Security Affairs

JUNE 23, 2019

NASA Office of Inspector General revealed that the Agency’s network was hacked in April 2018, intruders exfiltrated roughly 500 MB of data related to Mars missions. Unfortunately, this was not the first time hackers broke into JPL , it has already happened back in 2009, 2011, 2014, 2016 and 2017. The post NASA hacked!

Hacking 111

Hacking Data breaches Advertising Firewall 111

Security Affairs

DECEMBER 7, 2021

The blockchain-enabled botnet has been active since at least 2011, researchers estimate that the Glupteba botnet is currently composed of more than 1 million Windows PCs around the world. The IT giant also removed 1,183 Google accounts, 908 cloud projects, and 870 Google Ads accounts used by the operators. Pierluigi Paganini.

Backups 110

Backups Advertising Accountability Malware 110

Security Affairs

MAY 22, 2021

million of its customers, two months after its Passenger Service System provider SITA was hacked. million of its customers, exposed data includes the personal information of customers registered between August. 26, 2011 and February. SecurityAffairs – hacking, Air India). Pierluigi Paganini.

Data breaches 119

Data breaches Passwords Hacking Cyber Attacks 119

Security Affairs

JANUARY 2, 2022

It is estimated that the cryptocurrencies stolen between January 2011 and December 2021 amount to $12.1 billion from organizations in the industry and attacks against DeFi platforms accounted for $1.76 SecurityAffairs – hacking, crypto security breaches). The post Crypto security breaches cause $4.25

Cryptocurrency 104

Cryptocurrency Scams Marketing Hacking 104

Security Affairs

OCTOBER 19, 2020

Alexander Vinnik allegedly headed the Bitcoin exchange BTC-e, he is charged with different hacking crimes in Russia, France, and the United States. The authorities reported that since 2011, 7 million Bitcoin went into the BTC-e exchange and 5.5 SecurityAffairs – hacking, cybercrime). million withdrawn. Pierluigi Paganini.

Advertising 116

Advertising Cybercrime Hacking Cryptocurrency 116

Security Affairs

APRIL 28, 2023

“This litigation is another step forward in holding cybercriminals accountable, by not just targeting those that operate botnets, but also those that profit from malware distribution.” Before downloading any software, do research on the product, and read reviews from others who have already downloaded and used the software.

Malware 92

Malware Cybercrime Cryptocurrency Media 92

Security Affairs

JANUARY 12, 2022

Some of the hacking campaigns that were publicly attributed to Russian state-sponsored APT actors by U.S. Russian state-sponsored APT actors’ global Energy Sector intrusion campaign, 2011 to 2018. SecurityAffairs – hacking, Russia-linked threat actors). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Malware 117

Malware Cyber threats Cybersecurity Government 117

Security Affairs

JUNE 29, 2022

To validate the cookies and to grab more information about the YouTube user account, the malware starts one of the installed web browsers on the infected machine in headless mode and adds the cookie to its cookie store.” Aparat is an Iranian video-sharing site that was founded in 2011. ” continues the report.

Malware 96

Malware Authentication Software Accountability 96

Security Affairs

OCTOBER 6, 2019

Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage group has been active since at least 2011. . “The targeted accounts are associated with a U.S. “The targeted accounts are associated with a U.S. ” reads the analysis published by Microsoft.

Accountability 74

Accountability Passwords Advertising Government 74

Security Affairs

AUGUST 24, 2023

released in 2011.” The researchers observed threat actors exploiting the flaw to gain access to the Openfire Plugins interface and creating new admin console user accounts to install a new plugin. Of those, the most popular version is 3.7.1,released ” adds the company. ” adds the company.

Internet 82

Internet Internet Engineering Authentication 82

Security Affairs

SEPTEMBER 28, 2022

They may start with a low-level account, but they exploit permissions and pathways to work themselves up to an intimidating level of privilege where they’re poised to cause irreparable damage and also gain persistence or lockdown the account. Forrester estimated that 80% of security breaches involve privileged credentials.

Engineering 93

Engineering Technology Architecture Accountability 93

Security Affairs

MARCH 15, 2023

Knowing them, a threat actor could be able to hijack the session and therefore the account. If attackers had access to this key, they could create an admin account and have privileged access to a website. As reported in 2011, the company fell victim to two cyberattacks, which are suspected to be part of an espionage attempt.

Manufacturing 86

Manufacturing Media Accountability Risk 86

ForAllSecure

JANUARY 15, 2021

In this episode, Mike Ahmadi draws on his years of experience in infosec, his years hacking medical devices. Listen to EP 12: Hacking Healthcare. It’s about challenging our expectations about people who hack for a living. ” So it’s not surprising that this recording coincided with another major security event.

Healthcare 52

Healthcare Hacking InfoSec Software 52

ForAllSecure

JANUARY 15, 2021

In this episode, Mike Ahmadi draws on his years of experience in infosec, his years hacking medical devices. Listen to EP 12: Hacking Healthcare. It’s about challenging our expectations about people who hack for a living. ” So it’s not surprising that this recording coincided with another major security event.

Healthcare 52

Healthcare Hacking InfoSec Software 52

Security Affairs

FEBRUARY 3, 2022

The threat actors were returning periodically in the compromised network to launch xPack again and steal account credentials from the compromised organizations. Symantec speculates Antlion is has been active since at least 2011, its TTP overlaps the ones associated with China-linked nation-state actors. Pierluigi Paganini.

Manufacturing 88

Manufacturing Malware Data collection Encryption 88

Security Affairs

JANUARY 20, 2020

.” The security breach was discovered after Mitsubishi Electric staff found a suspicious file on one of the company’s servers, further investigation allowed the company to determine that hack of an employee account. SecurityAffairs – data breach, hacking). ” reported Kyodo News. Pierluigi Paganini.

Data breaches 120

Data breaches Media Computers and Electronics Cyber Attacks 120

Security Affairs

JULY 17, 2020

contacts, images, and files) from various online accounts associated cloud storage services. Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage group has been active since at least 2011. . SecurityAffairs – hacking, APT35). continues IBM. . Pierluigi Paganini.

Advertising 88

Advertising Media Authentication Hacking 88

Security Affairs

OCTOBER 13, 2019

Security experts at ClearSky analyzed attacks recently uncovered by Microsoft that targeted a US presidential candidate, government officials, journalists, and prominent expatriate Iranians. The messages include a link and claim to inform the recipient of an attempt to compromise their email account.

Media 70

Media Social Engineering Phishing Advertising 70

Security Affairs

DECEMBER 23, 2019

The APT20 group has been active since at least 2011, but experts did not associate any campaign with this threat actors between 2016 and 2017. W? ”, used as “s**t” or “damn”) is the name that Fox-IT uses to describe the hacking activities of a Chinese based hacking group.” SecurityAffairs – APT20, hacking).

VPN 66

VPN Hacking Software Advertising 66

Pen Test

OCTOBER 12, 2023

Introduction Radio Frequency (RF) penetration testing, popularly referred to as RF pentesting, stands as a vital domain within ethical hacking. Different wireless technologies operate within the RF spectrum, each utilizing specific frequency bands based on their intended applications (Molisch, 2011). IEEE Access, 6, 12725-12738.

Penetration Testing 52

Penetration Testing Wireless IoT Technology 52

Krebs on Security

FEBRUARY 22, 2024

A new data leak that appears to have come from one of China’s top private cybersecurity firms provides a rare glimpse into the commercial side of China’s many state-sponsored hacking groups. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government 263

Government Hacking Cyber threats Mobile 263

Security Affairs

OCTOBER 29, 2020

Iran-linked APT group Phosphorus successfully hacked into the email accounts of multiple high-profile individuals and security conference attendees. “Phosphorus, an Iranian actor, has targeted with this scheme potential attendees of the upcoming Munich Security Conference and the Think 20 (T20) Summit in Saudi Arabia.”

Hacking 69

Hacking Security Intelligence Accountability Advertising 69

Security Affairs

SEPTEMBER 11, 2022

APT42’s TTPs overlap with another Iran-linked APT group tracked as APT35 (aka ‘ Charming Kitten ‘, ‘ Phosphorus ‘, Newscaster , and Ajax Security Team) which made the headlines in 2014 when experts at iSight issued a report describing the most elaborate net-based spying campaign organized by Iranian hackers using social media.

Surveillance 94

Surveillance Social Engineering Phishing Government 94

Security Affairs

AUGUST 28, 2020

Iran-linked Charming Kitten group, (aka APT35 , Phosphorus , Newscaster , and Ajax Security Team) made the headlines in 2014 when experts at iSight issued a report describing the most elaborate net-based spying campaign organized by Iranian hackers using social media. SecurityAffairs – hacking, LinkedIn). Pierluigi Paganini.

Phishing 119

Phishing Accountability Advertising Media 119

Security Affairs

APRIL 27, 2023

Iran-linked Charming Kitten group, (aka APT35 , Phosphorus , Newscaster , and Ajax Security Team) made the headlines in 2014 when experts at iSight issued a report describing the most elaborate net-based spying campaign organized by Iranian hackers using social media. Israel, Iraq, and Saudi Arabia. Europe, the Middle East and India.

Malware 96

Malware DNS Media Architecture 96

Security Affairs

MARCH 27, 2023

The threat actor abused Bitly shortener and an ad hoc BlogSpot account to protect the malicious code, lastly stored in an encrypted zip archive hosted on Mega.nz. He is a former member of the ANeSeC CTF team, one of the firsts Italian cyber wargame teams born back in 2011.

Malware 82

Malware Social Engineering Encryption Marketing 82

Security Affairs

MAY 8, 2020

In the second half of 2019, ransomware remained the most frequent “stuffing” of phishing emails, accounting for 47 percent of the total number of malicious attachments. SecurityAffairs – phishing attacks, hacking). Figure 3 Top-10 threats hiding in phishing emails in H2 2019 and extension of attached malicious files.

Phishing 56

Phishing Spyware Banking Malware 56

Krebs on Security

NOVEMBER 18, 2019

When Israeli authorities turned down requests to send him back to Russia — supposedly to face separate hacking charges there — the Russians then imprisoned an Israeli woman for seven years on trumped-up drug charges in a bid to trade prisoners. A screen shot from the Mazafaka cybercrime forum, circa 2011. court last week.

Cybercrime 217

Cybercrime Government Hacking Banking 217