Cybercrime, Hacking, Technology and Telecommunications

Lapsus$ gang claims to have hacked Microsoft source code repositories

Security Affairs

MARCH 21, 2022

Microsoft is investigating claims that the Lapsus$ hacking group breached its internal Azure DevOps source code repositories. Microsoft announced that is investigating claims that the Lapsus$ cybercrime gang breached their internal Azure DevOps source code repositories and stolen data. SecurityAffairs – hacking, Microsoft).

Hacking

Hacking Telecommunications InfoSec Cybercrime

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

Security Affairs

JULY 6, 2021

The alleged perpetrator, who turned out to be a citizen of Morocco, was arrested in May by the Moroccan police based on the data about his cybercrimes that was provided by Group-IB. SecurityAffairs – hacking, Operation Lyrebird). ” said Stephen Kavanagh, INTERPOL Executive Director of Police Services. Original post at [link].

Cybercrime

Cybercrime Phishing Banking Telecommunications

Teen Hackers Behind Notorious Lapsus$ Group Convicted in London

SecureWorld News

AUGUST 28, 2023

Two individuals associated with the notorious Lapsus$ cybercriminal gang have been convicted for their involvement in a string of high-profile hacking incidents, according to the BBC. RELATED: Lapsus$ Returns One Week After 7 Teenage Hackers Arrested ] The extent of Kurtaj's involvement in cybercrimes is staggering. and Brazil.

Cybercrime

Cybercrime Social Engineering Telecommunications Hacking

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. Pierluigi Paganini.

Government

Government Malware Telecommunications Cybercrime

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The APT group is using almost exclusively living-off-the-land techniques and hands-on-keyboard activity to evade detection.

Energy and Utilities

Energy and Utilities Telecommunications Technology VPN

Lapsus$ extortion gang leaked the source code for some Microsoft projects

Security Affairs

MARCH 22, 2022

The Lapsus$ extortion group claims to have hacked Microsoft ‘s internal Azure DevOps server and leaked the source code for some projects. Microsoft recently announced that is investigating claims that the Lapsus$ cybercrime gang breached their internal Azure DevOps source code repositories and stolen data. Pierluigi Paganini.

Cybercrime

Cybercrime Telecommunications VPN Hacking

G7 calls on Russia to dismantle operations of ransomware gangs within its borders

Security Affairs

JUNE 14, 2021

The G7 members highlights the importance to collaborate to increase the security of supply chains, the statement also recognizes the foundational role that telecommunications infrastructure, including 5G and future communication technologies, plays and will play in underpinning our wider digital and ICT infrastructure.

Ransomware

Ransomware Cybercrime Telecommunications Accountability

Security Affairs newsletter Round 438 by Pierluigi Paganini – International edition

Security Affairs

SEPTEMBER 24, 2023

Government of Bermuda blames Russian threat actors for the cyber attack City of Dallas has set a budget of $8.5 NSA, FBI, and CISA Release Cybersecurity Information Sheet on Deepfake Threats 38TB of data accidentally exposed by Microsoft AI researchers Clorox Blames Damaging Cyberattack for Product Shortage MGM losing up to $8.4M

Cyber Attacks

Cyber Attacks Firewall Data breaches Telecommunications

Telecom giant Lumen suffered a ransomware attack and disclose a second incident

Security Affairs

MARCH 28, 2023

Telecommunications giant Lumen Technologies discovered two cybersecurity incidents, including a ransomware attack. In this second incident, a sophisticated intruder accessed a limited number of the Company’s internal information technology systems. ” continues the form.

Ransomware

Ransomware Telecommunications Technology Cybersecurity

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. Pierluigi Paganini.

Government

Government Malware Telecommunications Cybercrime

At least 31 US Businesses targeted with WastedLocker Ransomware

Security Affairs

JUNE 29, 2020

According to the experts, the malware was developed by the Russian cybercrime crew known as Evil Corp , which was behind the Dridex Trojan , and multiple ransomware like Locky , Bart, Jaff , and BitPaymer. Most of the victims belong to the manufacturing industry, followed by IT and media and telecommunications sectors.

Ransomware

Ransomware Telecommunications Manufacturing Malware

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

Since August, FIN11 started targeting organizations in many industries, including defense, energy, finance, healthcare, legal, pharmaceutical, telecommunications, technology, and transportation. SecurityAffairs – hacking, FIN11). ” reads the analysis published by FireEye. Pierluigi Paganini.

Ransomware

Ransomware Malware Telecommunications Advertising

RansomBoggs Ransomware hit several Ukrainian entities, experts attribute it to Russia

Security Affairs

NOVEMBER 28, 2022

Sandworm (aka BlackEnergy and TeleBots ) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for Special Technologies (GTsST). In September 2022, Sandworm has been observed impersonating telecommunication providers to target Ukrainian entities with malware. Pierluigi Paganini.

Ransomware

Ransomware Encryption Telecommunications Malware

Ubisoft suffered a cyber security incident that caused a temporary disruption

Security Affairs

MARCH 12, 2022

The rumors of a cyber attack against Ubisoft circulated online in the last few days, while data extortion group LAPSUS$ claimed to have hacked the company. Their scope of interests includes – major telecommunications companies such as Claro, Telefonica and AT&T. SecurityAffairs – hacking, Ubisoft). Pierluigi Paganini.

Data breaches

Data breaches Telecommunications Hacking Cyber Attacks

Top 5 Industries Most Vulnerable to Data Breaches in 2023

Security Boulevard

JUNE 26, 2023

Data breaches caused by weak security measures and procedures result in severe monetary losses, erosion of clients’ trust, and irreversible reputation damage to organizations in the healthcare, financial services, technology, and retail industries, as well as government and public sector entities.

Data breaches

Data breaches Healthcare Telecommunications Financial Services

Canadian Police Raid ‘Orcus RAT’ Author

Krebs on Security

APRIL 2, 2019

As first detailed by KrebsOnSecurity in July 2016 , Orcus is the brainchild of John “Armada” Rezvesz , a Toronto resident who until recently maintained and sold the RAT under the company name Orcus Technologies. In an “official press release” posted to pastebin.com on Mar.

Advertising

Advertising Malware Marketing Software

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

. “FROZENBARENTS (aka Sandworm), a group attributed to Russian Armed Forces’ Main Directorate of the General Staff (GRU) Unit 74455, continues to focus heavily on the war in Ukraine with campaigns spanning intelligence collection, IO, and leaking hacked data through Telegram.” ” reads the report published by the Google TAG.

Phishing

Phishing Education Accountability Telecommunications

Access as a Service Rising in Popularity

SecureWorld News

AUGUST 10, 2021

They can do it the old fashioned way by hacking into it themselves or they can purchase an exploit that gives them access. While the highest price was $95,000 for an Asian telecommunications service provider. Technology and telecommunications companies are among the most common victims and often command higher prices.

Telecommunications

Telecommunications Marketing Ransomware Accountability

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

For now at least, they appear to be focusing primarily on companies in the financial, telecommunications and social media industries. The phishers will explain that they’re calling from the employer’s IT department to help troubleshoot issues with the company’s virtual private networking (VPN) technology.

Phishing

Phishing VPN Social Engineering Media

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. 24, Russia invades Ukraine, and fault lines quickly begin to appear in the cybercrime underground. It emerges that email marketing giant Mailchimp got hacked.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

Reassessing cyberwarfare. Lessons learned in 2022

SecureList

DECEMBER 14, 2022

According to the same article, another such attack took place in the late 1990s when the American military attacked a Serbian telecommunications network. Following these activities, the international hacking collective known as “Anonymous” declared cyber war against Killnet on May 23. Hack and leak. Key insights.

DDOS

DDOS Ransomware Government Energy and Utilities

It’s official, Lapsus$ gang compromised a Microsoft employee’s account

Security Affairs

MARCH 23, 2022

Microsoft confirmed that Lapsus$ extortion group has hacked one of its employees to access and steal the source code of some projects. Microsoft confirmed that Lapsus$ extortion group has hacked one of its employees to access and steal the source code of some projects. SecurityAffairs – hacking, Microsoft). Pierluigi Paganini.

Accountability

Accountability VPN Social Engineering Hacking

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

One of the trends related to the active confrontation between attackers has been hacking back, i.e. when attackers become the victims of hacking. The past months have shown that the most dangerous hacks involved DNS hijacking, which helped attackers manipulate DNS records for MITM attacks. SecurityAffairs – cybercrime, hacking).

Banking

Banking Telecommunications Marketing Internet

NSA Announces New Cybersecurity Collaboration Center

SecureWorld News

JUNE 24, 2021

private sector defense, technology, and telecommunications companies, according to Reuters. NSA Director of Cybersecurity Rob Joyce says this move will help develop deeper ties and detect active hacking campaigns on U.S. companies. "I Establishing this Center is just a part of the U.S.

Cybersecurity

Cybersecurity Cyber threats Telecommunications Government

New ransomware trends in 2023

SecureList

MAY 11, 2023

Finally, other groups like Clop ramped up their activities over the course of last year, reaching their peak in early 2023 as they claimed to have hacked 130 organizations using a single zero-day vulnerability. The latest case reported by Kaspersky is rather odd as it does not fit either of the previous two categories.

Ransomware

Ransomware Malware Architecture Telecommunications

NSA Announces New Cybersecurity Collaboration Center

SecureWorld News

JUNE 24, 2021

private sector defense, technology, and telecommunications companies, according to Reuters. NSA Director of Cybersecurity Rob Joyce says this move will help develop deeper ties and detect active hacking campaigns on U.S. companies. "I Establishing this Center is just a part of the U.S.

Cybersecurity

Cybersecurity Cyber threats Telecommunications Government

‘Unpacking’ technical attribution and challenges for ensuring stability in cyberspace

SecureList

JUNE 20, 2022

By covert means, we refer to signals intelligence, illegal wiretapping and sometimes even plain hacking. How the pie gets made: steps in conducting technical attribution.

Energy and Utilities

Energy and Utilities Data collection Malware Cybersecurity

APT trends report Q1 2021

SecureList

APRIL 27, 2021

It was first publicly documented in 2014, in the aftermath of the Gamma Group hacking incident. The victims we observed were all high-profile Tunisian organizations, such as telecommunications or aviation companies. FinFly Web is, in essence, a suite of tools and packages that implement a web-based exploitation server.

Malware

Malware Spyware Government Social Engineering

Documents Unsealed: North Korea's Global Hacking Campaign

SecureWorld News

FEBRUARY 18, 2021

It may be the most complete picture we've ever had of North Korean hacking campaigns. The unsealed documents highlight a number of attack targets and motives in an effort to hack, digitally intrude, and defraud. The hacking indictment filed in the U.S. North Korean hacking methods and attack vectors. global targets.

Hacking

Hacking Cryptocurrency Computers and Electronics Banking

Group-IB Hi-Tech Crime Trends 2020/2021 report

Security Affairs

NOVEMBER 25, 2020

In the report, the company examines key shifts in the cybercrime world internationally between H2 2019 and H1 2020 and gives forecasts for the coming year. The past year — a harrowing period for the world economy — culminated in the spike of cybercrime. SecurityAffairs – hacking, crime trends). Pierluigi Paganini.

Banking

Banking Ransomware Phishing Marketing

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

From a different angle, reporting from The Intercept revealed mobile surveillance capabilities available to Iran for the purposes of domestic investigations that leverage direct access to (and cooperation of) local telecommunication companies. One glaring example is Iran, which faced a series of spectacular hacks and sabotages.

Firmware

Firmware Surveillance Mobile Telecommunications

Advanced threat predictions for 2024

SecureList

NOVEMBER 14, 2023

Mail servers become priority targets In June, Recorded Future warned that BlueDelta (aka Sofacy, APT28, Fancy Bear and Sednit) exploited vulnerabilities in Roundcube Webmail to hack multiple organizations including government institutions and military entities involved in aviation infrastructure. Drone hacking!

Hacking

Hacking Energy and Utilities Media Malware

Security Affairs newsletter Round 442 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 22, 2023

A threat actor is selling access to Facebook and Instagram’s Police Portal Threat actors breached Okta support system and stole customers’ data US DoJ seized domains used by North Korean IT workers to defraud businesses worldwide Alleged developer of the Ragnar Locker ransomware was arrested CISA adds Cisco IOS XE flaw to its Known Exploited (..)

Ransomware

Ransomware Telecommunications Data breaches Mobile

Cyber Security Informer

Lapsus$ gang claims to have hacked Microsoft source code repositories

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

Webinars

Trending Sources

Teen Hackers Behind Notorious Lapsus$ Group Convicted in London

Webinars

Raspberry Robin malware used in attacks against Telecom and Governments

FBI chief says China is preparing to attack US critical infrastructure

Lapsus$ extortion gang leaked the source code for some Microsoft projects

G7 calls on Russia to dismantle operations of ransomware gangs within its borders

Security Affairs newsletter Round 438 by Pierluigi Paganini – International edition

Telecom giant Lumen suffered a ransomware attack and disclose a second incident

Raspberry Robin malware used in attacks against Telecom and Governments

At least 31 US Businesses targeted with WastedLocker Ransomware

FIN11 gang started deploying ransomware to monetize its operations

RansomBoggs Ransomware hit several Ukrainian entities, experts attribute it to Russia

Ubisoft suffered a cyber security incident that caused a temporary disruption

Top 5 Industries Most Vulnerable to Data Breaches in 2023

Canadian Police Raid ‘Orcus RAT’ Author

Google TAG warns of Russia-linked APT groups targeting Ukraine

Access as a Service Rising in Popularity

Voice Phishers Targeting Corporate VPNs

Happy 13th Birthday, KrebsOnSecurity!

Reassessing cyberwarfare. Lessons learned in 2022

It’s official, Lapsus$ gang compromised a Microsoft employee’s account

Group-IB presents its annual report on global threats to stability in cyberspace

NSA Announces New Cybersecurity Collaboration Center

New ransomware trends in 2023

NSA Announces New Cybersecurity Collaboration Center

‘Unpacking’ technical attribution and challenges for ensuring stability in cyberspace

APT trends report Q1 2021

Documents Unsealed: North Korea's Global Hacking Campaign

Group-IB Hi-Tech Crime Trends 2020/2021 report

Advanced threat predictions for 2023

Advanced threat predictions for 2024

Security Affairs newsletter Round 442 by Pierluigi Paganini – INTERNATIONAL EDITION

Stay Connected