2012, Hacking and Information Security - Cyber Security Informer

Horde Webmail Software is affected by a dangerous bug since 2012

Security Affairs

FEBRUARY 23, 2022

The bug affects all the versions since the commit that took place on 30 Nov 2012. SecurityAffairs – hacking, Horde Webmail). The post Horde Webmail Software is affected by a dangerous bug since 2012 appeared first on Security Affairs. ” continues the report. disable' => true. Pierluigi Paganini.

Software

Software Accountability Government Hacking

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Security Affairs

JUNE 9, 2023

Two Russian nationals have been charged with the hack of the cryptocurrency exchange Mt. Russian nationals Alexey Bilyuchenko (43) and Aleksandr Verner (29) have been charged with the hack of the cryptocurrency exchange Mt. Gox ) The post Russians charged with hacking Mt. Gox ) The post Russians charged with hacking Mt.

Hacking

Hacking Cryptocurrency Advertising Banking

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Krebs on Security

JULY 18, 2023

[This is Part III in a series on research conducted for a recent Hulu documentary on the 2015 hack of marital infidelity website AshleyMadison.com.] LeakedSource also tried to pass itself off as a legal, legitimate business that was marketing to security firms and professionals. In 2019, a Canadian company called Defiant Tech Inc.

Hacking

Hacking Accountability Data breaches Marketing

A flaw in the connected vehicle service SiriusXM allows remote car hacking

Security Affairs

DECEMBER 6, 2022

Curry and his team also discovered a vulnerability affecting Hyundai and Genesis vehicles that can be exploited to remotely control the locks, engine, horn, headlights, and trunk of vehicles made after 2012. SecurityAffairs – hacking, car hacking). Hyundai also rapidly addressed the flaw. Pierluigi Paganini.

Hacking

Hacking Engineering Mobile Internet

A critical flaw in industrial automation systems opens to remote hack

Security Affairs

NOVEMBER 29, 2020

Experts found a critical flaw in Real-Time Automation’s (RTA) 499ES EtherNet/IP stack that could allow hacking industrial control systems. “Claroty has privately disclosed details to Real Time Automation (RTA), informing the vendor of a critical vulnerability in its proprietary 499ES EtherNet/IP (ENIP) stack.

Hacking

Hacking Firmware Internet Internet

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. “Shevlyakov also attempted to acquire computer hacking tools.” electronics manufacturers and distributors between approximately October 2012 and January 2022.

Computers and Electronics

Computers and Electronics Hacking Penetration Testing Manufacturing

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Security Affairs

JULY 11, 2020

The Russian hacker Yevgeniy Nikulin found guilty for LinkedIn, Dropbox, and Formspring data breach back in 2012 and the sale of their users’ data. A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces.

Hacking

Hacking Cybercrime Data breaches Advertising

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Security Affairs

SEPTEMBER 19, 2021

A Pakistani national has been sentenced to 12 years of prison in the US for his role in a hacking scheme against the telecom giant AT&T. “Beginning in 2012, Fahd, 35, conspired with others to recruit AT&T employees at a call center located in Bothell, Washington, to unlock large numbers of cellular phones for profit.

Hacking

Hacking Malware Cybercrime Information Security

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

FBI spoofs 2012 – 2013. It surfaced in November 2012 and was making thousands of victims a day. In many cases, the crooks hack managed service providers (MSPs) first and then use this access to compromise the partnering organizations. None of these early threats went pro.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Microsoft rolled out emergency updates to fix Windows Server auth failures

Security Affairs

NOVEMBER 15, 2021

These issues impacts Windows Server 2019 and lower versions, including Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows Server 2008 R2 SP1, and Windows Server 2008 SP2. SecurityAffairs – hacking, Operation Cyclone). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Authentication

Authentication Hacking Information Security

Ops, popular iTerm2 macOS Terminal App is affected by a critical RCE since 2012

Security Affairs

OCTOBER 9, 2019

SecurityAffairs – iTerms2, hacking). The post Ops, popular iTerm2 macOS Terminal App is affected by a critical RCE since 2012 appeared first on Security Affairs. . ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising

Advertising Hacking Cybersecurity Information Security

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Security Affairs

JANUARY 25, 2020

Chinese hackers have exploited a zero-day vulnerability the Trend Micro OfficeScan antivirus in the recently disclosed hack of Mitsubishi Electric. This week, Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate data. SecurityAffairs – Mitsubishi Electric, hacking).

Antivirus

Antivirus Hacking Advertising Media

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

Security Affairs

JUNE 23, 2022

The Tropic Trooper APT has been active at least since 2012, it was first spotted by security experts at Trend Micro in 2015, when the threat actors targeted government ministries and heavy industries in Taiwan and the military in the Philippines. SecurityAffairs – hacking, Tropic Trooper). Pierluigi Paganini.

Hacking

Hacking Wireless Encryption Passwords

Deadglyph, a very sophisticated and unknown backdoor targets the Middle East

Security Affairs

SEPTEMBER 24, 2023

Stealth Falcon is a nation-state actor active since at least 2012, the group targeted political activists and journalists in the Middle East in past campaigns. The attacks have been conducted from 2012 until 2106, against Emirati journalists, activists, and dissidents. .

Spyware

Spyware Malware Architecture Encryption

Microsoft Out-of-Band security patch fixes Windows privilege escalation flaws

Security Affairs

AUGUST 20, 2020

Microsoft released an Out-of-Band security update to address privilege escalation flaws in Windows 8.1 and Windows Server 2012 R2 systems. Microsoft released this week an out-of-band security update for Windows 8.1 and Windows Server 2012 R2 systems that address two privilege escalation vulnerabilities in Windows Remote Access.

Advertising

Advertising Hacking Information Security Malware

Don’t trust links with known domains: BMW affected by redirect vulnerability

Security Affairs

JANUARY 3, 2024

When the victim clicks on a link that appears to be legitimate, they’re redirected to the attacker’s website, where malicious JavaScript is executed in the client’s browser or where they are prompted to enter sensitive information. All attackers need to do is modify the URL value to redirect to a malicious site.

Phishing

Phishing Manufacturing Firewall Cybercrime

Microsoft recommends Exchange admins to disable the SMBv1 protocol

Security Affairs

FEBRUARY 13, 2020

Please see this KB for more information. “ In 2017, the Shadow Brokers hacking group released a collection of NSA exploits and hacking tools targeting Microsoft’s Windows OS, some of them were developed to exploit the SMBv1 p rotocol to execute commands on vulnerable servers with administrative p rivileges.

Authentication

Authentication Malware Advertising Hacking

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. “In total, these hacking campaigns targeted thousands of computers, at hundreds of companies and organizations, in approximately 135 countries.”

Government

Government Energy and Utilities Malware Hacking

New Mustang Panda campaign targets Asia with a backdoor dubbed DOPLUGS

Security Affairs

FEBRUARY 21, 2024

Mustang Panda has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Earth Preta)

Malware

Malware Phishing Government Passwords

A cyber attack hit Thyssenkrupp Automotive Body Solutions business unit

Security Affairs

FEBRUARY 26, 2024

In 2012, the company was targeted by another cyber attack that was classified as “heavy” and of “exceptional quality.” Follow me on Twitter: @securityaffairs and Facebook Pierluigi Paganini ( SecurityAffairs – hacking, cyberattack) This isn’t the first time that the company was the victim of a cyber attack.

Cyber Attacks

Cyber Attacks Ransomware Engineering Banking

Experts demonstrate how to unlock several Honda models via Rolling-PWN attack

Security Affairs

JULY 10, 2022

According to the experts, the issue affects all Honda vehicles on the market (From the Year 2012 up to the Year 2022). SecurityAffairs – hacking, Rolling-PWN Attack). The post Experts demonstrate how to unlock several Honda models via Rolling-PWN attack appeared first on Security Affairs. ” the experts recommended.

Firmware

Firmware Marketing Engineering Hacking

Vietnam-linked Ocean Lotus hacked BMW and Hyundai networks

Security Affairs

DECEMBER 7, 2019

” The APT32 group, also known as OceanLotus Group, has been active since at least 2012 targeting organizations across multiple industries and foreign governments, dissidents, and journalists. The post Vietnam-linked Ocean Lotus hacked BMW and Hyundai networks appeared first on Security Affairs. Pierluigi Paganini.

Hacking

Hacking Manufacturing Advertising Media

Hacker deposited $1M in a popular cybercrime marketplace to buy zero-day exploits

Security Affairs

JULY 8, 2021

According to the experts, the member “integra” has joined the cybercrime forum in September 2012 and has gained a high reputation over the course of time. The threat actor is also a member of another cybercrime forum since October 2012. . SecurityAffairs – hacking, cybercrime). ” states Cyble. ” concludes Cyble.

Cybercrime

Cybercrime Malware Hacking Information Security

Chinese APT IronHusky use Win zero-day in recent wave of attacks

Security Affairs

OCTOBER 13, 2021

A Chinese-speaking hacking group exploited a Windows zero-day vulnerability in a wave of attacks on defense and IT businesses. A Chinese-speaking hacking group exploited a zero-day vulnerability in the Windows Win32k kernel driver to deploy a new remote access trojan (RAT), tracked as MysterySnail. SecurityAffairs – hacking, Windows).

Hacking

Hacking Malware Government Technology

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

Security Affairs

JULY 25, 2022

The ransomware gang Lockbit claims to have hacked the Italian Revenue Agency (Agenzia delle Entrate) and added the government agency to the list of victims reported on its dark web leak site. “From 1 December 2012 the Revenue Agency incorporated the Territory Agency (article 23-quater of Legislative Decree 95/2012).”

Ransomware

Ransomware Government Scams Hacking

Colombian authorities arrested hacker behind the Gozi Virus

Security Affairs

JUNE 30, 2021

for his key role in the distribution of the Gozi virus that infected more than a million computers from 2007 to 2012. Paunescu was arrested in Romania in 2012, but was able to avoid extradition. SecurityAffairs – hacking, Gozi ). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Banking

Banking Malware Hacking Information Security

‘Justice Blade’ Hackers are Targeting Saudi Arabia

Security Affairs

NOVEMBER 7, 2022

Based on the currently available data, the announcement of the attack has been initiated with the defacement of a corporate website around November 2nd and progressed as a “hack-and-leak” operation. In 2012 AL Khaleej group was Listed in Forbes Middle East 2012 as one of the top most powerful 100 companies in the GCC region. .

Government

Government Accountability Data breaches Hacking

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

Security Affairs

JUNE 26, 2022

A Russian hacking group may be responsible for a cyber attack against a liquefied natural gas plant in Texas that led to its explosion on June 8. Department of Justice brought charges against four Russian nationals suspected of using TRITON malware in cyber attacks on behalf of the Russian government between 2012 and 2018.

Cyber Attacks

Cyber Attacks Hacking Malware Government

Google provides rules to detect tens of cracked versions of Cobalt Strike

Security Affairs

NOVEMBER 21, 2022

Researchers at Google Cloud identified 34 different hacked release versions of the Cobalt Strike tool in the wild. Google Cloud researchers announced to have discovered 34 different Cobalt Strike hacked release versions with a total of 275 unique JAR files across these versions. SecurityAffairs – hacking, cybersecurity).

Penetration Testing

Penetration Testing Hacking Cybersecurity Cybercrime

Microsoft releases Windows out-of-band emergency fixes for Win Server, VPN issues

Security Affairs

JANUARY 18, 2022

Windows Server 2012 R2: KB5010794 Windows Server 2012: KB5010797. However, experts warn that removing the above updates they will also remove bundled security updates that address vulnerabilities patched with the release of the January 2021 Patch Tuesday. . SecurityAffairs – hacking, Windows emergency out-of-band).

VPN

VPN Media Hacking Information Security

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Security Affairs

NOVEMBER 10, 2023

Skynet was first discovered in 2012 and has since grown to become one of the largest botnets in the world. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, DDoS) The post After ChatGPT, Anonymous Sudan took down the Cloudflare website appeared first on Security Affairs.

DDOS

DDOS Cryptocurrency Accountability Media

Threat actors are offering for sale 550 million stolen user records

Security Affairs

MAY 15, 2020

Data appears to come from past data breaches, the oldest one dates back as 2012 while the latest one dates April 2020. million April 2018 Netlog.com (Twoo.com) 57 million November 2012 Dubsmash.com Phone numbers 47.1 million September 2012 Bukalapak.com 13 million February 2018 Bookmate.com 8 million July 2018 ReverbNation.com 7.9

Data breaches

Data breaches Advertising Passwords Hacking

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes

Security Affairs

FEBRUARY 17, 2024

In 2012, the Ukrainian national Vyacheslav Igorevich Penchukov was accused of being a member of a cybercrime gang known as JabberZeus crew. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, IcedID Malware)

Malware

Malware Cybercrime Banking Hacking

Law enforcement seized the website selling the NetWire RAT and arrested a Croatian man

Security Affairs

MARCH 10, 2023

The NetWire Remote Access Trojan (RAT) is available for sale on cybercrime forums since 2012, it allows operators to steal sensitive data from the infected systems. DomainTools further shows this email address was used to register one other domain in 2012: wwlabshosting[.]com, com and its alleged administrator, a Croatian national.

Malware

Malware Cybercrime Data breaches Internet

Experts warn of a surge in zero-day flaws observed and exploited in 2021

Security Affairs

APRIL 25, 2022

Mandiant states that From 2012 to 2021, China exploited more zero-days than any other nation. From 2012 to 2021, China-linked threat actors exploited more zero-days than any other nation-state actors. SecurityAffairs – hacking, zero-days). Most of the zero-days discovered by the company were exploited by nation-state APT groups.

Ransomware

Ransomware Hacking Software Risk

A new Stantinko Bot masqueraded as httpd targeting Linux servers

Security Affairs

NOVEMBER 24, 2020

Researchers from Intezer have spotted a new variant of an adware and coin-miner botnet that is operated by Stantinko threat actors since 2012. SecurityAffairs – hacking, malware). The post A new Stantinko Bot masqueraded as httpd targeting Linux servers appeared first on Security Affairs. ” Pierluigi Paganini.

Adware

Adware Malware Hacking Software

Expert released DOS Exploit PoC for Critical Windows RDP Gateway flaws

Security Affairs

JANUARY 24, 2020

The Danish security researcher Ollypwn has published a proof-of-concept (PoC) denial of service exploit for the CVE-2020-0609 and CVE-2020-0610 vulnerabilities in the Remote Desktop Gateway (RD Gateway) component on Windows Server (2012, 2012 R2, 2016, and 2019) devices. SecurityAffairs – RDP Gateway, hacking).

Advertising

Advertising Firewall Education Engineering

Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco

Security Affairs

JULY 19, 2021

Threat actors that goes online with the moniker ZeroX claim to have stolen 1 TB of sensitive data from the Saudi Arabian petroleum and natural gas giant end it is offering for sale it on multiple hacking forums. SecurityAffairs – hacking, Saudi Aramco). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Engineering

Engineering Telecommunications Wireless Data breaches

New Version of Meduza Stealer Released in Dark Web

Security Affairs

DECEMBER 29, 2023

Presently, Meduza password stealer supports Windows Server 2012/2016/2019/2022 and Windows 10/11. Atom, Comodo Dragon, Torch, Comodo, Slimjet, 360Browser, 360 Secure Browser, Maxthon3, Maxthon5, Maxthon, QQBrowser, K-Meleon, Xpom, Lenovo Browser, Xvast, Go!

Password Management

Password Management Cryptocurrency Passwords Authentication

The head of the Federal Cyber Security Authority (BSI) faces dismissal

Security Affairs

OCTOBER 10, 2022

According to an investigation conducted by broadcaster ZDF, Schoenbohm was in contact with Russia through an association that he co-founded in 2012, the Cyber Security Council of Germany. SecurityAffairs – hacking, BSI). The news was reported by German media on Sunday, citing government sources. Russia denied any accusation.

Government

Government Cyber Attacks Media Hacking

German industrial giant ThyssenKrupp targeted in a new cyberattack

Security Affairs

DECEMBER 21, 2022

. “At the present time, no damage has been done, nor are there any indications that data has been stolen or modified,” This isn’t the first attack suffered by the company, in 2012, the company was targeted by another cyber attack that was classified as “heavy” and of “exceptional quality.”. Pierluigi Paganini.

Engineering

Engineering Data breaches Ransomware Banking

British Court rejects the US’s request to extradite Julian Assange

Security Affairs

JANUARY 4, 2021

In 2012 a British judge ruled WikiLeaks founder Julian Assange should be extradited to Sweden to face allegations of sexual assault there, but Assange received political asylum from Ecuador and spent the last years in its London embassy. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Government

Government Risk Passwords Hacking

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Security Affairs

OCTOBER 7, 2020

The hacking technique was employed by an unidentified hacking group to avoid detection. The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. SecurityAffairs – hacking, Kraken). Pierluigi Paganini.

Advertising

Advertising Hacking Manufacturing Phishing

FIA World Endurance Championship driver passports leaked

Security Affairs

JULY 18, 2023

Introduced in 2012, FIA WEC features eight endurance races across the world, including its cornerstone stage – 24 hours at Le Mans. Both combined, they contained over 1.1 million files. Among them were hundreds of passports, government-issued IDs, and drivers’ licenses belonging to FIA World Endurance Championship (FIA WEC) drivers.

Banking

Banking Government Accountability Hacking

Horde Webmail Software is affected by a dangerous bug since 2012

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Trending Sources

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

A flaw in the connected vehicle service SiriusXM allows remote car hacking

A critical flaw in industrial automation systems opens to remote hack

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Microsoft rolled out emergency updates to fix Windows Server auth failures

Ops, popular iTerm2 macOS Terminal App is affected by a critical RCE since 2012

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

Deadglyph, a very sophisticated and unknown backdoor targets the Middle East

Microsoft Out-of-Band security patch fixes Windows privilege escalation flaws

Don’t trust links with known domains: BMW affected by redirect vulnerability

Microsoft recommends Exchange admins to disable the SMBv1 protocol

US indicted 4 Russian government employees for attacks on critical infrastructure

New Mustang Panda campaign targets Asia with a backdoor dubbed DOPLUGS

A cyber attack hit Thyssenkrupp Automotive Body Solutions business unit

Experts demonstrate how to unlock several Honda models via Rolling-PWN attack

Vietnam-linked Ocean Lotus hacked BMW and Hyundai networks

Hacker deposited $1M in a popular cybercrime marketplace to buy zero-day exploits

Chinese APT IronHusky use Win zero-day in recent wave of attacks

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

Colombian authorities arrested hacker behind the Gozi Virus

‘Justice Blade’ Hackers are Targeting Saudi Arabia

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

Google provides rules to detect tens of cracked versions of Cobalt Strike

Microsoft releases Windows out-of-band emergency fixes for Win Server, VPN issues

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Threat actors are offering for sale 550 million stolen user records

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes

Law enforcement seized the website selling the NetWire RAT and arrested a Croatian man

Experts warn of a surge in zero-day flaws observed and exploited in 2021

A new Stantinko Bot masqueraded as httpd targeting Linux servers

Expert released DOS Exploit PoC for Critical Windows RDP Gateway flaws

Threat actor claims to have stolen 1 TB of data belonging to Saudi Aramco

New Version of Meduza Stealer Released in Dark Web

The head of the Federal Cyber Security Authority (BSI) faces dismissal

German industrial giant ThyssenKrupp targeted in a new cyberattack

British Court rejects the US’s request to extradite Julian Assange

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

FIA World Endurance Championship driver passports leaked

Stay Connected