundreds of millions in criminal proceeds, including funds used to facilitate hacking, ransomware, terrorism and drug trafficking.

Ransomware

Ransomware Cryptocurrency Marketing Government

Georgia’s Ballot-Marking Devices

Schneier on Security

FEBRUARY 1, 2021

Andrew Appel discusses Georgia’s voting machines, how the paper ballots facilitated a recount, and the problem with automatic ballot-marking devices: Suppose the polling-place optical scanners had been hacked (enough to change the outcome). That would have been a nightmare scenario.

Hacking

Hacking Software

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Krebs on Security

JULY 18, 2023

[This is Part III in a series on research conducted for a recent Hulu documentary on the 2015 hack of marital infidelity website AshleyMadison.com.] In 2019, a Canadian company called Defiant Tech Inc. In a legal settlement that is quintessentially Canadian, the matter was resolved in 2019 after Defiant Tech agreed to plead guilty.

Hacking

Hacking Accountability Data breaches Marketing

Bomb Threat Hoaxer Exposed by Hacked Gaming Site

Krebs on Security

FEBRUARY 13, 2019

In an ironic twist, the accused — who had fairly well separated his real life identity from his online personas — appears to have been caught after a gaming Web site he frequented got hacked. 12, the U.S. Justice Department announced the arrest of Timothy Dalton Vaughn , a 20-year-old from Winston-Salem, N.C.

Hacking

Hacking DDOS Government Accountability

On Vulnerability-Adjacent Vulnerabilities

Schneier on Security

FEBRUARY 15, 2021

In September 2019, another similar vulnerability was found being exploited by the same hacking group. More discoveries in November 2019, January 2020, and April 2020 added up to at least five zero-day vulnerabilities being exploited from the same bug class in short order. Microsoft issued a patch and fixed the flaw, sort of.

Technology

Technology Hacking Software

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

T-Mobile confirmed being a victim of recent hacking campaigns linked to China-based threat actors targeting telecom companies. T-Mobile confirms it was hacked as part of a long-running cyber espionage campaign targeting Telco companies. Salt Typhoon is a China-linked APT group active since at least 2019.

Mobile

Mobile Telecommunications Data breaches Hacking

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

NOVEMBER 7, 2024

CVE-2019-16278 – is a directory traversal issue in the function http_verify in nostromo nhttpd through 1.9.6 Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, CISA ) Versions up to 2.3.6 and unpatched 2.3.7

Firewall

Firewall Authentication Accountability Risk

New Atrium Health data breach impacts 585,000 individuals

Security Affairs

DECEMBER 6, 2024

Atrium Health launched an investigation into the security breach and discovered that from January 2015 to July 2019, certain online tracking technologies were active on its MyAtriumHealth (formerly MyCarolinas) Patient Portal, accessible via web and mobile. The company notified the US Department of Health and Human Services (HHS).

Data breaches

Data breaches Identity Theft Accountability Technology

The Mask APT is back after 10 years of silence

Security Affairs

DECEMBER 18, 2024

The APT group targeted an organization in Latin America in 2019 and 2022. While investigating the 2022 attack, the researchers noticed that the victim organization had also suffered a 2019 attack using “Careto2” and “Goreto” frameworks. ” reads the analysis published by Kaspersky.

Cyber Attacks

Cyber Attacks Hacking Government Malware

A British national has been charged for his execution of a hack-to-trade scheme

Security Affairs

SEPTEMBER 30, 2024

The Department of Justice charged a British national for hacking into the systems of five U.S. The Department of Justice charged the British national Robert Westbrook (39) for hacking into the systems of five U.S. From January 2019 to May 2020, the man carried out a hack-to-trade scheme, earning over $3 million in profits.

Hacking

Hacking Accountability Passwords Cybercrime

Poland probes Pegasus spyware abuse under the PiS government

Security Affairs

DECEMBER 3, 2024

The news of the hack was reported by the Gazeta Wyborcza daily, and unfortunately, it isn’t the first time that the Pegasus spyware was used in the country. In 2021, the University of Toronto-based Citizen Lab Internet reported that a Polish opposition duo was hacked with NSO spyware.

Spyware

Spyware Government Surveillance Hacking

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

Evgenii Ptitsyn and others allegedly ran an international hacking scheme since November 2020, deploying Phobos ransomware to extort victims. If convicted, the man could face up to 20 years in prison for each wire fraud count, 10 years for each computer hacking charge, and 5 years for conspiracy to commit computer fraud and abuse.

Cybercrime

Cybercrime Ransomware Healthcare Education

Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains

Krebs on Security

NOVEMBER 26, 2019

23, one of the cybercrime underground’s largest bazaars for buying and selling stolen payment card data announced the immediate availability of some four million freshly-hacked debit and credit cards. The other three restaurants are all part of the same parent company and disclosed breaches in August 2019. Image: Gemini Advisory.

Marketing

Marketing Cybercrime Retail Advertising

This Service Helps Malware Authors Fix Flaws in their Code

Krebs on Security

MAY 18, 2020

Almost daily now there is news about flaws in commercial software that lead to computers getting hacked and seeded with malware. But the reality is most malicious software also has its share of security holes that open the door for security researchers or ne’er-do-wells to liberate or else seize control over already-hacked systems.

Malware

Malware Cybercrime Ransomware Marketing

Bypassing Apple FaceID's Liveness Detection Feature

Schneier on Security

AUGUST 15, 2019

That feature has been hacked : Researchers on Wednesday during Black Hat USA 2019 demonstrated an attack that allowed them to bypass a victim's FaceID and log into their phone simply by putting a pair of modified glasses on their face.

Hacking

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

In many cases, the crooks hack managed service providers (MSPs) first and then use this access to compromise the partnering organizations. In November 2019, the criminals behind a ransomware species called Maze started a new trend that is currently gaining momentum on the dark web.

Ransomware

Ransomware Hacking Encryption Penetration Testing

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Krebs on Security

MARCH 10, 2020

District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations. An example seller’s panel at deer.io. Click image to enlarge.

Accountability

Accountability Advertising Hacking Cybercrime

Black Basta ransomware gang hacked Hyundai Motor Europe

Security Affairs

FEBRUARY 9, 2024

Black Basta ransomware gang claims the hack of the car maker Hyundai Motor Europe and the theft of three terabytes of their data. In December 2019, German media reported that hackers suspected to be members of the Vietnam-linked APT Ocean Lotus ( APT32 ) group breached the networks of the car manufacturers BMW and Hyundai.

Hacking

Hacking Ransomware Data breaches Manufacturing

Weekly Update 224

Troy Hunt

JANUARY 1, 2021

Sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe online.

Data breaches

Data breaches Password Management Scams Passwords

New Charges Derail COVID Release for Hacker Who Aided ISIS

Krebs on Security

JANUARY 19, 2021

He admitted to hacking a U.S.-based based e-commerce company, stealing personal and financial data on 1,300 government employees, and providing the data to an Islamic State hacking group. Between 2015 and 2019, Ferizi was imprisoned at a facility in Illinois that housed several other notable convicts.

Identity Theft

Identity Theft Government Social Engineering Accountability

Here’s Why Credit Card Fraud is Still a Thing

Krebs on Security

JULY 29, 2020

Here’s a look at the havoc that lag has wrought, as seen through the purchasing patterns at one of the underground’s biggest stolen card shops that was hacked last year. In October 2019, someone hacked BriansClub , a popular stolen card bazaar that uses this author’s likeness and name in its marketing.

Accountability

Accountability Banking Retail Hacking

Attack Against PC Thunderbolt Port

Schneier on Security

MAY 12, 2020

The attack requires physical access to the computer, but it's pretty devastating : On Thunderbolt-enabled Windows or Linux PCs manufactured before 2019, his technique can bypass the login screen of a sleeping or locked computer -- and even its hard disk encryption -- to gain full access to the computer's data. Intel responds.

Firmware

Firmware Manufacturing Encryption Hacking

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Latest on the SVR’s SolarWinds Hack

Webinars

Trending Sources

Breached Data Indexer ‘Data Viper’ Hacked

Webinars

Account Hijacking Site OGUsers Hacked, Again

UAE Hack and Leak Operations

Stalkerware Installations Up 60% in 2019

Four REvil Ransomware members sentenced for hacking and money laundering

Hacking Digitally Signed PDF Files

Account Hijacking Forum OGusers Hacked

Patch Tuesday, August 2019 Edition

WhatsApp disrupted a hacking campaign targeting journalists with Paragon spyware

A Basic Timeline of the Exchange Mass-Hack

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Twitter Hacking for Profit and the LoLs

Hackers Were Inside Citrix for Five Months

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Windows 7 End of Life Presents Hacking Risk, FBI Warns

No, Spotify Wasn't Hacked

U.S. Court rules against NSO Group in WhatsApp spyware Lawsuit

Malware Installed in Asus Computers Through Hacked Update Process

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Alleged Co-Founder of Garantex Arrested in India

Georgia’s Ballot-Marking Devices

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Bomb Threat Hoaxer Exposed by Hacked Gaming Site

On Vulnerability-Adjacent Vulnerabilities

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog

New Atrium Health data breach impacts 585,000 individuals

The Mask APT is back after 10 years of silence

A British national has been charged for his execution of a hack-to-trade scheme

Poland probes Pegasus spyware abuse under the PiS government

Russian Phobos ransomware operator faces cybercrime charges

Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains

This Service Helps Malware Authors Fix Flaws in their Code

Bypassing Apple FaceID's Liveness Detection Feature

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Black Basta ransomware gang hacked Hyundai Motor Europe

Weekly Update 224

New Charges Derail COVID Release for Hacker Who Aided ISIS

Here’s Why Credit Card Fraud is Still a Thing

Attack Against PC Thunderbolt Port

Stay Connected