Krebs on Security

AUGUST 19, 2020

According to interviews with several sources, this hybrid phishing gang has a remarkably high success rate, and operates primarily through paid requests or “bounties,” where customers seeking access to specific companies or accounts can hire them to target employees working remotely at home.

Phishing 360

Phishing VPN Social Engineering Media 360

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. Internal Revenue Service website for months: Anyone seeking to create an account to view their tax records online would soon be required to provide biometric data to a private company in Virginia — ID.me.

Cryptocurrency 270

Cryptocurrency Cybercrime Computers and Electronics Scams 270

Security Affairs

MARCH 30, 2024

AT&T confirmed that a data breach impacted 73 million current and former customers after its data were leaked on a cybercrime forum. million current AT&T account holders and approximately 65.4 million former account holders.” ” reads a statement published by the telecommunication giant.

Data breaches 144

Data breaches Telecommunications Cybercrime Hacking 144

Krebs on Security

FEBRUARY 28, 2023

In each case, the goal of the attackers was the same: Phish T-Mobile employees for access to internal company tools, and then convert that access into a cybercrime service that could be hired to divert any T-Mobile user’s text messages and phone calls to another device. One of the groups that reliably posted “Tmo up!

Mobile 345

Mobile Phishing Authentication Advertising 345

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. The telecommunications provider pointed out that no financial information (credit or debit card numbers, banking details) has been compromised. Access to the affected legacy database has also been closed.”continues

Data breaches 131

Data breaches Telecommunications Banking Mobile 131

Security Affairs

JANUARY 20, 2023

Bad news for T-Mobile, the company disclosed a new data breach that resulted in the theft of data belonging to 37 customer accounts. T-Mobile suffered a new data breach, threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts. ” reads the press release published by the company.

Data breaches 98

Data breaches Mobile Accountability Telecommunications 98

Security Affairs

JANUARY 2, 2022

The Lapsus$ ransomware group defaced all the sites publishing a ransom note that claims that they had access to Impresa’s Amazon Web Services account. The gang also targeted the South American telecommunication providers Claro and Embratel. Source TheRecord. At this time the websites of the company are in maintenance mode.

Media 145

Media Ransomware Telecommunications Accountability 145

Security Affairs

MARCH 18, 2022

Mandiant researchers discovered a new Unix rootkit named Caketap, which is used to steal ATM banking data, while investigating the activity of the LightBasin cybercrime group (aka UNC1945 ). CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by the group since 2019.

Banking 144

Banking Telecommunications System Administration Hacking 144

Security Affairs

JUNE 14, 2021

We call on all states to urgently identify and disrupt ransomware criminal networks operating from within their borders, and hold those networks accountable for their actions,” reads the statement. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, ransomware).

Ransomware 109

Ransomware Cybercrime Telecommunications Accountability 109

Security Affairs

JUNE 29, 2020

According to the experts, the malware was developed by the Russian cybercrime crew known as Evil Corp , which was behind the Dridex Trojan , and multiple ransomware like Locky , Bart, Jaff , and BitPaymer. Most of the victims belong to the manufacturing industry, followed by IT and media and telecommunications sectors.

Ransomware 123

Ransomware Telecommunications Manufacturing Malware 123

Security Affairs

MARCH 16, 2020

Hackers have stolen O2 customers’ data from a database run by Aerial Direct , one of the largest UK partners of the telecommunications services provider. To reassure you, the database did not include any passwords or financial details, such as bank account number or credit card information.” Pierluigi Paganini.

Data breaches 138

Data breaches Telecommunications Passwords Advertising 138

Security Affairs

NOVEMBER 25, 2024

Thai authorities arrested members of two Chinese cybercrime organizations, one of these groups carried out SMS blaster attacks. Yang faces charges for illegal telecommunications operations, with investigations ongoing to uncover his network and mastermind Thai police issued warrants for 24 suspects, including 9 foreigners and 15 Thais.

Mobile 123

Mobile Scams Technology Telecommunications 123

Malwarebytes

APRIL 2, 2024

Telecommunications giant AT&T has finally confirmed that 73 million current and former customers have been caught up in a massive dark web data leak. million current AT&T account holders and approximately 65.4 million former account holders. However, it also said that it believes that the leak affects 7.6 Take your time.

Data breaches 145

Data breaches Passwords Phishing Accountability 145

Security Affairs

FEBRUARY 22, 2022

The cybercrime unit of the Ukrainian police has arrested a group of cybercriminals who managed to steal payment card data from at least 70,000 people by setting up mobile fake top-up services. Once obtained the data, crooks used it to empty their victims’ bank accounts. 190 (Fraud) of the Criminal Code of Ukraine.

Phishing 102

Phishing Banking Mobile Telecommunications 102

Security Affairs

JUNE 9, 2024

New York Times source code compromised via exposed GitHub token SolarWinds fixed multiple flaws in Serv-U and SolarWinds Platform Pandabuy was extorted twice by the same threat actor UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces Chinese threat actor exploits old ThinkPHP flaws since October 2023 A new Linux (..)

Data breaches 126

Data breaches Banking Hacking Malware 126

Security Affairs

JUNE 9, 2024

Last week, the RansomHub ransomware group claimed to have stolen the information of over 2 million customers from the American telecommunications company Frontier Communications. The RansomHub group claimed to have stolen 5GB of data from the telecommunications giant. concludes the letter reads.

Data breaches 101

Data breaches Identity Theft Telecommunications Cybercrime 101

Security Affairs

OCTOBER 7, 2024

Telecommunications giant Comcast is notifying approximately 238,000 customers impacted by the Financial Business and Consumer Solutions (FBCS) data breach. According to the agency, compromised information may include names, dates of birth, Social Security numbers, and account information. Later, the company determined that over 4.25

Data breaches 131

Data breaches Telecommunications Accountability Ransomware 131

Security Affairs

APRIL 10, 2024

AT&T initially denied any data breach, below is the statement from the telecomunication giant : “Based on our investigation Thursday, the information that appeared in an internet chat room does not appear to have come from our systems,” Later, the telecommunications company retracted its initial denial and confirmed the data breach.

Data breaches 126

Data breaches Telecommunications Identity Theft Hacking 126

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe.

Government 98

Government Malware Telecommunications Cybercrime 98

Security Affairs

AUGUST 18, 2021

million current postpaid customer accounts, as well as more than 40 million records of former and prospective customers. Importantly, no phone numbers, account numbers, PINs, passwords, or financial information were compromised in any of these files of customers or prospective customers.” Pierluigi Paganini.

Data breaches 102

Data breaches Mobile Telecommunications Accountability 102

Security Affairs

OCTOBER 6, 2022

.” The arrest is the result of Operation Guardian led by AFP which became aware of a number of text messages demanding some Optus customers transfer $2000 to a bank account or face their personal information being used for financial crimes. The database belonging to the company was leaked on a cybercrime forum.

Data breaches 98

Data breaches Scams Telecommunications Financial Services 98

Security Affairs

OCTOBER 5, 2022

Bad news for the Australian telecommunications industry, the largest company in the country Telstra suffered a data breach. Australia’s largest telecommunications company Telstra disclosed a data breach through a third-party supplier. It seems that the security breach also impacted other companies.

Data breaches 98

Data breaches Telecommunications Accountability Information Security 98

Security Affairs

APRIL 23, 2022

Telecommunication giant T-Mobile confirmed the LAPSUS$ extortion group gained access to its networks in March. The popular investigator and journalist Brian Krebs first surmised that the LAPSUS$ gang has breached T-Mobile after he reviewed a copy of the private chat messages between members of the cybercrime group. ” wrote Krebs.

Mobile 102

Mobile VPN Social Engineering Telecommunications 102

IT Security Guru

DECEMBER 1, 2022

During the last few years, we have all become witnesses to intense cybercrime and sophisticated cyberattacks. As cybercrime continues to increase, the human element can play the most important role in cybersecurity posture and hygiene. This upward trend is further fuelled by a shift in working conditions like working remotely.

Cyber threats 127

Cyber threats Cybersecurity Education Risk 127

Security Affairs

MARCH 10, 2023

CPNI is information related to the telecommunications services purchased by the customers, including the number of lines for each account or the wireless plan to which customers are subscribed. Social Security Number, account passwords). BleepingComputer reported that approximately 9 million wireless accounts were impacted.

Data breaches 98

Data breaches Hacking Wireless Telecommunications 98

Security Affairs

APRIL 19, 2024

The group also relies on valid accounts and leverage strong operational security, which combined, allows for long-term undiscovered persistence. A Chinese Foreign Ministry spokesperson recently stated that the Volt Typhoon activity is not associated with Beijing, but linked it to a cybercrime operation. In fact, the U.S.

Energy and Utilities 132

Energy and Utilities Telecommunications Technology Government 132

Security Affairs

JULY 31, 2022

Once obtained the credentials, an attacker can add an administrator account and use it to obtain full access to the device and perform actions such as watching live footage from the camera as shown below. An attacker can conduct this attack by capturing one unencrypted ONVIF request authenticated with the WS-UsernameToken schema.

Surveillance 145

Surveillance Authentication Telecommunications Manufacturing 145

Security Affairs

FEBRUARY 4, 2019

. “This activity was typically only within reach of intelligence agencies or surveillance contractors, but now Motherboard has confirmed that this capability is much more widely available in the hands of financially-driven cybercriminal groups, who are using it to empty bank accounts. ” said the Bank spokesman.

Banking 111

Banking Telecommunications Authentication Advertising 111

Security Affairs

MAY 1, 2023

The carrier states that personal financial account information and call records were not affected by the security breach. In January, T-Mobile suffered the first data breach in 2023, threat actors stole the personal information of 37 million current postpaid and prepaid customer accounts.

Data breaches 98

Data breaches Mobile Identity Theft Accountability 98

Security Affairs

DECEMBER 1, 2024

CISA adds Array Networks AG and vxAG ArrayOS flaw to its Known Exploited Vulnerabilities catalog Thai police arrested Chinese hackers involved in SMS blaster attacks Zyxel firewalls targeted in recent ransomware attacks Malware campaign abused flawed Avast Anti-Rootkit driver Russia-linked APT TAG-110 uses targets Europe and Asia Russia-linked threat (..)

Cybercrime 71

Cybercrime Firewall Social Engineering Ransomware 71

SecureWorld News

AUGUST 28, 2023

RELATED: Lapsus$ Returns One Week After 7 Teenage Hackers Arrested ] The extent of Kurtaj's involvement in cybercrimes is staggering. This marked a turning point in the battle against cybercrime and served as a stark reminder that even the most skilled threat actors can be brought to justice. and Brazil. and another in Brazil.

Cybercrime 83

Cybercrime Social Engineering Telecommunications Hacking 83

eSecurity Planet

SEPTEMBER 21, 2024

Health Insurance Portability & Accountability Act (HIPAA) The Health Insurance Portability and Accountability Act (HIPAA) sets standards for protecting sensitive health information, particularly electronic health records (EHRs). The act also covers various forms of cybercrime, including malware distribution and data theft.

Cybersecurity 114

Cybersecurity Computers and Electronics Cyber threats Healthcare 114

SecureWorld News

AUGUST 10, 2021

Now for access as a service, you're getting a username and password to a database, or to the back end of the administrative account, to a hospital or to a bank. While the highest price was $95,000 for an Asian telecommunications service provider. The price for network access can range quite a bit.

Telecommunications 98

Telecommunications Marketing Ransomware Accountability 98

Security Affairs

JANUARY 13, 2023

A Pro-Russian cybercrime group named NoName057 (16) (aka 05716nnm or Nnm05716) is behind a wave of DDoS attacks against organizations in Ukraine and NATO countries, SentinelOne researchers reported. GitHub removed the accounts after SentinelOne reported the abuse to the company. The current C2 server is zig35m48zur14nel40[.]myftp.org

DDOS 98

DDOS Telecommunications DNS Education 98

SecureWorld News

NOVEMBER 20, 2023

Federal Communications Commission (FCC) has adopted new rules aimed at enhancing security measures for cell phone accounts. SIM swapping involves the unauthorized transfer of a user's account to a SIM card controlled by malicious actors, achieved by convincing the victim's wireless carrier to make the change.

Mobile 90

Mobile Wireless Artificial Intelligence Accountability 90

Digital Shadows

OCTOBER 23, 2024

The attacker gained initial access to two employee accounts by carrying out social engineering attacks on the organization’s help desk twice. Scattered Spider previously targeted telecommunications firms, likely to support its SIM-swapping activities that facilitate account takeovers.

Social Engineering 122

Social Engineering Engineering Accountability Backups 122

Security Affairs

JUNE 2, 2019

4 SPTA provides such obligation only for providers of telecommunications services such as Swisscom or UPC.” The popular privacy-focused email service ProtonMail made the headlines because it has been accused of supporting real-time surveillance carried out by law enforcement. ” continues the post.

Government 111

Government Surveillance Telecommunications Advertising 111