Document, Hacking and Passwords - Cyber Security Informer

FBI warns of malicious free online document converters spreading malware

Security Affairs

MARCH 24, 2025

The FBI warns of a significant increase in scams involving free online document converters to infect users with malware. The FBI warns that threat actors use malicious online document converters to steal users sensitive information and infect their systems with malware. ” reads the alert. ” reads the alert.

Malware

Malware Scams Identity Theft Antivirus

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Krebs on Security

FEBRUARY 26, 2025

government officials searched online for non-extradition countries and for an answer to the question “can hacking be treason?” Days after he apparently finished communicating with Country-1s military intelligence service, Wagenius Googled, ‘can hacking be treason.'” million customers.

Hacking

Hacking Government Identity Theft Accountability

ClickFix: How to Infect Your PC in Three Easy Steps

Krebs on Security

MARCH 14, 2025

In this scam, dubbed “ ClickFix ,” the visitor to a hacked or malicious website is asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware.

Phishing

Phishing Malware Scams Passwords

Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office

Security Affairs

NOVEMBER 21, 2024

Mexico’s president announced the government is investigating an alleged ransomware hack that targeted the administration’s legal affairs office. Today they are going to send me a report on the supposed hacking.” Stolen files allegedly include contracts, insurance, and financial documents. ” reported the Associated Press.

Government

Government Hacking Ransomware Insurance

Microsoft Executives Hacked

Schneier on Security

JANUARY 29, 2024

Microsoft is reporting that a Russian intelligence agency—the same one responsible for SolarWinds—accessed the email system of the company’s executives. The investigation indicates they were initially targeting email accounts for information related to Midnight Blizzard itself.

Hacking

Hacking Accountability Passwords Cybersecurity

Breached Data Indexer ‘Data Viper’ Hacked

Krebs on Security

JULY 13, 2020

Data Viper , a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. The apparent breach at St. An online post by the attackers who broke into Data Viper.

Hacking

Hacking Marketing Cybercrime Accountability

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

In August, Gunnebo said it had successfully thwarted a ransomware attack, but this week it emerged that the intruders stole and published online tens of thousands of sensitive documents — including schematics of client bank vaults and surveillance systems. What’s more, Syrén seemed to downplay the severity of the exposure.

Hacking

Hacking Ransomware Banking Accountability

Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

Krebs on Security

FEBRUARY 4, 2021

Facebook told KrebsOnSecurity it seized hundreds of accounts — mainly on Instagram — that have been stolen from legitimate users through a variety of intimidation and harassment tactics, including hacking, coercion, extortion, sextortion , SIM swapping , and swatting. THE MIDDLEMEN. WHAT YOU CAN DO.

Accountability

Accountability Hacking Media Mobile

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

According to recent figures from the managed security firm Reliaquest , QakBot is by far the most prevalent malware “loader” — malicious software used to secure access to a hacked network and help drop additional malware payloads. ” The DOJ said it also recovered more than 6.5

Hacking

Hacking Malware Ransomware Government

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Krebs on Security

FEBRUARY 4, 2025

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled , English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. Intel471 finds the user FlorainN registered across multiple cybercrime forums using the email address olivia.messla@outlook.de.

eCommerce

eCommerce Cybercrime Accountability Hacking

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

But not long after KrebsOnSecurity reported in April that Shefel/Rescator also was behind the theft of Social Security and tax information from a majority of South Carolina residents in 2012, Mr. Shefel began contacting this author with the pretense of setting the record straight on his alleged criminal hacking activities.

Retail

Retail Advertising Cryptocurrency Cybercrime

iPhones in a law enforcement forensics lab mysteriously rebooted losing their After First Unlock (AFU) state

Security Affairs

NOVEMBER 8, 2024

Law enforcement warns that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them much harder to unlock, per a document obtained by 404 Media. 404 Media obtained the document from a mobile forensics source and verified it with another source. Below is the hypothesis reported in the document.

Media

Media Mobile Passwords Hacking

Apple indeed added a feature called “inactivity reboot” in iOS 18.1 that reboots locked devices

Security Affairs

NOVEMBER 12, 2024

Law enforcement warned that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them much harder to unlock, per a document obtained by 404 Media. 404 Media obtained the document from a mobile forensics source and verified it with another source. reported 404 Media. “The

Media

Media Wireless Mobile Encryption

Alleged ‘Scattered Spider’ Member Extradited to U.S.

Krebs on Security

APRIL 30, 2025

prosecutors allege Tyler Robert Buchanan and co-conspirators hacked into dozens of companies in the United States and abroad, and that he personally controlled more than $26 million stolen from victims. Documents from the U.S. ” U.S. prosecutors allege that records obtained from Discord showed the same U.K.

Identity Theft

Identity Theft Phishing Cryptocurrency Cybercrime

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Krebs on Security

AUGUST 6, 2020

In June, KrebsOnSecurity was contacted by a cybersecurity researcher who discovered that a group of scammers was sharing highly detailed personal and financial records on Americans via a free web-based email service that allows anyone who knows an account’s username to view all email sent to that account — without the need of a password.

Accountability

Accountability Identity Theft Hacking Insurance

RockYou2021: The Mother Lode of Password Collections Leaks 8.4 Billion Passwords Online

Hot for Security

JUNE 8, 2021

The most extensive data leak collection to date, dubbed ‘RockYou2021’, was dumped on popular hacking forums earlier this month. billion password entries, presumably obtained from previous data leaks and breaches. Cybercriminals can use the database to conduct password-spraying or brute force attacks. “Its 3.2

Passwords

Passwords Accountability Password Management Internet

Hackers Were Inside Citrix for Five Months

Krebs on Security

FEBRUARY 19, 2020

The disclosure comes almost a year after Citrix acknowledged that digital intruders had broken in by probing its employee accounts for weak passwords. Iranian hackers recently have been blamed for hacking VPN servers around the world in a bid to plant backdoors in large corporate networks.

VPN

VPN Passwords Software Telecommunications

How to Protect Your Gmail Password: Top Tips for Maximum Security

Hacker's King

DECEMBER 28, 2024

Your Gmail account stores valuable information such as emails, contacts, and documents. A compromised password can lead to identity theft and data breaches. To safeguard your Gmail password, you need to adopt a few best practices that will enhance your accounts security and keep cyber threats at bay.

Passwords

Passwords Identity Theft Accountability Data breaches

Cisco fixed tens of vulnerabilities, including an actively exploited one

Security Affairs

OCTOBER 24, 2024

Cisco warned customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices. The company published a document containing recommendations against password spray attacks aimed at Remote Access VPN (RAVPN) services.

VPN

VPN Firewall Passwords Software

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Krebs on Security

MARCH 10, 2020

Kennedy Airport, according to court documents unsealed Monday. District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations.

Accountability

Accountability Advertising Hacking Cybercrime

‘Golden Chickens’ Resurfaces with Two Dangerous Malware Tools Targeting Passwords and Crypto Wallets

eSecurity Planet

MAY 5, 2025

A notorious hacker group known as Golden Chickens is back in the spotlight after cybersecurity researchers discovered two new digital weapons designed to steal passwords, watch every word you type, and target your cryptocurrency. A familiar name behind major hacks Golden Chickens has been active since at least 2018. exe and mshta.exe.

Passwords

Passwords Malware Cryptocurrency Cybercrime

Facebook and Instagram passwords were stored in plaintext, Meta fined

Malwarebytes

OCTOBER 1, 2024

Ireland’s privacy watchdog Data Protection Commission (DPC) has fined Meta €91M ($101M) after the discovery in 2019 that Meta had stored 600 million Facebook and Instagram passwords in plaintext. Most of these passwords belonged to Facebook Lite users, but it affected other Facebook and Instagram users as well.

Passwords

Passwords Data breaches Media Phishing

Internet Archive was breached twice in a month

Security Affairs

OCTOBER 21, 2024

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The breach may have exposed personal identification documents uploaded by users for Wayback Machine page removal requests, depending on the attacker’s Zendesk API access.

Internet

Internet Internet Data breaches Authentication

U.S. CISA adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 25, 2024

Cisco warned customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices. The company published a document containing recommendations against password spray attacks aimed at Remote Access VPN (RAVPN) services.

VPN

VPN Firewall Technology Passwords

Experts found 4 billion user records online, the largest known leak of Chinese personal data from a single source

Security Affairs

JUNE 7, 2025

Cybersecurity researcher Bob Dyachenko and the Cybernews team discovered a massive data leak in China that exposed billions of documents, including financial, WeChat, and Alipay data, likely affecting hundreds of millions. ” reads the post published by CyberNews. ” concludes the post.

Surveillance

Surveillance Banking Phishing Passwords

Loss of CIA Hacking Tools Tied to Lax Cybersecurity

Adam Levin

JUNE 17, 2020

CIA-developed hacking tools stolen in 2016 were compromised by an organizational culture of lax cybersecurity, according to an internal memo. The hacking tools and other data were developed by the Center for Cyber Intelligence (CCI), often referred to as the hacking arm of the CIA. .

Hacking

Hacking Cybersecurity Government Passwords

Hive0117 group targets Russian firms with new variant of DarkWatchman malware

Security Affairs

MAY 1, 2025

. “The emails had the subject Documents from 04/29/2025 and were sent from an address disguised as corporate correspondence.” ” The phishing emails employed in the campaign spotted by F6 experts has the subject Documents from 04/29/2025 and were sent from addresses mimicking corporate senders.

Malware

Malware Phishing Telecommunications Antivirus

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

Krebs on Security

SEPTEMBER 17, 2020

Justice Department this week indicted seven Chinese nationals for a decade-long hacking spree that targeted more than 100 high-tech and online gaming companies. Security firm FireEye dubbed that hacking blitz “one of the broadest campaigns by a Chinese cyber espionage actor we have observed in recent years.” Image: FBI.

Antivirus

Antivirus Hacking Government Software

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Security Affairs

MARCH 20, 2025

The malspam messages had the topic Free primary legal aid use a password-protected attachment Algorithm of actions of members of the family of a missing serviceman LegalAid.rar. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Ukraine)

Computers and Electronics

Computers and Electronics Telecommunications Malware Surveillance

The March Madness Cyber Threat

Adam Levin

MARCH 17, 2022

Unfortunately, brackets create opportunities for a wide array of phishing and hacking campaigns, particularly in workplaces where a lot of brackets are distributed. The potential for hacks and scams is limited to the imagination of the person or group performing them. Change passwords regularly.

Cyber threats

Cyber threats Phishing Passwords Malware

LastPass: Password Manager Review for 2021

eSecurity Planet

JULY 23, 2021

LastPass is password management software that’s been popular among business and personal users since it was initially released in 2008. Like other password managers, LastPass provides a secure vault for your login credentials, personal documents, and other sensitive information. LastPass disadvantages: history of hacking.

Password Management

Password Management Passwords Authentication Architecture

Cisco warns of password-spraying attacks targeting Secure Firewall devices

Security Affairs

MARCH 29, 2024

Cisco warns customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services of Cisco Secure Firewall devices. Cisco is warning customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices. ” reads the report.

Firewall

Firewall Passwords VPN Authentication

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Hacker's King

FEBRUARY 9, 2025

It’s mainly popular among security professionals and even the ethical hacking community. It quickly spots common security flaws like misconfigurations, outdated sof, such as, and weak passwords, helping you test systems efficiently and thoroughly. Check the documentation for detailed instructions.

Penetration Testing

Penetration Testing Architecture Cybercrime Security Defenses

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Hacker's King

FEBRUARY 9, 2025

It’s mainly popular among security professionals and even the ethical hacking community. It quickly spots common security flaws like misconfigurations, outdated sof, such as, and weak passwords, helping you test systems efficiently and thoroughly. Check the documentation for detailed instructions.

Penetration Testing

Penetration Testing Architecture Cybercrime Security Defenses

Application and AI roundup - May

Adam Shostack

JANUARY 2, 2025

This month runs quite heavy on AI, but the CISA Safe by Design and Default document is going to be important for the next several years. Their first example is fascinating: the code hardcodes a password, and they say its safe to ignore. I think its not safe, the sample code should show how to get the password from a secret store API.

Passwords

Passwords Encryption Risk Advertising

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Krebs on Security

SEPTEMBER 5, 2023

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. 15, 2022, LastPass said an investigation into the August breach determined the attacker did not access any customer data or password vaults.

Cryptocurrency

Cryptocurrency Passwords Encryption Accountability

Malicious Office 365 Apps Are the Ultimate Insiders

Krebs on Security

MAY 5, 2021

After a user logs in, the link prompts them to install a malicious but innocuously-named app that gives the attacker persistent, password-free access to any of the user’s emails and files, both of which are then plundered to launch malware and phishing scams against others. Image: Proofpoint.

Accountability

Accountability Passwords Advertising Phishing

Anonymous #OpRussia Thousands of sites hacked, data leaks and more

Security Affairs

MARCH 5, 2022

Anonymous announced to have hacked more than 2,500 websites linked to the Russian and Belarusian governments, state-owned media outlets spreading disinformation, Russian private organizations, banks, hospitals, airports. SecurityAffairs – hacking, Anonymous). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Hacking

Hacking Government Banking Media

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

.” Constella Intelligence , a company that tracks exposed databases, finds that 774748@gmail.com was used in connection with just a handful of passwords, but most frequently the password “ featar24 “ Pivoting off of that password reveals a handful of email addresses, including akafitis@gmail.com. ru in 2008.

Malware

Malware Cybercrime Software Accountability

Threat actors hacked the Dropbox Sign production environment

Security Affairs

MAY 2, 2024

Threat actors breached the Dropbox Sign production environment and accessed customer email addresses and hashed passwords Cloud storage provider DropBox revealed that threat actors have breached the production infrastructure of the DropBox Sign eSignature service and gained access to customer information and authentication data.

Hacking

Hacking Authentication Passwords Accountability

Passwords stolen via phishing campaign available through Google search

Security Affairs

JANUARY 21, 2021

With a simple Google search, anyone could have found the password to one of the compromised, stolen email addresses: a gift to every opportunistic attacker.” Once the victim double-clicked the HTML file, a blurred image with a preconfigured email within the document is opened in the browser. ” continues the post.

Phishing

Phishing Passwords Manufacturing Healthcare

Russia-linked Midnight Blizzard APT hacked Microsoft corporate emails

Security Affairs

JANUARY 20, 2024

The Midnight Blizzard group (aka APT29 , SVR group , Cozy Bear , Nobelium , BlueBravo , and The Dukes ) along with APT28 cyber espionage group was involved in the Democratic National Committee hack and the wave of attacks aimed at the 2016 US Presidential Elections. ” reads the document.

Hacking

Hacking Accountability Passwords Authentication

Threat actor claims to have hacked European manufacturer of missiles MBDA

Security Affairs

JULY 31, 2022

Threat actors that go online with the moniker Adrastea claim to have hacked the multinational manufacturer of missiles MBDA. A threat actor that goes online with the moniker Adrastea , and that defines itself as a group of independent cybersecurity specialists and researchers, claims to have hacked MBDA. “Hello! .

Manufacturing

Manufacturing Hacking Passwords Cybersecurity

Medusa ransomware gang claims the hack of Toyota Financial Services

Security Affairs

NOVEMBER 17, 2023

Toyota Financial Services discloses unauthorized activity on systems after the Medusa ransomware gang claimed to have hacked the company. Medusa Toyota has set the deadline for November 26 and has published a sample of the stolen data as proof of the hack.

Financial Services

Financial Services Hacking Ransomware Data breaches

FBI warns of malicious free online document converters spreading malware

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Trending Sources

ClickFix: How to Infect Your PC in Three Easy Steps

Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office

Microsoft Executives Hacked

Breached Data Indexer ‘Data Viper’ Hacked

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

An Interview With the Target & Home Depot Hacker

iPhones in a law enforcement forensics lab mysteriously rebooted losing their After First Unlock (AFU) state

Apple indeed added a feature called “inactivity reboot” in iOS 18.1 that reboots locked devices

Alleged ‘Scattered Spider’ Member Extradited to U.S.

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

RockYou2021: The Mother Lode of Password Collections Leaks 8.4 Billion Passwords Online

Hackers Were Inside Citrix for Five Months

How to Protect Your Gmail Password: Top Tips for Maximum Security

Cisco fixed tens of vulnerabilities, including an actively exploited one

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

‘Golden Chickens’ Resurfaces with Two Dangerous Malware Tools Targeting Passwords and Crypto Wallets

Facebook and Instagram passwords were stored in plaintext, Meta fined

Internet Archive was breached twice in a month

U.S. CISA adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog

Experts found 4 billion user records online, the largest known leak of Chinese personal data from a single source

Loss of CIA Hacking Tools Tied to Lax Cybersecurity

Hive0117 group targets Russian firms with new variant of DarkWatchman malware

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

The March Madness Cyber Threat

LastPass: Password Manager Review for 2021

Cisco warns of password-spraying attacks targeting Secure Firewall devices

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Application and AI roundup - May

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Malicious Office 365 Apps Are the Ultimate Insiders

Anonymous #OpRussia Thousands of sites hacked, data leaks and more

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Threat actors hacked the Dropbox Sign production environment

Passwords stolen via phishing campaign available through Google search

Russia-linked Midnight Blizzard APT hacked Microsoft corporate emails

Threat actor claims to have hacked European manufacturer of missiles MBDA

Medusa ransomware gang claims the hack of Toyota Financial Services

Stay Connected