2009, Accountability, Information Security and Phishing

2009

Accountability

Information Security

Phishing

Personal info of 90k hikers leaked by French tourism company La Malle Postale

Security Affairs

MAY 13, 2023

The leaked information included names, phone numbers, emails, private communication via SMS messages, passwords, and employees’ credentials. Founded in 2009, the company provides luggage and passenger transportation services on many popular hiking routes, including the famous Santiago de Compostela pilgrimage trail.

Passwords

Passwords Identity Theft Scams Social Engineering

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

Security Affairs

JULY 6, 2021

According to Group-IB’s Threat Intelligence team, the suspect, dubbed Dr HeX by Group-IB based on one of the nicknames that he used, has been active since at least 2009 and is responsible for a number of cybercrimes, including phishing, defacing, malware development, fraud, and carding that resulted in thousands of unsuspecting victims.

Cybercrime

Cybercrime Phishing Banking Telecommunications

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Trending Sources

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

Security Affairs

NOVEMBER 28, 2021

North Korea-linked threat actors posed as Samsung recruiters in a spear-phishing campaign aimed at employees at South Korean security firms. According to the Google Threat Horizons report, the state-sponsored hackers sent fake job offers to employees at the security companies. . ” reads the Google Threat Horizons report.

Malware

Malware Phishing Antivirus Hacking

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

RockYou2021: largest password compilation of all time leaked online with 8.4 billion entries

Security Affairs

JUNE 7, 2021

billion unique password variations with other breach compilations that include usernames and email addresses, threat actors can use the RockYou2021 collection to mount password dictionary and password spraying attacks against untold numbers of online accounts. Enable two-factor authentication (2FA) on all of your online accounts.

Passwords

Passwords Data breaches Accountability Password Management

Experts found 20 Million tax records for Russian citizens exposed online

Security Affairs

OCTOBER 1, 2019

Security experts from Comparitech along with security researcher Bob Diachenko discovered 20 million tax records belonging to Russian citizens exposed online in clear text and without protection. “Affected individuals could be at risk of identity theft and should monitor their accounts closely.

Identity Theft

Identity Theft Scams Advertising Risk

Billions of FBS Records Exposed in Online Trading Broker Data Leak

Security Affairs

MARCH 24, 2021

User information on online trading platforms should be well secured to prevent similar data leaks. Founded in 2009, FBS is an international online forex broker with more than 400,000 partners and 16 million traders spanning over 190 countries. A German User’s Account. An Australian User’s Account. Account Takeover.

Passwords

Passwords Accountability Media Identity Theft

An ongoing Qbot campaign targeted customers of tens of US banks

Security Affairs

JUNE 18, 2020

Security researchers at F5 Labs have spotted ongoing attacks using Qbot malware payloads to steal credentials from customers of dozens of US financial institutions. Qbot , aka Qakbot , is a data stealer worm with backdoor capabilities that was first detected by Symantec back in 2009. The campaign targets 36 different U.S.

Banking

Banking Malware Advertising Financial Services

Telehealth: A New Frontier in Medicine—and Security

SecureList

FEBRUARY 1, 2022

Number of data leaks from medical organizations, 2009–2020. Let’s see if there are any informational security issues with these wearables. From June to December of 2021, we found more than 150,000 phishing attacks that used the medical theme. The HIPAA Journal , which is focused on leaks in the U.S.

Phishing

Phishing Healthcare IoT Authentication

North Korea-linked Lazarus APT targets defense industry with ThreatNeedle backdoor

Security Affairs

FEBRUARY 25, 2021

The attack chain starts with COVID19-themed spear-phishing messages that contain either a malicious Word attachment or a link to one hosted on company servers. . Next, the attackers logged in to the web interface using a privileged root account. ” reads the report published by the experts.

Malware

Malware Cryptocurrency Password Management Encryption

Cyber Security Roundup for May 2021

Security Boulevard

MAY 3, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, April 2021. The UK Security Service MI5 said 10,000 staff from every UK government department and from important UK industries have been lured by fake LinkedIn profiles.

Ransomware

Ransomware Passwords Scams Government

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Krebs wrote for The Washington Post between 1995 and 2009 before launching his current blog KrebsOnSecurity.com. Read more: Top IT Asset Management Tools for Security.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Platinum APT and leverages steganography to hide C2 communications

Security Affairs

JUNE 6, 2019

According to Microsoft, the Platinum has been active since at least 2009, it was responsible for spear phishing attacks on ISPs, government organizations, intelligence agencies, and defense institutes. The APT group was discovered by Microsoft in 2016, it targeted organizations in South and Southeast.

Encryption

Encryption Government Advertising Cyber Attacks

Kroger reaches $5M settlement with breach victims, as Supreme Court defines ‘actual harm’

SC Magazine

JULY 8, 2021

Specifically, companies should be incentivized to invest more in information security through such tactics as tax breaks, while government and regulators should focus on greater access to tools and education, and eliminating the financial motives of the threat actors. “However, the stick approach will not move the needle.

Data breaches

Data breaches Insurance Risk Ransomware

Cyber Security Informer

Personal info of 90k hikers leaked by French tourism company La Malle Postale

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

Webinars

Trending Sources

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

Webinars

RockYou2021: largest password compilation of all time leaked online with 8.4 billion entries

Experts found 20 Million tax records for Russian citizens exposed online

Billions of FBS Records Exposed in Online Trading Broker Data Leak

An ongoing Qbot campaign targeted customers of tens of US banks

Telehealth: A New Frontier in Medicine—and Security

North Korea-linked Lazarus APT targets defense industry with ThreatNeedle backdoor

Cyber Security Roundup for May 2021

Top Cybersecurity Accounts to Follow on Twitter

Platinum APT and leverages steganography to hide C2 communications

Kroger reaches $5M settlement with breach victims, as Supreme Court defines ‘actual harm’

Stay Connected