2010, Data collection and Hacking - Cyber Security Informer

RSAC insights: SolarWinds hack illustrates why software builds need scrutiny — at deployment

The Last Watchdog

MAY 11, 2021

By patiently slipping past the best cybersecurity systems money can buy and evading detection for 16 months, the perpetrators of the SolarWinds hack reminded us just how much heavy lifting still needs to get done to make digital commerce as secure as it needs to be. Related: DHS launches 60-day cybersecurity sprints.

Software

Software Hacking Malware Engineering

Microsoft disrupts China-based hacking group Nickel

Malwarebytes

DECEMBER 7, 2021

Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets. Sadly, any setback to the Chinese hacking group or others will likely be temporary as the hackers will find and build new infrastructure to use in forthcoming attacks. An overview of Chinese hacking groups and their aliases.

Hacking

Hacking Malware Surveillance Data collection

A chink in the armor of China-based hacking group Nickel

Malwarebytes

DECEMBER 7, 2021

Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets. Sadly, any setback to the Chinese hacking group or others will likely be temporary as the hackers will find and build new infrastructure to use in forthcoming attacks. An overview of Chinese hacking groups and their aliases.

Hacking

Hacking Malware Surveillance Data collection

Webinars

Human-Centered Cyber Security Training: Driving Real Impact on Security Culture

MORE WEBINARS

BORN Ontario data breach impacted 3.4 million newborns and pregnancy care patients

Security Affairs

SEPTEMBER 26, 2023

The organization confirmed that it was the victim of the massive hacking campaign targeting Progress MOVEit transfer systems that was conducted by the Clop ransomware group. In June, the Clop ransomware group claimed to have hacked hundreds of companies globally by exploiting MOVEit Transfer vulnerability.

Data breaches

Data breaches Healthcare Ransomware Hacking

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

For several years beginning around 2010, a lone teenager in Vietnam named Hieu Minh Ngo ran one of the Internet’s most profitable and popular services for selling “ fullz ,” stolen identity records that included a consumer’s name, date of birth, Social Security number and email and physical address. BEGINNINGS.

Identity Theft

Identity Theft Computers and Electronics Hacking Accountability

On Chinese "Spy Trains"

Schneier on Security

SEPTEMBER 26, 2019

While it's unlikely that China would bother spying on commuters using subway cars, it would be much less surprising if a tech company offered free Internet on subways in exchange for surveillance and data collection. That's an easier, and more fruitful, attack path.

Surveillance

Surveillance Wireless Government Internet

Number of hacktivist attacks declined by 95 percent since 2015

Security Affairs

MAY 18, 2019

Even if in Italy the cells of the popular Anonymous collective are very active , the overall number of hacktivist attacks that caused in quantifiable damage to the victim has declined by 95 percent since 2015. Researchers analyzed data collected by IBM’s X-Force threat intelligence unit between 2015 and 2019. Pierluigi Paganini.

Advertising

Advertising Data collection DDOS Healthcare

Prilex: the pricey prickle credit card complex

SecureList

SEPTEMBER 28, 2022

During the carnival of 2016, a Brazilian bank realized that their ATMs had been hacked, with all the cash contained in those machines stolen. The backdoor would allow the attacker to empty the ATM socket by launching the malware interface and typing a code supplied by the mastermind, the code being specific to each ATM being hacked.

Malware

Malware Banking Software Encryption

Who is the Network Access Broker ‘Wazawaka?’

Krebs on Security

JANUARY 11, 2022

But in more recent years, Wazawaka has focused on peddling access to organizations and to databases stolen from hacked companies. was used to register three domains between 2008 and 2010: ddosis.ru , best-stalker.com , and cs-arena.org. “Come, rob, and get dough!,” “Show them who is boss.”

DDOS

DDOS Accountability Cybercrime Ransomware

Mystic Stealer

Security Boulevard

JUNE 15, 2023

Mystic Stealer web admin control panel login page Crimeware control panels allow operators to configure settings and access data collected from deployed malware and typically serve as the interface for criminal users to interact with the software. The seller later advertised Mystic Stealer on the XSS forum. Trojan.Mystic.KV

Cryptocurrency

Cryptocurrency Password Management Malware DNS

Cyber Security Informer

RSAC insights: SolarWinds hack illustrates why software builds need scrutiny — at deployment

Microsoft disrupts China-based hacking group Nickel

Webinars

Trending Sources

A chink in the armor of China-based hacking group Nickel

Webinars

BORN Ontario data breach impacted 3.4 million newborns and pregnancy care patients

Confessions of an ID Theft Kingpin, Part I

On Chinese "Spy Trains"

Number of hacktivist attacks declined by 95 percent since 2015

Prilex: the pricey prickle credit card complex

Who is the Network Access Broker ‘Wazawaka?’

Mystic Stealer

Stay Connected