Krebs on Security

NOVEMBER 3, 2022

” Kurittu said he and others who worked on the investigation into Kivimaki’s previous cybercrimes couldn’t shake the suspicion that the infamous cybercriminal was also behind the Vastaamo extortion. “There were also other projects and databases.” ”

Data breaches 245

Data breaches Cybercrime Accountability Telecommunications 245

Security Affairs

DECEMBER 1, 2024

CISA adds Array Networks AG and vxAG ArrayOS flaw to its Known Exploited Vulnerabilities catalog Thai police arrested Chinese hackers involved in SMS blaster attacks Zyxel firewalls targeted in recent ransomware attacks Malware campaign abused flawed Avast Anti-Rootkit driver Russia-linked APT TAG-110 uses targets Europe and Asia Russia-linked threat (..)

Cybercrime 71

Cybercrime Firewall Social Engineering Ransomware 71

Security Affairs

JULY 6, 2021

The alleged perpetrator, who turned out to be a citizen of Morocco, was arrested in May by the Moroccan police based on the data about his cybercrimes that was provided by Group-IB. The further analysis of Dr Hex’ digital footprint revealed his association with other malicious activities. Original post at [link].

Cybercrime 104

Cybercrime Phishing Banking Telecommunications 104

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. Internal Revenue Service website for months: Anyone seeking to create an account to view their tax records online would soon be required to provide biometric data to a private company in Virginia — ID.me.

Cryptocurrency 292

Cryptocurrency Cybercrime Computers and Electronics Scams 292

Security Affairs

MARCH 23, 2022

Yesterday the cybercrime gang leaked 37GB of source code stolen from Microsoft’s Azure DevOps server. Microsoft has now confirmed that the attackers have compromised the account of one of its employees gaining limited access to source code repositories. No customer code or data was involved in the observed activities.

Accountability 104

Accountability VPN Social Engineering Hacking 104

Krebs on Security

AUGUST 19, 2020

According to interviews with several sources, this hybrid phishing gang has a remarkably high success rate, and operates primarily through paid requests or “bounties,” where customers seeking access to specific companies or accounts can hire them to target employees working remotely at home.

Phishing 363

Phishing VPN Social Engineering Media 363

Krebs on Security

FEBRUARY 28, 2023

In each case, the goal of the attackers was the same: Phish T-Mobile employees for access to internal company tools, and then convert that access into a cybercrime service that could be hired to divert any T-Mobile user’s text messages and phone calls to another device. One of the groups that reliably posted “Tmo up!

Mobile 341

Mobile Phishing Authentication Advertising 341

Security Affairs

JANUARY 20, 2023

Bad news for T-Mobile, the company disclosed a new data breach that resulted in the theft of data belonging to 37 customer accounts. T-Mobile suffered a new data breach, threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts. ” reads the press release published by the company.

Data breaches 98

Data breaches Mobile Accountability Telecommunications 98

Security Affairs

MARCH 30, 2024

AT&T confirmed that a data breach impacted 73 million current and former customers after its data were leaked on a cybercrime forum. million current AT&T account holders and approximately 65.4 million former account holders.” ” reads a statement published by the telecommunication giant.

Data breaches 144

Data breaches Telecommunications Cybercrime Hacking 144

Security Affairs

JANUARY 2, 2022

The Lapsus$ ransomware group defaced all the sites publishing a ransom note that claims that they had access to Impresa’s Amazon Web Services account. The gang also targeted the South American telecommunication providers Claro and Embratel. Source TheRecord. At this time the websites of the company are in maintenance mode.

Media 145

Media Ransomware Telecommunications Accountability 145

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. The telecommunications provider pointed out that no financial information (credit or debit card numbers, banking details) has been compromised. Access to the affected legacy database has also been closed.”continues

Data breaches 132

Data breaches Telecommunications Banking Mobile 132

Security Affairs

MARCH 18, 2022

Mandiant researchers discovered a new Unix rootkit named Caketap, which is used to steal ATM banking data, while investigating the activity of the LightBasin cybercrime group (aka UNC1945 ). CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by the group since 2019.

Banking 144

Banking Telecommunications System Administration Hacking 144

Security Affairs

JUNE 14, 2021

We call on all states to urgently identify and disrupt ransomware criminal networks operating from within their borders, and hold those networks accountable for their actions,” reads the statement. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, ransomware).

Ransomware 109

Ransomware Cybercrime Telecommunications Accountability 109

Security Affairs

JUNE 29, 2020

According to the experts, the malware was developed by the Russian cybercrime crew known as Evil Corp , which was behind the Dridex Trojan , and multiple ransomware like Locky , Bart, Jaff , and BitPaymer. Most of the victims belong to the manufacturing industry, followed by IT and media and telecommunications sectors.

Ransomware 124

Ransomware Telecommunications Manufacturing Advertising 124

Security Affairs

MARCH 16, 2020

Hackers have stolen O2 customers’ data from a database run by Aerial Direct , one of the largest UK partners of the telecommunications services provider. To reassure you, the database did not include any passwords or financial details, such as bank account number or credit card information.” Pierluigi Paganini.

Data breaches 138

Data breaches Telecommunications Passwords Advertising 138

Security Affairs

FEBRUARY 22, 2022

The cybercrime unit of the Ukrainian police has arrested a group of cybercriminals who managed to steal payment card data from at least 70,000 people by setting up mobile fake top-up services. Once obtained the data, crooks used it to empty their victims’ bank accounts. 190 (Fraud) of the Criminal Code of Ukraine.

Phishing 102

Phishing Banking Mobile Telecommunications 102

Security Affairs

OCTOBER 22, 2023

North Korea-linked APT groups actively exploit JetBrains TeamCity flaw Multiple APT groups exploited WinRAR flaw CVE-2023-38831 Californian IT company DNA Micro leaks private mobile phone data Threat actors have been exploiting CVE-2023-4966 in Citrix NetScaler ADC/Gateway devices since August A flaw in Synology DiskStation Manager allows admin account (..)

Ransomware 124

Ransomware Data breaches Telecommunications Mobile 124

Security Affairs

JUNE 9, 2024

New York Times source code compromised via exposed GitHub token SolarWinds fixed multiple flaws in Serv-U and SolarWinds Platform Pandabuy was extorted twice by the same threat actor UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces Chinese threat actor exploits old ThinkPHP flaws since October 2023 A new Linux (..)

Data breaches 127

Data breaches Banking Hacking Malware 127

Security Affairs

JUNE 9, 2024

Last week, the RansomHub ransomware group claimed to have stolen the information of over 2 million customers from the American telecommunications company Frontier Communications. The RansomHub group claimed to have stolen 5GB of data from the telecommunications giant. concludes the letter reads.

Data breaches 102

Data breaches Identity Theft Telecommunications Cybercrime 102

Security Affairs

OCTOBER 7, 2024

Telecommunications giant Comcast is notifying approximately 238,000 customers impacted by the Financial Business and Consumer Solutions (FBCS) data breach. According to the agency, compromised information may include names, dates of birth, Social Security numbers, and account information. Later, the company determined that over 4.25

Data breaches 131

Data breaches Telecommunications Ransomware Accountability 131

Security Affairs

APRIL 10, 2024

AT&T initially denied any data breach, below is the statement from the telecomunication giant : “Based on our investigation Thursday, the information that appeared in an internet chat room does not appear to have come from our systems,” Later, the telecommunications company retracted its initial denial and confirmed the data breach.

Data breaches 127

Data breaches Telecommunications Identity Theft Hacking 127

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe.

Government 98

Government Malware Telecommunications Cybercrime 98

Malwarebytes

APRIL 2, 2024

Telecommunications giant AT&T has finally confirmed that 73 million current and former customers have been caught up in a massive dark web data leak. million current AT&T account holders and approximately 65.4 million former account holders. However, it also said that it believes that the leak affects 7.6 Take your time.

Data breaches 145

Data breaches Passwords Phishing Accountability 145

Security Affairs

AUGUST 18, 2021

million current postpaid customer accounts, as well as more than 40 million records of former and prospective customers. Importantly, no phone numbers, account numbers, PINs, passwords, or financial information were compromised in any of these files of customers or prospective customers.” Pierluigi Paganini.

Data breaches 102

Data breaches Mobile Telecommunications Accountability 102

SecureWorld News

JANUARY 27, 2023

The United States Department of Justice (DOJ) recently announced that it has successfully taken down the HIVE ransomware network, an international cybercrime ring that had been responsible for stealing and encrypting the data of more than 1,500 companies from 80 different countries. Cybercrime is a constantly evolving threat.

Ransomware 98

Ransomware Cybercrime Cryptocurrency Telecommunications 98

Security Affairs

OCTOBER 6, 2022

.” The arrest is the result of Operation Guardian led by AFP which became aware of a number of text messages demanding some Optus customers transfer $2000 to a bank account or face their personal information being used for financial crimes. The database belonging to the company was leaked on a cybercrime forum.

Data breaches 98

Data breaches Scams Telecommunications Financial Services 98

Security Affairs

OCTOBER 5, 2022

Bad news for the Australian telecommunications industry, the largest company in the country Telstra suffered a data breach. Australia’s largest telecommunications company Telstra disclosed a data breach through a third-party supplier. It seems that the security breach also impacted other companies.

Data breaches 98

Data breaches Telecommunications Accountability Information Security 98

Security Affairs

FEBRUARY 10, 2022

. “The Federal Bureau of Investigation is issuing this announcement to inform mobile carriers and the public of the increasing use of Subscriber Identity Module (SIM) swapping by criminals to steal money from fiat and virtual currency accounts.” Use a variation of unique passwords to access online accounts.

Mobile 104

Mobile Cryptocurrency Accountability Passwords 104

SecureWorld News

NOVEMBER 20, 2023

Federal Communications Commission (FCC) has adopted new rules aimed at enhancing security measures for cell phone accounts. SIM swapping involves the unauthorized transfer of a user's account to a SIM card controlled by malicious actors, achieved by convincing the victim's wireless carrier to make the change.

Mobile 109

Mobile Wireless Artificial Intelligence Accountability 109

SecureWorld News

AUGUST 28, 2023

RELATED: Lapsus$ Returns One Week After 7 Teenage Hackers Arrested ] The extent of Kurtaj's involvement in cybercrimes is staggering. This marked a turning point in the battle against cybercrime and served as a stark reminder that even the most skilled threat actors can be brought to justice. and Brazil. and another in Brazil.

Cybercrime 98

Cybercrime Social Engineering Telecommunications Hacking 98

Security Affairs

APRIL 23, 2022

Telecommunication giant T-Mobile confirmed the LAPSUS$ extortion group gained access to its networks in March. The popular investigator and journalist Brian Krebs first surmised that the LAPSUS$ gang has breached T-Mobile after he reviewed a copy of the private chat messages between members of the cybercrime group. ” wrote Krebs.

Mobile 102

Mobile VPN Social Engineering Telecommunications 102

IT Security Guru

DECEMBER 1, 2022

During the last few years, we have all become witnesses to intense cybercrime and sophisticated cyberattacks. As cybercrime continues to increase, the human element can play the most important role in cybersecurity posture and hygiene. This upward trend is further fuelled by a shift in working conditions like working remotely.

Cyber threats 128

Cyber threats Cybersecurity Education Risk 128

Security Affairs

MARCH 10, 2023

CPNI is information related to the telecommunications services purchased by the customers, including the number of lines for each account or the wireless plan to which customers are subscribed. Social Security Number, account passwords). BleepingComputer reported that approximately 9 million wireless accounts were impacted.

Data breaches 98

Data breaches Hacking Wireless Telecommunications 98

Security Affairs

SEPTEMBER 24, 2023

0-days exploited by commercial surveillance vendor in Egypt PREDATOR IN THE WIRES OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes Cybersecurity Apple and Google Are Introducing New Ways to Defeat Cell Site Simulators, But Is it Enough?

Cyber Attacks 122

Cyber Attacks Firewall Data breaches Telecommunications 122

Security Affairs

APRIL 19, 2024

The group also relies on valid accounts and leverage strong operational security, which combined, allows for long-term undiscovered persistence. A Chinese Foreign Ministry spokesperson recently stated that the Volt Typhoon activity is not associated with Beijing, but linked it to a cybercrime operation. In fact, the U.S.

Energy and Utilities 132

Energy and Utilities Telecommunications Technology Government 132

Security Affairs

JULY 31, 2022

Once obtained the credentials, an attacker can add an administrator account and use it to obtain full access to the device and perform actions such as watching live footage from the camera as shown below. An attacker can conduct this attack by capturing one unencrypted ONVIF request authenticated with the WS-UsernameToken schema.

Surveillance 145

Surveillance Authentication Telecommunications Manufacturing 145

eSecurity Planet

SEPTEMBER 21, 2024

Health Insurance Portability & Accountability Act (HIPAA) The Health Insurance Portability and Accountability Act (HIPAA) sets standards for protecting sensitive health information, particularly electronic health records (EHRs). The act also covers various forms of cybercrime, including malware distribution and data theft.

Cybersecurity 121

Cybersecurity Computers and Electronics Cyber threats Healthcare 121