2022, Accountability, Blog and Hacking - Cyber Security Informer

US Cyber Safety Review Board on the 2023 Microsoft Exchange Hack

Schneier on Security

APRIL 9, 2024

US Cyber Safety Review Board released a report on the summer 2023 hack of Microsoft Exchange by China. The board was established in early 2022, modeled in spirit after the National Transportation Safety Board. It was a serious attack by the Chinese government that accessed the emails of senior U.S. government officials.

Hacking

Hacking Government Accountability Technology

Google banned 173k developer accounts in 2022

Security Affairs

MAY 1, 2023

In 2022, Google prevented 1.43 million policy-violating applications from being published on Google Play in 2022. ” The company explained that in 2022, the App Security Improvements program helped developers to address approximately 500K security weaknesses affecting approximately 300K apps. .

Accountability

Accountability Education Media Hacking

GitLab addressed critical account take over via SCIM email change

Security Affairs

JUNE 4, 2022

GitLab addresses a critical security vulnerability, tracked as CVE-2022-1680, that could be exploited by an attacker to take over users’ accounts. GitLab has fixed a critical security flaw in its GitLab Enterprise Edition (EE), tracked as CVE-2022-1680 (CVSS score 9.9), that could be exploited to take over an account.

Accountability

Accountability Hacking Cybersecurity Information Security

Webinars

Human-Centered Cyber Security Training: Driving Real Impact on Security Culture

MORE WEBINARS

A new WhatsApp OTP scam could allow the hijacking of users’ accounts

Security Affairs

MAY 30, 2022

Experts warn of a new ongoing WhatsApp OTP scam that could allow attackers to hijack users’ accounts through phone calls. Recently CloudSEK founder Rahul Sasi warned of an ongoing WhatsApp OTP scam that could allow threat actors to hijack users’ accounts through phone calls. SecurityAffairs – hacking, WhatsApp).

Scams

Scams Accountability Mobile Hacking

Passwordless sign-in with passkeys is now available for Google accounts

Security Affairs

MAY 3, 2023

Google announced the introduction of the passwordless secure sign-in with Passkeys for Google Accounts on all platforms. Google is rolling out the passwordless secure sign-in with Passkeys for Google Accounts on all platforms. In 2022, Google announced it would begin work to support passkeys on its platform to replace passwords.

Accountability

Accountability Passwords Password Management Phishing

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

Security Affairs

APRIL 30, 2023

Threat actors are gaining access to AT&T email accounts in an attempt to hack into the victim’s cryptocurrency exchange accounts. Some users with AT&T email addresses wrote on Reddit that they have been hacked, and some of them claim they had the same issue for months.

Cryptocurrency

Cryptocurrency Accountability Passwords Hacking

Remcos RAT campaign targets US accounting and tax return preparation firms

Security Affairs

APRIL 16, 2023

Microsoft warns of a new Remcos RAT campaign targeting US accounting and tax return preparation firms ahead of Tax Day. Tax Day, Microsoft has observed a new Remcos RAT campaign targeting US accounting and tax return preparation firms. Ahead of the U.S. The phishing attacks began in February 2023, the IT giant reported. LNK) files.

Accountability

Accountability Phishing Financial Services Surveillance

Let’s give a look at the Dark Web Price Index 2022

Security Affairs

JUNE 15, 2022

PrivacyAffairs released the Dark Web Index 2022, the document provides the prices for illegal services/products available in the black marketplaces. The document updates the information provided in the Dark Web Index 2022 report. The document updates the information provided in the Dark Web Index 2022 report. 50 in 2021).

Identity Theft

Identity Theft Accountability DDOS Cybercrime

A “By-Design” flaw in Microsoft Azure can allow storage accounts takeover

Security Affairs

APRIL 11, 2023

A flaw in Microsoft Azure could be exploited by attackers to gain access to storage accounts, perform lateral movements, and even execute remote code. Researchers from the security firm Orca demonstrated how to abuse Microsoft Azure Shared Key authorization to gain full access to storage accounts and potentially critical business assets.

Accountability

Accountability Education Media Authentication

Money Message ransomware group claims to have hacked IT giant MSI

Security Affairs

APRIL 6, 2023

Ransomware gang Money Message claims to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International). Ransomware gang Money Message announced to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International).

Hacking

Hacking Ransomware Manufacturing Education

PoC exploits for Atlassian CVE-2022-26134 RCE flaw released online

Security Affairs

JUNE 5, 2022

Proof-of-concept exploits for the critical CVE-2022-26134 vulnerability in Atlassian Confluence and Data Center servers are available online. Proof-of-concept exploits for the critical CVE-2022-26134 flaw, affecting Atlassian Confluence and Data Center servers, have been released. 23 unique IPs so far.

VPN

VPN IoT Cybersecurity Engineering

EvilProxy used in massive cloud account takeover scheme

Security Affairs

AUGUST 9, 2023

Cloud account takeover scheme utilizing EvilProxy hit over 100 top-level executives of global organizations EvilProxy was observed sending 120,000 phishing emails to over a hundred organizations to steal Microsoft 365 accounts. Proofpoint noticed a worrisome surge of successful cloud account compromises in the past five months.

Accountability

Accountability Phishing Authentication Architecture

Ukraine warns of attacks aimed at taking over Telegram accounts

Security Affairs

APRIL 6, 2022

Ukraine’s technical security and intelligence service warns of threat actors targeting aimed at gaining access to users’ Telegram accounts. State Service of Special Communication and Information Protection (SSSCIP) of Ukraine spotted a new wave of cyber attacks aimed at gaining access to users’ Telegram accounts.

Accountability

Accountability Phishing Passwords Hacking

Russian APT28 hacker accused of the NATO think tank hack in Germany

Security Affairs

JUNE 20, 2022

German investigators believe that Kozachek is a member of the Russia-linked APT28 group (aka Fancy Bear), which is the same group that hacked the German Bundestag in 2015. Kozachek hacked the computed of the NATO think tank in 2017 and installed a keylogger to spy on the organization. SecurityAffairs – hacking, APT28).

Hacking

Hacking Accountability Malware Cybersecurity

Discord suffered a data after third-party support agent was hacked

Security Affairs

MAY 13, 2023

Discord disclosed a data breach, the security breach was caused by the compromise of a third-party support agent’s account. In response to the incident, the company immediately deactivated the compromised account and analyzed the impacted machine to determine if it was infected with malware. ” concludes the notice.

Hacking

Hacking Data breaches Accountability Phishing

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. technology companies during the summer of 2022. stole at least $800,000 from at least five victims between August 2022 and March 2023. 9, 2024, U.S.

Social Engineering

Social Engineering Mobile Cybercrime Passwords

Spam and phishing in 2022

SecureList

FEBRUARY 16, 2023

Fake donation sites started popping up after the Ukraine crisis broke out in 2022, pretending to accept money as aid to Ukraine. The pandemic The COVID-19 theme had lost relevance by late 2022 as the pandemic restrictions had been lifted in most countries. “Promotional campaigns by major banks” were a popular bait in 2022.

Phishing

Phishing Scams Accountability Energy and Utilities

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. “Shevlyakov also attempted to acquire computer hacking tools.” electronics manufacturers and distributors between approximately October 2012 and January 2022.

Computers and Electronics

Computers and Electronics Hacking Penetration Testing Manufacturing

Pro-Russia hacking group executed a disruptive attack against a Canadian gas pipeline

Security Affairs

APRIL 26, 2023

Pro-Russia hacking group Zarya caused a cybersecurity incident at a Canadian gas pipeline, the critical infrastructure sector is on alert. A Canadian gas pipeline suffered a cyber security incident, Canada’s top cyber official and Pro-Russia hacking group Zarya claimed the attack could have caused an explosion. intelligence documents.

Hacking

Hacking Cyber Attacks Education Media

Microsoft fixed Azure AD bug that led to Bing.com results manipulation and account takeover

Security Affairs

APRIL 3, 2023

” The issues were reported to Microsoft in January and February 2022, following which the tech giant applied fixes and awarded Wiz a $40,000 bug bounty. . “Those attacks could compromise users’ personal data, including Outlook emails and SharePoint documents.” Below is the disclosure timeline: Jan.

Accountability

Accountability Education Media Authentication

NATO and Diplomats’ Email Portals Targeted by Russian APT Winter Vivern

Heimadal Security

MARCH 31, 2023

Winter Vivern (aka TA473), a Russian hacking group, has been exploiting vulnerabilities (CVE-2022-27926) in unpatched Zimbra instances to access the emails of NATO officials, governments, military people, and diplomats. The CVE-2022-27926 flaw affects versions 9.0.0 The CVE-2022-27926 flaw affects versions 9.0.0

Government

Government Accountability Hacking Cybersecurity

How to Secure Your Business Social Media Accounts

BH Consulting

AUGUST 31, 2023

Having policies and procedures to secure social media accounts and minimise the potential for incidents can help. So in this blog, I’ll talk about the risks and steps to mitigate them. The organisation had suffered reputational damage after one of the team followed some accounts that didn’t fit with its values. More than 4.7

Media

Media Accountability Authentication Passwords

Hackers can hack organizations using data found on their discarded enterprise network equipment

Security Affairs

APRIL 24, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, enterprise network equipment ) The post Hackers can hack organizations using data found on their discarded enterprise network equipment appeared first on Security Affairs.

Hacking

Hacking VPN Marketing Authentication

Hackers stole over $250,000 in Ethereum from Bored Ape Yacht Club

Security Affairs

JUNE 5, 2022

“CertiK analysis reveals that this community manager, account –@BorisVagner (“BorisVagner | SBS” on Discord)– posted a message to BAYC’s Discord server with a phishing link that led to the fake site. — Bored Ape Yacht Club (@BoredApeYC) June 4, 2022. The first hack of the BAYC discord server took place on April 1st.

Phishing

Phishing Hacking Accountability Scams

News Alert: HostingAdvice poll finds one in three Americans hacked upon visiting sketchy websites

The Last Watchdog

JULY 18, 2023

July 18, 2022 – Around 30,000 websites get hacked every day , with the majority of those cyberattacks due to human error. A new study by HostingAdvice, the premier authority on web hosting, found that 32% of Americans say they’ve gotten hacked from visiting a sketchy website and of those, 53% got a computer virus.

Hacking

Hacking DDOS Small Business Spyware

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

Security Affairs

AUGUST 22, 2022

LockBit ransomware gang claims to have hacked the IT giant Entrust and started leaking the stolen files. The Lockbit ransomware gang claimed to have hacked the company and is threatening to leak the stolen files. Entrust blog still down on your left and official statement on your right. Entrust Corp. Entrust Corp. Tor leak site.

DDOS

DDOS Hacking InfoSec Ransomware

Ukrainian national sentenced to 4 years in prison for selling access to hacked servers

Security Affairs

MAY 16, 2022

A 28-year-old Ukrainian national has been sentenced to four years in prison for selling access to hacked servers. SecurityAffairs – hacking, Ukrainian national). The post Ukrainian national sentenced to 4 years in prison for selling access to hacked servers appeared first on Security Affairs. To nominate, please visit:?

Hacking

Hacking Passwords Government Accountability

VMware addressed two zero-day flaws demonstrated at Pwn2Own Vancouver 2023

Security Affairs

APRIL 25, 2023

VMware released security updates to address two zero-day vulnerabilities ( CVE-2023-20869, CVE-2023-20870 ) that were chained by the STAR Labs team during the Pwn2Own Vancouver 2023 hacking contest against Workstation and Fusion software hypervisors. They earned $80,000 and 8 Master of Pwn points.

Hacking

Hacking Education Software Media

Multiple flaws in Teltonika industrial cellular router expose OT networks to hack

Security Affairs

MAY 16, 2023

The experts demonstrated multiple attack vectors, including the exploitation of flaws in internet-exposed services, cloud account takeover, and the exploitation of flaws in the cloud infrastructure. The researchers discovered eight vulnerabilities that impact thousands of internet-connected devices worldwide.

Hacking

Hacking Internet Internet Manufacturing

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 4, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added a Zimbra flaw, tracked as CVE-2022-27926 , to its Known Exploited Vulnerabilities Catalog. The CVE-2022-27926 flaw affects Zimbra Collaboration version 9.0.0, which is used to host publicly-facing webmail portals. reads the post published by Proofpoint.

Phishing

Phishing Spyware Government Passwords

Fortinet fixed a critical vulnerability in its Data Analytics product

Security Affairs

APRIL 13, 2023

Fortinet has addressed a critical vulnerability, tracked as CVE-2022-41331 (CVSS score of 9.3), in its Fortinet FortiPresence data analytics solution. FortiSandbox / FortiDeceptor – Improper profile-based access control over APIs CVE-2022-41330 (CVSS score of 8.3)

Authentication

Authentication Education Media Hacking

Hikvision fixed a critical flaw in Hybrid SAN and cluster storage products?

Security Affairs

APRIL 13, 2023

The vulnerability was reported in December 2022 by Souvik Kandar, Arko Dhar of the Redinent Innovations team in India. The attacker can exploit the vulnerability by sending crafted messages to the affected devices.” ” reads the advisory published by the company. On April 10, Hikvision released version 2.3.8-8

Surveillance

Surveillance Education Media Hacking

Sophos patches three issues in the Sophos Web Security appliance, one of them rated as critical

Security Affairs

APRIL 10, 2023

The company also addressed a high-severity code execution issue, tracked as CVE-2022-4934. The CVE-2023-1671 flaw is a pre-auth command injection issue that resides in the warn-proceed handler, it affects appliances older than version 4.3.10.4.

Firewall

Firewall Education Media Hacking

Operation TOURNIQUET: Authorities shut down dark web marketplace RaidForums

Security Affairs

APRIL 12, 2022

These contained information for millions of credit cards, bank account numbers and routing information, and the usernames and associated passwords needed to access online accounts.” SecurityAffairs – hacking, cybercrime). The police arrested Coelho in the United Kingdom on Jan. 1, 2015, and on or about Jan.

Cybercrime

Cybercrime Banking Accountability Hacking

A flaw in the Essential ‘Addons for Elementor’ WordPress plugin poses 1M sites at risk of hacking

Security Affairs

MAY 11, 2023

“It is possible to reset the password of any user as long as we know their username thus being able to reset the password of the administrator and login on their account. .” reads the advisory published by PatchStack.

Hacking

Hacking Risk Passwords Accountability

Law enforcement seized the Genesis Market cybercrime marketplace

Security Affairs

APRIL 5, 2023

The price for a stolen account was very cheap, paying a few dollars crooks were able to use it for a specific period. Genesis Market provided access to accounts of the most popular services, including Amazon, eBay, Facebook, Gmail, Netflix, PayPal, Spotify, and Zoom.

Marketing

Marketing Cybercrime Accountability Education

Nation States Will Weaponize Social and Recruit Bad Guys with Benefits in 2022

McAfee

OCTOBER 31, 2021

McAfee Enterprise and FireEye recently released its 2022 Threat Predictions. In this blog, we take a deeper dive into the continuingly aggressive role Nation States will play in 2022. Equally, direct messages have been used by groups to take control over influencer accounts to promote messaging of their own.

Cybercrime

Cybercrime Government Malware Media

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

Security Affairs

APRIL 21, 2023

The ABA has 166,000 members as of 2022. ” The investigation launched into the incident revealed that that an unauthorized third party obtained usernames and hashed and salted passwords for members’ online accounts on the ABA website prior to 2018 or the ABA Career Center since 2018.

Data breaches

Data breaches Passwords Education Accountability

VMware fixed a critical flaw in vRealize that allows executing arbitrary code as root

Security Affairs

APRIL 20, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, vRealize ) The post VMware fixed a critical flaw in vRealize that allows executing arbitrary code as root appeared first on Security Affairs.

Education

Education Media Hacking Accountability

Hackers are taking advantage of the interest in generative AI to install Malware

Security Affairs

MAY 3, 2023

“Since March alone, our security analysts have found around 10 malware families posing as ChatGPT and similar tools to compromise accounts across the internet. In March, security experts at Meta found multiple malware posing as ChatGPT or similar AI tools. ” reads the Meta’s Q1 2023 Security Reports.

Malware

Malware Education Accountability Media

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

This exposure of sensitive credential and network access information, especially privileged user accounts, could lead to subsequent cyber attacks against individual users or affiliated organizations.” In 2017, crooks launched a phishing campaign against universities to compromise.edu accounts. SecurityAffairs – hacking, FBI).

Cybercrime

Cybercrime Education Accountability Phishing

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

An Iran-linked APT group tracked as Mint Sandstorm is behind a string of attacks aimed at US critical infrastructure between late 2021 to mid-2022. Microsoft has linked the Iranian Mint Sandstorm APT (previously tracked by Microsoft as PHOSPHORUS ) to a series of attacks aimed at US critical infrastructure between late 2021 to mid-2022.

Energy and Utilities

Energy and Utilities Accountability Education Media

Experts found the first LockBit encryptor that targets macOS systems

Security Affairs

APRIL 16, 2023

The MacOS variant has been available since November 11th, 2022. Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, LockBit ) The post Experts found the first LockBit encryptor that targets macOS systems appeared first on Security Affairs.

Encryption

Encryption Architecture Ransomware Education

China-linked APT41 group spotted using open-source red teaming tool GC2

Security Affairs

APRIL 17, 2023

The attack took place in October 2022, threat actors sent phishing emails that contained links to a password-protected file hosted in Drive. The researchers noticed that the most common attack against networks and cloud instances is the account takeover. ” continues the report.

Media

Media Accountability Government Malware

US Cyber Safety Review Board on the 2023 Microsoft Exchange Hack

Google banned 173k developer accounts in 2022

Webinars

Trending Sources

GitLab addressed critical account take over via SCIM email change

Webinars

A new WhatsApp OTP scam could allow the hijacking of users’ accounts

Passwordless sign-in with passkeys is now available for Google accounts

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

Remcos RAT campaign targets US accounting and tax return preparation firms

Let’s give a look at the Dark Web Price Index 2022

A “By-Design” flaw in Microsoft Azure can allow storage accounts takeover

Money Message ransomware group claims to have hacked IT giant MSI

PoC exploits for Atlassian CVE-2022-26134 RCE flaw released online

EvilProxy used in massive cloud account takeover scheme

Ukraine warns of attacks aimed at taking over Telegram accounts

Russian APT28 hacker accused of the NATO think tank hack in Germany

Discord suffered a data after third-party support agent was hacked

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Spam and phishing in 2022

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Pro-Russia hacking group executed a disruptive attack against a Canadian gas pipeline

Microsoft fixed Azure AD bug that led to Bing.com results manipulation and account takeover

NATO and Diplomats’ Email Portals Targeted by Russian APT Winter Vivern

How to Secure Your Business Social Media Accounts

Hackers can hack organizations using data found on their discarded enterprise network equipment

Hackers stole over $250,000 in Ethereum from Bored Ape Yacht Club

News Alert: HostingAdvice poll finds one in three Americans hacked upon visiting sketchy websites

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

Ukrainian national sentenced to 4 years in prison for selling access to hacked servers

VMware addressed two zero-day flaws demonstrated at Pwn2Own Vancouver 2023

Multiple flaws in Teltonika industrial cellular router expose OT networks to hack

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Fortinet fixed a critical vulnerability in its Data Analytics product

Hikvision fixed a critical flaw in Hybrid SAN and cluster storage products?

Sophos patches three issues in the Sophos Web Security appliance, one of them rated as critical

Operation TOURNIQUET: Authorities shut down dark web marketplace RaidForums

A flaw in the Essential ‘Addons for Elementor’ WordPress plugin poses 1M sites at risk of hacking

Law enforcement seized the Genesis Market cybercrime marketplace

Nation States Will Weaponize Social and Recruit Bad Guys with Benefits in 2022

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

VMware fixed a critical flaw in vRealize that allows executing arbitrary code as root

Hackers are taking advantage of the interest in generative AI to install Malware

FBI: Compromised US academic credentials available on various cybercrime forums

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Experts found the first LockBit encryptor that targets macOS systems

China-linked APT41 group spotted using open-source red teaming tool GC2

Stay Connected