2013, Hacking and Information Security - Cyber Security Informer

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Krebs on Security

JULY 18, 2023

[This is Part III in a series on research conducted for a recent Hulu documentary on the 2015 hack of marital infidelity website AshleyMadison.com.] LeakedSource also tried to pass itself off as a legal, legitimate business that was marketing to security firms and professionals. In 2019, a Canadian company called Defiant Tech Inc.

Hacking

Hacking Accountability Data breaches Marketing

Notorious Finnish Hacker sentenced to more than six years in prison

Security Affairs

APRIL 30, 2024

Finnish hacker was sentenced to more than six years in prison for hacking into an online psychotherapy clinic and attempted extortion. Threat actors hacked the clinic and stole a database containing information of some 33,000 clients. Kivimäki was deported to Finland and his trial concluded in March 2024.

Hacking

Hacking Cybercrime Data breaches Information Security

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Security Affairs

JUNE 9, 2023

Two Russian nationals have been charged with the hack of the cryptocurrency exchange Mt. Russian nationals Alexey Bilyuchenko (43) and Aleksandr Verner (29) have been charged with the hack of the cryptocurrency exchange Mt. Gox ) The post Russians charged with hacking Mt. Gox ) The post Russians charged with hacking Mt.

Hacking

Hacking Cryptocurrency Advertising Banking

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The epidemic went truly mainstream with the release of CryptoLocker back in 2013, and it has since transformed into a major dark web economy spawning the likes of Sodinokibi, Ryuk, and Maze lineages that are targeting the enterprise on a huge scale in 2020. FBI spoofs 2012 – 2013. File encryption 2013 – 2015.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

JUNE 22, 2022

last week said they dismantled the “ RSOCKS ” botnet, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. Authorities in the United States, Germany, the Netherlands and the U.K.

Advertising

Advertising Cybercrime System Administration Hacking

North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI

Security Affairs

JUNE 19, 2021

Currently, the Atomic Energy Research Institute is investigating the subject of the hacking and the amount of damage, etc. ? North Korea-linked cyber espionage group Kimsuky (aka Black Banshee, Thallium , Velvet Chollima) was first spotted by Kaspersky researcher in 2013. SecurityAffairs – hacking, North Korea).

Hacking

Hacking VPN Internet Internet

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Security Affairs

SEPTEMBER 19, 2021

A Pakistani national has been sentenced to 12 years of prison in the US for his role in a hacking scheme against the telecom giant AT&T. “Later in the conspiracy, Fahd had the bribed employees install custom malware and hacking tools that allowed him to unlock phones remotely from Pakistan. ” Pierluigi Paganini.

Hacking

Hacking Malware Cybercrime Information Security

Alleged Extortioner of Psychotherapy Patients Faces Trial

Krebs on Security

NOVEMBER 16, 2023

Security experts soon discovered Ransom Man had mistakenly included an entire copy of their home folder, where investigators found many clues pointing to Kivimäki’s involvement. By that time, Kivimäki was no longer in Finland, but the Finnish government nevertheless charged Kivimäki in absentia with the Vastaamo hack.

Cybercrime

Cybercrime Hacking Data breaches Banking

PoC Released for Critical CVE-2020-1147 flaw, SharePoint servers exposed to hack

Security Affairs

JULY 23, 2020

depending on the Windows version), SharePoint Enterprise Server 2013 Service Pack 1, SharePoint Enterprise Server 2016 , SharePoint Server 2010 Service Pack 2, SharePoint Server 2019, Visual Studio 2017 version 15.9, SecurityAffairs – hacking, CVE-2020-1147). The CVE-2020-1147 vulnerability impacts.NET Core 2.1,NET NET Framework 2.0

Hacking

Hacking Advertising Software Information Security

Ticketmaster will pay $10 Million fine over hacking a competitor

Security Affairs

JANUARY 2, 2021

Ticketmaster agreed to pay a $10 million fine for hacking into the computer system of the startup rival CrowdSurge. The intrusions into the competitor’s systems took place repeatedly between 2013 and 2015. The intrusions into the competitor’s systems took place repeatedly between 2013 and 2015. Pierluigi Paganini.

Hacking

Hacking Passwords Accountability Cybercrime

CISA adds Stuxnet bug to its Known Exploited Vulnerabilities Catalog

Security Affairs

SEPTEMBER 17, 2022

CVE-2013-6282 : Linux Kernel – The get_user and put_user API functions of the Linux kernel fail to validate the target address when being used on ARM v6k/v7 platforms. CVE-2013-2596 Linux Kernel – Linux kernel fb_mmap function in drivers/video/fbmem.c SecurityAffairs – hacking, CISA). Pierluigi Paganini.

Hacking

Hacking Cybersecurity Risk Information Security

Police seized 50,000 Bitcoin from operator of the now-defunct piracy site movie2k

Security Affairs

JANUARY 31, 2024

It was operating between 2008 and 2013. In 2013, the Motion Picture Association of America (MPAA) shut down the website due to concerns related to copyright infringement. According to German media , one of the two operators was also involved in the operations of the site mega-downloads.net.

Media

Media Cybercrime Advertising Information Security

PoC exploit code for ProxyNotShell Microsoft Exchange bugs released online

Security Affairs

NOVEMBER 20, 2022

they impact Exchange Server 2013, 2016, and 2019, an authenticated attacker can trigger them to elevate privileges to run PowerShell in the context of the system and gain arbitrary or remote code execution on vulnerable servers. It's perhaps just Exchange 2013 that requires a tweak. SecurityAffairs – hacking, ProxyNotShell).

Authentication

Authentication Hacking Cybersecurity Information Security

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Security Affairs

AUGUST 6, 2023

At the time of this writing, no ransomware group has claimed responsibility for the security breach. CDHE provides free access to the identify theft monitoring Experian IdentityWorks SM for 24 months.

Education

Education Data breaches Ransomware Hacking

3 of the Worst Data Breaches in the World That Could Have Been Prevented

Security Affairs

DECEMBER 1, 2022

In 2013, Yahoo suffered one of the worst data breaches in history, exposing over 3 billion user accounts. While no plaintext passwords or financial data was stolen, the hack did expose answers to security questions. Weak passwords are the easiest way hackers can hack into a system. Pierluigi Paganini.

Data breaches

Data breaches Passwords Social Engineering Encryption

Iranian hackers breached Albania’s Institute of Statistics (INSTAT)

Security Affairs

FEBRUARY 2, 2024

The attack did not impact systems employed in the 2013 census. The Record Media reported that the Iran-linked hacking group Homeland Justice claimed responsibility for the attack. The group also claimed to have hacked Air Albania. National Security Council spokesperson Adrienne Watson said. “We NATO , and the U.K.

Cyber Attacks

Cyber Attacks Computers and Electronics Government Hacking

A job ad published by the UK’s Ministry of Defence revealed a secret hacking squad

Security Affairs

AUGUST 15, 2021

.” “ MAB5 was described in gushing terms and with incredible detail, even naming the military leader – a Lieutenant Colonel (Lt Col) in the Royal Corps of Signals, who was awarded the MBE in the Queen’s Birthday Honours List 2013 when he was a Major. SecurityAffairs – hacking, cybercrime). Pierluigi Paganini.

Computers and Electronics

Computers and Electronics Hacking Engineering Mobile

Google expert detailed a 5-Year-Old flaw in Apple Safari exploited in the wild

Security Affairs

JUNE 20, 2022

The vulnerability, tracked as CVE-2022-22620 , was fixed for the first time in 2013, but in 2016 experts discovered a way to bypass the fix. CVE-2022-22620 was initially fixed in 2013, reintroduced in 2016, and then disclosed as exploited in-the-wild in 2022.” SecurityAffairs – hacking, Apple Safari). Pierluigi Paganini.

Hacking

Hacking Software Cybersecurity Data breaches

New ZLoader malware campaign hit more than 2000 victims across 111 countries

Security Affairs

JANUARY 10, 2022

A malware campaign spreads ZLoader malware by exploiting a Windows vulnerability that was fixed in 2013 but in 2014 Microsoft revised the fix. The threat actors exploit a vulnerability, tracked as CVE-2013-3900, that was discovered and fixed in 2013 but in 2014 Microsoft revised the fix. SecurityAffairs – hacking, Zloader).

Malware

Malware Banking Software Cybercrime

The phone monitoring app LetMeSpy disclosed a data breach

Security Affairs

JUNE 29, 2023

. “It’s not clear who is behind the LetMeSpy hack or their motives. A copy of the hacked database also appeared online later the same day.” The hacker intimated that they deleted LetMeSpy’s databases stored on the server. ” reported TechCrunch. India, and Africa.

Data breaches

Data breaches Spyware Hacking Accountability

CISA urges to fix actively exploited Firefox zero-days by March 21

Security Affairs

MARCH 8, 2022

SecurityAffairs – hacking, SIM swapping). The post CISA urges to fix actively exploited Firefox zero-days by March 21 appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Authentication

Authentication Hacking Cybersecurity Risk

CIRWA Project tracks ransomware attacks on critical infrastructure

Security Affairs

SEPTEMBER 14, 2020

The project was launched in September 2019 and as of August 2020, the experts collected 680 records of ransomware attacks that took place since November 2013. These are based on publicly disclosed incidents in the media or security reports.” SecurityAffairs – hacking, ransomware). ” reads the project description.

Ransomware

Ransomware Advertising Data collection Healthcare

N. Korean Kimsuky APT targets S. Korea-US military exercises

Security Affairs

AUGUST 20, 2023

“The hackers were believed to be linked to a North Korean group that researchers call Kimsuky, and they carried out their hack via emails to South Korean contractors working at the South Korea-U.S. “It was confirmed that military-related information was not stolen,” police said in a statement on Sunday.

Phishing

Phishing Hacking Cyber Attacks Government

Google announced the completion of the acquisition of Mandiant for $5.4 billion

Security Affairs

SEPTEMBER 12, 2022

Mandiant is considered a leading cyber security firm, in 2013 FireEye acquired it, but FireEye separated Mandiant Solutions in 2021 as part of a $1.2 SecurityAffairs – hacking, Google). billion appeared first on Security Affairs. per share in an all-cash transaction valued at approximately $5.4 Pierluigi Paganini.

Cyber threats

Cyber threats Cybersecurity Hacking Technology

Crooks used rare Steganography technique to hack fully patched websites in Latin America

Security Affairs

JULY 28, 2019

This steganography technique is rare, according to the expert it was observed the last time in the wild in 2013 when hackers have hidden the entire webshell backdoor in the header. The post Crooks used rare Steganography technique to hack fully patched websites in Latin America appeared first on Security Affairs.

Hacking

Hacking Advertising Information Security

North Korea-linked APT Diamond Sleet supply chain attack relies on CyberLink software

Security Affairs

NOVEMBER 23, 2023

Diamond Sleet is an APT group that operates under the Lazarus group’s umbrella, it has been active since at least 2013. Microsoft has recently observed Diamond Sleet utilizing trojanized open-source and proprietary software to target organizations in information technology, defense, and media.

Software

Software Malware Media Internet

Misconfigured WBSC server leaks thousands of passports

Security Affairs

SEPTEMBER 29, 2023

The WBSC, headquartered in Switzerland, was established in 2013 and currently has 141 countries as members located in Asia, Africa, the Americas, Europe, and Oceania. Worryingly, among the contents of the misconfigured AWS bucket, which the WBSC closed after being contacted by the team, were copies of 4,600 national passports.

Identity Theft

Identity Theft Social Engineering Banking Risk

Law enforcement shutdown a long-standing DDoS-for-hire service

Security Affairs

JUNE 17, 2023

Polish police, as part of the international law enforcement operation PowerOFF, dismantled a DDoS-for-hire service that has been active since at least 2013. An international operation codenamed PowerOff led to the shutdown of a DDoS-for-hire service that has been active since at least 2013.

DDOS

DDOS Computers and Electronics Cybercrime Cryptocurrency

Snowden Ten Years Later

Schneier on Security

JUNE 6, 2023

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. I wrote the essay below in September 2013. I started doubting my own security procedures. Reading about the NSA’s hacking abilities will do that to you. Probably not.

Surveillance

Surveillance Computers and Electronics Encryption Government

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

Security Affairs

FEBRUARY 23, 2022

The Bvp47 backdoor was first discovered in 2013 while conducting a forensic investigation into a security breach suffered by a Chinese government organization. In 2016 and 2017, the hacking group The Shadow Brokers l eaked a bunch of data allegedly stolen from the Equation Group, including many hacking tools and exploits.

Encryption

Encryption Hacking Government Engineering

Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.

Krebs on Security

SEPTEMBER 24, 2022

Denis Emelyantsev , as the apparent owner of RSOCKS, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. “Thanks to you, we are now developing in the field of information security and anonymity!

Cybercrime

Cybercrime Data breaches Malware Ransomware

Microsoft recommends Exchange admins to disable the SMBv1 protocol

Security Affairs

FEBRUARY 13, 2020

. “To make sure that your Exchange organization is better protected against the latest threats (for example Emotet, TrickBot or WannaCry to name a few) we recommend disabling SMBv1 if it’s enabled on your Exchange (2013/2016/2019) server.” Please see this KB for more information. ” continues Microsoft.

Authentication

Authentication Malware Advertising Hacking

Hacker who disrupted Sony gaming gets a 27-months jail sentence

Security Affairs

JULY 4, 2019

The hacker who brought offline with massive DDoS attacks online gaming networks between December 2013 and January 2014 has been sentenced to 27 months in prison. Austin Thompson (23) from Utah hit the principal gamins networks in 2013 and 2014, including Sony Online Entertainment. ” reads the press release published by DoJ.

DDOS

DDOS Computers and Electronics Advertising Internet

Two former NSA Officials appointed by Joe Biden for prominent cyber roles

Security Affairs

APRIL 12, 2021

Inglis retired from NSA in 2014 where he served the US government for 28 years, since 2013 as the agency’s deputy director. President Biden also appointed a former deputy for counterterrorism at the NSA, Jen Easterly, as the chief of the Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security.

Government

Government Hacking Cybersecurity Information Security

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Security Affairs

NOVEMBER 5, 2021

This ‘line of work’ is coordinated by the FSB’s 18th Center (Information Security Center) based in Moscow.” The Gamaredon group was first discovered by Symantec and TrendMicro in 2015, but evidence of its activities has been dated back to 2013. SecurityAffairs – hacking, Gamaredon). Pierluigi Paganini.

Government

Government Software Cyber threats Cyber Attacks

North Korea-linked APT breached the Seoul National University Hospital

Security Affairs

MAY 11, 2023

. “The origin of the IP address and the method of address laundering used in the attack matched those of North Korean hacking groups used in their previous hacking attacks, officials said.” ” reported the YonHap News agency.

Mobile

Mobile Hacking Cyber Attacks Media

Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns

Security Affairs

APRIL 5, 2022

The Gamaredon group was first discovered by Symantec and TrendMicro in 2015, but evidence of its activities has been dated back to 2013. SecurityAffairs – hacking, Armageddon). The post Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns appeared first on Security Affairs. Pierluigi Paganini.

Phishing

Phishing Government Hacking Malware

US authorities behind $1 billion Bitcoin transaction of Silk Road funds

Security Affairs

NOVEMBER 6, 2020

In October 2013, the FBI has shut down the popular black market Silk Road after many years of investigation, the website was hosted in the Tor Network and was seized by US law enforcement. According to FBI, between February of 2011 and July 2013, Silk Road managed $1.2 SecurityAffairs – hacking, Silk Road). million USD. .

Cryptocurrency

Cryptocurrency Advertising Marketing Government

Expert identifies new Nazar APT group referenced in 2017 Shadow Brokers leak

Security Affairs

APRIL 23, 2020

A security expert uncovered an old APT operation, tracked Nazar, by analyzing the NSA hacking tools included in the dump leaked by Shadow Brokers in 2017. The analysis of the submissions times in VirusTotal for the artifacts employed in the Nazar campaign allowed the expert to date the campaign between 2010 and 2013.

Hacking

Hacking Advertising Malware Engineering

FireEye, Mandiant to Split in $1.2 Billion Deal

eSecurity Planet

JUNE 3, 2021

Mandia will become CEO of Mandiant, the company he founded in 2004 and sold to FireEye in late 2013. FireEye and Mandiant have seen their reputation climb in recent months with rapid detection of the SolarWinds hack , among other high-profile cyber attacks. The deal with STG is expected to be completed in the fourth quarter.

Cyber Attacks

Cyber Attacks Marketing Accountability Technology

NSA Equation Group tool was used by Chinese hackers years before it was leaked online

Security Affairs

FEBRUARY 22, 2021

The Chinese APT group had access to an NSA Equation Group, NSA hacking tool and used it years before it was leaked online by Shadow Brokers group. used a tool dubbed Jian, which is a clone of NSA Equation Group ‘s “EpMe” hacking tool years before it was leaked online by Shadow Brokers hackers.

Hacking

Hacking Malware Software Information Security

FBI shuts down the Russian-based hacker platform DEER.IO

Security Affairs

MARCH 26, 2020

was shut down by the FBI today, and its suspected administrator – alleged Russian hacker Kirill Victorovich Firsov – was arrested and charged with crimes related to the hacking of U.S. companies for customers’ personal information.” The Russian man also advertised the platform on other hacking forums.

Cybercrime

Cybercrime Advertising Hacking Accountability

ENISA released the Threat Landscape Methodology

Security Affairs

JULY 7, 2022

Policy makers, risk managers and information security practitioners need up-to-date and accurate information on the current threat landscape, supported by threat intelligence. The EU Agency for Cybersecurity (ENISA) Threat Landscape report has been published on an annual basis since 2013. Pierluigi Paganini.

Cybersecurity

Cybersecurity Risk Information Security Hacking

US DoJ indicts four members of China-linked APT40 cyberespionage group

Security Affairs

JULY 19, 2021

US DoJ indicted four members of the China-linked cyberespionage group known as APT40 for hacking various entities between 2011 and 2018. The APT40 group has been active since at least 2013 and appears to be focused on supporting naval modernization efforts of the Government of Beijing. SecurityAffairs – hacking, APT40).

Hacking

Hacking Technology Government Malware

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Notorious Finnish Hacker sentenced to more than six years in prison

Trending Sources

Russians charged with hacking Mt. Gox exchange and operating BTC-e

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Meet the Administrators of the RSOCKS Proxy Botnet

North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Alleged Extortioner of Psychotherapy Patients Faces Trial

PoC Released for Critical CVE-2020-1147 flaw, SharePoint servers exposed to hack

Ticketmaster will pay $10 Million fine over hacking a competitor

CISA adds Stuxnet bug to its Known Exploited Vulnerabilities Catalog

Police seized 50,000 Bitcoin from operator of the now-defunct piracy site movie2k

PoC exploit code for ProxyNotShell Microsoft Exchange bugs released online

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

3 of the Worst Data Breaches in the World That Could Have Been Prevented

Iranian hackers breached Albania’s Institute of Statistics (INSTAT)

A job ad published by the UK’s Ministry of Defence revealed a secret hacking squad

Google expert detailed a 5-Year-Old flaw in Apple Safari exploited in the wild

New ZLoader malware campaign hit more than 2000 victims across 111 countries

The phone monitoring app LetMeSpy disclosed a data breach

CISA urges to fix actively exploited Firefox zero-days by March 21

CIRWA Project tracks ransomware attacks on critical infrastructure

N. Korean Kimsuky APT targets S. Korea-US military exercises

Google announced the completion of the acquisition of Mandiant for $5.4 billion

Crooks used rare Steganography technique to hack fully patched websites in Latin America

North Korea-linked APT Diamond Sleet supply chain attack relies on CyberLink software

Misconfigured WBSC server leaks thousands of passports

Law enforcement shutdown a long-standing DDoS-for-hire service

Snowden Ten Years Later

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.

Microsoft recommends Exchange admins to disable the SMBv1 protocol

Hacker who disrupted Sony gaming gets a 27-months jail sentence

Two former NSA Officials appointed by Joe Biden for prominent cyber roles

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

North Korea-linked APT breached the Seoul National University Hospital

Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns

US authorities behind $1 billion Bitcoin transaction of Silk Road funds

Expert identifies new Nazar APT group referenced in 2017 Shadow Brokers leak

FireEye, Mandiant to Split in $1.2 Billion Deal

NSA Equation Group tool was used by Chinese hackers years before it was leaked online

FBI shuts down the Russian-based hacker platform DEER.IO

ENISA released the Threat Landscape Methodology

US DoJ indicts four members of China-linked APT40 cyberespionage group

Stay Connected