Security Affairs

APRIL 22, 2024

The APT28 group (aka Forest Blizzard , Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. Microsoft reports include instructions for detecting, hunting, and responding to GooseEgg.

Government 113

Government Education Phishing Malware 113

Quick Heal Antivirus

NOVEMBER 11, 2022

QBot, also known as Qakbot, QuackBot, and Pinkslipbot, is a Banking Trojan that was first observed in 2007. The post QBOT – A HTML Smuggling technique to target victims appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.

Banking 112

Banking Phishing Cybercrime Ransomware 112

Heimadal Security

OCTOBER 22, 2021

About Evil Corp Also known as the Dridex gang or INDRIK SPIDER, the Russia-based hacking group Evil Corp has been around since at least 2007 and is notorious for developing and distributing […]. The post Macaw Locker, Evil Corp’s Latest Version Makes New Victims appeared first on Heimdal Security Blog.

Ransomware 87

Ransomware Hacking Cybersecurity 87

Security Affairs

AUGUST 19, 2022

Undersecretary for Digital Transformation Luukas Ilves announced that Estonia was hit by the most extensive wave of DDoS attacks it has faced since 2007. Yesterday, Estonia was subject to the most extensive cyber attacks it has faced since 2007. SecurityAffairs – hacking, Estonia). Pierluigi Paganini.

DDOS 115

DDOS Computers and Electronics Digital transformation Government 115

Security Affairs

OCTOBER 27, 2021

Grief ransomware operators announced to have hacked US National Rifle Association (NRA) and threaten to leak the stolen data. The NRA was added to the list of compromised organizations on the leak site of the group, that gang also published a set of documents as proof of the hack. SecurityAffairs – hacking, NRA).

Ransomware 118

Ransomware Banking Cybercrime Hacking 118

Security Affairs

JUNE 30, 2021

for his key role in the distribution of the Gozi virus that infected more than a million computers from 2007 to 2012. The Gozi banking Trojan is not a new threat, it was first spotted by security researchers in 2007. SecurityAffairs – hacking, Gozi ). Paunescu was arrested in Romania in 2012, but was able to avoid extradition.

Banking 101

Banking Malware Hacking Information Security 101

Krebs on Security

SEPTEMBER 17, 2020

Justice Department this week indicted seven Chinese nationals for a decade-long hacking spree that targeted more than 100 high-tech and online gaming companies. Security firm FireEye dubbed that hacking blitz “one of the broadest campaigns by a Chinese cyber espionage actor we have observed in recent years.” Image: FBI.

Antivirus 353

Antivirus Hacking Government Software 353

Krebs on Security

MARCH 10, 2020

District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations. It also was used in 2007 to register xeka[.]ru Click image to enlarge.

Accountability 291

Accountability Advertising Hacking Cybercrime 291

Security Affairs

OCTOBER 22, 2020

The Council of the European Union announced sanctions imposed on Russian military intelligence officers for 2015 Bundestag hack. The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide.

Hacking 74

Hacking Cyber Attacks Identity Theft Government 74

Security Affairs

NOVEMBER 10, 2018

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. The post Symantec shared details of North Korean Lazarus’s FastCash Trojan used to hack banks appeared first on Security Affairs.

Banking 107

Banking Hacking Malware Advertising 107

Security Affairs

AUGUST 6, 2019

The STRONTIUM APT group (aka APT28 , Fancy Bear , Pawn Storm , Sofacy Group , and Sednit ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. SecurityAffairs – Russia APT, hacking). link] #MSFTatBlackHat — Security Response (@msftsecresponse) August 5, 2019.

IoT 75

IoT Hacking Advertising Government 75

Security Affairs

OCTOBER 21, 2021

The Evil Corp cybercrime group (aka the Dridex gang Indrik Spider , the Dridex gang, and TA505 ) has been active in cybercrime activities since 2007. 32) and Igor Turashev (38) for distributing the infamous Dridex banking Trojan , and for their involvement in international bank fraud and computer hacking schemes. Pierluigi Paganini.

Ransomware 115

Ransomware Cybercrime Banking Encryption 115

Security Affairs

SEPTEMBER 22, 2022

More than 350,000 open source projects can be potentially affected by an unpatched Python vulnerability, tracked as CVE-2007-4559 (CVSS score: 6.8), that was discovered 15 years ago. As we dug into the issue, we realized this was in fact CVE-2007-4559.” SecurityAffairs – hacking, Python). Pierluigi Paganini.

Hacking 94

Hacking Information Security 94

Security Affairs

DECEMBER 28, 2019

Zynga Inc is an American social game developer running social video game services founded in April 2007, it primarily focuses on mobile and social networking platforms. The post 173 Million Zynga accounts were impacted in the September hack appeared first on Security Affairs. Pierluigi Paganini. SecurityAffairs – Zynga, data breach).

Accountability 62

Accountability Hacking Data breaches Passwords 62

CyberSecurity Insiders

APRIL 18, 2023

Those who had Facebook accounts from May 24th, 2007, to Dec 22nd, 2022, will be eligible to gain some monetary benefits from the settled amount. The company has created a separate page for users to claim the benefit, and you can find more details on the company’s website.

Cyber Attacks 113

Cyber Attacks Banking Retail Media 113

Security Affairs

MARCH 9, 2020

Multiple state-sponsored hacking groups are attempting to exploit a vulnerability recently addressed in Microsoft Exchange email servers. A couple of weeks ago, the popular security researcher Kevin Beaumont reported mass scanning for the CVE-2020-0688 (Microsoft Exchange 2007+ RCE vulnerability). Pierluigi Paganini.

Authentication 133

Authentication Advertising Hacking Malware 133

Security Affairs

DECEMBER 6, 2020

Kopter Group is Switzerland-based company that was founded in 2007 that was acquired by Leonardo in April 2020. SecurityAffairs – hacking, ransomware). The helicopter maker Kopter was hit by LockBit ransomware, the attackers compromised its internal network and encrypted the company’s files. ” reported ZDNet.

Ransomware 97

Ransomware VPN Encryption Authentication 97

Security Affairs

NOVEMBER 15, 2021

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. SecurityAffairs – hacking, Operation Cyclone). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Cybersecurity 102

Cybersecurity Engineering Software Malware 102

Security Affairs

SEPTEMBER 10, 2022

Since at least 2007, the MOIS coordinated a series of cyber operation against government entities and private organizations around the world. We have concluded that the Government of Iran conducted this reckless and irresponsible cyberattack and that it is responsible for subsequent hack and leak operations.”. “Today, the U.S.

Government 126

Government Cyber Attacks Hacking Cyber threats 126

Krebs on Security

FEBRUARY 7, 2024

In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. “Hiding with purely technical parameters will not help in a serious matter,” Djamix advised Maza members in September 2007. “In order to ESCAPE the law, you need to KNOW the law. This is the most important thing.

Cybercrime 243

Cybercrime Accountability Identity Theft Hacking 243

Security Affairs

NOVEMBER 3, 2020

“As reflected in court documents, from 2007 through 2019, Brovko worked closely with other cybercriminals to monetize vast troves of data that had been stolen by “botnets,” or networks of infected computers. Brovko was involved in the illegal practice between 2007 and 2019. SecurityAffairs – hacking, Aleksandr Brovko).

Accountability 101

Accountability Banking Advertising Data collection 101

Security Affairs

DECEMBER 5, 2023

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, APT28) The group was involved also in the string of attacks that targeted 2016 Presidential election.

Accountability 104

Accountability Government Phishing Authentication 104

Security Affairs

OCTOBER 14, 2021

Google revealed to have sent roughly 50,000 alerts of state-sponsored phishing or hacking attempts to customers since January. Google announced to have sent roughly 50,000 alerts of state-sponsored phishing or hacking attempts to customers during 2021. SecurityAffairs – hacking, cyber security). Pierluigi Paganini.

Phishing 83

Phishing Hacking Government VPN 83

Security Affairs

OCTOBER 29, 2020

US Cyber Command shared technical details about malware implants employed by Russian hacking groups in attacks against multiple ministries of foreign affairs, national parliaments, and embassies. SecurityAffairs – hacking, US Cyber Command). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware 110

Malware Advertising Hacking Government 110

Security Affairs

DECEMBER 7, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Government 108

Government Telecommunications Accountability Phishing 108

Security Affairs

JULY 20, 2023

The APT41 group, aka Winnti , Axiom, Barium , Blackfly, HOODOO) is a China-linked cyberespionage group that has been active since at least 2007. The experts noticed the use of an IP address that was part of the hacking infrastructure used by APT41 between May 2014 and August 2020. government.

Spyware 82

Spyware Surveillance Mobile Malware 82

Security Affairs

DECEMBER 17, 2021

and above 2007 Workspace ONE UEM patch 20.7.0.17 SecurityAffairs – hacking, VMware Workspace ONE UEM). .” Below is the list of impacted versions: I mpacted Versions Fixed Version 2109 Workspace ONE UEM patch 21.9.0.13 and above 2105 Workspace ONE UEM patch 21.5.0.37 and above 2102 Workspace ONE UEM patch 21.2.0.27

Authentication 107

Authentication Hacking Software Information Security 107

Security Affairs

OCTOBER 27, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The document also includes a series of recommendations to protect against this type of attack.

Government 108

Government Phishing Accountability Hacking 108

Security Affairs

JUNE 28, 2022

Looking back at 2007, Estonia fell victim to a powerful cyber-attack that shut down government services, telecommunications, and banks in the country. SecurityAffairs – hacking, non-state actors). The attack was launched in response to the Estonian government’s removal of a Soviet war monument from downtown Tallinn.

Cyber Attacks 96

Cyber Attacks Cybercrime Telecommunications Government 96

Security Affairs

OCTOBER 18, 2022

Winnti (aka APT41 , Axiom, Barium , Blackfly) is a cyberespionage group that has been active since at least 2007. SecurityAffairs – hacking, APT41). Symantec also shared Indicators of Compromise (IoCs) for this campaign. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Malware 108

Malware Encryption Manufacturing Hacking 108

Security Affairs

NOVEMBER 28, 2021

The software also allow dragnet surveillance, according to the brochures presented at Milipol it is an updated copy of Eagle, the program ceded to Gaddafi in 2007. . SecurityAffairs – hacking, IKEA). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Technology 111

Technology Surveillance Software Government 111

Security Affairs

MARCH 27, 2023

”However, one feature of this particular package caught our eye: an obfuscation technique that was foreseen in 2007 during a discussion about Python’s support for Unicode, documented in PEP-3131 “ While inspecting the code the experts multiple strange, non-monospaced, sans-serif font with mixed bold and italics. .

Malware 82

Malware Hacking Information Security 82

Security Affairs

OCTOBER 8, 2021

The researchers pointed out that the warning is related to hacking attempts and that not all the attacks have been successful, also thanks to the defense implemented by Google. SecurityAffairs – hacking, spear-phishing). So why do we do these government warnings then? — Shane Huntley (@ShaneHuntley) October 7, 2021.

Phishing 93

Phishing Government Hacking Accountability 93

Security Affairs

OCTOBER 27, 2021

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. SecurityAffairs – hacking, supply chain attack). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Malware 99

Malware System Administration Hacking Media 99

Security Boulevard

JULY 26, 2021

In this third installment of the series ( Part 1 , Part 2 ), we come back to the story in early 2007 when a Secret Service agent operating out of San Diego takes a flight halfway across the world. He’s going to meet with Europe’s most prolific stolen credit card salesman.

InfoSec 52

InfoSec Cybercrime Cybersecurity Hacking 52

Security Affairs

AUGUST 1, 2018

The hacker accessed user data, email addresses, and a 2007 backup database containing hashed passwords managed by the platform. “A hacker broke into a few of Reddit’s systems and managed to access some user data, including some current email addresses and a 2007 database backup containing old salted and hashed passwords.

Data breaches 56

Data breaches Backups Passwords Authentication 56

Security Affairs

OCTOBER 24, 2020

This group has been active since at least 2007, in December 2019, the U.S. 32) and Igor Turashev (38) for distributing the infamous Dridex banking Trojan , and for their involvement in international bank fraud and computer hacking schemes. SecurityAffairs – hacking, WastedLocker). Pierluigi Paganini.

Ransomware 85

Ransomware Telecommunications Banking Advertising 85