Hacking and Internet - Cyber Security Informer

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based based technology companies.

Hacking

Hacking Accountability Government Social Engineering

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Krebs on Security

DECEMBER 19, 2024

Cyber threat analysts at Silent Push said they recently received reports from a partner organization that identified an aggressive scanning effort against their website using an Internet address previously associated with a campaign by FIN7 , a notorious Russia-based hacking group. co — first came online in February 2023.

Hacking

Hacking Cybercrime Advertising Data breaches

Internet Archive data breach impacted 31M users

Security Affairs

OCTOBER 11, 2024

The Internet Archive disclosed a data breach, the security incident impacted more than 31 million users of its “The Wayback Machine.” As of September 5, 2024, the Internet Archive held more than 42.1 Starting from Wednesday, the website archive.org was displaying a message informing visitors that it was hacked.

Data breaches

Data breaches Internet Internet DDOS

Internet Archive was breached twice in a month

Security Affairs

OCTOBER 21, 2024

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The Internet Archive was breached via Zendesk, with users receiving warnings about stolen GitLab tokens due to improper token rotation after repeated alerts.

Internet

Internet Internet Data breaches Authentication

Arguing Against CALEA

Schneier on Security

APRIL 8, 2025

This is the access that the Chinese threat actor Salt Typhoon used to spy on Americans: The Wall Street Journal first reported Friday that a Chinese government hacking group dubbed Salt Typhoon broke into three of the largest U.S. CNN and The Washington Post also confirmed the intrusions and that the U.S.

Telecommunications

Telecommunications Internet Internet Government

U.S. Internet Leaked Years of Internal, Customer Emails

Krebs on Security

FEBRUARY 14, 2024

The Minnesota-based Internet provider U.S. Internet Corp. Internet was publishing more than a decade’s worth of its internal email — and that of thousands of Securence clients — in plain text out on the Internet and just a click away for anyone with a Web browser. Internet with their email.

Internet

Internet Internet Wireless Government

Hacking Weapons Systems

Schneier on Security

MARCH 26, 2021

Lukasz Olejnik has a good essay on hacking weapons systems. So now the question is whether the software can be accessed over the Internet. Basically, there is no reason to believe that software in weapons systems is any more vulnerability free than any other software. Increasingly, it is.

Hacking

Hacking Software Internet Internet

Three Top Russian Cybercrime Forums Hacked

Krebs on Security

MARCH 4, 2021

Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. In two of the intrusions, the attackers made off with the forums’ user databases, including email and Internet addresses and hashed passwords. ” On Feb.

Cybercrime

Cybercrime Hacking Passwords Accountability

Hacking Wireless Bicycle Shifters

Schneier on Security

AUGUST 20, 2024

This is yet another insecure Internet-of-things story , this one about wireless gear shifters for bicycles. These gear shifters are used in big-money professional bicycle races like the Tour de France, which provides an incentive to actually implement this attack. Research paper. Another news story. Slashdot thread.

Wireless

Wireless Hacking Internet Internet

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Security Affairs

NOVEMBER 10, 2024

US CFPB warns employees to avoid work-related mobile calls and texts following China-linked Salt Typhoon hack over security concerns. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. and its allies for hacking activities in July. Wall Street Journal reported.

Hacking

Hacking Internet Internet Government

Hacking a Coffee Maker

Schneier on Security

SEPTEMBER 29, 2020

As expected, IoT devices are filled with vulnerabilities : As a thought experiment, Martin Hron, a researcher at security company Avast, reverse engineered one of the older coffee makers to see what kinds of hacks he could do with it. After just a week of effort, the unqualified answer was: quite a lot.

Hacking

Hacking IoT Engineering Internet

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

On March 2, Microsoft released emergency security updates to plug four security holes in Exchange Server versions 2013 through 2019 that hackers were actively using to siphon email communications from Internet-facing systems running Exchange. The web shell gives the attackers administrative access to the victim’s computer servers.

Hacking

Hacking Software Government Internet

The Internet Enabled Mass Surveillance. AI Will Enable Mass Spying.

Schneier on Security

DECEMBER 5, 2023

Before the internet, putting someone under surveillance was expensive and time-consuming. Surveillance has become the business model of the internet, and there’s no reasonable way for us to opt out of it. Spying is another matter.

Surveillance

Surveillance Internet Internet Government

Perfectl Malware

Schneier on Security

OCTOBER 14, 2024

It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the Internet potential targets, researchers from Aqua Security said. North Korea is the government we know that hacks cryptocurrency in order to fund its operations.

Malware

Malware Cryptocurrency Internet Internet

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Krebs on Security

FEBRUARY 28, 2025

Intrinsec said its analysis showed Prospero frequently hosts malware operations such as SocGholish and GootLoader , which are spread primarily via fake browser updates on hacked websites and often lay the groundwork for more serious cyber intrusions — including ransomware. A fake browser update page pushing mobile malware.

Malware

Malware Antivirus Software DDOS

No, I Did Not Hack Your MS Exchange Server

Krebs on Security

MARCH 28, 2021

The group looks for attacks on Exchange systems using a combination of active Internet scans and “honeypots” — systems left vulnerable to attack so that defenders can study what attackers are doing to the devices and how. Further reading: A Basic Timeline of the Exchange Mass-Hack. At Least 30,000 U.S.

Hacking

Hacking Cybercrime DNS Internet

More on the Chinese Zero-Day Microsoft Exchange Hack

Schneier on Security

MARCH 10, 2021

Nick Weaver has an excellent post on the Microsoft Exchange hack: The investigative journalist Brian Krebs has produced a handy timeline of events and a few things stand out from the chronology. 2, at which point the attacker simply sought to compromise almost every vulnerable Exchange server on the Internet. 5 and another on Jan.

Hacking

Hacking Internet Internet Ransomware

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown

Krebs on Security

OCTOBER 17, 2024

Prosecutors say Anonymous Sudan offered a “Limited Internet Shutdown Package,” which would enable customers to shut down internet service providers in specified countries for $500 (USD) an hour. ” However, the DDoS machine the Omer brothers allegedly built was not made up of hacked devices — as is typical with DDoS botnets.

DDOS

DDOS Government Internet Internet

Sendgrid Under Siege from Hacked Accounts

Krebs on Security

AUGUST 28, 2020

But this also means when a Sendgrid customer account gets hacked and used to send malware or phishing scams, the threat is particularly acute because a large number of organizations allow email from Sendgrid’s systems to sail through their spam-filtering systems.

Accountability

Accountability Hacking Authentication Marketing

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

Working with law enforcement partners in France, Germany, Latvia, the Netherlands, Romania and the United Kingdom, the DOJ said it was able to seize more than 50 Internet servers tied to the malware network, and nearly $9 million in ill-gotten cryptocurrency from QakBot’s cybercriminal overlords.

Hacking

Hacking Malware Ransomware Government

The Insecurity of Video Doorbells

Schneier on Security

MARCH 5, 2024

Consumer Reports has analyzed a bunch of popular Internet-connected video doorbells. Their security is terrible.

Internet

Internet Internet Encryption Hacking

Black Hat Fireside Chat: ‘Black Girls Hack’ emphasizes diversity as effective force multiplier

The Last Watchdog

AUGUST 3, 2024

So, Martin taught herself ethical hacking skills and then founded Black Girls Hack to guide others down the trail she blazed. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. As Black Hat USA 2024 rolls into high gear next week, BGH is thriving.

Hacking

Hacking Internet Internet Software

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Krebs on Security

NOVEMBER 21, 2024

Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. police as part of an FBI investigation into the MGM hack. Image: Amitai Cohen twitter.com/amitaico.

Identity Theft

Identity Theft Phishing Cryptocurrency Accountability

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

In November 2021, KrebsOnSecurity detailed how Pompompurin abused a vulnerability in an FBI online portal designed to share information with state and local law enforcement authorities, and how that access was used to blast out thousands of hoax email messages — all sent from an FBI email and Internet address.

Hacking

Hacking Energy and Utilities Cybercrime Accountability

Arkana Security group claims the hack of US telco provider WideOpenWest (WOW!)

Security Affairs

MARCH 27, 2025

The new ransomware group Arkana Security claims to have hacked US telecom provider WOW!, is a US-based telecommunications company that provides broadband internet, cable TV, and phone services. is known for offering high-speed internet and competitive pricing in markets where it competes with larger providers. ” WOW!

Hacking

Hacking Telecommunications Data breaches Internet

When Low-Tech Hacks Cause High-Impact Breaches

Krebs on Security

FEBRUARY 26, 2023

Media coverage understandably focused on GoDaddy’s admission that it suffered three different cyberattacks over as many years at the hands of the same hacking group. Thus, the second factor cannot be phished, either over the phone or Internet.

Hacking

Hacking Social Engineering Phishing Scams

Microsoft Patch Tuesday, November 2024 Edition

Krebs on Security

NOVEMBER 12, 2024

Any one of these bugs could be used to install malware if an authenticated user connects to a malicious or hacked SQL database server. For a more detailed breakdown of today’s patches from Microsoft, check out the SANS Internet Storm Center’s list.

Authentication

Authentication Engineering Malware Passwords

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

But not long after KrebsOnSecurity reported in April that Shefel/Rescator also was behind the theft of Social Security and tax information from a majority of South Carolina residents in 2012, Mr. Shefel began contacting this author with the pretense of setting the record straight on his alleged criminal hacking activities.

Retail

Retail Advertising Cryptocurrency Marketing

Booking.com Phishers May Leave You With Reservations

Krebs on Security

NOVEMBER 1, 2024

According to the market share website statista.com , booking.com is by far the Internet’s busiest travel service, with nearly 550 million visits in September. One post last month on the Russian-language hacking forum BHF offered up to $5,000 for each hotel account.

Phishing

Phishing Accountability Artificial Intelligence Cybercrime

FBI Seizes BreachForums Website

Schneier on Security

MAY 17, 2024

The seizure messages include ways to contact the FBI about the seizure, including an email, a Telegram account, a TOX account, and a dedicated page hosted on the FBI’s Internet Crime Complaint Center (IC3). co and run by pompompurin) operated a similar hacking forum from March 2022 until March 2023. . ”

Hacking

Hacking Accountability Ransomware Internet

Russian Cyberwarfare Documents Leaked

Schneier on Security

MARCH 30, 2023

Now this is interesting: Thousands of pages of secret documents reveal how Vulkan’s engineers have worked for Russian military and intelligence agencies to support hacking operations, train operatives before attacks on national infrastructure, spread disinformation and control sections of the internet.

Engineering

Engineering Internet Internet Hacking

More on NSO Group and Cytrox: Two Cyberweapons Arms Manufacturers

Schneier on Security

DECEMBER 20, 2021

One was hacked by NSO Group’s Pegasus spyware. The other was hacked both by Pegasus and by the spyware from another cyberweapons arms manufacturer: Cytrox. Citizen Lab published another report on the spyware used against two Egyptian nationals. We haven’t heard a lot about Cytrox and its Predator spyware.

Manufacturing

Manufacturing Spyware Hacking Internet

Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices

Security Affairs

NOVEMBER 14, 2024

“This flaw allows an unauthenticated attacker to inject arbitrary shell commands through crafted HTTP GET requests, affecting over 61,000 devices on the Internet.” The experts observed roughly 1,100 Internet-facing devices potentially vulnerable to this issue., .” reads the post published by Netsecfish.

DNS

DNS Internet Internet Hacking

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

OCTOBER 28, 2024

French internet service provider (ISP) Free disclosed a cyber attack, threat actors allegedly had access to customer personal information. that provides voice, video, data, and Internet telecommunications to consumers in France. Free S.A.S. is a French telecommunications company, subsidiary of Iliad S.A.

Cyber Attacks

Cyber Attacks Telecommunications Data breaches Banking

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Krebs on Security

JULY 18, 2023

[This is Part III in a series on research conducted for a recent Hulu documentary on the 2015 hack of marital infidelity website AshleyMadison.com.] us , a site unabashedly dedicated to helping people hack email and online gaming accounts. In 2019, a Canadian company called Defiant Tech Inc. pleaded guilty to running LeakedSource[.]com

Hacking

Hacking Accountability Data breaches Marketing

How Hacker's hack Android Devices

Hacker's King

JANUARY 8, 2025

You may also like to read: How Hackers Spy On Hacked Phone? How To Detect and Secure Yourself Hacker's Most Preferred Hacking Techniques These techniques can be described as the most liked techniques of users to hack Android devices. By using this technique, hackers extract any information required to hack your Android device.

Hacking

Hacking Spyware Antivirus Passwords

SonicWall warns of an exploitable SonicOS vulnerability

Security Affairs

JANUARY 8, 2025

8037 or newer The vendor also provided the following mitigation: “To minimize the potential impact of SSLVPN vulnerabilities, please ensure that access is limited to trusted sources, or disable SSLVPN access from the Internet. hardware firewalls: SonicOS 6.5.5.1-6n 6n or newer Gen 6 / 6.5 NSv firewalls: SonicOS 6.5.4.v-21s-RC2457

Firewall

Firewall Firmware VPN Authentication

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Krebs on Security

FEBRUARY 4, 2025

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled , English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. “Finndev.” ” Image: Ke-la.com. gg , an e-commerce platform that caters to the same clientele as Sellix.

eCommerce

eCommerce Cybercrime Accountability Passwords

Tor Project needs 200 WebTunnel bridges more to bypass Russia’ censorship

Security Affairs

DECEMBER 2, 2024

“We are calling on the Tor community and the Internet freedom community to help us scale up WebTunnel bridges. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, WebTunnel bridges) If you’ve ever thought about running a Tor bridge, now is the time.

Government

Government Internet Internet Hacking

Threat actor leaked config files and VPN passwords for over Fortinet Fortigate devices

Security Affairs

JANUARY 15, 2025

At the beginning of the year, and as a positive start for us, and in order to solidify the name of our group in your memory, we are proud to announce our first official operation: Will be published of sensitive data from over 15,000 targets worldwide (both governmental and private sectors) that have been hacked and their data extracted.”

VPN

VPN Passwords Firewall Firmware

Palo Alto Networks confirmed active exploitation of recently disclosed zero-day

Security Affairs

NOVEMBER 16, 2024

In particular, we recommend that you ensure that access to the management interface is possible only from trusted internal IPs and not from the Internet. In particular, we recommend that you immediately ensure that access to the management interface is possible only from trusted internal IPs and not from the Internet. 173.239.218[.]251

Firewall

Firewall Internet Internet VPN

Microsoft warns of critical flaw in Canon printer drivers

Security Affairs

APRIL 1, 2025

. “If the product is connected directly to the Internet without using a wired or Wi-Fi router, a third party could potentially execute arbitrary code or the product could be subjected to a Denial-of-Service (DoS) attack.”

Engineering

Engineering Internet Internet Hacking

U.S. Offered $10M for Hacker Just Arrested by Russia

Krebs on Security

DECEMBER 4, 2024

image: x.com/vxunderground The golden rule of cybercrime in Russia has always been that as long as you never hack, extort or steal from Russian citizens or companies, you have little to fear of arrest. An image tweeted by Matveev showing the Justice Department’s wanted poster for him on a t-shirt. “Mother Russia will help you.

Cybercrime

Cybercrime Ransomware Cryptocurrency Government

Palo Alto Networks warns of potential RCE in PAN-OS management interface

Security Affairs

NOVEMBER 8, 2024

In particular, we recommend that you ensure that access to the management interface is possible only from trusted internal IPs and not from the Internet. Cortex Xpanse and Cortex XSIAM customers using the ASM module can investigate internet-exposed instances by reviewing alerts from the Firewall Admin Login attack surface rule.

Firewall

Firewall Authentication Internet Internet

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Trending Sources

Internet Archive data breach impacted 31M users

Internet Archive was breached twice in a month

Arguing Against CALEA

U.S. Internet Leaked Years of Internal, Customer Emails

Hacking Weapons Systems

Three Top Russian Cybercrime Forums Hacked

Hacking Wireless Bicycle Shifters

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Hacking a Coffee Maker

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

The Internet Enabled Mass Surveillance. AI Will Enable Mass Spying.

Perfectl Malware

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

No, I Did Not Hack Your MS Exchange Server

More on the Chinese Zero-Day Microsoft Exchange Hack

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown

Sendgrid Under Siege from Hacked Accounts

U.S. Hacks QakBot, Quietly Removes Botnet Infections

The Insecurity of Video Doorbells

Black Hat Fireside Chat: ‘Black Girls Hack’ emphasizes diversity as effective force multiplier

Feds Charge Five Men in ‘Scattered Spider’ Roundup

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Arkana Security group claims the hack of US telco provider WideOpenWest (WOW!)

When Low-Tech Hacks Cause High-Impact Breaches

Microsoft Patch Tuesday, November 2024 Edition

An Interview With the Target & Home Depot Hacker

Booking.com Phishers May Leave You With Reservations

FBI Seizes BreachForums Website

Russian Cyberwarfare Documents Leaked

More on NSO Group and Cytrox: Two Cyberweapons Arms Manufacturers

Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices

France’s second-largest telecoms provider Free suffered a cyber attack

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

How Hacker's hack Android Devices

SonicWall warns of an exploitable SonicOS vulnerability

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Tor Project needs 200 WebTunnel bridges more to bypass Russia’ censorship

Threat actor leaked config files and VPN passwords for over Fortinet Fortigate devices

Palo Alto Networks confirmed active exploitation of recently disclosed zero-day

Microsoft warns of critical flaw in Canon printer drivers

U.S. Offered $10M for Hacker Just Arrested by Russia

Palo Alto Networks warns of potential RCE in PAN-OS management interface

Stay Connected