2020, Cybercrime, Information Security and Passwords

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. In late 2020, credentials for US-based universities were found for sale on the dark web. The seller listed approximately 2,000 unique credentials. Pierluigi Paganini.

Cybercrime

Cybercrime Education Accountability Phishing

Incident response analyst report 2020

SecureList

SEPTEMBER 13, 2021

The Incident response analyst report provides insights into incident investigation services conducted by Kaspersky in 2020. In 2020, the pandemic forced companies to restructure their information security practices, accommodating a work-from-home (WFH) approach. Geography of incident responses by region, 2020.

Social Engineering

Social Engineering Healthcare Ransomware Government

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 10, 2020

Microsoft has uncovered Zerologon attacks that were allegedly conducted by the infamous TA505 Russia-linked cybercrime group. Microsoft spotted a series of Zerologon attacks allegedly launched by the Russian cybercrime group tracked as TA505 , CHIMBORAZO and Evil Corp. states Microsoft. We strongly recommend patching.

Cybercrime

Cybercrime Security Intelligence Authentication Banking

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

15 billion credentials available in the cybercrime marketplaces

Security Affairs

JULY 9, 2020

More than 15 billion username and passwords are available on cybercrime marketplaces, including over 5 billion unique credentials, states the experts. According to the company, most of the username and password combinations are available for free, and 5 billion of the above credentials are “unique.” Pierluigi Paganini.

Cybercrime

Cybercrime Antivirus Marketing Accountability

Info stealers and how to protect against them

Security Affairs

DECEMBER 18, 2023

These pieces of malware are created with the intent of stealing valuable data, such as login credentials, financial information, personal details, and more. This data may include usernames, passwords, credit card numbers, social security numbers, and other sensitive information.

Banking

Banking Cybercrime Malware Accountability

A database containing data of +8.9 million Zacks users was leaked online

Security Affairs

JUNE 13, 2023

A database containing the personal information of more than 8.9 million Zacks Investment Research users was leaked on a cybercrime forum. A database containing personal information of 8,929,503 Zacks Investment Research users emerged on a popular hacking forum on June 10, 2023. ” reported HIBP.

Data breaches

Data breaches Passwords Cybercrime Encryption

Alleged Extortioner of Psychotherapy Patients Faces Trial

Krebs on Security

NOVEMBER 16, 2023

In a 2,200-page report, Finnish authorities laid out how they connected the extortion spree to Kivimäki, a notorious hacker who was convicted in 2015 of perpetrating tens of thousands of cybercrimes, including data breaches, payment fraud, operating a botnet and calling in bomb threats.

Cybercrime

Cybercrime Hacking Data breaches Banking

NetWalker ransomware operators have made $25 million since March 2020

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020.

Ransomware

Ransomware VPN Cybercrime Advertising

Conti Ransomware Group Diaries, Part I: Evasion

Krebs on Security

MARCH 1, 2022

A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti , an aggressive and ruthless Russian cybercrime group that focuses on deploying its ransomware to companies with more than $100 million in annual revenue. 22, 2020, the U.S. On Sunday, Feb. 428 hospitals.”

Ransomware

Ransomware Healthcare Cybercrime Government

CISOs UNDER THE SPOTLIGHT: NEW REPORT FINDS THAT THE EXPECTATIONS OF CHIEF INFORMATION SECURITY OFFICERS HAVE NEVER BEEN GREATER

CyberSecurity Insiders

FEBRUARY 3, 2021

As a result, a number of concerning behavioral trends were seen, with 45% of employees saying they’d suffered a security incident at work and not reported it, and perhaps even more worryingly, 15% saying they had given their work log-in and password to others in the organization. .

CISO

CISO Information Security Digital transformation Cybercrime

2020 Was a Privacy Wake-up Call: Don't Go Back to Sleep in 2021!

SecureWorld News

JANUARY 28, 2021

2020 was a wake-up call for more than healthcare pandemic preparedness. It also exposed some huge security and privacy vulnerabilities, which many cybercrooks have exploited thousands of times throughout 2020 for remote workers. Training must be more frequent and go beyond covering phishing and passwords.

IoT

IoT Phishing Mobile Passwords

Open Exchange Rates discloses a security breach

Security Affairs

MARCH 16, 2020

Last week, Open Exchange Rates disclosed a data breach that exposed the personal information and hashed passwords for customers of its API service. Last week, the currency data provider Open Exchange Rates has disclosed a data breach that exposed the personal information and salted and hashed passwords for customers of its API service.

Data breaches

Data breaches Passwords Advertising Accountability

Microsoft warns of a evasive year-long spear-phishing campaign targeting Office 365 users

Security Affairs

AUGUST 12, 2021

Microsoft warns of a long-running spear-phishing campaign that has targeted Office 365 customers in multiple attacks since July 2020. Microsoft revealed that a year-long spear-phishing campaign has targeted Office 365 customers in multiple attacks starting with July 2020. SecurityAffairs – hacking, cybercrime).

Phishing

Phishing Passwords Encryption Cybercrime

New GoDaddy data breach impacted 1.2 million customers

Security Affairs

NOVEMBER 22, 2021

.” said Demetrius Comes, GoDaddy’s Chief Information Security Officer. Using a compromised password, an unauthorized third party accessed the provisioning system in our legacy code base for Managed WordPress.” The original WordPress Admin password that was set at the time of provisioning was exposed.

Data breaches

Data breaches Passwords Accountability Phishing

Threat actors are actively exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 30, 2020

The CVE-2020-1472 flaw is an elevation of privilege that resides in the Netlogon. An attacker could also exploit the flaw to disable security features in the Netlogon authentication process and change a computer’s password on the domain controller’s Active Directory.

Authentication

Authentication Advertising Architecture Cybercrime

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Security Affairs

JULY 11, 2020

A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces. The Russian man stole roughly 117 million user records, including usernames, passwords, and emails. SecurityAffairs – hacking, cybercrime).

Hacking

Hacking Cybercrime Data breaches Advertising

Asian media firm E27 hacked, attackers asked for a “donation”

Security Affairs

JUNE 28, 2020

” “We use Facebook and LinkedIn for account login and do not store any passwords on our system. If you use the legacy email and password login, your passwords are encrypted, but we highly encourage that you change it. We do not store any credit card or payment related information on our servers.”

Media

Media Hacking Passwords Data breaches

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Security Affairs

FEBRUARY 27, 2021

A cybercrime group called ‘Hotarus Corp’ has breached the Ecuador’s largest private bank, Banco Pichincha, and the local Ministry of Finance (the Ministerio de Economía y Finanzas de Ecuador). ” Security researcher Germán Fernández confirmed the compromise of the Equador’s Ministry of Finance via Twitter.

Hacking

Hacking Banking Ransomware Passwords

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Security Affairs

SEPTEMBER 24, 2020

The recent Emotet campaign uses spam messages with password-protected attachments, experts noticed a decline in infections over the weekend, a behavior already observed in the past. Emotet joined the password-protected attachment bandwagon with a campaign starting Friday. Heaviest I can remember in some time. Shared templates in paste.

Malware

Malware Passwords Advertising Cybercrime

Indian video on demand giant ZEE5 has been hacked

Security Affairs

JUNE 7, 2020

The Indian video on demand giant ZEE5 has been hacked, attackers are threatening to sell the database on the cybercrime underground markets. “On June 5, 2020, a hacker going by the name John wick contacted Quickcyber to tell us they had hacked into the database of Zee5.com ” reads the post published by the expert.

Hacking

Hacking Cybercrime Advertising Passwords

JD Sports discloses a data breach impacting 10 million customers

Security Affairs

JANUARY 30, 2023

Sports fashion retail JD Sports discloses a data breach that explosed data of about 10M customers who placed orders between 2018 and 2020. UK sports fashion chain JD Sports disclosed a data breach that exposed customer data from orders placed between November 2018 and October 2020. The affected JD Sports group brands are JD, Size?,

Data breaches

Data breaches Retail Passwords Scams

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Security Affairs

FEBRUARY 10, 2022

. “The Federal Bureau of Investigation is issuing this announcement to inform mobile carriers and the public of the increasing use of Subscriber Identity Module (SIM) swapping by criminals to steal money from fiat and virtual currency accounts.” Use a variation of unique passwords to access online accounts.

Mobile

Mobile Cryptocurrency Authentication Accountability

Group-IB: ransomware empire prospers in pandemic-hit world. Attacks grow by 150%

Security Affairs

MARCH 4, 2021

Group-IB published a report titled “Ransomware Uncovered 2020-2021 ”. analyzes ransomware landscape in 2020 and TTPs of major threat actors. Group-IB , a global threat hunting and adversary-centric cyber intelligence company, has presented its new report “Ransomware Uncovered 2020-2021 ”. The gold rush of 2020.

Ransomware

Ransomware Cybercrime Malware Marketing

Retail giant Woolworths discloses data breach of MyDeal online marketplace

Security Affairs

OCTOBER 17, 2022

As soon the company became aware of the security breach it blocked access to all affected systems. . In September 2020, 80% of MyDeal were acquired by Woolworths, anyway Woolworths was not impacted by the security breach. Payment, drivers licence, or passport details were accessed because MyDeal does not store this information.

Retail

Retail Data breaches Passwords Accountability

Dutch Police arrests 3 men involved in a massive extortion scheme. One of them is an ethical hacker

Security Affairs

FEBRUARY 27, 2023

Compromised data include names, addresses, telephone numbers, dates of birth, bank account numbers, credit cards, passwords, license plates, citizen service numbers or passport data. “You don’t just get access to information at DIVD, so he played it very cleverly,” the anonymous source told NOS.

Cybercrime

Cybercrime Identity Theft Hacking Scams

Law enforcement arrested 8 people that targeted celebrities with SIM swapping attacks

Security Affairs

FEBRUARY 10, 2021

Europol investigators revealed that the cybercrime organization stole more than $100 million worth of cryptocurrency using SIM Swapping attacks. The National Crime Agency revealed that the SIM swapping attacks targeted numerous victims throughout 2020, including well-known influencers, sports stars, musicians, and their families.

Cybercrime

Cybercrime Cryptocurrency Accountability Authentication

Aerial Direct, the O2’s largest UK partner suffered a data breach

Security Affairs

MARCH 16, 2020

In the meantime, if you have any further questions please drop us a direct message, call us on 01329 750 630, or visit our FAQs webpage [link] — Aerial Direct (@Aerial_Direct) March 13, 2020. To reassure you, the database did not include any passwords or financial details, such as bank account number or credit card information.”

Data breaches

Data breaches Telecommunications Passwords Advertising

Samsung suffered a new data breach

Security Affairs

NOVEMBER 16, 2023

Samsung Electronics suffered a data breach that exposed the personal information of some of its customers to an unauthorized individual. The security breach was discovered on November 13, 2023, and impacted customers who made purchases from the Samsung UK online store between July 1, 2019, and June 30, 2020.

Data breaches

Data breaches eCommerce Hacking Authentication

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. It uses a list of hardcoded username/password combinations to login into devices in the attempt to access systems using weak or default credentials. The botnet targets multiple architectures, including arm, bsd, x64, and x86.

Malware

Malware DDOS IoT Cybercrime

CISA’s advisory warns of notable increase in LokiBot malware

Security Affairs

SEPTEMBER 22, 2020

US Cybersecurity and Infrastructure Security Agency (CISA) is warning of a notable increase in the use of LokiBot malware by threat actors since July 2020. “CISA has observed a notable increase in the use of LokiBot malware by malicious cyber actors since July 2020. See Supplementing Passwords for more information.

Malware

Malware Passwords Advertising Antivirus

Morgan Stanley discloses data breach after the hack of a third-party vendor

Security Affairs

JULY 8, 2021

. “On May 20, 2021, Morgan Stanley was notified by Guidehouse, a vendor that provides account maintenance services to Morgan Stanley’s StockPlan Connect business, that it had suffered an information security incident. ” reads the letter.

Data breaches

Data breaches Hacking Banking Financial Services

Neiman Marcus discloses data breach, payment card data exposed

Security Affairs

OCTOBER 1, 2021

Luxury retail company Neiman Marcus Group has announced this week that it has suffered a data breach that impacted customer information. The attack against Neiman Marcus Group took place in May 2020, as a result of the attack, threat actors had access to customers’ information, including payment card data. Approximately 4.6

Data breaches

Data breaches Retail Passwords Accountability

Avaddon ransomware gang shuts down their operations and releases decryption keys

Security Affairs

JUNE 11, 2021

Good news for the victims of the Avaddon ransomware gang , the cybercrime group has shut down its operations and provided the decryption keys to BleepingComputer website. This morning, BleepingComputer received a message from a source that was pretending to be the FBI that included a password and a link to a password-protected ZIP archive.

Ransomware

Ransomware Passwords Manufacturing Healthcare

NCA arrested 21 customers of the WeLeakInfo service

Security Affairs

JANUARY 3, 2021

In early 2020, a joint operation conducted by the FBI in coordination with the UK NCA, the Netherlands National Police Corps, the German Bundeskriminalamt, and the Police Service of Northern Ireland resulted in the seizure of the WeLeakInfo.com domain. . ” reads the announcement published by the UK NCA.

Data breaches

Data breaches Cybercrime Cyber Attacks Advertising

U.S. and Australian police arrested Firebird RAT author and operator

Security Affairs

APRIL 14, 2024

Australian Federal Police reported that an Australian man and a man based in the US will appear in court, following the international investigation that began in 2020. The Australian man faces twelve counts of computer offenses. The Australian man developed and sold Firebird to customers on a dedicated hacking forum. ” reported the DoJ.

Computers and Electronics

Computers and Electronics Advertising Cryptocurrency Malware

The Have I Been Pwned service now includes 441K accounts stolen by RedLine malware

Security Affairs

DECEMBER 31, 2021

RS is the key source of identity data sold on online criminal forums since its initial release in early 2020. The data included usernames, email addresses and plain text passwords.” Users have also to change passwords for any account accessed through the infected machine. Pierluigi Paganini.

Accountability

Accountability Malware Data breaches Passwords

An international police operation dismantled the spoofing service iSpoof

Security Affairs

NOVEMBER 25, 2022

Threat actors used the service to trick victims into disclosing financial or private information or transferring money. . “The services of the website allowed those who sign up and pay for the service to anonymously make spoofed calls, send recorded messages, and intercept one-time passwords.”

Retail

Retail Cybercrime Banking Passwords

Experts detailed a previously undetected VMware ESXi backdoor

Security Affairs

DECEMBER 13, 2022

CVE-2019-5544 and CVE-2020-3992 ) in ESXi’s OpenSLP service. The webserver accepts password-protected POST requests from the attackers, each request can include a base-64 encoded command payload or launch a reverse shell on the host. “The hashed password in vmtools.py local.sh , which is executed at startup.

Passwords

Passwords Hacking Cybercrime Information Security

TroyStealer – A new info stealer targeting Portuguese Internet users

Security Affairs

JUNE 13, 2020

The world of cybercrime is changing, and more and more malware variants have spread every day. cc @CNCSgovpt @sirpedrotavares pic.twitter.com/1bDK3BtYeE — abuse.ch (@abuse_ch) June 12, 2020. An information stealer (or info stealer) is a Trojan that is designed to gather information from a system. h/t: abuse.ch.

Internet

Internet Internet Malware Banking

A new Zerobot variant spreads by exploiting Apache flaws

Security Affairs

DECEMBER 22, 2022

Experts observed the bot attempting to gain access to the device by using a combination of eight common usernames and 130 passwords for IoT devices over SSH and telnet on ports 23 and 2323. Adopt a comprehensive IoT security solution. Zerobot was also observed spreading by exploiting dozens of vulnerabilities, the version Zerobot 1.1

IoT

IoT DDOS Malware Firmware

TrueFire Guitar tutoring website was hacked, financial data might have been exposed

Security Affairs

MARCH 18, 2020

The websites were informed by some affected TrueFire customers which shared details the data breach notification they received from the company. “On January 10, 2020, TrueFire discovered that an unauthorised person gained access to our computer system and, more specifically, to information that consumers had entered through the website.

Hacking

Hacking Data breaches Advertising Accountability

Telehealth: A New Frontier in Medicine—and Security

SecureList

FEBRUARY 1, 2022

However, almost as soon as development began, serious questions arose about the security of the service’s data storage and the possibility of it being misused. In 2020, Proteus went bankrupt. That’s why we decided to test our assumption and delve into the security landscape of telehealth in 2020 and 2021.

Phishing

Phishing Healthcare IoT Authentication

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. It uses a list of hardcoded username/password combinations to login into devices in the attempt to access systems using weak or default credentials. The botnet targets multiple architectures, including arm, bsd, x64, and x86.

DDOS

DDOS Architecture Malware Cybercrime

Taiwanese vendor QNAP issues advisory on Zerologon flaw

Security Affairs

OCTOBER 22, 2020

The Taiwanese vendor QNAP has published an advisory to warn customers that certain versions of the operating system for its network-attached storage (NAS) devices, also known as of QTS, are affected by the Zerologon vulnerability ( CVE-2020-1472 ). The CVE-2020-1472 flaw is an elevation of privilege that resides in the Netlogon.

Authentication

Authentication Advertising Architecture Cybercrime

FBI: Compromised US academic credentials available on various cybercrime forums

Incident response analyst report 2020

Webinars

Trending Sources

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Webinars

15 billion credentials available in the cybercrime marketplaces

Info stealers and how to protect against them

A database containing data of +8.9 million Zacks users was leaked online

Alleged Extortioner of Psychotherapy Patients Faces Trial

NetWalker ransomware operators have made $25 million since March 2020

Conti Ransomware Group Diaries, Part I: Evasion

CISOs UNDER THE SPOTLIGHT: NEW REPORT FINDS THAT THE EXPECTATIONS OF CHIEF INFORMATION SECURITY OFFICERS HAVE NEVER BEEN GREATER

2020 Was a Privacy Wake-up Call: Don't Go Back to Sleep in 2021!

Open Exchange Rates discloses a security breach

Microsoft warns of a evasive year-long spear-phishing campaign targeting Office 365 users

New GoDaddy data breach impacted 1.2 million customers

Threat actors are actively exploiting Zerologon flaw, Microsoft warns

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Asian media firm E27 hacked, attackers asked for a “donation”

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Indian video on demand giant ZEE5 has been hacked

JD Sports discloses a data breach impacting 10 million customers

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Group-IB: ransomware empire prospers in pandemic-hit world. Attacks grow by 150%

Retail giant Woolworths discloses data breach of MyDeal online marketplace

Dutch Police arrests 3 men involved in a massive extortion scheme. One of them is an ethical hacker

Law enforcement arrested 8 people that targeted celebrities with SIM swapping attacks

Aerial Direct, the O2’s largest UK partner suffered a data breach

Samsung suffered a new data breach

EnemyBot malware adds new exploits to target CMS servers and Android devices

CISA’s advisory warns of notable increase in LokiBot malware

Morgan Stanley discloses data breach after the hack of a third-party vendor

Neiman Marcus discloses data breach, payment card data exposed

Avaddon ransomware gang shuts down their operations and releases decryption keys

NCA arrested 21 customers of the WeLeakInfo service

U.S. and Australian police arrested Firebird RAT author and operator

The Have I Been Pwned service now includes 441K accounts stolen by RedLine malware

An international police operation dismantled the spoofing service iSpoof

Experts detailed a previously undetected VMware ESXi backdoor

TroyStealer – A new info stealer targeting Portuguese Internet users

A new Zerobot variant spreads by exploiting Apache flaws

TrueFire Guitar tutoring website was hacked, financial data might have been exposed

Telehealth: A New Frontier in Medicine—and Security

Enemybot, a new DDoS botnet appears in the threat landscape

Taiwanese vendor QNAP issues advisory on Zerologon flaw

Stay Connected