Security Affairs

MAY 15, 2020

Data appears to come from past data breaches, the oldest one dates back as 2012 while the latest one dates April 2020. million April 2018 Netlog.com (Twoo.com) 57 million November 2012 Dubsmash.com Phone numbers 47.1 million September 2012 Bukalapak.com 13 million February 2018 Bookmate.com 8 million July 2018 ReverbNation.com 7.9

Data breaches 104

Data breaches Advertising Passwords Hacking 104

Security Affairs

JANUARY 4, 2021

The US authorities also accuse Assange of having conspired with Army intelligence analyst Chelsea Manning to crack a password hash for an Army computer to access classified documents that were later published on the WikiLeaks website. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Government 133

Government Risk Passwords Hacking 133

Security Affairs

APRIL 1, 2020

In malspam attacks, attackers could encrypt the Excel file by setting up a password, then when the victims receive the email, hackers trick them into opening the attachment using a password included in the content of the message. Excel attempts to decrypt and open the file and run any macros it contains.

Malware 97

Malware Passwords Encryption Advertising 97

Security Affairs

NOVEMBER 22, 2019

The banking trojan is able to record keystrokes, to steal passwords stored on the PC, and take screenshots and videos from the victims’ machine. Lisov operated the infrastructure behind the NeverQuest malware between June 2012 and January 2015, the managed a network of servers containing lists of millions of stolen login credentials.

Banking 102

Banking Malware Advertising Passwords 102

Security Affairs

APRIL 6, 2023

Google experts are tracking ARCHIPELAGO since 2012 and have observed the group targeting individuals with expertise in North Korea policy issues. The fake browser window displays a URL and a login prompt designed to trick recipients into providing their password to a legitimate login page.

Phishing 80

Phishing Media Passwords Malware 80

Security Affairs

MARCH 27, 2023

Trend Micro researchers reported that the China-linked Earth Preta group (aka Mustang Panda ) is actively changing its tools, tactics, and procedures (TTPs) to bypass security solutions. The link points to a password-protected archive, the document also includes the password.

Malware 83

Malware Phishing Passwords Government 83

Malwarebytes

JANUARY 16, 2024

In 2012, as a senior soon to graduate with a physics degree, he worked on a project with faculty member Robert W. He was rumored to have hacked into his high school’s computer system, although those rumors were never confirmed. While at CWRU, he was accused of “cracking passwords” on a CWRU network.

Malware 83

Malware Passwords Identity Theft Data collection 83

Security Affairs

JUNE 21, 2020

The banking trojan is able to record keystrokes, to steal passwords stored on the PC, and take screenshots and videos from the victims’ machine. Lisov operated the infrastructure behind the NeverQuest malware between June 2012 and January 2015, he managed a network of servers containing lists of millions of stolen login credentials.

Banking 102

Banking Malware Advertising Hacking 102

Security Affairs

JUNE 11, 2021

The marketplace had been active since 2012, it was allowing sellers to offer stolen login credentials, including usernames and passwords for bank accounts, online payment accounts, mobile phone accounts, retailer accounts, and other online accounts. SecurityAffairs – hacking, SlilPP marketplace). Pierluigi Paganini.

Cybercrime 113

Cybercrime Accountability Retail Cyber threats 113

Security Affairs

MARCH 22, 2020

The expert Bob Diachenko has discovered an unsecured Elasticsearch install belonging to a UK security firm that contained 5 billion records of data leaked in previous incidents that took place between 2012 and 2019. ” wrote Security Discovery’s researcher Bob Diachenko.

Data breaches 99

Data breaches DNS Advertising Engineering 99

Security Affairs

APRIL 28, 2021

Legitimate software abused by threat actors are: • ARO 2012 Tutorial 8.0.12.0 • VirusScan On-Demand Scan Task Properties (McAfee, Inc.) • Sandboxie COM Services (BITS) 3.55.06 (SANDBOXIE L.T.D) • Outlook Item Finder 11.0.5510 (Microsoft Corporation) • Mobile Popup Application 16.00 (Quick Heal Technologies (P) Ltd.). Pierluigi Paganini.

Backups 97

Backups Malware Mobile Passwords 97

Security Affairs

AUGUST 18, 2021

APT37 has been active since at least 2012, it mainly targeted government, defense, military, and media organizations in South Korea. Harvest cookies and a password database for supported browsers. SecurityAffairs – hacking, InkySquid). ” reads the post published by Volexity. com to malicious subdomains of jquery[.]services.

Internet 111

Internet Internet Media Engineering 111

Security Affairs

MAY 29, 2019

Stolen records include names, usernames , password hashes, email addresses, and for some users digital tokens used to access Flipboard through third-party services. At the time it is not clear the extent of the breach, anyway, the company forced a password reset for all its users. ” continues the security notice. .

Data breaches 66

Data breaches Accountability Passwords Advertising 66

Security Affairs

MARCH 22, 2020

The expert Bob Diachenko has discovered an unsecured Elasticsearch install belonging to the security firm Keepnet Labs that contained 5 billion records of data leaked in previous incidents that took place between 2012 and 2019. ” wrote Security Discovery’s researcher Bob Diachenko.

Data breaches 60

Data breaches DNS Advertising Engineering 60

Security Affairs

JUNE 20, 2019

” The expert detected the payload as OSX.Netwire (Wirenet ) , a password stealer for Linux and OS X systems that was first detected back in 2012. SecurityAffairs – CVE-2019-11707, hacking). Thus it seems reasonable to assume we’re all talking about the same Firefox 0day.” Pierluigi Paganini.

Cryptocurrency 75

Cryptocurrency Malware Advertising Passwords 75

Security Affairs

NOVEMBER 9, 2019

In June 2018, experts at Kaspersky were investigating attacks against government and military entities in South and Southeast Asian countries, The experts tracked the campaign as EasternRoppels, they speculate it may have started as far back as 2012. Its new Titanium backdoor attempt to hide at every stage by mimicking common software.

Encryption 46

Encryption Passwords Malware Software 46

Security Affairs

JUNE 25, 2019

“Based on the data available to us, Operation Soft Cell has been active since at least 2012, though some evidence suggests even earlier activity by the threat actor against telecommunications providers. Then attackers launched a series of reconnaissance commands to gather information about the target infrastructure (i.e.

Telecommunications 77

Telecommunications Hacking Mobile Advertising 77

Security Affairs

DECEMBER 4, 2022

Recently security the security expert researcher Sam Curry warned of vulnerabilities in mobile apps that exposed Hyundai and Genesis car models after 2012 to remote attacks. In that case, the law enforcement body used the car hacking technology to gather information from a 2022 Ford F-150. Pierluigi Paganini.

Surveillance 103

Surveillance Technology Mobile Hacking 103

Security Affairs

MAY 16, 2023

MustangPanda has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. Past campaigns were focused on Asian countries, including Taiwan, Hong Kong, Mongolia, Tibet, and Myanmar.

Firmware 97

Firmware Encryption Government Malware 97

Security Affairs

JUNE 24, 2019

US DHS CISA agency warns of increased cyber-activity from Iran aimed at spreading data-wiping malware through password spraying , credential stuffing , and spear-phishing. Want to know more about password spraying and how to stop it? SecurityAffairs – Data wipers, hacking). The attacks are targeting U.S. Pierluigi Paganini.

Backups 81

Backups Advertising Passwords Accountability 81

Security Affairs

OCTOBER 6, 2020

An attacker could also exploit the flaw to disable security features in the Netlogon authentication process and change a computer’s password on the domain controller’s Active Directory. SecurityAffairs – hacking, Zerologon). ” reads the analysis published by Microsoft. Pierluigi Paganini.

Authentication 103

Authentication Advertising Architecture Security Intelligence 103

Security Affairs

JANUARY 4, 2020

These efforts are often enabled through common tactics like spear phishing, password spraying, and credential stuffing. ” The advisory urges administrators of the assets to implement basic defenses and immediately reports any information or suspects in ongoing attacks. Want to know more about password spraying and how to stop it?

Cyber Attacks 71

Cyber Attacks Backups Passwords Advertising 71

Troy Hunt

APRIL 15, 2019

Then there was CloudPets leaking kids voices because the "smart" teddy bears that recorded them (yep, that's right) then stored those recordings in a publicly facing database with no password. Certainly not the current gen XS, does that resolution put it back in about the iPhone 5 era from 2012? mSpy leaked data.

Spyware 279

Spyware Passwords Manufacturing Marketing 279

Security Affairs

JUNE 18, 2021

MoleRATs is an Arabic-speaking, politically motivated group of hackers that has been active since 2012, in 2018 monitoring the operation of the group, Kaspersky identified different techniques utilized by very similar attackers in the MENA region. SecurityAffairs – hacking, ransomware). Pierluigi Paganini.

Government 85

Government Telecommunications Malware Passwords 85