Encryption and Hacking - Cyber Security Informer

Americans urged to use encrypted messaging after large, ongoing cyberattack

Malwarebytes

DECEMBER 5, 2024

Speaking to Reuters , a senior US official said the attack telecommunications infrastructure was broad and that the hacking was still ongoing. If you plan to follow that advice, but are new to encrypted messaging, make sure to use an app that offers E2EE (End-to-end encryption). You don’t need an expensive app to achieve this.

Encryption

Encryption Identity Theft Media Telecommunications

Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies

Security Affairs

NOVEMBER 15, 2024

The Glove Stealer malware exploits a new technique to bypass Chrome’s App-Bound encryption and steal browser cookies. The malware bypasses Chrome’s App-Bound Encryption by utilizing the IElevator service, a method that was disclosed in October 2024. Gen Digital observed phishing campaigns distributing the Glove Stealer.

Encryption

Encryption Password Management Cryptocurrency Social Engineering

Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket

Security Affairs

JANUARY 15, 2025

The ransomware group Codefinger is using compromised AWS keys to encrypt S3 bucket data using SSE-C, Halcyon researchers warn. The ransomware group Codefinger has been spotted using compromised AWS keys to encrypt data in S3 buckets. The ransomware group Codefinger utilizes an AES-256 encryption key they generate and store locally.

Encryption

Encryption Ransomware Authentication Accountability

RansomHouse gang claims the hack of the Loretto Hospital in Chicago

Security Affairs

MARCH 10, 2025

Another American hospital falls victim to a ransomware attack; the RansomHouse gang announced the hack of Loretto Hospital in Chicago.” ” The RansomHouse gang announced the hack of Loretto Hospital in Chicago, the groups claims to have stolen 1.5TB of sensitive data. Victims include AMD and Keralty.

Hacking

Hacking Healthcare Backups Ransomware

Using Hacked LastPass Keys to Steal Cryptocurrency

Schneier on Security

SEPTEMBER 18, 2023

Remember last November, when hackers broke into the network for LastPass—a password database—and stole password vaults with both encrypted and plaintext data for over 25 million users? That’s a really profitable hack. (It’s It’s also bad opsec.

Cryptocurrency

Cryptocurrency Hacking Passwords Encryption

US Officials Recommend Using Encrypted Apps for Messaging

eSecurity Planet

FEBRUARY 26, 2025

Our cybersecurity expert discusses why officials are warning that unencrypted messaging apps are vulnerable to hacking, surveillance and cyberattacks. Explore the risks of popular apps and why switching to encrypted alternatives is crucial. Take control of your data and protect your privacy before its too late!

Encryption

Encryption Surveillance Hacking Risk

Three Top Russian Cybercrime Forums Hacked

Krebs on Security

MARCH 4, 2021

Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. At the top of a 35-page PDF leaked online is a private encryption key allegedly used by Maza administrators. The forum was hacked through the domain registrar.

Cybercrime

Cybercrime Hacking Passwords Accountability

Hacked by Police

Schneier on Security

JULY 3, 2020

French police hacked EncroChat secure phones, which are widely used by criminals: Encrochat's phones are essentially modified Android devices, with some models using the "BQ Aquaris X2," an Android handset released in 2018 by a Spanish electronics company, according to the leaked documents. Lots of details about the hack in the article.

Hacking

Hacking Telecommunications Encryption Firewall

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Krebs on Security

JUNE 15, 2024

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider , a cybercrime group suspected of hacking into Twilio , LastPass , DoorDash , Mailchimp , and nearly 130 other organizations over the past two years. man arrested was a SIM-swapper who went by the alias “ Tyler.”

Hacking

Hacking Cybercrime Phishing Passwords

Cloak ransomware group hacked the Virginia Attorney General’s Office

Security Affairs

MARCH 24, 2025

” The group uses an ARCrypter ransomware variant, derived from Babuks leaked code , to encrypt files after infiltrating a network. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, ransomware)

Ransomware

Ransomware Hacking Social Engineering VPN

No, I Did Not Hack Your MS Exchange Server

Krebs on Security

MARCH 28, 2021

26, Shadowserver saw an attempt to install a new type of backdoor in compromised Exchange Servers, and with each hacked host it installed the backdoor in the same place: “ /owa/auth/babydraco.aspx. Further reading: A Basic Timeline of the Exchange Mass-Hack. That same list today would be pages long. At Least 30,000 U.S.

Hacking

Hacking Cybercrime DNS Internet

On the Irish Health Services Executive Hack

Schneier on Security

FEBRUARY 11, 2022

The antivirus server was later encrypted in the attack). Under-resourced Information Security Managers were not performing their business as usual role (including a NIST-based cybersecurity review of systems) but were working on evaluating security controls for the COVID-19 vaccination system.

Antivirus

Antivirus Hacking Ransomware CISO

Iranian Government Hacking Android

Schneier on Security

SEPTEMBER 24, 2020

Both are popular messaging tools in Iran. The hackers also have created malware disguised as Android applications, the reports said.

Government

Government Hacking Mobile Encryption

Paragon: Yet Another Cyberweapons Arms Manufacturer

Schneier on Security

AUGUST 3, 2021

Forbes has the story : Paragon’s product will also likely get spyware critics and surveillance experts alike rubbernecking: It claims to give police the power to remotely break into encrypted instant messaging communications, whether that’s WhatsApp, Signal, Facebook Messenger or Gmail, the industry sources said.

Manufacturing

Manufacturing Spyware Surveillance Encryption

Twitter Hacking for Profit and the LoLs

Krebs on Security

JULY 22, 2020

The New York Times last week ran an interview with several young men who claimed to have had direct contact with those involved in last week’s epic hack against Twitter. ” Twice in the past year, the OGUsers forum was hacked , and both times its database of usernames, email addresses and private messages was leaked online.

Hacking

Hacking Accountability Scams Media

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim’s network. The ransomware group used an unsecured webcam to encrypt systems within atarget’s network, bypassing Endpoint Detection and Response (EDR). Akira successfully encrypted files across the network.

Ransomware

Ransomware IoT Encryption Passwords

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

Linus Larsson , the journalist who broke the story, says the hacked material was uploaded to a public server during the second half of September, and it is not known how many people may have gained access to it. He declined to comment on the particulars of the extortion incident.

Hacking

Hacking Ransomware Banking Accountability

Red Cross Hack Linked to Iranian Influence Operation?

Krebs on Security

FEBRUARY 16, 2022

The ICRC said the hacked servers contained data relating to the organization’s Restoring Family Links services, which works to reconnect people separated by war, violence, migration and other causes. .” In their online statement about the hack (updated on Feb. Image: Ke-la.com.

Hacking

Hacking Ransomware Media Accountability

Bitdefender released a decryptor for the ShrinkLocker ransomware

Security Affairs

NOVEMBER 13, 2024

Bitdefender released a decryptor for the ShrinkLocker ransomware, which modifies BitLocker configurations to encrypt a system’s drives. Unlike modern ransomware it doesn’t rely on sophisticated encryption algorithms and modifies BitLocker configurations to encrypt a system’s drives.

Ransomware

Ransomware Encryption Passwords Backups

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Krebs on Security

AUGUST 6, 2020

Hacked or ill-gotten accounts at consumer data brokers have fueled ID theft and identity theft services of various sorts for years. In addition, he said, it seems clear that the fraudsters are recycling stolen identities to file phony unemployment insurance claims in multiple states. In 2013, KrebsOnSecurity broke the news that the U.S.

Accountability

Accountability Identity Theft Hacking Insurance

Around 3.3 million POP3 and IMAP mail servers lack TLS encryption

Security Affairs

JANUARY 3, 2025

Over 3 million POP3 and IMAP mail servers lack TLS encryption, exposing them to network sniffing attacks. million POP3 and IMAP mail servers lack TLS encryption, exposing them to network sniffing attacks. ShadowServer researchers reported that around 3.3 We see around 3.3M It's time to retire those! ” reported ShadowServer.

Encryption

Encryption Passwords Internet Internet

Chinese national charged for hacking thousands of Sophos firewalls

Security Affairs

DECEMBER 11, 2024

has charged a Chinese national for hacking thousands of Sophos firewall devices worldwide in 2020. has charged the Chinese national Guan Tianfeng (aka gbigmao and gxiaomao) for hacking thousands of Sophos firewall devices worldwide in 2020. The malware stole data and encrypted files to block remediation attempts.

Firewall

Firewall Hacking Malware Passwords

The Insecurity of Video Doorbells

Schneier on Security

MARCH 5, 2024

First, these doorbells expose your home IP address and WiFi network name to the internet without encryption, potentially opening your home network to online criminals. […] Anyone who can physically access one of the doorbells can take over the device—no tools or fancy hacking skills needed.

Internet

Internet Internet Encryption Hacking

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

Justice Department today unsealed indictments against four Chinese officers of the People’s Liberation Army (PLA) accused of perpetrating the 2017 hack against consumer credit bureau Equifax that led to the theft of personal data on nearly 150 million Americans.

Hacking

Hacking Identity Theft Government Phishing

New MassJacker clipper targets pirated software seekers

Security Affairs

MARCH 15, 2025

The malware, dubbed PackerE, downloads an encrypted DLL (PackerD1) that employs multiple anti-analysis techniques. It uses a configuration file with regex patterns to detect cryptocurrency wallet addresses and C2 addresses for downloading encrypted wallet lists (recovery.dat and recoverysol.dat).

Software

Software Cryptocurrency Malware Encryption

Inside the DemandScience by Pure Incubation Data Breach

Troy Hunt

NOVEMBER 13, 2024

But in all likelihood, there will be more than a handful of domain subscribers who take issue with that volume of people data sitting there in one corpus easily downloadable via a clear web hacking forum.

Data breaches

Data breaches Passwords B2B Technology

Energy industry contractor ENGlobal Corporation discloses a ransomware attack

Security Affairs

DECEMBER 3, 2024

The threat actors had access to the company’s information technology systems and encrypted some of its data files. The preliminary investigation has revealed that a threat actor illegally accessed the Company’s information technology (“IT”) system and encrypted some of its data files.” ” reads the report filed with SEC.

Ransomware

Ransomware Encryption Technology Cybersecurity

Massive Oracle Cloud Breach: 6M Records Exposed, 140k+ Tenants Risked

eSecurity Planet

MARCH 24, 2025

A sophisticated supply chain hack targeting Oracle Cloud has exfiltrated a staggering 6 million records. The initial access was gained by hacking the login endpoint (login.(region-name).oraclecloud.com), CloudSEKs XVigil uncovered that threat actor rose87168 began selling the stolen data on March 21. region-name).oraclecloud.com),

Risk

Risk Passwords Hacking Encryption

AMD fixed a flaw that allowed to load malicious microcode

Security Affairs

FEBRUARY 4, 2025

Researchers from Google disclosed an improper signature verification vulnerability, tracked asCVE-2024-56161 (CVSS score of 7.2), in AMD’s Secure Encrypted Virtualization (SEV). Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, SEV)

Encryption

Encryption Firmware Hacking Information Security

Great Plains Regional Medical Center ransomware attack impacted 133,000 individuals

Security Affairs

NOVEMBER 18, 2024

The healthcare center discovered that a threat actor accessed and encrypted files on their systems between September 5, 2024 and September 8, 2024. This investigation showed that an unknown person accessed and encrypted files on our systems between September 5, 2024 and September 8, 2024.”

Ransomware

Ransomware Insurance Encryption Healthcare

Zero-day broker Operation Zero offers up to $4 million for Telegram exploits

Security Affairs

MARCH 21, 2025

Given Telegrams end-to-end encryption and widespread use, an exploit that bypasses its security could be a game-changer for cyber espionage. Zero-day prices have risen as the level of security of messaging apps and mobile devices becomes harder to hack. Gaining access without cooperation from Telegram itself could be highly valuable.

Government

Government Surveillance Mobile Hacking

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

The Last Watchdog

APRIL 5, 2022

As the dust settles following the recently disclosed hack of NewsCorp , important lessons are emerging for the cybersecurity and journalism communities. ’ This firewall even goes as far as to block the latest versions of the encryption service TLS (v1.3) Related: How China challenged Google in Operation Aurora.

Hacking

Hacking Passwords Internet Internet

Hacking et Cybersécurité Mégapoche pour les Nuls: New French Book on Hacking and CyberSecurity Now Available

Joseph Steinberg

JANUARY 22, 2024

Hacking et Cybersécurité Mégapoche pour les Nuls , a single-volume book containing French versions of the latest editions of both the best selling CyberSecurity for Dummies by Joseph Steinberg, and Hacking For Dummies by Kevin Beaver, is now available to the public.

Hacking

Hacking Cybersecurity Penetration Testing Artificial Intelligence

U.S. CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 22, 2024

The security breach exposed low-sensitivity performance monitoring data, including customer usernames, account info, and encrypted internal credentials. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, CISA ) Rackspace helped ScienceLogic address this issue.

Encryption

Encryption Hacking Accountability Cybersecurity

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 16

Security Affairs

OCTOBER 20, 2024

Expanding the Investigation: Deep Dive into Latest TrickMo Samples HijackLoader evolution: abusing genuine signing certificates FASTCash for Linux Water Makara Uses Obfuscated JavaScript in Spear Phishing Campaign, Targets Brazil With Astaroth Malware Technical Analysis of DarkVision RAT Encrypted Symphony: Infiltrating the Cicada3301 Ransomware-as-a-Service (..)

Malware

Malware Ransomware Encryption Phishing

China is Still Inside US Networks — It’s Been SIX Months

Security Boulevard

DECEMBER 4, 2024

Hell froze over: FBI and NSA recommend you use strong encryption. The post China is Still Inside US Networks — It’s Been SIX Months appeared first on Security Boulevard.

Encryption

Encryption Cyber Attacks Data privacy IoT

Hacking Kia: Remotely Controlling Cars with Just a License Plate

Hacker's King

NOVEMBER 16, 2024

How the Hack Works Many modern cars, including those from Kia, use telematics systems that connect to mobile apps and cloud-based services for convenience features like remote start or door unlocking. The company is working on updating its software and strengthening encryption to protect against unauthorized access.

Hacking

Hacking Mobile Encryption Authentication

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

Evgenii Ptitsyn and others allegedly ran an international hacking scheme since November 2020, deploying Phobos ransomware to extort victims. Ptitsyn reportedly sold the ransomware on darknet forums under aliases like “derxan” and “zimmermanx,” enabling other criminals to encrypt data and demand ransom.

Cybercrime

Cybercrime Ransomware Healthcare Education

DOGE as a National Cyberattack

Schneier on Security

FEBRUARY 13, 2025

Ron Wyden said his office had learned that the attackers gained privileges that allow them to modify core programs in Treasury Department computers that verify federal payments, access encrypted keys that secure financial transactions, and alter audit logs that record system changes.

Government

Government Artificial Intelligence Banking Software

Attacking Machine Learning Systems

Schneier on Security

FEBRUARY 6, 2023

But what if, instead, somebody hacked into the system and just switched the labels for “gun” and “turtle” or swapped “stop” and “45 mi/h”? Like everything else, these systems will be hacked through vulnerabilities in those more conventional parts of the system. Most of us are simply too low on its priorities list to ever get hacked.

Encryption

Encryption Hacking Software Social Engineering

LockBit claims the hack of the US Federal Reserve

Security Affairs

JUNE 24, 2024

The FBI is inviting victims of LockBit ransomware to come forward because it has obtained over 7,000 LockBit decryption keys that could allow them to recover their encrypted data for free. Pierluigi Paganini Follow me on Twitter: @securityaffairs and Facebook and Mastodon ( SecurityAffairs – hacking, ransomware)

Hacking

Hacking Banking Ransomware Encryption

GUEST ESSAY : Advanced tech to defend API hacking is now readily available to SMBs

The Last Watchdog

APRIL 4, 2022

They are often unaware of the risks they take on, which can include hacking, fraud, phishing, and more. To protect against these attacks, businesses need to implement a wide range of strong API security measures such as authentication, authorization, encryption, and vulnerability scanning. Related: Using employees as human sensors.

Hacking

Hacking Penetration Testing Data breaches Authentication

Malicious npm packages target Ethereum developers

Security Affairs

JANUARY 4, 2025

Attackers steal sensitive data like mnemonics and private keys from Hardhat, encrypt it with AES, and exfiltrate it to endpoints under their control. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,npm packages) ” continues the report.

Encryption

Encryption Hacking Cybercrime Information Security

Feds seized $23 million in crypto stolen using keys from LastPass breaches

Security Affairs

MARCH 10, 2025

authorities seized $23M in crypto tied to a $150M Ripple hack, suspected to have been carried out by hackers from the 2022 LastPass breach. Investigators found no evidence of device hacking, supporting the hypothesis that attackers decrypted stolen password manager data to access the victim’s crypto wallet.

Password Management

Password Management Cryptocurrency Passwords Data breaches

Americans urged to use encrypted messaging after large, ongoing cyberattack

Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies

Trending Sources

Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket

RansomHouse gang claims the hack of the Loretto Hospital in Chicago

Using Hacked LastPass Keys to Steal Cryptocurrency

US Officials Recommend Using Encrypted Apps for Messaging

Three Top Russian Cybercrime Forums Hacked

Hacked by Police

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Cloak ransomware group hacked the Virginia Attorney General’s Office

No, I Did Not Hack Your MS Exchange Server

On the Irish Health Services Executive Hack

Iranian Government Hacking Android

Paragon: Yet Another Cyberweapons Arms Manufacturer

Twitter Hacking for Profit and the LoLs

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Red Cross Hack Linked to Iranian Influence Operation?

Bitdefender released a decryptor for the ShrinkLocker ransomware

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Around 3.3 million POP3 and IMAP mail servers lack TLS encryption

Chinese national charged for hacking thousands of Sophos firewalls

The Insecurity of Video Doorbells

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

New MassJacker clipper targets pirated software seekers

Inside the DemandScience by Pure Incubation Data Breach

Energy industry contractor ENGlobal Corporation discloses a ransomware attack

Massive Oracle Cloud Breach: 6M Records Exposed, 140k+ Tenants Risked

AMD fixed a flaw that allowed to load malicious microcode

Great Plains Regional Medical Center ransomware attack impacted 133,000 individuals

Zero-day broker Operation Zero offers up to $4 million for Telegram exploits

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

Hacking et Cybersécurité Mégapoche pour les Nuls: New French Book on Hacking and CyberSecurity Now Available

U.S. CISA adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 16

China is Still Inside US Networks — It’s Been SIX Months

Hacking Kia: Remotely Controlling Cars with Just a License Plate

Russian Phobos ransomware operator faces cybercrime charges

DOGE as a National Cyberattack

Attacking Machine Learning Systems

LockBit claims the hack of the US Federal Reserve

GUEST ESSAY : Advanced tech to defend API hacking is now readily available to SMBs

Malicious npm packages target Ethereum developers

Feds seized $23 million in crypto stolen using keys from LastPass breaches

Stay Connected