Advertising and Backups - Cyber Security Informer

Hacker deleted all data from VFEmail Servers, including backups

Security Affairs

FEBRUARY 13, 2019

A destructive cyberattack hit the email provider VFEmail, a hacker wiped its servers in the United States, including the backup systems. An unknown attacker has launched a destructive cyber attack against the email provider VFEmail, he erased information on its server including backups, 18 years’ worth of customer emails were lost. “We

Backups

Backups Advertising VPN Cyber Attacks

Backup files for Lion Air and parent airlines exposed and exchanged on forums

Security Affairs

SEPTEMBER 17, 2019

The information was left exposed online on an unsecured Amazon bucket, the records were stored in two databases in a directory containing backup files mostly for Malindo Air and Thai Lion Air. The most recent backup, dated May 25, is named ‘PaymentGateway.’ Pierluigi Paganini. SecurityAffairs – hacking, data leak).

Backups

Backups Advertising Hacking Data breaches

BackBlaze mistakenly shared backup metadata with Facebook

Bleeping Computer

MARCH 25, 2021

Backblaze has removed Facebook tracking code (also known as an advertising pixel) accidentally added to web UI pages only accessible to logged-in customers. [.].

Backups

Backups Advertising

Updated Android spyware GravityRAT steals WhatsApp Backups

Security Affairs

JUNE 16, 2023

An updated version of the Android remote access trojan GravityRAT can steal WhatsApp backup files and can delete files ESET researchers discovered an updated version of Android GravityRAT spyware that steals WhatsApp backup files and can delete files. The malware is distributed as the messaging apps BingeChat and Chatico.

Backups

Backups Spyware Malware Accountability

Ransomware attack hits DDS Safe backup service used by hundreds of dental offices

Security Affairs

AUGUST 30, 2019

PerCSoft is a cloud management provider for Digital Dental Record (DDR), that operates the online data backup service called DDS Safe. DDS Safe, is a HIPAA Compliant 3 layered online dental backup system that provides dental offices triple the protection of traditional online back-up solutions. Pierluigi Paganini.

Backups

Backups Ransomware Advertising Encryption

Researchers Quietly Cracked Zeppelin Ransomware Keys

Krebs on Security

NOVEMBER 17, 2022

He’d been on the job less than six months, and because of the way his predecessor architected things, the company’s data backups also were encrypted by Zeppelin. Peter is an IT manager for a technology manufacturer that got hit with a Russian ransomware strain called “ Zeppelin ” in May 2020.

Ransomware

Ransomware Encryption Backups Manufacturing

The team behind the Joomla CMS discloses a data breach

Security Affairs

JUNE 1, 2020

Last week a member of the Joomla Resources Directory (JRD) team left an unencrypted full backup of the JRD site ( resources.joomla.org ) on an unsecured Amazon Web Services S3 bucket operated by the company. “JRD full site backups (unencrypted) were stored in a third-party company Amazon Web Services S3 bucket. .

Data breaches

Data breaches Backups Passwords Advertising

Frost & Sullivan databases available for sale on a hacker forum

Security Affairs

JUNE 24, 2020

firm Frost & Sullivan suffered a data breach, data from an unsecured backup that were exposed on the Internet was sold by a threat actor on a hacker forum. “The breach occurred to a misconfigured backup directory on one of Frost and Sullivan public-facing servers. ” reported BleepingComputer. Pierluigi Paganini.

Backups

Backups Data breaches Advertising Hacking

Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their Work

Krebs on Security

OCTOBER 8, 2020

This includes pivoting from or converting a single compromised Microsoft Windows user account to an administrator account with greater privileges on the target network; the ability to sidestep and/or disable any security software; and gaining the access needed to disrupt or corrupt any data backup systems the victim firm may have.

Cybercrime

Cybercrime Malware Penetration Testing Ransomware

France Télévisions group hit by a cyber attack, its antennas were not impacted

Security Affairs

JUNE 27, 2020

The group confirmed that the broadcasting of France 3 will be transferred to the headquarters of France Televisions, the company also activated the backup site in response to the incident. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, France Télévisions).

Cyber Attacks

Cyber Attacks Backups Advertising Media

Security Affairs newsletter Round 494 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 20, 2024

Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

Data breaches Cybercrime Cyber Insurance Marketing

SQL Dump from popular Indian BGR tech site leaked online

Security Affairs

FEBRUARY 27, 2020

The data leak was first reported by experts from the security firm Under the Breach , the full SQL backup contains , emails, hashed passwords, and other information. – Full SQL backup. On some specialized sites, this service is advertised at a reasonable price.” Hacked due to exposed s3 AWS bucket.

Backups

Backups Advertising Passwords Hacking

1 in 10 people do nothing to stay secure and private on vacation

Malwarebytes

MARCH 17, 2025

To stay cybersecure and private on vacation, the majority of people will backup their data (53%), ensure their security software is up to date (63%), and set up credit card transaction alerts (56%), but 10% will take none of theseor othersteps. A particularly plugged-in 8% of people said they manage more than seven apps for the same purposes.

Scams

Scams Passwords VPN Backups

City of Lafayette (Colorado) paid $45,000 ransom after ransowmare attack

Security Affairs

AUGUST 12, 2020

The City of Lafayette, Colorado, USA, has been forced to pay $45,000 because they were unable to restore necessary files from backup. “Financial data appears to be recoverable from unaffected backups. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Backups

Backups Advertising Ransomware Hacking

For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

Krebs on Security

SEPTEMBER 4, 2018

In addition, the database included the Apple iCloud username and authentication token of mobile devices running mSpy, and what appear to be references to iCloud backup files. Akbar was charged with selling and advertising wiretapping equipment. In September 2014, U.S.

Spyware

Spyware Mobile Advertising Software

Who Is the Network Access Broker ‘Babam’?

Krebs on Security

DECEMBER 3, 2021

Full disclosure: DomainTools is a frequent advertiser on this website.]. Gmail’s password recovery function says the backup email address for devrian27@gmail.com is bo3 *@gmail.com. It’s unclear whether these domains ever were online, but the street address on both records was “ 24 Brondeg St. Image: Flashpoint.

Ransomware

Ransomware Accountability Cybercrime Passwords

Swiss rail vehicle manufacturer Stadler hit by a malware-based attack

Security Affairs

MAY 10, 2020

The company’s backup data are complete and functioning. Stadler did not pay the ransom and has resumed operations by restoring its backups. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Manufacturing

Manufacturing Malware Data breaches Backups

Ransomware negotiator investigated over criminal gang kickbacks

Malwarebytes

JULY 8, 2025

Since then, companies have openly advertised negotiation services, based on a willingness for cyber insurance companies to reimburse victims as part of their policy coverage. Ransomware demands have also ballooned as this form of cybercrime continues to gain traction. The problem is that ransomware operators aren’t trustworthy.

Ransomware

Ransomware Cyber Insurance Government Insurance

A missing authorization check in WordPre WPvivid plugin that can lead to the exposure of the database and all files

Security Affairs

MARCH 27, 2020

Researchers warn of a security flaw recently addressed in the WPvivid Backup Plugin that could be exploited to obtain all files of a WordPress website. WebARX experts warn of a missing authorization check recently addressed in the WPvivid Backup Plugin that could be exploited to obtain all files of a WordPress website.

Backups

Backups Advertising Authentication Hacking

Attunity data leak: Netflix, Ford, TD Bank data exposed by Open AWS Buckets

Security Affairs

JUNE 29, 2019

The total size is uncertain, but the researcher downloaded a sample of about a terabyte in size, including 750 gigabytes of compressed email backups.” “When such backups are exposed, they can contain a variety of data from system credentials to personally identifiable information.

Banking

Banking Backups Big data Advertising

NetWalker ransomware gang threatens to release Michigan State University files

Security Affairs

MAY 30, 2020

Even if the MSU will restore from backups, the NetWalker ransomware gang will leak the documents stolen on its dark web leak site. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reported ZDNet. Pierluigi Paganini.

Ransomware

Ransomware Advertising Backups Phishing

Google disrupts the Glupteba botnet

Security Affairs

DECEMBER 7, 2021

. “In the summer of 2020, Google determined that Glupteba malware was being disseminated on numerous third-party software download sites, online movie streaming sites, and video downloader sites, often advertised as “free downloads.” ” reads the post published by Google. Follow me on Twitter: @securityaffairs and Facebook.

Backups

Backups Advertising Accountability Malware

Steel sheet giant Hoa Sen Group hacked by Maze ransomware operators

Security Affairs

AUGUST 21, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, Maze Ransomware Operators).

Ransomware

Ransomware Hacking Advertising Backups

University of Utah pays a $457,000 ransom to ransomware gang

Security Affairs

AUGUST 21, 2020

The University was able to recover the operations from the backups, but decided to pay the ransom to avoid having ransomware operators leak student information online. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Cyber Insurance Insurance Advertising

Snake Ransomware isolates infected Systems before encrypting files

Security Affairs

JULY 5, 2020

This list contains processes related to the industrial world and several security and backup solutions.” ” The malware would kill any process that might potentially interfere with the encryption, including those associated with industrial software, backup solutions, and of course security tools. Pierluigi Paganini.

Encryption

Encryption Ransomware Firewall Backups

Data from Airlink International UAE leaked on multiple dark web forums

Security Affairs

OCTOBER 8, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising

Advertising Insurance Backups Media

Nefilim ransomware operators claim to have hacked the SPIE group

Security Affairs

AUGUST 10, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, SPIE group).

Ransomware

Ransomware Hacking Advertising Backups

Popular OGUsers hacking forum breached for the second time in a year

Security Affairs

APRIL 5, 2020

“It appears someone was able to breach the server through a custom plugin in the forum software and get access to an old backup dating December 26, 2018.”. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking

Hacking Data breaches Advertising Backups

Nefilim ransomware operators leaked data alleged stolen from the Dussmann group

Security Affairs

JULY 28, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, Nefilim ransomware).

Ransomware

Ransomware Data breaches Advertising Backups

Travelex paid $2.3 Million ransom to restore after a ransomware attack

Security Affairs

APRIL 9, 2020

“As part of this attack, the operators behind the Sodinokibi ransomware told BleepingComputer that they had encrypted the company’s entire network, deleted backup files, and copied more than 5GB of personal data. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Ransomware

Ransomware Encryption Advertising Backups

Ransomware attack knocks Weather Channel off the Air

Security Affairs

APRIL 19, 2019

IT staff has restored the normal operations using the backups. Ransomware attacks continue to represent a serious threat for companies and organizations, it is essential to adopt good cyber hygiene using defence software, having up to date applications and implementing an efficient backup policy. Pierluigi Paganini.

Ransomware

Ransomware Backups Cyber Attacks Advertising

New COVID19 wiper overwrites MBR making computers unusable

Security Affairs

APRIL 2, 2020

Upon rebooting the computer, a binary is executed to overwrite the MBR after it has created a backup of the original MBR in the first sector. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . Your Computer Has Been Trashed.”.

Malware

Malware Advertising Backups Hacking

City of Knoxville shuts down IT network after ransomware attack

Security Affairs

JUNE 12, 2020

The City will use backup to resume operations, the good news is that backup servers were not affected. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – Knoxville, ransomware).

Ransomware

Ransomware Backups Advertising Malware

Aerial Direct, the O2’s largest UK partner suffered a data breach

Security Affairs

MARCH 16, 2020

Aerial Direct’s data breach notification sent to the customers revealed that an unauthorized third party had been able to access customer data on 26 February through an external backup database. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Data breaches

Data breaches Telecommunications Passwords Advertising

NCSC warns of a surge in ransomware attacks on education institutions

Security Affairs

SEPTEMBER 20, 2020

backup servers, network shares, servers, auditing devices). In some attacks, government experts also observed the sabotage of backup or auditing devices to make recovery more difficult, the encryption of entire virtual servers, the use of scripting environments (i.e. Pierluigi Paganini.

Education

Education Ransomware Antivirus Backups

FBI issued a second flash alert about ProLock ransomware in a few months

Security Affairs

SEPTEMBER 5, 2020

The FBI also provides recommendations to mitigate the risks associated with ransomware attacks, such as periodically back up the data to an off-line backup system, keep any software up to date, disable unused RDP accesses, use of two-factor authentication (2FA) wherever possible. Pierluigi Paganini. SecurityAffairs – hacking, ProLock).

Ransomware

Ransomware Advertising Malware Backups

No SOCKS, No Shoes, No Malware Proxy Services!

Krebs on Security

AUGUST 2, 2022

re abruptly announced it was permanently closing after a cybersecurity breach allowed unknown intruders to trash its servers and delete customer data and backups. That is a far cry from the proxy inventory advertised by 911, which stood at more than 200,000 IP addresses for rent just a few days ago. Image: Spur.us.

Malware

Malware Cybercrime Internet Internet

Sodinokibi ransomware gang stole 1TB of data from Brown-Forman

Security Affairs

AUGUST 15, 2020

The threat actors also published screenshots of database backup entries as recent as July 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, Brown-Forman).

Ransomware

Ransomware Advertising Hacking Encryption

Massive cyber attack hit the town hall of Marseille ahead local election

Security Affairs

MARCH 15, 2020

The backup and recovery systems should help limit the damage and recover most of the data,” Vassal added. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, Marseille ).

Cyber Attacks

Cyber Attacks Ransomware Advertising Backups

You should probably delete any sensitive screenshots you have in your phone right now. Here's why

Zero Day

JUNE 26, 2025

Don't save screenshots of sensitive information, such as IDs, passports, crypto wallets, seed phrases, passwords, and two-factor authentication backup codes. Privacy Policy | | Cookie Settings | Advertise | Terms of Use Either delete this data or move the screenshots to a password-protected folder. All rights reserved.

Password Management

Password Management Small Business Passwords Artificial Intelligence

Shipping Giant Toll suffered a second ransomware attack in a few months

Security Affairs

MAY 6, 2020

Toll has shut down its MyToll portal and is currently removing the threat from its systems before restoring data from backups. This includes cleaning affected servers and systems, and restoring files from backups.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Ransomware

Ransomware Encryption Backups Healthcare

Medusa ransomware hit over 300 critical infrastructure organizations until February 2025

Security Affairs

MARCH 13, 2025

Encryption is executed using gaze.exe , which disables security tools, deletes backups, and encrypts files with AES-256 before dropping a ransom note. At this stage, Medusa concurrently advertises sale of the data to interested parties before the countdown timer ends. Attackers use Mimikatz to steal credentials.

Ransomware

Ransomware Encryption Cryptocurrency Insurance

DoppelPaymer Ransomware hits City of Torrance and demands a 680K+ ransom

Security Affairs

APRIL 22, 2020

The gang also claims to have erased the City’s local backups and to have stolen over 200 GB of files. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. million ransom. Pierluigi Paganini.

Ransomware

Ransomware Advertising Backups Data breaches

US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks

Security Affairs

JUNE 24, 2019

” Experts recommend to have secure working backup procedures, in case of attack, victims could simply recover data from a backup. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. .” Pierluigi Paganini.

Backups

Backups Advertising Accountability Passwords

Hacker deleted all data from VFEmail Servers, including backups

Backup files for Lion Air and parent airlines exposed and exchanged on forums

Trending Sources

BackBlaze mistakenly shared backup metadata with Facebook

Updated Android spyware GravityRAT steals WhatsApp Backups

Ransomware attack hits DDS Safe backup service used by hundreds of dental offices

Researchers Quietly Cracked Zeppelin Ransomware Keys

The team behind the Joomla CMS discloses a data breach

Frost & Sullivan databases available for sale on a hacker forum

Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their Work

France Télévisions group hit by a cyber attack, its antennas were not impacted

Security Affairs newsletter Round 494 by Pierluigi Paganini – INTERNATIONAL EDITION

SQL Dump from popular Indian BGR tech site leaked online

1 in 10 people do nothing to stay secure and private on vacation

City of Lafayette (Colorado) paid $45,000 ransom after ransowmare attack

For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

Who Is the Network Access Broker ‘Babam’?

Swiss rail vehicle manufacturer Stadler hit by a malware-based attack

Ransomware negotiator investigated over criminal gang kickbacks

A missing authorization check in WordPre WPvivid plugin that can lead to the exposure of the database and all files

Attunity data leak: Netflix, Ford, TD Bank data exposed by Open AWS Buckets

NetWalker ransomware gang threatens to release Michigan State University files

Google disrupts the Glupteba botnet

Steel sheet giant Hoa Sen Group hacked by Maze ransomware operators

University of Utah pays a $457,000 ransom to ransomware gang

Snake Ransomware isolates infected Systems before encrypting files

Data from Airlink International UAE leaked on multiple dark web forums

Nefilim ransomware operators claim to have hacked the SPIE group

Popular OGUsers hacking forum breached for the second time in a year

Nefilim ransomware operators leaked data alleged stolen from the Dussmann group

Travelex paid $2.3 Million ransom to restore after a ransomware attack

Ransomware attack knocks Weather Channel off the Air

New COVID19 wiper overwrites MBR making computers unusable

City of Knoxville shuts down IT network after ransomware attack

Aerial Direct, the O2’s largest UK partner suffered a data breach

NCSC warns of a surge in ransomware attacks on education institutions

FBI issued a second flash alert about ProLock ransomware in a few months

No SOCKS, No Shoes, No Malware Proxy Services!

Sodinokibi ransomware gang stole 1TB of data from Brown-Forman

Massive cyber attack hit the town hall of Marseille ahead local election

You should probably delete any sensitive screenshots you have in your phone right now. Here's why

Shipping Giant Toll suffered a second ransomware attack in a few months

Medusa ransomware hit over 300 critical infrastructure organizations until February 2025

DoppelPaymer Ransomware hits City of Torrance and demands a 680K+ ransom

US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks

Stay Connected