2010, Accountability, Information Security and Malware

2010

Accountability

Information Security

Malware

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Security Affairs

NOVEMBER 11, 2022

Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. The malware is able to steal sensitive data, record audio, and download arbitrary files.

Surveillance

Surveillance Spyware Malware Mobile

US and UK sanctioned seven Russian members of Trickbot gang

Security Affairs

FEBRUARY 9, 2023

District Court for the District of New Jersey charging Kovalev with conspiracy to commit bank fraud and eight counts of bank fraud in connection with a series of intrusions into victim bank accounts held at various U.S.-based based financial institutions that occurred in 2009 and 2010, predating his involvement in Dyre or the Trickbot Group.

Banking

Banking Ransomware Cybercrime Malware

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Trending Sources

British Court rejects the US’s request to extradite Julian Assange

Security Affairs

JANUARY 4, 2021

“Taking account of all of the information available to him, he considered Mr Assange’s risk of suicide to be very high should extradition become imminent. This was a well-informed opinion carefully supported by evidence and explained over two detailed reports.”

Government

Government Risk Passwords Hacking

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Bulletproof VPN services took down in a global police operation

Security Affairs

DECEMBER 22, 2020

VPN bulletproof services are widely adopted by cybercrime organizations to carry out malicious activities, including ransomware and malware attacks, e-skimming breaches, spear-phishing campaigns, and account takeovers. ” reads the press release published by the Europol. The services were offered for prices ranging from $1.3/day

VPN

VPN Cybercrime Advertising Accountability

Microsoft sued North Korea-linked Thallium group

Security Affairs

DECEMBER 30, 2019

Microsoft sued Thallium North Korea-linked APT for hacking into its customers’ accounts and networks via spear-phishing attacks. Microsoft sued a North Korea-linked cyber espionage group tracked as Thallium for hacking into its customers’ accounts and networks via spear-phishing attacks. 27 in the U.S.

Computers and Electronics

Computers and Electronics Phishing Accountability Malware

Expert identifies new Nazar APT group referenced in 2017 Shadow Brokers leak

Security Affairs

APRIL 23, 2020

The name ‘Nazar’ comes from the debug paths he found in the dump alongside Farsi resources in some of the malware droppers. The analysis of the submissions times in VirusTotal for the artifacts employed in the Nazar campaign allowed the expert to date the campaign between 2010 and 2013. ” continues the expert. .

Hacking

Hacking Advertising Malware Engineering

APT41 actors charged for attacks on more than 100 victims globally

Security Affairs

SEPTEMBER 17, 2020

The attacks also aimed at carrying out other criminal activities, such as the deployment of ransomware and cryptocurrency malware. In August 2010, the same federal jury announced an indictment that charges Malaysian businessmen Wong Ong Hua, 46, and Ling Yang Ching, 32, for conspiring with two of the Chinese hackers.

Identity Theft

Identity Theft Advertising Government Technology

DoJ sentenced Russian ‘King of Fraud’ behind the fraud scheme 3ve to 10 years

Security Affairs

NOVEMBER 11, 2021

Zhukov, aka Nastra, was arrested in Bulgaria, where he had lived since 2010, in November 2018 and was extradited to the US on January 18. . million computers with malware, attackers used thousands of servers and more than 10,000 counterfeit websites to impersonate legitimate web publishers. 2—The KOVTER Malware Scheme.

Advertising

Advertising Mobile Internet Internet

SAP systems are targeted within 72 hours after updates are released

Security Affairs

APRIL 6, 2021

Furthermore, attackers used proof-of-concept code to attack SAP systems, but also brute-force attacks to take over high-privileged SAP user accounts. The goal of these attacks was to take full control of an SAP deployment in order to modify configurations and user accounts to exfiltrate business information.

Risk

Risk Architecture Cybersecurity Accountability

Google reported that Microsoft failed to fix a Windows zero-day flaw

Security Affairs

DECEMBER 24, 2020

On May 19, 2010, ZDI published an advisory after that threat actors exploited the flaw in the wild in a campaign tracked as “ Operation PowerFall.” The flaw could allow installing malicious programs, view, change, or delete data, and create new accounts with full user rights. GdiPrinterThunk+0x1E85A.”

Hacking

Hacking Internet Internet Accountability

Microsoft Patch Tuesday for August 2019 patch 93 bugs, including 2 dangerous wormable issues

Security Affairs

AUGUST 14, 2019

A wormable flaw could be exploited by malware to propagate from vulnerable computer to vulnerable computer without any user interaction. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. This issue reminds us of the flaw exploited by the Stuxnet malware back in 2010.

Authentication

Authentication Advertising Internet Internet

FBI and DHS CISA issue alerts on e-skimming attacks

Security Affairs

OCTOBER 23, 2019

In other attacks, hackers have compromised plugins used by e-commerce platforms in a classic supply chain attack or have injected software skimmers inside a company’s cloud hosting account that was poorly protected. Security firms have monitored the activities of a dozen groups at least since 2010. .

Social Engineering

Social Engineering Advertising Software Firewall

Cyber Security Roundup for April 2021

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. At the start of March 2021, Microsoft rushed out patches for a critical zero-day Vulnerability in Exchange Server (2010, 2013, 2016, and 2019). How not to disclosure a Hack.

Energy and Utilities

Energy and Utilities Ransomware Banking Hacking

Data of 2 million MyFreeCams users sold on a hacker forum

Security Affairs

JANUARY 22, 2021

At the time of this writing, the threat actor has deleted its post, as well as its account, and emptied the cryptocurrency wallet used for the sale. The investigation conducted by MyFreeCams revealed that data were stolen in “a security incident that occurred more than ten years ago in June 2010.”

Passwords

Passwords Marketing Accountability Cryptocurrency

Black Hat Europe 2021 Network Operations Center: London called, We answered

Cisco Security

NOVEMBER 29, 2021

Cisco Secure supports the NOC operations with DNS visibility and architecture intelligence ( Cisco Umbrella and Cisco Umbrella Investigate ) and automated malware analysis and threat intelligence ( Cisco Secure Malware Analytics (Threat Grid) , backed by Cisco Talos Intelligence and Cisco SecureX ).

DNS

DNS Mobile Malware Firewall

Best SIEM Tools & Software for 2022

eSecurity Planet

AUGUST 15, 2022

A screenshot of the User Account Management dashboard on LogPoint. Company Product Est HQ AT&T AlienVault USM Anywhere 1983 Dallas, TX Elastic Elastic Security 2012 Mountain View, CA ManageEngine Log360 1996 Pleasanton, CA NetWitness NetWitness Platform 1997 Bedford, MA Sumo Logic Cloud SIEM 2010 Redwood City, CA.

Software

Software Small Business Marketing Firewall

Iran announced to have foiled a second cyber-attack in a week

Security Affairs

DECEMBER 15, 2019

The APT27 cyber espionage group (aka Emissary Panda , TG-3390 , Bronze Union , and Lucky Mouse ) has been active since 2010, it targeted organizations worldwide, including U.S. “A day earlier, the minister had dismissed reports that millions of Iranian bank accounts had been hacked.” ” reported the BBC.

Cyber Attacks

Cyber Attacks Telecommunications Government Advertising

Cyber Security Informer

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

US and UK sanctioned seven Russian members of Trickbot gang

Webinars

Trending Sources

British Court rejects the US’s request to extradite Julian Assange

Webinars

Bulletproof VPN services took down in a global police operation

Microsoft sued North Korea-linked Thallium group

Expert identifies new Nazar APT group referenced in 2017 Shadow Brokers leak

APT41 actors charged for attacks on more than 100 victims globally

DoJ sentenced Russian ‘King of Fraud’ behind the fraud scheme 3ve to 10 years

SAP systems are targeted within 72 hours after updates are released

Google reported that Microsoft failed to fix a Windows zero-day flaw

Microsoft Patch Tuesday for August 2019 patch 93 bugs, including 2 dangerous wormable issues

FBI and DHS CISA issue alerts on e-skimming attacks

Cyber Security Roundup for April 2021

Data of 2 million MyFreeCams users sold on a hacker forum

Black Hat Europe 2021 Network Operations Center: London called, We answered

Best SIEM Tools & Software for 2022

Iran announced to have foiled a second cyber-attack in a week

Stay Connected