Security Affairs

AUGUST 24, 2022

The streaming media platform Plex is urging its users to reset passwords after threat actors gained access to its database. Exposed data includes emails, usernames, and encrypted passwords. The company is urging all users to immediately reset account passwords and log out of all devices connected to its service.

Data breaches 109

Data breaches Passwords Media Accountability 109

Malwarebytes

JANUARY 16, 2024

The university was notified by an undisclosed third party, who provided information to help the team find and identify the malware. Together, CWRU and the FBI were able to identify that an IP address with which the malware was communicating had also been used to access the alumni email account of a man called Phillip Durachinsky.

Malware 87

Malware Passwords Identity Theft Data collection 87

Security Affairs

DECEMBER 5, 2023

Microsoft warns that the Russia-linked APT28 group is actively exploiting the CVE-2023-23397 Outlook flaw to hijack Microsoft Exchange accounts. Most of the APT28s’ campaigns leveraged spear-phishing and malware-based attacks. The vulnerability is a Microsoft Outlook spoofing vulnerability that can lead to an authentication bypass.

Accountability 106

Accountability Government Phishing Authentication 106

Security Affairs

JANUARY 19, 2022

A vulnerability in the implementation of multi-factor authentication (MFA) for Box allowed threat actors to take over accounts. A vulnerability in the implementation of multi-factor authentication (MFA) for Box allowed attackers to take over accounts without having access to the victim’s phone, Varonis researchers reported.

Accountability 115

Accountability Authentication Passwords Data breaches 115

Security Affairs

SEPTEMBER 16, 2020

A threat actor is launching brute-force attacks on MSSQL servers in the attempt to access them to install a new crypto-mining malware dubbed MrbMiner. A group of hackers is launching brute-force attacks on MSSQL servers with the intent to compromise them and install crypto-mining malware dubbed MrbMiner. Mining process.”

Malware 138

Malware Cryptocurrency Advertising Accountability 138

Security Affairs

NOVEMBER 1, 2020

A threat actor is offering for sale account databases containing an aggregate total of 34 million user records stolen from 17 companies. A data breach broker is selling account databases containing a total of 34 million user records stolen from 17 companies. SecurityAffairs – hacking, account databases). million (8.1

Data breaches 145

Data breaches Accountability Advertising Passwords 145

Security Affairs

APRIL 6, 2022

Ukraine’s technical security and intelligence service warns of threat actors targeting aimed at gaining access to users’ Telegram accounts. State Service of Special Communication and Information Protection (SSSCIP) of Ukraine spotted a new wave of cyber attacks aimed at gaining access to users’ Telegram accounts.

Accountability 103

Accountability Phishing Passwords Hacking 103

Security Affairs

DECEMBER 18, 2023

Info stealers, the type of malware with its purpose in the name, can cripple businesses and everyday users alike. Info stealers, also known as information stealers, are a type of malicious software (malware) designed to covertly collect sensitive and personal information from a victim’s computer or network.

Banking 116

Banking Cybercrime Malware Accountability 116

Security Affairs

JANUARY 4, 2023

Researchers discovered a new Linux malware developed with the shell script compiler ( shc ) that was used to deliver a cryptocurrency miner. The ASEC analysis team recently discovered that a Linux malware developed with shell script compiler ( shc ) that threat actors used to install a CoinMiner. ” concludes the report.

Malware 94

Malware DDOS Cryptocurrency Firewall 94

Security Affairs

NOVEMBER 23, 2020

TikTok has addressed a couple of security issues that could have been chained to led account takeover. . The first issue addressed by the social media platform is a reflected XSS security flaw that has been reported by the bug bounty hunter Muhammed “ milly ” Taskiran via the bug bounty platform HackerOne.

Accountability 117

Accountability Passwords Media Malware 117

Security Affairs

APRIL 16, 2020

Linksys has reset passwords for all its customers’ after learning on ongoing DNS hijacking attacks aimed at delivering malware. Crooks continue to launch Coronavirus-themed attacks , in the last weeks, experts observed hackers hijacking D-Link and Linksys routers to redirect users to COVID19-themed sites spreading malware.

Passwords 118

Passwords DNS Malware Advertising 118

Security Affairs

MARCH 3, 2021

A researcher received a $50,000 bug bounty by Microsoft for having reported a vulnerability that could’ve allowed to hijack any account. Microsoft has awarded the security researcher Laxman Muthiyah $50,000 for reporting a vulnerability that could have allowed anyone to hijack users’ accounts without consent.

Accountability 113

Accountability Passwords Encryption Mobile 113

Krebs on Security

APRIL 20, 2023

Researchers at ESET say this job offer from a phony HSBC recruiter on LinkedIn was North Korean malware masquerading as a PDF file. Mandiant found the compromised 3CX software would download malware that sought out new instructions by consulting encrypted icon files hosted on GitHub. Image: Mandiant.

Malware 281

Malware Software Technology Accountability 281

Security Affairs

DECEMBER 11, 2020

“We deeply regret to inform you that your Spotify account registration information was inadvertently exposed to certain of Spotify’s business partners. The company recommends users to remain vigilant by monitoring their account closely and to report any suspicious activity on their account. Pierluigi Paganini.

Passwords 101

Passwords Accountability Hacking Data breaches 101

Security Affairs

NOVEMBER 12, 2020

The popular children’s online playground Animal Jam has suffered a data breach that affected more than 46 million accounts. Animal Jam has suffered a data breach impacting 46 million accounts belonging to children and parents who signed up for the game. . records include the birth year the player entered at account creation 23.9M

Data breaches 122

Data breaches Accountability Passwords Encryption 122

Security Affairs

SEPTEMBER 27, 2021

Researchers spotted a new malware, dubbed BloodyStealer, that could allow stealing accounts for multiple gaming platforms. stealing a wide range of sensitive information, including cookies, passwords, bank cards, as well as sessions from various applications. ” reads the analysis published by Kaspersky.

Malware 80

Malware Banking Passwords Accountability 80

Security Affairs

AUGUST 17, 2020

The Treasury Board of Canada Secretariat confirmed that thousands of user accounts for online Canadian government services were recently hacked. According to a press release issued by the Treasury Board of Canada Secretariat, thousands of user accounts for online government services were recently hacked. ” reported CBA. .

Government 134

Government Accountability Hacking Advertising 134

Security Affairs

NOVEMBER 16, 2020

Researchers discovered an ElasticSearch database exposed online that contained data for over 100000 compromised Facebook accounts. Researchers at vpnMentor discovered an ElasticSearch database exposed online that contained an archive of over 100.000 compromised Facebook accounts. ” reads the analysis published vpnMentor.

Scams 111

Scams Accountability Hacking Passwords 111

Security Affairs

NOVEMBER 13, 2020

Netskope security researchers have spotted a new credential stealer dubbed TroubleGrabber that spreads via Discord attachments and uses Discord webhooks to transfer stolen data to its operators. The malware sends information back to the attacker via webhook as a chat message to his Discord server. ” continues the report.

Malware 110

Malware Passwords Hacking Accountability 110

Security Affairs

DECEMBER 27, 2023

In the reconnaissance phase, the threat actors perform IP scanning to look for servers with the SSH service, or port 22 activated, then launch a brute force or dictionary attack to obtain the ID and password. Afterward, the threat actor logged in again using the same account credentials and downloaded a compressed file.”

DDOS 115

DDOS Passwords Firewall Accountability 115

Security Affairs

JULY 31, 2022

North Korea-linked threat actor SharpTongue is using a malicious extension on Chromium-based web browsers to spy on victims’ email accounts. North Korea-linked actor SharpTongue has been using a malicious extension on Chromium-based web browsers to spy on victims’ Gmail and AOL email accounts. In the last 12 months.

Accountability 84

Accountability Malware Passwords Hacking 84

Security Affairs

DECEMBER 30, 2022

A new Linux malware has been exploiting 30 vulnerabilities in outdated WordPress plugins and themes to deploy malicious JavaScripts. Doctor Web researchers discovered a Linux malware, tracked as Linux.BackDoor.WordPressExploit.1, SecurityAffairs – hacking, Lunix Malware). FV Flowplayer Video Player. WooCommerce.

Malware 84

Malware Hacking Accountability Phishing 84

Security Affairs

MARCH 24, 2024

surfaces in the threat landscape Pokemon Company resets some users’ passwords Ukraine cyber police arrested crooks selling 100 million compromised accounts New AcidPour wiper targets Linux x86 devices. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Is it a Russia’s weapon?

Malware 100

Malware Cybercrime Hacking Cyber threats 100

Daniel Miessler

MARCH 10, 2022

In that post we talked about 8 levels of password security, starting from using shared and weak passwords and going all the way up to passwordless. A growing percentage of malware packages now include prompts for not only a username and password, but also an MFA code. Get started with WebAuthn >>.

Authentication 364

Authentication Phishing Passwords Accountability 364

Security Affairs

SEPTEMBER 16, 2022

Threat actors target gamers looking for cheats on YouTube with the RedLine Stealer information-stealing malware and crypto miners. The malicious code can also act as first-stage malware. MakiseKurisu.exe is a password stealer written in C# that was customized by the creators of the malicious bundle. Pierluigi Paganini.

Malware 87

Malware Cryptocurrency Hacking Passwords 87

Security Affairs

FEBRUARY 10, 2022

Spanish National Police has arrested eight alleged members of a crime organization who were able to steal money from the bank accounts of the victims through SIM swapping attacks. Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Banking 107

Banking Accountability Mobile Cryptocurrency 107

Security Affairs

NOVEMBER 15, 2023

Source: Cybernews Usernames Names Government ID numbers (CURP) Phone numbers Email addresses Home addresses Dates of Birth Gender KYC status IP addresses used to register for an account IP addresses used to log in Deposit amounts Withdrawal amounts Notes on users, submitted by admins and customer support agents.

Passwords 104

Passwords Identity Theft Social Engineering Spyware 104

Security Affairs

APRIL 23, 2024

The state-sponsored hackers hacked into the subcontractors of defense companies by exploiting vulnerabilities in the targeted systems and deployed malware. “North Korean hacking organizations sometimes infiltrated defense companies directly, and their security is relatively low.

Hacking 82

Hacking Malware Accountability Technology 82

Security Affairs

NOVEMBER 15, 2020

million Pluto TV user accounts on a hacking forum for free, he claims they were stolen by ShinyHunters threat actor. The dump includes PLUTO TV’s display name, email address, bcrypt hashed password, birthday, device platform, and IP address. accounts exposed appeared first on Security Affairs. Pierluigi Paganini.

Accountability 99

Accountability Hacking Data breaches Passwords 99

Security Affairs

JANUARY 22, 2023

Roaming Mantis threat actors were observed using a new variant of their mobile malware Wroba to hijack DNS settings of Wi-Fi routers. Researchers from Kaspersky observed Roaming Mantis threat actors using an updated variant of their mobile malware Wroba to compromise Wi-Fi routers and hijack DNS settings. Agent.eq (a.k.a

DNS 92

DNS Mobile Malware Hacking 92

Security Affairs

JANUARY 2, 2024

JinxLoader is a new Go-based loader that was spotted delivering next-stage malware such as Formbook and XLoader. Researchers from Palo Alto Networks and Symantec warned of a new Go-based malware loader called JinxLoader, which is being used to deliver next-stage payloads such as Formbook and XLoader. net on 2023-04-30.

Malware 115

Malware Passwords Cryptocurrency Hacking 115

Security Affairs

SEPTEMBER 27, 2022

Threat actors behind the new ‘Erbium’ information-stealing malware are distributing it as fake cracks and cheats for popular video games to steal victims’ credentials and cryptocurrency wallets. The Erbium info-stealing malware was first spotted by researchers at threat intelligence firm Cluster25 on July 21, 2022.

Malware 83

Malware Password Management Authentication Passwords 83

Security Affairs

AUGUST 3, 2020

The leaked records included a login name, full name, MD5 hashed password, email address, phone number, zip, and other data related. The company has notified impacted users via email, it admitted to having recently discovered the data breach, in response to the incident it has forced a password reset. Pierluigi Paganini.

Data breaches 101

Data breaches Accountability Passwords Advertising 101

Security Affairs

JUNE 11, 2021

Experts spotted a new mysterious malware that was used to collect a huge amount of data, including sensitive files, credentials, and cookies. Threat actors used custom malware to steal data from 3.2 NordLocker experts speculate the malware campaign leveraged tainted Adobe Photoshop versions, pirated games, and Windows cracking tools.

Malware 114

Malware Computers and Electronics Software Financial Services 114

Security Affairs

FEBRUARY 10, 2021

The anti-malware solutions provider Emsisoft disclosed last week a data breach. The company already notified the affected users and implemented additional security measures to prevent similar incidents in the future. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Pierluigi Paganini.

Malware 124

Malware Data breaches Antivirus Passwords 124

Security Affairs

MARCH 21, 2023

New ShellBot DDoS bot malware, aka PerlBot, is targeting poorly managed Linux SSH servers, ASEC researchers warn. AhnLab Security Emergency response Center (ASEC) discovered a new variant of the ShellBot malware that was employed in a campaign that targets poorly managed Linux SSH servers. ” reads the ASEC’s report.

DDOS 98

DDOS Malware Passwords Accountability 98

Security Affairs

JANUARY 14, 2021

The US revealed that threat actors bypassed multi-factor authentication (MFA) authentication protocols to compromise cloud service accounts. Government experts confirmed that the threat actors initially attempted brute force logins on some accounts without success. Financial information) and forward them to their accounts.

Accountability 108

Accountability Phishing Authentication Passwords 108