SecureWorld News

OCTOBER 21, 2021

CrowdStrike recently posted a blog about its investigation into a malicious hacking group known as LightBasin, or UNC1945. Since 2016, this cybercrime organization has been building customized tools to invade the world's telecommunications sector. LightBasin hacks critical infrastructure with intention and competence.

Telecommunications 98

Telecommunications Energy and Utilities Passwords Hacking 98

Security Affairs

JUNE 24, 2024

The cybercrime group ExCobalt targeted Russian organizations in multiple sectors with a previously unknown backdoor known as GoRed. Positive Technologies researchers reported that a cybercrime gang called ExCobalt targeted Russian organizations in multiple sectors with a previously unknown Golang-based backdoor known as GoRed.

Cybercrime 118

Cybercrime Telecommunications DNS Technology 118

Security Affairs

DECEMBER 1, 2024

CISA adds Array Networks AG and vxAG ArrayOS flaw to its Known Exploited Vulnerabilities catalog Thai police arrested Chinese hackers involved in SMS blaster attacks Zyxel firewalls targeted in recent ransomware attacks Malware campaign abused flawed Avast Anti-Rootkit driver Russia-linked APT TAG-110 uses targets Europe and Asia Russia-linked threat (..)

Cybercrime 71

Cybercrime Firewall Social Engineering Ransomware 71

Security Affairs

MARCH 21, 2022

Microsoft is investigating claims that the Lapsus$ hacking group breached its internal Azure DevOps source code repositories. Microsoft announced that is investigating claims that the Lapsus$ cybercrime gang breached their internal Azure DevOps source code repositories and stolen data. SecurityAffairs – hacking, Microsoft).

Hacking 98

Hacking InfoSec Telecommunications Cybercrime 98

Security Affairs

JULY 6, 2021

The alleged perpetrator, who turned out to be a citizen of Morocco, was arrested in May by the Moroccan police based on the data about his cybercrimes that was provided by Group-IB. SecurityAffairs – hacking, Operation Lyrebird). ” said Stephen Kavanagh, INTERPOL Executive Director of Police Services. Original post at [link].

Cybercrime 104

Cybercrime Phishing Banking Telecommunications 104

Security Affairs

MARCH 5, 2020

China-linked cyber espionage groups increasingly targeted organizations in the telecommunications industry in 2019. According to the CrowdStrike 2020 Global Threat Report, the telecommunications and government sectors were the most targeted by the threat actors. SecurityAffairs – hacking, China). Pierluigi Paganini.

Telecommunications 132

Telecommunications Advertising Mobile Government 132

Krebs on Security

APRIL 12, 2022

Department of Justice (DOJ) said today it seized the website and user database for RaidForums , an extremely popular English-language cybercrime forum that sold access to more than 10 billion consumer records stolen in some of the world’s largest data breaches since 2015. Not all of those undercover buys went as planned.

Government 256

Government Identity Theft Mobile Data breaches 256

Security Affairs

MARCH 30, 2024

AT&T confirmed that a data breach impacted 73 million current and former customers after its data were leaked on a cybercrime forum. ShinyHunters is a popular hacking crew that is known to have offered for sale data stolen from tens of major organizations, including Tokopedia , Homechef , Chatbooks.com , Microsoft , and Minted.

Data breaches 144

Data breaches Telecommunications Cybercrime Hacking 144

Krebs on Security

NOVEMBER 3, 2022

In 2013, Kurittu worked on investigation involving Kivimaki’s use of the Zbot botnet, among other activities Kivimaki engaged in as a member of the hacker group Hack the Planet. Among those who grabbed a copy of the database was Antti Kurittu , a former criminal investigator at the Helsinki Police Department.

Data breaches 238

Data breaches Cybercrime Telecommunications Accountability 238

Security Affairs

FEBRUARY 15, 2025

CISA adds Microsoft Windows, Zyxel device flaws to its Known Exploited Vulnerabilities catalog Microsoft Patch Tuesday security updates for February 2025 ficed 2 actively exploited bugs Hacking Attackers exploit a new zero-day to hijack Fortinet firewalls Security OpenSSL patched high-severity flaw CVE-2024-12797 Progress Software fixed multiple high-severity (..)

Spyware 69

Spyware Firewall Artificial Intelligence Malware 69

Security Affairs

MARCH 18, 2022

Mandiant researchers discovered a new Unix rootkit named Caketap, which is used to steal ATM banking data, while investigating the activity of the LightBasin cybercrime group (aka UNC1945 ). The China-linked hacking group has been active since at least 2016, according to the CrowdStrike researchers it is using a very sophisticated toolset.

Banking 144

Banking Telecommunications System Administration Hacking 144

Security Affairs

OCTOBER 6, 2023

The creation of a dedicated emergency number for cybersecurity could provide an effective solution to this rapidly growing challenge The growing threat of cybercrime is calling for new and innovative defense strategies. This would have a long-term impact on cybercrime prevention, helping to create a society more aware of digital threats.

Cybersecurity 128

Cybersecurity Cybercrime Computers and Electronics Education 128

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. 24, Russia invades Ukraine, and fault lines quickly begin to appear in the cybercrime underground. It emerges that email marketing giant Mailchimp got hacked. Uber blames LAPSUS$ for the intrusion.

Cryptocurrency 282

Cryptocurrency Cybercrime Computers and Electronics Scams 282

Security Affairs

MARCH 10, 2023

AT&T is warning some of its customers that some of their information was exposed after the hack of a third-party vendor’s system. AT&T is notifying millions of customers that some of their information was exposed after a third-party vendor was hacked. ”​ Exposed data don’t include financial information (i.e.

Data breaches 98

Data breaches Hacking Wireless Telecommunications 98

Security Affairs

OCTOBER 8, 2023

Belgian intelligence service VSSE accused Alibaba of ‘possible espionage’ at European hub in Liege A WhatsApp zero-day exploit can cost several million dollars CISA adds JetBrains TeamCity and Windows flaws to its Known Exploited Vulnerabilities catalog NATO is investigating a new cyber attack claimed by the SiegedSec group Global CRM Provider Exposed (..)

Data breaches 127

Data breaches Ransomware Hacking Cybercrime 127

Security Affairs

JUNE 29, 2020

According to the experts, the malware was developed by the Russian cybercrime crew known as Evil Corp , which was behind the Dridex Trojan , and multiple ransomware like Locky , Bart, Jaff , and BitPaymer. Most of the victims belong to the manufacturing industry, followed by IT and media and telecommunications sectors.

Ransomware 123

Ransomware Telecommunications Manufacturing Advertising 123

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. The telecommunications provider pointed out that no financial information (credit or debit card numbers, banking details) has been compromised.

Data breaches 131

Data breaches Telecommunications Banking Mobile 131

Security Affairs

JUNE 28, 2022

Non-state actors include multinational corporations, collectives of hacktivists, non-governmental organizations (NGOs), cybercrime syndicates, private military organizations, media outlets, terrorist groups, labor unions, organized ethnic groups, lobby groups, criminal organizations, private businesses, and others. Pierluigi Paganini.

Cyber Attacks 126

Cyber Attacks Cybercrime Telecommunications Government 126

Security Affairs

JANUARY 14, 2022

” To cash out the funds received as ransom payments, the cybercrime group carried out complex financial transactions using online payment services that are banned in Ukraine, they used an extensive network of fictitious identities. . SecurityAffairs – hacking, IKEA). ” continues the press release. Pierluigi Paganini.

Ransomware 137

Ransomware DDOS Telecommunications Malware 137

Krebs on Security

AUGUST 19, 2020

For now at least, they appear to be focusing primarily on companies in the financial, telecommunications and social media industries. SCHOOL OF HACKS. “This stuff can very quickly branch out to other purposes for hacking.” ” A phishing page (github-ticket[.]com) Image: urlscan.io.

Phishing 363

Phishing VPN Social Engineering Media 363

Security Affairs

JANUARY 2, 2022

The gang also targeted the South American telecommunication providers Claro and Embratel. SecurityAffairs – hacking, Lapsus$ ransomware). Early this month, the ransomware gang hit the websites under Brazil’s Ministry of Health (MoH) causing the unavailability of COVID-19 vaccination data of millions of citizens.

Media 145

Media Ransomware Telecommunications Accountability 145

Krebs on Security

FEBRUARY 28, 2023

In each case, the goal of the attackers was the same: Phish T-Mobile employees for access to internal company tools, and then convert that access into a cybercrime service that could be hired to divert any T-Mobile user’s text messages and phone calls to another device. One of the groups that reliably posted “Tmo up!

Mobile 336

Mobile Phishing Authentication Advertising 336

Security Affairs

OCTOBER 24, 2020

Researchers from the NCC Group’s report and later Symantec confirmed that malware was developed by the Russian cybercrime crew known as Evil Corp , which was behind the Dridex Trojan , and multiple ransomware like Locky , Bart, Jaff , and BitPaymer. SecurityAffairs – hacking, WastedLocker). Pierluigi Paganini.

Ransomware 123

Ransomware Telecommunications Banking Advertising 123

Security Affairs

JUNE 9, 2024

Last week, the RansomHub ransomware group claimed to have stolen the information of over 2 million customers from the American telecommunications company Frontier Communications. The RansomHub group claimed to have stolen 5GB of data from the telecommunications giant. concludes the letter reads.

Data breaches 101

Data breaches Identity Theft Telecommunications Cybercrime 101

Security Affairs

FEBRUARY 16, 2020

Iranian hackers have been hacking VPN servers to plant backdoors in companies around the world. Iran-linked attackers targeted Pulse Secure, Fortinet, Palo Alto Networks, and Citrix VPNs to hack into large companies as part of the Fox Kitten Campaign. ” reads the report published by ClearSky.

VPN 145

VPN Advertising Telecommunications Hacking 145

Security Affairs

OCTOBER 18, 2020

Since August, FIN11 started targeting organizations in many industries, including defense, energy, finance, healthcare, legal, pharmaceutical, telecommunications, technology, and transportation. SecurityAffairs – hacking, FIN11). In recent attacks, the group was observed deploying the Clop ransomware into the networks of its victims.

Ransomware 140

Ransomware Malware Telecommunications Advertising 140

Security Affairs

MARCH 22, 2022

The Lapsus$ extortion group claims to have hacked Microsoft ‘s internal Azure DevOps server and leaked the source code for some projects. Microsoft recently announced that is investigating claims that the Lapsus$ cybercrime gang breached their internal Azure DevOps source code repositories and stolen data. Pierluigi Paganini.

Cybercrime 98

Cybercrime Telecommunications VPN Hacking 98

Security Affairs

APRIL 10, 2024

ShinyHunters is a popular hacking crew that is known to have offered for sale data stolen from tens of major organizations, including Tokopedia , Homechef , Chatbooks.com , Microsoft , and Minted. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, data breach)

Data breaches 126

Data breaches Telecommunications Identity Theft Hacking 126

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. Pierluigi Paganini.

Government 98

Government Malware Telecommunications Cybercrime 98

Security Affairs

JULY 3, 2022

SecurityAffairs – hacking, Zyxel). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. The post Security Affairs newsletter Round 372 by Pierluigi Paganini appeared first on Security Affairs.

Telecommunications 98

Telecommunications Media DDOS Malware 98

SecureWorld News

AUGUST 28, 2023

Two individuals associated with the notorious Lapsus$ cybercriminal gang have been convicted for their involvement in a string of high-profile hacking incidents, according to the BBC. RELATED: Lapsus$ Returns One Week After 7 Teenage Hackers Arrested ] The extent of Kurtaj's involvement in cybercrimes is staggering. and Brazil.

Cybercrime 98

Cybercrime Social Engineering Telecommunications Hacking 98

Security Affairs

MARCH 16, 2020

Hackers have stolen O2 customers’ data from a database run by Aerial Direct , one of the largest UK partners of the telecommunications services provider. SecurityAffairs – Aerial Direct , cybercrime). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Data breaches 138

Data breaches Telecommunications Passwords Advertising 138

Security Affairs

OCTOBER 7, 2024

Telecommunications giant Comcast is notifying approximately 238,000 customers impacted by the Financial Business and Consumer Solutions (FBCS) data breach. Telecommunications provider Comcast is one of the FBCS customers impacted by the incident. Starting on April 4, 2024, the agency began notifying impacted customers.

Data breaches 131

Data breaches Telecommunications Ransomware Accountability 131

Security Affairs

AUGUST 16, 2021

data breach notification published by the telecommunications giant on its website revealed that the security breach impacted both employees and customers. SecurityAffairs – hacking, data breach). .” In March 2020, the wireless carrier was a victim of a sophisticated cyber attack that targeted its email vendor.A

Data breaches 132

Data breaches Mobile Telecommunications Wireless 132

Security Affairs

FEBRUARY 22, 2022

The cybercrime unit of the Ukrainian police has arrested a group of cybercriminals who managed to steal payment card data from at least 70,000 people by setting up mobile fake top-up services. 361 (Unauthorized interference in the work of computers, automated systems, computer networks or telecommunications networks) and Part 3 of Art.

Phishing 102

Phishing Banking Mobile Telecommunications 102

Security Affairs

JULY 31, 2022

The vendor addressed the issue with the release of a patch on June 28, 2022, “In addition to building security, surveillance cameras are used throughout many critical infrastructure sectors such as oil & gas, power grids, telecommunications, etc. SecurityAffairs – hacking, IP Cameras). ” concludes Nozomi.

Surveillance 145

Surveillance Authentication Telecommunications Manufacturing 145

Security Affairs

OCTOBER 6, 2022

The authorities determined that data used in this criminal activity were from the 10,200 records stolen from the telecommunications giant last month. The database belonging to the company was leaked on a cybercrime forum. SecurityAffairs – hacking, Optus). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Data breaches 98

Data breaches Scams Telecommunications Financial Services 98