Government, Hacking and Internet - Cyber Security Informer

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based based technology companies.

Hacking

Hacking Accountability Government Social Engineering

NSA Advisory on Chinese Government Hacking

Schneier on Security

OCTOBER 21, 2020

This advisory provides Common Vulnerabilities and Exposures (CVEs) known to be recently leveraged, or scanned-for, by Chinese state-sponsored cyber actors to enable successful hacking operations against a multitude of victim networks.

Hacking

Hacking Government Internet Internet

U.S. Internet Leaked Years of Internal, Customer Emails

Krebs on Security

FEBRUARY 14, 2024

The Minnesota-based Internet provider U.S. Internet Corp. has a business unit called Securence , which specializes in providing filtered, secure email services to businesses, educational institutions and government agencies worldwide. Internet is a regional ISP that provides fiber and wireless Internet service.

Internet

Internet Internet Wireless Government

Perfectl Malware

Schneier on Security

OCTOBER 14, 2024

It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the Internet potential targets, researchers from Aqua Security said. Something this complex and impressive implies that a government is behind this.

Malware

Malware Cryptocurrency Internet Internet

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Krebs on Security

FEBRUARY 28, 2025

Intrinsec said its analysis showed Prospero frequently hosts malware operations such as SocGholish and GootLoader , which are spread primarily via fake browser updates on hacked websites and often lay the groundwork for more serious cyber intrusions — including ransomware. A fake browser update page pushing mobile malware.

Malware

Malware Antivirus Software DDOS

Security Risks of Government Hacking

Schneier on Security

SEPTEMBER 13, 2018

Some of us -- myself included -- have proposed lawful government hacking as an alternative to backdoors. A new report from the Center of Internet and Society looks at the security risks of allowing government hacking. This is the canonical lawful hacking paper.

Government

Government Hacking Risk Surveillance

Kazakhstan Government Intercepting All Secured Internet Traffic

Adam Levin

JULY 19, 2019

The Kazakhstan government is intercepting all HTTPS-encrypted internet traffic within its borders. Under a new directive effective 7/17, the Kazakhstan government is requiring every internet service provider in the country to install a security certificate onto every internet-enabled device and browser.

Internet

Internet Internet Government Banking

Poland probes Pegasus spyware abuse under the PiS government

Security Affairs

DECEMBER 3, 2024

Poland probes Pegasus spyware abuse under the PiS government; ex-security chief Piotr Pogonowski arrested to testify before parliament. Poland’s government has been investigating the alleged misuse of Pegasus spyware by the previous administration and arrested the former head of Poland’s internal security service Piotr Pogonowski.

Spyware

Spyware Government Surveillance Hacking

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

On March 2, Microsoft released emergency security updates to plug four security holes in Exchange Server versions 2013 through 2019 that hackers were actively using to siphon email communications from Internet-facing systems running Exchange. The web shell gives the attackers administrative access to the victim’s computer servers.

Hacking

Hacking Software Government Internet

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Security Affairs

NOVEMBER 10, 2024

US CFPB warns employees to avoid work-related mobile calls and texts following China-linked Salt Typhoon hack over security concerns. The US government’s Consumer Financial Protection Bureau (CFPB) advises employees to avoid using cellphones for work after China-linked APT group Salt Typhoon hackers breached major telecom providers.

Hacking

Hacking Internet Internet Government

Three Top Russian Cybercrime Forums Hacked

Krebs on Security

MARCH 4, 2021

Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. In two of the intrusions, the attackers made off with the forums’ user databases, including email and Internet addresses and hashed passwords. ” On Feb.

Cybercrime

Cybercrime Hacking Passwords Accountability

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

government officials. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. A cyberattack tied to the Chinese government penetrated the networks of a swath of U.S. broadband providers is still ongoing, government experts are assessing its scope.

Government

Government Telecommunications Surveillance Risk

The Internet Enabled Mass Surveillance. AI Will Enable Mass Spying.

Schneier on Security

DECEMBER 5, 2023

Before the internet, putting someone under surveillance was expensive and time-consuming. Surveillance has become the business model of the internet, and there’s no reasonable way for us to opt out of it. Governments around the world already use mass surveillance; they will engage in mass spying as well. They conform.

Surveillance

Surveillance Internet Internet Government

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

government officials. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. A cyberattack tied to the Chinese government penetrated the networks of a swath of U.S. broadband providers is still ongoing, government experts are assessing its scope.

Government

Government Telecommunications Surveillance Risk

U.S. Offered $10M for Hacker Just Arrested by Russia

Krebs on Security

DECEMBER 4, 2024

government indicted Matveev as a top ransomware purveyor a year later, offering $10 million for information leading to his arrest. Last week, the Russian government reportedly arrested Matveev and charged him with creating malware used to extort companies. government’s “Wanted” poster for him.

Cybercrime

Cybercrime Ransomware Cryptocurrency Government

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. government has used court orders to remotely disinfect systems compromised with malware. Today’s operation is not the first time the U.S.

Hacking

Hacking Malware Ransomware Government

Two U.S. Men Charged in 2022 Hacking of DEA Portal

Krebs on Security

MARCH 14, 2023

men have been charged with hacking into a U.S. Both are alleged to be part of a larger criminal organization that specializes in using fake emergency data requests from compromised police and government email accounts to publicly threaten and extort their victims. .” federal government portal without authorization.

Hacking

Hacking Government Media Accountability

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Krebs on Security

NOVEMBER 21, 2024

Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. police as part of an FBI investigation into the MGM hack. Image: Amitai Cohen twitter.com/amitaico.

Identity Theft

Identity Theft Phishing Cryptocurrency Accountability

Tor Project needs 200 WebTunnel bridges more to bypass Russia’ censorship

Security Affairs

DECEMBER 2, 2024

The Tor Project seeks help deploying 200 WebTunnel bridges by year-end to counter government censorship. “We are calling on the Tor community and the Internet freedom community to help us scale up WebTunnel bridges. If you’ve ever thought about running a Tor bridge, now is the time.

Government

Government Internet Internet Hacking

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

Justice Department today unsealed indictments against four Chinese officers of the People’s Liberation Army (PLA) accused of perpetrating the 2017 hack against consumer credit bureau Equifax that led to the theft of personal data on nearly 150 million Americans. commercial and government interests.

Hacking

Hacking Identity Theft Government Phishing

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

telecommunication and internet service providers. The US Treasurys OFAC also sanctionedYin Kecheng, a Shanghai-based cyber actor who was involved with the recent hack of the Department of the Treasury’s network. government IT systems and critical infrastructure. China-linked threat actors persistently target U.S.

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Krebs on Security

FEBRUARY 4, 2025

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled , English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. “Finndev.” ” Image: Ke-la.com. io , and rdp[.]sh.

eCommerce

eCommerce Cybercrime Accountability Passwords

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

T-Mobile confirmed being a victim of recent hacking campaigns linked to China-based threat actors targeting telecom companies. T-Mobile confirms it was hacked as part of a long-running cyber espionage campaign targeting Telco companies. The Chinese APT focuses on government entities and telecommunications companies in Southeast Asia.

Mobile

Mobile Telecommunications Data breaches Hacking

Is Your Computer Part of ‘The Largest Botnet Ever?’

Krebs on Security

MAY 29, 2024

” The arrest coincided with the seizure of the 911 S5 website and supporting infrastructure, which the government says turned computers running various “free VPN” products into Internet traffic relays that facilitated billions of dollars in online fraud and cybercrime. government.

VPN

VPN Government Cybercrime Internet

T-Mobile detected network intrusion attempts and blocked them

Security Affairs

NOVEMBER 28, 2024

Many reports claim these bad actors have gained access to some providers’ customer information over an extended period of time – phone calls, text messages, and other sensitive information, particularly from government officials. Connectivity to a compromised provider was interrupted, and T-Mobile notified industry and government leaders.

Mobile

Mobile Telecommunications Government Internet

US Orders Rare Emergency System Shut-Downs After Severe CyberSecurity Breach Hits Government And Businesses

Joseph Steinberg

DECEMBER 14, 2020

government instructed all of its civilian agencies to immediately shut off various popular network and system management products being exploited as part of an ongoing cyberattack. Note: Classified networks are not connected to the Internet and their contents are likely to have remained secure.).

Government

Government Cybersecurity Software Engineering

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

But not long after KrebsOnSecurity reported in April that Shefel/Rescator also was behind the theft of Social Security and tax information from a majority of South Carolina residents in 2012, Mr. Shefel began contacting this author with the pretense of setting the record straight on his alleged criminal hacking activities.

Retail

Retail Advertising Cryptocurrency Marketing

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

The Last Watchdog

APRIL 5, 2022

As the dust settles following the recently disclosed hack of NewsCorp , important lessons are emerging for the cybersecurity and journalism communities. The Chinese government is well known for its censorship– and frequent harassment and intimidation of foreign journalists. Related: How China challenged Google in Operation Aurora.

Hacking

Hacking Passwords Internet Internet

A ransomware attack hit the Micronesian state of Yap, causing the health system network to go down.

Security Affairs

MARCH 16, 2025

A Micronesian state suffered a ransomware attack and was forced to shut down all computers of its government health agency. A state in Micronesia, the state of Yap, suffered a ransomware attack, forcing the shutdown of all computers in its government health agency. In response, the whole network was taken offline.

Ransomware

Ransomware Government Internet Internet

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

Evgenii Ptitsyn and others allegedly ran an international hacking scheme since November 2020, deploying Phobos ransomware to extort victims. If convicted, the man could face up to 20 years in prison for each wire fraud count, 10 years for each computer hacking charge, and 5 years for conspiracy to commit computer fraud and abuse.

Cybercrime

Cybercrime Ransomware Healthcare Education

Security in a World of Physically Capable Computers

Schneier on Security

OCTOBER 12, 2018

Stories like the recent Facebook hack , the Equifax hack and the hacking of government agencies are remarkable for how unremarkable they really are. The government needs to step in and regulate this increasingly dangerous space. It's no secret that computers are insecure.

Government

Government Internet Internet Marketing

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 13, 2024

The Mexican Drug Cartels Want You Casio: Notice of Partial Service Outage and Information Leak Caused by Ransomware Attack He founded a “startup” to access sanctioned Russian websites: the cyber police of Khmelnytskyi region exposed the hacker Hacked ‘AI Girlfriend’ Data Shows Prompts Describing Child Sexual Abuse Malware Over 300,000!

Data breaches

Data breaches Cryptocurrency Artificial Intelligence Cybercrime

Vladimir Putin’s Thank You Letter To Pro-Ukraine Hackers

Joseph Steinberg

MARCH 8, 2022

Thank you for not listening to your own cybersecurity experts when they told you to “ Stop hacking Russian websites – you are helping the Russians, not the Ukrainians.” You have probably done more than anyone other than myself to help Russia prepare for cyberwar.

Hacking

Hacking Artificial Intelligence Penetration Testing Government

Bomb Threat Hoaxer Exposed by Hacked Gaming Site

Krebs on Security

FEBRUARY 13, 2019

In an ironic twist, the accused — who had fairly well separated his real life identity from his online personas — appears to have been caught after a gaming Web site he frequented got hacked. 12, the U.S. Justice Department announced the arrest of Timothy Dalton Vaughn , a 20-year-old from Winston-Salem, N.C.

Hacking

Hacking DDOS Government Accountability

Canadian Man Arrested in Snowflake Data Extortions

Krebs on Security

NOVEMBER 5, 2024

Bloomberg first reported Moucka’s alleged ties to the Snowflake hacks on Monday. On May 2, 2024, Judische claimed on the fraud-focused Telegram channel Star Chat that they had hacked Santander Bank , one of the first known Snowflake victims. government agencies and first responders. “Negotiate a deal in Telegram.”

Cybercrime

Cybercrime Mobile Media Hacking

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

telecommunication and internet service providers. The US Treasurys OFAC also sanctionedYin Kecheng, a Shanghai-based cyber actor who was involved with the recent hack of the Department of the Treasury’s network. government IT systems and critical infrastructure. China-linked threat actors persistently target U.S.

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

Russian Internet Outage: DNSSEC Oops or Ukraine Hack?

Security Boulevard

JANUARY 31, 2024

It’s always DNS: Government ministry denies hackers hacked its network infrastructure. The post Russian Internet Outage: DNSSEC Oops or Ukraine Hack? It was DNS. appeared first on Security Boulevard.

Internet

Internet Internet Hacking DNS

Government of Bermuda blames Russian threat actors for the cyber attack

Security Affairs

SEPTEMBER 23, 2023

The Government of Bermuda believes that the recent cyberattack against its IT infrastructure was launched by Russian threat actors. This week a cyber attack hit the Government of Bermuda causing the interruption of internet/email and phone services. The attack impacted all the government departments. ” said Burt.

Cyber Attacks

Cyber Attacks Government Internet Internet

China-linked group Salt Typhoon hacked US broadband providers and breached wiretap systems

Security Affairs

OCTOBER 6, 2024

“A cyberattack tied to the Chinese government penetrated the networks of a swath of U.S. broadband providers, potentially accessing information from systems the federal government uses for court-authorized network wiretapping requests.” broadband providers is still ongoing, government experts are assessing its scope.

Hacking

Hacking Government Internet Internet

NSO Group’s Pegasus Spyware Used Against US State Department Officials

Schneier on Security

DECEMBER 13, 2021

NSO Group’s descent into Internet pariah status continues. Its Pegasus spyware was used against nine US State Department employees. We don’t know which NSO Group customer trained the spyware on the US. ” .

Spyware

Spyware Internet Internet Government

Americans urged to use encrypted messaging after large, ongoing cyberattack

Malwarebytes

DECEMBER 5, 2024

Speaking to Reuters , a senior US official said the attack telecommunications infrastructure was broad and that the hacking was still ongoing. The infrastructure that the US government relies to communicate on is made up of the same private sector systems that everybody else uses. You don’t need an expensive app to achieve this.

Encryption

Encryption Identity Theft Media Telecommunications

NSA buys internet browsing records from data brokers without a warrant

Security Affairs

JANUARY 29, 2024

National Security Agency (NSA) admitted to buying internet browsing records from data brokers to monitor Americans’ activity online without a court order. released documents that confirmed the National Security Agency (NSA) buys Americans’ internet browsing records without a court order. Senator Ron Wyden, D-Ore.,

Internet

Internet Internet Surveillance Government

U.S. CISA: hackers breached a state government organization

Security Affairs

FEBRUARY 16, 2024

CISA revealed that threat actors breached an unnamed state government organization via an administrator account belonging to a former employee. The government experts conducted an incident response assessment of the state government organization after its documents were posted on the dark web.

Government

Government VPN Accountability Authentication

Russian internet watchdog Roskomnadzor bans six more VPN services

Security Affairs

DECEMBER 2, 2021

Russia’s internet watchdog, ‘Roskomnadzor’, has announced the ban of other VPN products, 15 VPN services are now illegal in Russia. Russian communications watchdog Roskomnadzor tightens the control over the Internet and blocked access to six more VPN services. SecurityAffairs – hacking, VPN services). Pierluigi Paganini.

VPN

VPN Internet Internet Media

FBI: Spike in Hacked Police Emails, Fake Subpoenas

NSA Advisory on Chinese Government Hacking

Trending Sources

U.S. Internet Leaked Years of Internal, Customer Emails

Perfectl Malware

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Security Risks of Government Hacking

Kazakhstan Government Intercepting All Secured Internet Traffic

Poland probes Pegasus spyware abuse under the PiS government

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Three Top Russian Cybercrime Forums Hacked

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

The Internet Enabled Mass Surveillance. AI Will Enable Mass Spying.

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

U.S. Offered $10M for Hacker Just Arrested by Russia

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Two U.S. Men Charged in 2022 Hacking of DEA Portal

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Tor Project needs 200 WebTunnel bridges more to bypass Russia’ censorship

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Is Your Computer Part of ‘The Largest Botnet Ever?’

T-Mobile detected network intrusion attempts and blocked them

US Orders Rare Emergency System Shut-Downs After Severe CyberSecurity Breach Hits Government And Businesses

An Interview With the Target & Home Depot Hacker

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

A ransomware attack hit the Micronesian state of Yap, causing the health system network to go down.

Russian Phobos ransomware operator faces cybercrime charges

Security in a World of Physically Capable Computers

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Vladimir Putin’s Thank You Letter To Pro-Ukraine Hackers

Bomb Threat Hoaxer Exposed by Hacked Gaming Site

Canadian Man Arrested in Snowflake Data Extortions

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Russian Internet Outage: DNSSEC Oops or Ukraine Hack?

Government of Bermuda blames Russian threat actors for the cyber attack

China-linked group Salt Typhoon hacked US broadband providers and breached wiretap systems

NSO Group’s Pegasus Spyware Used Against US State Department Officials

Americans urged to use encrypted messaging after large, ongoing cyberattack

NSA buys internet browsing records from data brokers without a warrant

U.S. CISA: hackers breached a state government organization

Russian internet watchdog Roskomnadzor bans six more VPN services

Stay Connected