2017, Accountability and Information Security

Expert identifies new Nazar APT group referenced in 2017 Shadow Brokers leak

Security Affairs

APRIL 23, 2020

A security expert uncovered an old APT operation, tracked Nazar, by analyzing the NSA hacking tools included in the dump leaked by Shadow Brokers in 2017. Somehow, this operation found its way onto the NSA’s radar pre-2013, as far as I can tell, it’s eluded specific coverage from the security industry. Pierluigi Paganini.

Hacking

Hacking Advertising Malware Engineering

Facebook’s official Twitter and Instagram accounts hacked by OurMine

Security Affairs

FEBRUARY 8, 2020

The social network giant Facebook is still the target of hackers, its Facebook and Instagram accounts have been hijacked by the popular hacking group Our M ine. Yesterdat the popular hacking group OurMine hacked the Twitter and Instagram accounts for Facebook and Messenger. The company accounts have been quickly restored.

Accountability

Accountability Hacking Media Advertising

Data Enrichment, People Data Labs and Another 622M Email Addresses

Troy Hunt

NOVEMBER 22, 2019

For example, there's Dun & Bradstreet's NetProspex which leaked 33M records in 2017 , Exactis who had 132M records breached last year and the Apollo data breach which exposed 126M accounts, one of which was my own. i speak at conferences around the world and run workshops on how to build more secure software within organisations.

Data breaches

Data breaches Technology Software Information Security

FC Barcelona and the International Olympic Committee Twitter accounts hacked

Security Affairs

FEBRUARY 17, 2020

The popular hacker group OurMine has hacked the official Twitter account of the FC Barcelona, along with the accounts of Olympics and the International Olympic Committee (IOC). The popular hacker group has hacked the official Twitter account of the FC Barcelona, along with the accounts of and the International Olympic Committee (IOC).

Accountability

Accountability Hacking Advertising Media

New Triada Trojan comes preinstalled on Android devices

Security Affairs

APRIL 2, 2025

It can steal accounts, send messages, steal crypto, monitor browsing, intercept SMS, and more. ” To protect against malware, experts recommend buying smartphones from authorized distributors and installing security solutions like Kaspersky for Android immediately.

Malware

Malware Cryptocurrency Mobile Firmware

Brazil’s Polícia Federal arrested the notorious hacker USDoD

Security Affairs

OCTOBER 16, 2024

Among them, it was possible to identify tax registration, email addresses, registered domains, IP addresses, social media accounts, telephone number and city. More precise information was not revealed to TecMundo so as not to completely expose the attacker’s identity.”

Data breaches

Data breaches Media Cybercrime Accountability

SEC announces sanctions against entities over email account hacking

Security Affairs

SEPTEMBER 1, 2021

Securities and Exchange Commission (SEC) announced sanctions against several organizations over email account hacking. Securities and Exchange Commission (SEC) announced sanctions against eight entities belonging to three companies over email account hacking due to cybersecurity failures. Pierluigi Paganini.

Accountability

Accountability Hacking Financial Services Cybersecurity

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Security Affairs

DECEMBER 17, 2024

The threat actors attempted to exploit multiple vulnerabilities in DVRs, including CVE-2017-7921, CVE-2018-9995 , CVE-2020-25078, CVE-2021-33044 , and CVE-2021-36260. In March 2024, threat actors behind this campaign started targeting Internet of Things (IoT) devices in the US, Australia, Canada, New Zealand, and the United Kingdom.

Architecture

Architecture Internet Internet Malware

Hundreds of C-level executives credentials available for $100 to $1500 per account

Security Affairs

NOVEMBER 28, 2020

A credible threat actor is offering access to the email accounts of hundreds of C-level executives for $100 to $1500 per account. Access to the email accounts of hundreds of C-level executives is available on the Exploit.in for $100 to $1500 per account. Exploit.in ” reported ZDNet. Pierluigi Paganini.

Accountability

Accountability Cybercrime Hacking Retail

Microsoft is blocking Tutanota email addresses from registering a MS Teams account

Security Affairs

AUGUST 7, 2022

Microsoft is actively blocking Tutanota email addresses from registering a Microsoft Teams account. Tutanota is an end-to-end encrypted email app and a freemium secure email service, as of March 2017, Tutanota’s owners claimed to have over 2 million users. Follow me on Twitter: @securityaffairs and Facebook.

Accountability

Accountability Marketing Encryption Hacking

COMB breach: 3.2B email and password pairs leaked online

Security Affairs

FEBRUARY 7, 2021

The database includes a script named count_total.sh, which was also included in 2017’s Breach Compilation. Much like 2017’s Breach Compilation, COMB’s data is organized by alphabetical order in a tree-like structure, and it contains the same scripts for querying emails and passwords. COMB also includes the query.sh

Passwords

Passwords Hacking Accountability Banking

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Krebs on Security

JULY 18, 2023

LeakedSource was advertised on a number of popular cybercrime forums as a service that could help hackers break into valuable or high-profile accounts. LeakedSource also tried to pass itself off as a legal, legitimate business that was marketing to security firms and professionals. An administrator account Xerx3s on Abusewithus.

Hacking

Hacking Accountability Data breaches Marketing

CISA adds 15 new vulnerabilities to its Known Exploited Vulnerabilities Catalog

Security Affairs

FEBRUARY 11, 2022

One of the vulnerabilities is an elevation of privilege vulnerability in Microsoft Windows SAM (Security Accounts Manager) vulnerability. “An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.An ” reads the advisory published by Microsoft.

IoT

IoT Accountability Authentication Hacking

Nigerian National pleads guilty to participating in a millionaire BEC scheme

Security Affairs

SEPTEMBER 24, 2023

. “According to his plea agreement, from February 2017 until at least July 2017, Simon-Ebo conspired with others to perpetrate a BEC scheme.” ” reads the press release published by DoJ. ” During the same period, Simon-Ebo and his co-conspirators conspired to commit money laundering. .

Accountability

Accountability Banking Hacking Cybercrime

Microsoft seized 240 sites used by the ONNX phishing service

Security Affairs

NOVEMBER 23, 2024

Multiple threat actors purchased the kits developed by Nady and used them in widespread phishing campaigns to steal credentials of Microsoft customer accounts. Microsoft has tracked Nady, linked to phishing services since 2017. .” reads the analysis published by Microsoft.

Phishing

Phishing Cybercrime Financial Services Media

Russian APT28 hacker accused of the NATO think tank hack in Germany

Security Affairs

JUNE 20, 2022

The attack took place in April 2017 and the man is accused of conducting the attack for the Russian military intelligence service GRU. Kozachek hacked the computed of the NATO think tank in 2017 and installed a keylogger to spy on the organization. ” reported the Tagesschau website. ” continues the post.

Hacking

Hacking Accountability Malware Cybersecurity

Uber hacked, internal systems and confidential documents were allegedly compromised

Security Affairs

SEPTEMBER 16, 2022

According to the New York Times , the threat actors hacked an employee’s Slack account and used it to inform internal personnel that the company had “suffered a data breach” and provided a list of allegedly hacked internal databases. “I This is not the first time that the company suffered a security breach.

Hacking

Hacking Data breaches Information Security Engineering

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

Security Affairs

JANUARY 7, 2024

Researchers from Dutch security firm Hunt & Hackett observed Sea Turtle cyber espionage group (aka Teal Kurma, Marbled Dust, SILICON and Cosmic Wolf) targeting telco, media, ISPs, IT service providers, and Kurdish websites in the Netherlands. Between 2017 and 2019, the APT group mainly used DNS hijacking in its campaigns.

Media

Media Accountability Telecommunications Government

A member The Dark Overlord group sentenced to 5 years in prison

Security Affairs

SEPTEMBER 22, 2020

” According to the 2017 indictment , Wyatt used email and telephone accounts to send messages used to threaten the hacked companies of releasing their information. “a. WYATT registered a telephone account (Account B) used in the course of the conspiracy to send threatening and extortionate text messages to victims.“.

Identity Theft

Identity Theft Accountability Hacking Advertising

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

This exposure of sensitive credential and network access information, especially privileged user accounts, could lead to subsequent cyber attacks against individual users or affiliated organizations.” Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means.

Cybercrime

Cybercrime Education Accountability Phishing

One of the hackers behind EtherDelta hack also involved in TalkTalk hack

Security Affairs

SEPTEMBER 21, 2019

US authorities have indicted two men for hacking the exchange EtherDelta in December 2017, one of them was also accused of TalkTalk hack. US authorities have indicted two men, Elliot Gunton and Anthony Tyler Nashatka, for hacking the cryptocurrency exchange EtherDelta in 2017. Six days later, on December 19, 2017.

Hacking

Hacking DNS Cryptocurrency Accountability

Iran-Linked APT TA450 embeds malicious links in PDF attachments

Security Affairs

MARCH 25, 2024

sender account. “Additionally, this campaign is the first time Proofpoint has observed TA450 using a sender email account that matches the lure content. For example, this campaign used an email account of salary[@]<compromisedorg>co[.]il, Some of the messages were also sent using a likely a compromised.IL

Phishing

Phishing Social Engineering Telecommunications Accountability

Imperva explains how hackers stole AWS API Key and accessed to customer data

Security Affairs

OCTOBER 14, 2019

“Here is what we know about the situation today: On August 20, 2019, we learned from a third party of a data exposure that impacts a subset of customers of our Cloud WAF product who had accounts through September 15, 2017. Elements of our Incapsula customer database through September 15, 2017 were exposed.

Firewall

Firewall Passwords Accountability Advertising

Telstra Telecom discloses data breach impacting former and current employees

Security Affairs

OCTOBER 5, 2022

Narelle Devine, the company’s chief information security officer for the Asia Pacific region, added that no customer account information was stored on the third-party platform. It seems that the security breach also impacted other companies. ” reads the statement published by the company.

Data breaches

Data breaches Telecommunications Accountability Information Security

T-Mobile customers were hit with SIM swapping attacks

Security Affairs

FEBRUARY 27, 2021

Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts. The criminals could hijack social media accounts and bypass 2FA services based on SMS used by online services, including financial ones. .

Mobile

Mobile Data breaches Telecommunications Accountability

MY TAKE: 3 privacy and security habits each individual has a responsibility to embrace

The Last Watchdog

JANUARY 28, 2019

Worldwide spending on information security products and services rose to $114 billion in 2018, up from $102 billion in 2017, an increase of 12.4 The perpetrators deploy botnets to automate the injection of surreptitiously obtained usernames and password pairs until they gain fraudulent access to a targeted account.

Passwords

Passwords Password Management Internet Internet

American Insurance firm State Farm victim of credential stuffing attacks

Security Affairs

AUGUST 7, 2019

Accessing an online account, users could make several actions, such as manage insurance claims and pay bills. “State Farm recently detected an information security incident in which a bad actor used a list of user IDs and passwords obtained from some other source, like the dark web, to attempt access to State Farm online accounts.

Insurance

Insurance Data breaches Financial Services Passwords

DarkGate malware campaign abuses Skype and Teams

Security Affairs

OCTOBER 16, 2023

The researchers speculate the originating accounts of the instant messaging applications were compromised through the leaked credentials available on cybercrime forums. The message sent to the victims from a compromised Skype account contains a VBS script with a filename following the following format: <filename.pdf> www.skype[.]vbs.

Malware

Malware Cryptocurrency Accountability Cybercrime

Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021

Security Affairs

JANUARY 2, 2022

billion from organizations in the industry and attacks against DeFi platforms accounted for $1.76 The percentage increase in the number of scams per year is up by 850% in the last decade. Threat actors stole $3.18 The top 5 breaches in history are: 1. Gox, $615M. Poly Network, $611M+. Coincheck, $534M. KuCoin, $281M.

Cryptocurrency

Cryptocurrency Scams Marketing Hacking

Fort Worth IT Professionals Fired for Reporting Cybersecurity Issues: What We Know

Security Affairs

JUNE 7, 2019

In October 2017, the city of Fort Worth, Texas became the target of a phishing scam. Their accounts payable department received an email that appeared to be from Imperial Construction, a company that was doing business with the city at the time. Fadipe, requested a change of account. However, this wasn’t the case.

Cybersecurity

Cybersecurity Scams Banking Accountability

Czech Republic ‘s committee blames foreign state for Foreign Ministry Cyberattack

Security Affairs

AUGUST 14, 2019

A parliamentary committee in the Czech Republic revealed that the National Cyber and Information Security Agency blamed a foreign state for a cyber attack that targeted the Czech Foreign Ministry. The Czech experts discovered the security breach early January 2017.

Cyber Attacks

Cyber Attacks Advertising Information Security Government

Russian hackers defaced local British news sites

Security Affairs

MAY 13, 2024

“The operations have primarily targeted audiences in Lithuania, Latvia, and Poland with anti-North Atlantic Treaty Organization (NATO) narratives, often leveraging website compromises or spoofed email accounts to disseminate fabricated content, including falsified correspondence from military officials” reads the report published by FireEye.

Media

Media Accountability Cyber Attacks Hacking

Imperva data Breach: WAF customers’ data exposed

Security Affairs

AUGUST 27, 2019

. “Here is what we know about the situation today: On August 20, 2019, we learned from a third party of a data exposure that impacts a subset of customers of our Cloud WAF product who had accounts through September 15, 2017. Elements of our Incapsula customer database through September 15, 2017 were exposed.

Data breaches

Data breaches Firewall Passwords Advertising

Czech intelligence report warns of Russian and Chinese activity in the country

Security Affairs

NOVEMBER 26, 2019

According to a report published by the NUKIB Czech National Cyber and Information Security Agency (NUKIB) in September, China carried out a major cyber attack on a key government institution in the Czech Republic last year. The Czech experts discovered the security breach in early January 2017.

Cyber Attacks

Cyber Attacks Advertising Information Security Government

Threat actors are offering for sale 550 million stolen user records

Security Affairs

MAY 15, 2020

million January 2017 CafeMom.com 2.6 million October 2017 ModaOperandi.com 1.3 Those who have their account exposed in one of the above incidents are recommended to change their password. million April 2018 Netlog.com (Twoo.com) 57 million November 2012 Dubsmash.com Phone numbers 47.1 million December 2018 CafePress.com 23.6

Data breaches

Data breaches Advertising Passwords Hacking

Meta disrupted two influence campaigns from China and Russia

Security Affairs

SEPTEMBER 5, 2023

Meta disrupted two influence campaigns orchestrated by China and Russia, the company blocked thousands of accounts and pages. The social network giant revealed it has blocked thousands of accounts and pages across its platform. The entities were removed for violating our policy against coordinated inauthentic behavior.

Accountability

Accountability Government Media Hacking

US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks

Security Affairs

JUNE 24, 2019

industries and government agencies, the statement was also published by the CISA Director Chris Krebs via his Twitter account. ” Experts recommend to have secure working backup procedures, in case of attack, victims could simply recover data from a backup. The attacks are targeting U.S. ” continues the statement.

Backups

Backups Advertising Accountability Passwords

Russian cybercriminal Aleksandr Brovko sentenced to 8 years in jail

Security Affairs

NOVEMBER 3, 2020

The scripts developed by the cyber criminal were used to parse log data collected from botnet and searched for personally identifiable information (PII) and account credentials. In some cases, the man manually chacked the stolen information. ” reads the press release published by the DoJ.

Accountability

Accountability Banking Advertising Data collection

Police arrest two people over stealing sensitive data from defense giant

Security Affairs

DECEMBER 6, 2020

In January 2017, the internal cybersecurity structure of Leonardo SpA reported anomalous network traffic, outgoing from some workstations of the Pomigliano D’Arco plant. The duo has used the malware to steal the data between 2015 and 2017 and it back to a command and control server (‘fujinama.altervista.org.’).

Computers and Electronics

Computers and Electronics Malware Media Accountability

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

Security Affairs

NOVEMBER 22, 2019

Lisov was arrested in January 2017 at the Barcelona airport by the Guardia Civil. The Neverquest malware is able to log in to the victim’s online banking account and perform fraudulent transactions. The arrest is the result of the collaboration between the Spanish law enforcement and the FBI. The United States Attorney Geoffrey S.

Banking

Banking Malware Advertising Accountability

Alexander Vinnik, the popular cyber criminal goes on trial in Paris

Security Affairs

OCTOBER 19, 2020

In 2017, Greek Police arrested the Russian national Alexander Vinnik and they accused the man of running the BTC-e Bitcoin exchange to launder more than US$4bn worth of the cryptocurrency. The Russian man Alexander Vinnik goes on trial in Paris for having defrauded nearly 200 victims across the world of 135M euros using ransomware.

Advertising

Advertising Hacking Cybercrime Cryptocurrency

North Korea-linked actors breached the emails of a Presidential Office member

Security Affairs

FEBRUARY 15, 2024

The office of the South Korean President explained that the compromise of the account occurred due to the staff member utilizing commercial email services for official responsibilities. panel of experts announced an investigation into 58 suspected North Korean cyberattacks between 2017 and 2023 valued at approximately $3 billion.

Hacking

Hacking Government Accountability Information Security

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Security Affairs

FEBRUARY 25, 2022

The Computer Emergency Response Team of Ukraine (CERT-UA) is warning of an ongoing spear-phishing campaign targeting private email accounts belonging to Ukrainian armed forces personnel. According to FireEye, the campaign tracked as GhostWriter, has been ongoing since at least March 2017 and is aligned with Russian security interests.

Phishing

Phishing Social Engineering Government Accountability

Oleg Koshkin was convicted for operating a crypting service also used by Kelihos botnet

Security Affairs

JUNE 17, 2021

Levashov used these services on and off from at least May 2014 until his arrest in April 2017 and paid the operators of the crypting services approximately $3,000 per month” reads the criminal compliant. Koshkin was arrested in California in September 2019 , while Tsurkan was arrested in April 2017. Pierluigi Paganini.

Antivirus

Antivirus Malware Software Cryptocurrency

Expert identifies new Nazar APT group referenced in 2017 Shadow Brokers leak

Facebook’s official Twitter and Instagram accounts hacked by OurMine

Trending Sources

Data Enrichment, People Data Labs and Another 622M Email Addresses

FC Barcelona and the International Olympic Committee Twitter accounts hacked

New Triada Trojan comes preinstalled on Android devices

Brazil’s Polícia Federal arrested the notorious hacker USDoD

SEC announces sanctions against entities over email account hacking

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Hundreds of C-level executives credentials available for $100 to $1500 per account

Microsoft is blocking Tutanota email addresses from registering a MS Teams account

COMB breach: 3.2B email and password pairs leaked online

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

CISA adds 15 new vulnerabilities to its Known Exploited Vulnerabilities Catalog

Nigerian National pleads guilty to participating in a millionaire BEC scheme

Microsoft seized 240 sites used by the ONNX phishing service

Russian APT28 hacker accused of the NATO think tank hack in Germany

Uber hacked, internal systems and confidential documents were allegedly compromised

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

A member The Dark Overlord group sentenced to 5 years in prison

FBI: Compromised US academic credentials available on various cybercrime forums

One of the hackers behind EtherDelta hack also involved in TalkTalk hack

Iran-Linked APT TA450 embeds malicious links in PDF attachments

Imperva explains how hackers stole AWS API Key and accessed to customer data

Telstra Telecom discloses data breach impacting former and current employees

T-Mobile customers were hit with SIM swapping attacks

MY TAKE: 3 privacy and security habits each individual has a responsibility to embrace

American Insurance firm State Farm victim of credential stuffing attacks

DarkGate malware campaign abuses Skype and Teams

Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021

Fort Worth IT Professionals Fired for Reporting Cybersecurity Issues: What We Know

Czech Republic ‘s committee blames foreign state for Foreign Ministry Cyberattack

Russian hackers defaced local British news sites

Imperva data Breach: WAF customers’ data exposed

Czech intelligence report warns of Russian and Chinese activity in the country

Threat actors are offering for sale 550 million stolen user records

Meta disrupted two influence campaigns from China and Russia

US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks

Russian cybercriminal Aleksandr Brovko sentenced to 8 years in jail

Police arrest two people over stealing sensitive data from defense giant

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

Alexander Vinnik, the popular cyber criminal goes on trial in Paris

North Korea-linked actors breached the emails of a Presidential Office member

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Oleg Koshkin was convicted for operating a crypting service also used by Kelihos botnet

Stay Connected