2017, Data collection, Hacking and Internet

Poland and Lithuania fear that data collected via FaceApp could be misused

Security Affairs

JULY 19, 2019

Many security experts are warning of the risks of using the popular app, threat actors could be potentially interested in data collected by FaceApp. FaceApp was developed in 2017 by Wireless Lab, when it was downloaded 80 million times, but now thanks to the challenge it is becoming viral. Pierluigi Paganini.

Data collection

Data collection Wireless Advertising Risk

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Security Affairs

OCTOBER 17, 2023

Russia-linked APT group Sandworm has hacked eleven telecommunication service providers in Ukraine between since May 2023. The group is also the author of the NotPetya ransomware that hit hundreds of companies worldwide in June 2017. ” reads the advisory published by the CERT-UA. “Note (!) .’ “Note (!)

Telecommunications

Telecommunications Authentication Data collection Passwords

Hacking Wi-Fi networks by exploiting a flaw in Philips Smart Light Bulbs

Security Affairs

FEBRUARY 6, 2020

based specification for a suite of high-level communication protocols used to create personal area networks with small, low-power digital radios, such as for home automation, medical device data collection, and other low-power low-bandwidth needs, designed for small scale projects which need wireless connection. Pierluigi Paganini.

Hacking

Hacking IoT Wireless Firmware

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

A Deep Dive Into the Residential Proxy Service ‘911’

Krebs on Security

JULY 18, 2022

For the past seven years, an online service known as 911 has sold access to hundreds of thousands of Microsoft Windows computers daily, allowing customers to route their Internet traffic through PCs in virtually any country or city around the globe — but predominantly in the United States. THE INTERNET NEVER FORGETS.

VPN

VPN Computers and Electronics Antivirus Software

On Chinese "Spy Trains"

Schneier on Security

SEPTEMBER 26, 2019

Like the United States, China is more likely to try to get data from the US communications infrastructure, or from the large Internet companies that already collect data on our every move as part of their business model. If there's any lesson from all of this, it's that everybody spies using the Internet.

Surveillance

Surveillance Wireless Government Internet

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Security Affairs

NOVEMBER 16, 2018

Since the beginning of 2018, Group-IB experts detected that cybercriminals were seeking to get access to the user databases of Hong Kong state Internet portals responsible for taxes, trade, procurement, logistics, innovations and hi-tech infrastructure. In 2017-2018 hackers’ interest in cryptocurrency exchanges ramped up.

Cybercrime

Cybercrime Hacking Banking Phishing

Evolution of threat landscape for IoT devices – H1 2018

Security Affairs

SEPTEMBER 19, 2018

The first data that emerged from the study is that threat actors continue to look at the IoT devices with increasing interest. In the first six months of 2018, the experts observed a number of malware samples that was up three times as many samples targeting IoT devices as in the whole of 2017. Pierluigi Paganini.

IoT

IoT Passwords Malware Advertising

USB drives are primary vector for destructive threats to industrial facilities

Security Affairs

NOVEMBER 5, 2018

Experts from Honeywell analyzed data collected with the Secure Media Exchange (SMX) , a product it has launched in 2017 and that was designed to protect industrial facilities from USB-borne threats.

Malware

Malware IoT Advertising Data collection

Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data

Krebs on Security

MAY 2, 2023

The leaked records indicate the network’s chief technology officer in Pakistan has been hacked for the past year, and that the entire operation was created by the principals of a Tennessee-based telemarketing firm that has promoted USPS employment websites since 2016. com , postaljobscenter[.]com com and usps-jobs[.]com.

Marketing

Marketing Advertising Scams Telecommunications

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Security Affairs

OCTOBER 10, 2018

Security firm Group-IB has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 Group-IB, an international company that specializes in preventing cyber attacks, has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 In December 2017, Group-IB published the first report on this group: “MoneyTaker: 1.5

Cyber Attacks

Cyber Attacks Banking Cyber threats Phishing

Online market for counterfeit goods in Russia has reached $1,5 billion

Security Affairs

OCTOBER 15, 2018

billion in 2017, compared to $1.2 Counterfeit goods are not the only threat to popular brands on the Internet. In recent years, an often-used fraud method has been fake mobile applications: 36% of users are unable to distinguish between genuine and fake apps, and 60% of the latter request access to the user’s personal data. .

Marketing

Marketing Phishing Media Engineering

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Security Affairs

NOVEMBER 15, 2018

The group also carries out attacks through intermediaries by hacking banks’ partners, IT companies, and financial product providers. In December 2017, Group-IB published its first report on the group: “MoneyTaker: 1.5 years of silent operations”. About the author Group-IB.

Banking

Banking Computers and Electronics Phishing Cybercrime

New set of Pakistani banks’ card dumps goes on sale on the dark web

Security Affairs

NOVEMBER 17, 2018

Group-IB Threat Intelligence continuously detects and analyses data uploaded to card shops all over the world,” – said Dmitry Shestakov, Head of Group-IB ?ybercrime According to Group-IB’s annual Hi-Tech Crime Trends 2018 report, on average, from June 2017 to August 2018, 1.8 ybercrime research unit.

Banking

Banking Cybercrime Advertising Data collection

Top 5 Application Security Tools & Software for 2023

eSecurity Planet

MAY 19, 2023

It specializes in detecting and preventing the exposure of API keys, credentials, certificates and other confidential data.

Software

Software Risk Encryption Marketing

Spam and phishing in 2022

SecureList

FEBRUARY 16, 2023

In a typical internet hoax manner, crypto scam sites offered visitors to get rich quick by paying a small fee. In reality, the scheme worked the way any other internet hoax would: the self-professed altruists went off the radar once they received the deposit. Scammers created a page on the telegra.ph

Phishing

Phishing Scams Accountability Energy and Utilities

Doxing in the corporate sector

SecureList

MARCH 29, 2021

Collecting information about a company from public sources. The first and simplest step that can be taken by cybercriminals is to gather data from publicly accessible sources. For example, in July of 2017, the data of 14 million Verizon users was breached due to incorrectly configured buckets. Tracking pixel.

Identity Theft

Identity Theft Phishing Accountability Banking

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

Security Affairs

MARCH 7, 2019

. “The hackers behind it reportedly took advantage of poorly configured routers that had the Universal Plug and Play (UPnP) service enabled, which caused the routers to forward public ports to the private devices and be open to the public internet,” reads the analysis published by Yang. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Advertising Firmware Data collection

Questions about the Massive South African "Master Deeds" Data Breach Answered

Troy Hunt

OCTOBER 19, 2017

For the last 4 years, I've also run a free service called Have I Been Pwned (HIBP) which aggregates data breaches and presently contains about 4.8 — Troy Hunt (@troyhunt) October 17, 2017. This was the result: My original import of the South African "Master Deeds" data didn't complete.

Data breaches

Data breaches Government Backups Internet

Indictment, Lawsuits Revive Trump-Alfa Bank Story

Krebs on Security

SEPTEMBER 23, 2021

In October 2016, media outlets reported that data collected by some of the world’s most renowned cybersecurity experts had identified frequent and unexplained communications between an email server used by the Trump Organization and Alfa Bank , one of Russia’s largest financial institutions. trump-email.com).

Banking

Banking DNS Internet Internet

Cyber Security Informer

Poland and Lithuania fear that data collected via FaceApp could be misused

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Webinars

Trending Sources

Hacking Wi-Fi networks by exploiting a flaw in Philips Smart Light Bulbs

Webinars

A Deep Dive Into the Residential Proxy Service ‘911’

On Chinese "Spy Trains"

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Evolution of threat landscape for IoT devices – H1 2018

USB drives are primary vector for destructive threats to industrial facilities

Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Online market for counterfeit goods in Russia has reached $1,5 billion

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

New set of Pakistani banks’ card dumps goes on sale on the dark web

Top 5 Application Security Tools & Software for 2023

Spam and phishing in 2022

Doxing in the corporate sector

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

Questions about the Massive South African "Master Deeds" Data Breach Answered

Indictment, Lawsuits Revive Trump-Alfa Bank Story

Stay Connected