Accountability, Event and Hacking - Cyber Security Informer

Account Hijacking Forum OGusers Hacked

Krebs on Security

MAY 18, 2019

com — a forum popular among people involved in hijacking online accounts and conducting SIM swapping attacks to seize control over victims’ phone numbers — has itself been hacked, exposing the email addresses, hashed passwords, IP addresses and private messages for nearly 113,000 forum users.

Accountability

Accountability Hacking Backups Passwords

A large botnet targets M365 accounts with password spraying attacks

Security Affairs

FEBRUARY 24, 2025

A botnet of 130,000+ devices is attacking Microsoft 365 accounts via password-spraying, bypassing MFA by exploiting basic authentication. SecurityScorecard researchers discovered a botnet of over 130,000 devices that is conducting password-spray attacks against Microsoft 365 (M365) accounts worldwide. ” continues the report.

Passwords

Passwords Accountability Authentication Malware

Breached Data Indexer ‘Data Viper’ Hacked

Krebs on Security

JULY 13, 2020

Data Viper , a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. An online post by the attackers who broke into Data Viper. But on Aug.

Hacking

Hacking Marketing Cybercrime Accountability

Discord Admins Hacked by Malicious Bookmarks

Krebs on Security

MAY 30, 2023

A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised as a Web browser bookmark. Scavuzzo said the administrator’s account was hijacked even though she had multi-factor authentication turned on.

Hacking

Hacking Accountability Scams Cryptocurrency

A Day in the Life of a Prolific Voice Phishing Crew

Krebs on Security

JANUARY 7, 2025

Besieged by scammers seeking to phish user accounts over the telephone, Apple and Google frequently caution that they will never reach out unbidden to users this way. The phishers also abused legitimate Google services to send Tony an email from google.com, and to send a Google account recovery prompt to all of his signed-in devices.

Phishing

Phishing Cryptocurrency Accountability Social Engineering

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Krebs on Security

JUNE 15, 2024

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider , a cybercrime group suspected of hacking into Twilio , LastPass , DoorDash , Mailchimp , and nearly 130 other organizations over the past two years. man arrested was a SIM-swapper who went by the alias “ Tyler.”

Hacking

Hacking Cybercrime Phishing Passwords

Analysing the (Alleged) Minneapolis Police Department "Hack"

Troy Hunt

JUNE 1, 2020

closed or ia idk | BLM (@pjnkmin) May 31, 2020 Just to be clear: there's not necessarily a direct link between whoever put the video above together and the data now doing the rounds and attribution is tricky once you get a bunch of different people under different accounts and pseudonyms all flying the "Anonymous" banner.

Hacking

Hacking Passwords Data breaches Accountability

High-School Graduation Prank Hack

Schneier on Security

AUGUST 31, 2022

This is a fun story, detailing the hack a group of high school students perpetrated against an Illinois school district, hacking 500 screens across a bunch of schools. A spokesperson for the D214 school district tells WIRED they can confirm the events in Duong’s blog post happened. It has a happy ending: no one was prosecuted.

Hacking

Hacking Penetration Testing Accountability Software

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

In each incident, the intruders have left behind a “web shell,” an easy-to-use, password-protected hacking tool that can be accessed over the Internet from any browser. By all accounts, rooting out these intruders is going to require an unprecedented and urgent nationwide clean-up effort.

Hacking

Hacking Software Government Internet

DoubleClickjacking allows clickjacking on major websites

Security Affairs

JANUARY 2, 2025

The “DoubleClickjacking” exploit bypasses protections on major websites, using a double-click sequence for clickjacking and account takeover attacks. Attackers can exploit the technique to facilitate clickjacking attacks and account takeovers on almost all major websites. ” Paulos Yibelo wrote.

Accountability

Accountability Authentication Hacking Information Security

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

Security and Exchange Commission (SEC) recently laid down the hammer charging and fining four prominent cybersecurity vendors for making misleading claims in connection with the SolarWinds hack. Scott Kannry , CEO, Axio Kannry The SEC is serious about companies disclosing the details of an event if it is relevant to investors.

CISO

CISO CSO Risk Cyber threats

Ransomware Group Turns to Facebook Ads

Krebs on Security

NOVEMBER 10, 2020

Now, one crime group has started using hacked Facebook accounts to run ads publicly pressuring their ransomware victims into paying up. The Facebook ad blitz was paid for by Hodson Event Entertainment , an account tied to Chris Hodson , a deejay based in Chicago. On the evening of Monday, Nov. Image: Chris Hodson.

Ransomware

Ransomware Accountability Hacking Advertising

New version of Android malware FakeCall redirects bank calls to scammers

Security Affairs

OCTOBER 30, 2024

The malware allows operators to steal bank users’ sensitive information and money from their bank accounts. Upon detecting specific events (e.g., Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, malware)

Banking

Banking Malware Accountability Phishing

Chinese national charged for hacking thousands of Sophos firewalls

Security Affairs

DECEMBER 11, 2024

has charged a Chinese national for hacking thousands of Sophos firewall devices worldwide in 2020. has charged the Chinese national Guan Tianfeng (aka gbigmao and gxiaomao) for hacking thousands of Sophos firewall devices worldwide in 2020. Tianfeng worked at Sichuan Silence Information Technology Co., concludes the report.

Firewall

Firewall Hacking Malware Passwords

Capture the Flag events and eSports

Adam Shostack

JANUARY 2, 2025

Capture the Flag Events (CTFs) and electronic Sports (eSports) are good examples of a relatively new trend. Capture the Flag events, a collective obsession In the hacking communities, CTF events have always been the practitioner's favorite. The more you successfully hack, the more you get flags that gives points.

Computers and Electronics

Computers and Electronics Hacking Education Government

A crime ring compromised Italian state databases reselling stolen info

Security Affairs

OCTOBER 28, 2024

“[Leonardo Maria del Vecchio] eagerly awaiting the completion of preliminary investigations to be able to prove he has nothing to do with the events in question and that charges laid against him have no basis.” ” reads a statement from a lawyer for Del Vecchio.

Computers and Electronics

Computers and Electronics Banking Marketing Hacking

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

The Last Watchdog

APRIL 5, 2022

As the dust settles following the recently disclosed hack of NewsCorp , important lessons are emerging for the cybersecurity and journalism communities. Employees often reuse passwords between other services and accounts. Related: How China challenged Google in Operation Aurora. MFA, however useful, is no silver bullet.

Hacking

Hacking Passwords Internet Internet

WeLeakInfo Leaked Customer Payment Info

Krebs on Security

MARCH 15, 2021

com , a wildly popular service that sold access to more than 12 billion usernames and passwords stolen from thousands of hacked websites. In an ironic turn of events, a lapsed domain registration tied to WeLeakInfo let someone plunder and publish account data on 24,000 customers who paid to access the service with a credit card.

Passwords

Passwords Accountability Hacking Data breaches

Fake Signal and Telegram Apps in the Google Play Store

Schneier on Security

SEPTEMBER 14, 2023

The Trojan has been linked to a China-aligned hacking group tracked as GREF. Both apps were built on open source code available from Signal and Telegram. Interwoven into that code was an espionage tool tracked as BadBazaar. BadBazaar has been used previously to target Uyghurs and other Turkic ethnic minorities.

Malware

Malware Accountability Hacking Spyware

FBI Hacker Dropped Stolen Airbus Data on 9/11

Krebs on Security

SEPTEMBER 13, 2023

” Airbus has apparently confirmed the cybercriminal’s account to the threat intelligence firm Hudson Rock , which determined that the Airbus credentials were stolen after a Turkish airline employee infected their computer with a prevalent and powerful info-stealing trojan called RedLine. Microsoft Corp. government inboxes.

Cybercrime

Cybercrime Passwords Authentication Malware

ZAGG disclosed a data breach that exposed its customers’ credit card data

Security Affairs

DECEMBER 29, 2024

notifies customers of credit card data breach, after threat actors hacked a third-party app from its e-commerce provider. disclosed a data breach that exposed its customers’ credit card data after threat actors hacked a third-party application from its e-commerce providerBigCommerce. ” concludes the notification.

Data breaches

Data breaches Computers and Electronics Hacking Wireless

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

Troy Hunt

JANUARY 10, 2018

million records on US consumers (this started a series events which ultimately led to me testifying in front of Congress ), South Africa had data on everyone living in the country (and a bunch of deceased folks as well) leaked by a sloppy real estate agent and data from Australia's Medicare system was being sold to anyone able to come up with $30.

Hacking

Hacking Government Encryption Risk

Cybercriminals launched “Leaksmas” event in the Dark Web exposing massive volumes of leaked PII and compromised data

Security Affairs

DECEMBER 28, 2023

It will inevitably result in them facing a host of adverse effects, such as account takeovers (ATO), business email compromises (BEC), identity theft, and financial fraud. This widespread geographical distribution of “Free Leaksmas” event highlights the extensive global reach and severe impact of these cybercriminal activities.

Identity Theft

Identity Theft Data breaches Hacking Government

California Cryobank, the largest US sperm bank, disclosed a data breach

Security Affairs

MARCH 19, 2025

Threat actors potentially accessed and/or acquired some of customers’ information, including names, Social Security numbers, driver’s license numbers, financial account numbers and health insurance information. At this time, it is unclear if the exposed information includes any donor data.

Data breaches

Data breaches Banking Insurance Hacking

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

Krebs on Security

MARCH 31, 2022

On Tuesday, KrebsOnSecurity warned that hackers increasingly are using compromised government and police department email accounts to obtain sensitive customer data from mobile providers, ISPs and social media companies. co saying he could be hired to perform fake EDRs on targets at will, provided the account was recently active.

Government

Government Accountability Education Media

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

Ngo got his treasure trove of consumer data by hacking and social engineering his way into a string of major data brokers. Ngo’s businesses enabled an entire generation of cybercriminals to commit an estimated $1 billion worth of new account fraud , and to sully the credit histories of countless Americans in the process.

Identity Theft

Identity Theft Computers and Electronics Hacking Accountability

The Olympics: a timeline of scams, hacks, and malware

Malwarebytes

JULY 28, 2021

And while actual, measurable cyberrattacks and hacks surrounding The Olympics did not truly get rolling until 2008 in Beijing, The Olympic games have traditionally been quite the target for malicious acts of all kinds, dating back years. It was also the first major Olympics event where organizers braced for hacking related impact.

Scams

Scams Hacking Malware Mobile

You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results

Krebs on Security

APRIL 29, 2022

Google has for years accepted requests to remove certain sensitive data such as bank account or credit card numbers from search results. BriansClub has long abused my name and likeness to pimp its wares on the hacking forums. The login page for perhaps the most bustling cybercrime store for stolen payment card data.

Identity Theft

Identity Theft Cybercrime Retail Hacking

The March Madness Cyber Threat

Adam Levin

MARCH 17, 2022

Unfortunately, brackets create opportunities for a wide array of phishing and hacking campaigns, particularly in workplaces where a lot of brackets are distributed. The potential for hacks and scams is limited to the imagination of the person or group performing them. Keep employee email accounts up to date.

Cyber threats

Cyber threats Phishing Passwords Malware

Cactus ransomware gang claims the Schneider Electric hack

Security Affairs

JANUARY 30, 2024

The ransomware identifies user accounts by viewing successful logins in Windows Event Viewer, it also uses a modified variant of the open-source PSnmap Tool. In early January, the Cactus ransomware group claimed to have hacked Coop, one of the largest retail and grocery providers in Sweden.

Ransomware

Ransomware Hacking Data breaches Digital transformation

A new campaign is likely targeting a zero-day in Fortinet FortiGate firewalls

Security Affairs

JANUARY 14, 2025

Threat actors gained unauthorized access to network devices, created accounts, and modified configurations. In the reconnaissance phase, experts observed automated login/logout events without changes until November 22, 2024, when unauthorized configuration edits began. ” reads the post published by Artic Wolf.

Firewall

Firewall VPN Accountability Firmware

BlackLock Ransomware Targeted by Cybersecurity Firm

Security Affairs

MARCH 26, 2025

Resecurity has been covertly acquiring critical and previously undisclosed artifacts related to threat actors’ network infrastructure, logs, ISPs and hosting providers involved, timestamps of logins, associated file-sharing accounts at MEGA, the group created to store stolen data from the victims (which later got published via DLS in TOR).

Ransomware

Ransomware Cybersecurity Healthcare Accountability

Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket

Security Affairs

JANUARY 15, 2025

The ransomware group’s note warns that any changes to account permissions or files will end negotiations. In the event a customer suspects they may have exposed their credentials, they can start by following the steps listed in this post. Halcyon continues.

Encryption

Encryption Ransomware Authentication Accountability

VMware Flaw a Vector in SolarWinds Breach?

Krebs on Security

DECEMBER 18, 2020

government cybersecurity agencies warned this week that the attackers behind the widespread hacking spree stemming from the compromise at network software firm SolarWinds used weaknesses in other, non-SolarWinds products to attack high-value targets. ” Indeed, the NSA’s Dec. ” Also on Dec.

Software

Software Authentication Hacking Government

That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards

Krebs on Security

NOVEMBER 13, 2018

Randall said she didn’t notice at the time because she was in the middle of switching careers, didn’t have any active photography clients, and had gotten out of the habit of checking that email account. “I still don’t have access to it because I don’t have access to the email account tied to my old domain. .

Accountability

Accountability eCommerce Cybercrime Advertising

Spa Grand Prix email account hacked to phish banking info from fans

Bleeping Computer

MARCH 20, 2024

Hackers hijacked the official contact email for the Belgian Grand Prix event and used it to lure fans to a fake website promising a €50 gift voucher. [.]

Banking

Banking Accountability Phishing Hacking

Calendar Meeting Links Used to Spread Mac Malware

Krebs on Security

FEBRUARY 28, 2024

The profile also linked to Mr. Lee’s Twitter/X account , which features the same profile image. Doug then messaged the Mr. Lee account on Telegram, who said there was some kind of technology issue with the video platform, and that their IT people suggested using a different meeting link. ” Image: SlowMist.

Malware

Malware Cryptocurrency Software Phishing

Weekly Update 156

Troy Hunt

SEPTEMBER 13, 2019

I'm talking a little about those events ( all listed on my events page ), this week's changes to EV, more data breaches and a somewhat semantic argument about the definition of "theft". Secure users in mins with a free dev account. extended) The Void.to

Data breaches

Data breaches Accountability Hacking

COVID-19 ‘Breach Bubble’ Waiting to Pop?

Krebs on Security

JUNE 30, 2020

The COVID-19 pandemic has made it harder for banks to trace the source of payment card data stolen from smaller, hacked online merchants. On the plus side, months of quarantine have massively decreased demand for account information that thieves buy and use to create physical counterfeit credit cards.

Retail

Retail Banking Hacking Cybercrime

Android 7.0+ Phones Can Now Double as Google Security Keys

Krebs on Security

APRIL 11, 2019

As first disclosed by KrebsOnSecurity last summer , Google maintains it has not had any of its 85,000+ employees successfully phished on their work-related accounts since early 2017, when it began requiring all employees to use physical Security Keys in place of passwords and one-time codes. a one-time token, key fob or mobile device).

Mobile

Mobile Authentication Passwords Accountability

Tens of thousands Cisco IOS XE devices were hacked by exploiting CVE-2023-20198

Security Affairs

OCTOBER 20, 2023

The advisory published by the vendor states that the exploitation of the vulnerability allows a remote, unauthenticated attacker to create an account on an affected system with privilege level 15 access. This vulnerability allows a remote, unauthenticated attacker to create an account on an affected system with privilege level 15 access.

Hacking

Hacking Internet Internet Accountability

Chinese APT Weaver Ant infiltrated a telco in Asia for over four years

Security Affairs

MARCH 24, 2025

During a forensic investigation, Sygnia researchers observed multiple alerts that revealed a re-enabled threat actor account by a service account from an unidentified server. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, China)

Telecommunications

Telecommunications Encryption Accountability Firewall

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Krebs on Security

SEPTEMBER 30, 2024

One of many self portraits published on the Instagram account of Enzo Zelocchi. ” Islam and Woody were both core members of UGNazi, a hacker collective that sprang up in 2012 and claimed credit for hacking and attacking a number of high-profile websites. he was unhappy with the event and demanded half of his money back.

Cryptocurrency

Cryptocurrency Government Internet Internet

How to enhance the security of your social media accounts

Pen Test Partners

AUGUST 29, 2024

Secure networks : Avoid using untrusted public Wi-Fi to access social media accounts, instead, use mobile data. This avoids one of the easiest ways attackers get access to your account – you reusing passwords across multiple websites. The idea is that you need to have this physical item with you to access your account.

Media

Media Accountability Password Management Passwords

Account Hijacking Forum OGusers Hacked

A large botnet targets M365 accounts with password spraying attacks

Trending Sources

Breached Data Indexer ‘Data Viper’ Hacked

Discord Admins Hacked by Malicious Bookmarks

A Day in the Life of a Prolific Voice Phishing Crew

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Analysing the (Alleged) Minneapolis Police Department "Hack"

High-School Graduation Prank Hack

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

DoubleClickjacking allows clickjacking on major websites

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

Ransomware Group Turns to Facebook Ads

New version of Android malware FakeCall redirects bank calls to scammers

Chinese national charged for hacking thousands of Sophos firewalls

Capture the Flag events and eSports

A crime ring compromised Italian state databases reselling stolen info

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

WeLeakInfo Leaked Customer Payment Info

Fake Signal and Telegram Apps in the Google Play Store

FBI Hacker Dropped Stolen Airbus Data on 9/11

ZAGG disclosed a data breach that exposed its customers’ credit card data

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

Cybercriminals launched “Leaksmas” event in the Dark Web exposing massive volumes of leaked PII and compromised data

California Cryobank, the largest US sperm bank, disclosed a data breach

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

Confessions of an ID Theft Kingpin, Part I

The Olympics: a timeline of scams, hacks, and malware

You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results

The March Madness Cyber Threat

Cactus ransomware gang claims the Schneider Electric hack

A new campaign is likely targeting a zero-day in Fortinet FortiGate firewalls

BlackLock Ransomware Targeted by Cybersecurity Firm

Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket

VMware Flaw a Vector in SolarWinds Breach?

That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards

Spa Grand Prix email account hacked to phish banking info from fans

Calendar Meeting Links Used to Spread Mac Malware

Weekly Update 156

COVID-19 ‘Breach Bubble’ Waiting to Pop?

Android 7.0+ Phones Can Now Double as Google Security Keys

Tens of thousands Cisco IOS XE devices were hacked by exploiting CVE-2023-20198

Chinese APT Weaver Ant infiltrated a telco in Asia for over four years

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

How to enhance the security of your social media accounts

Stay Connected