News & Updates

Fat Patch Tuesday, February 2024 Edition

/
Microsoft Corp. today pushed software updates to plug more than 70 security holes in its Windows operating systems and related products, including two zero-day vulnerabilities that are already being exploited in active attacks.
News & Updates

Juniper Support Portal Exposed Customer Device Info

/
Until earlier this week, the support website for networking equipment vendor Juniper Networks was exposing potentially sensitive information tied to customer products, including the exact devices each customer bought, as well as each device’s warranty status, service contracts and serial numbers. Juniper said it has since fixed the problem, and that the inadvertent data exposure stemmed from a recent upgrade to its support portal.
News & Updates

From Cybercrime Saul Goodman to the Russian GRU

/
In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. The leaked user database shows one of the forum’s founders was an attorney who advised Russia’s top hackers on the legal risks of their work, and what to do if they got caught. A review of this user’s hacker identities shows that during his time on the forums he served as an officer in the special forces of the GRU, the foreign military intelligence agency of the Russian Federation.
News & Updates

Arrests in $400M SIM-Swap Tied to Heist at FTX?

/
Three Americans were charged this week with stealing more than $400 million in a November 2022 SIM-swapping attack. The U.S. government did not name the victim organization, but there is every indication that the money was stolen from the now-defunct cryptocurrency exchange FTX, which had just filed for bankruptcy on that same day.
News & Updates

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

/
On Jan. 9, 2024, U.S. authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. technology companies during the summer of 2022.
News & Updates

Who is Alleged Medibank Hacker Aleksandr Ermakov?

/
Authorities in Australia, the United Kingdom and the United States this week levied financial sanctions against a Russian man accused of stealing data on nearly 10 million customers of the Australian health insurance giant Medibank. 33-year-old Aleksandr Ermakov allegedly stole and leaked the Medibank data while working with one of Russia’s most destructive ransomware groups, but little more is shared about the accused. Here’s a closer look at the activities of Mr. Ermakov’s alleged hacker handles.
News & Updates

Using Google Search to Find Software Can Be Risky

/
Google continues to struggle with cybercriminals running malicious ads on its search platform to trick people into downloading booby-trapped copies of popular free software applications. The malicious ads, which appear above organic search results and often precede links to legitimate sources of the same software, can make searching for software on Google a dicey affair.
News & Updates

Lockbit Under Siege: $15 Million Bounty in Police Crackdown

/
The notorious Lockbit ransomware gang has found itself yet once more in the
crosshairs of international law enforcement.

After the gang saw its website being seized and turned against them
[https://www.bitdefender.com/blog/hotforsecurity/authorities-turn-the-tables-on-lockbit-exposing-their-identity-to-the-world/]
, the US government offered a $15 million bounty for information leading to the
capture, arrest, or conviction of the gang’s members.

Website Seized, Data Exposed, Bounty Offered
On

News & Updates

County in Pennsylvania Pays Russian Hackers $346,000 to End Cyberattack

/
Officials in Washington County, Pennsylvania, paid Russian hackers a $346,000
ransom to restore systems and data following a crippling cyberattack.

In January, the feds warned several US states, including the state of
Pennsylvania, of a wave of targeted attacks. But for Washington County, it was
too late – hackers had already crippled its systems with malware and pilfered
sensitive data.

“Foreign cybercriminals were able to seize control of the county’s network,
basically paralyzing all of the

News & Updates

Control your privacy series: How to remove kids’ photos posted by others on Google, TikTok, Facebook

/
Many parents today are keenly aware of the risks associated with sharing photos
and videos of their children
[https://www.bitdefender.com/blog/hotforsecurity/the-impact-of-sharenting-how-the-digital-identity-you-create-for-your-child-today-could-affect-their-future/]
online, as it can leave them vulnerable to exploitation and misuse.

However, a new and concerning threat is emerging: the rise of AI tools capable
of generating highly realistic “deep fakes.”

AI tools need as little as one pictur

Exit mobile version