Cybersecurity News


Lapsus$ Data Kidnappers Claim Snatches From Microsoft, Okta

Lapsus$ Data Kidnappers Claim Snatches From Microsoft, Okta Lapsus$ shared screenshots of internal Okta systems and 40Gb of purportedly stolen Microsoft data on Bing, Bing Maps and Cortana.
22 March 2022

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

Pavel Vrublevsky, founder of the Russian payment technology firm ChronoPay and the antagonist in my 2014 book "Spam Nation," was arrested in Moscow this month and charged with fraud. Russian authorities allege Vrublevsky operated several fraudulent SMS-based payment schemes, and facilitated money laundering for Hydra, the largest Russian darknet market. But according to information obtained by KrebsOnSecurity, it is equally likely Vrublevsky was arrested thanks to his propensity for carefully documenting the links between Russia's state security services and the cybercriminal underground.
22 March 2022

Russia Lays Groundwork for Cyberattacks on US Infrastructure – White House

Russia Lays Groundwork for Cyberattacks on US Infrastructure – White House "Evolving intelligence" shows Russia amping up for cyber-war in response to Ukraine-related sanctions, the White House said -- but researchers warn that many orgs are not prepared.
22 March 2022

FIDO: Here’s Another Knife to Help Murder Passwords

FIDO: Here’s Another Knife to Help Murder Passwords After years of promising a passwordless future – really, any day now! – FIDO is proposing tweaks to WebAuthn that could put us out of password misery. Experts aren’t so sure.
22 March 2022

Serpent Backdoor Slithers into Orgs Using Chocolatey Installer

Serpent Backdoor Slithers into Orgs Using Chocolatey Installer An unusual attack using an open-source Python package installer called Chocolatey, steganography and Scheduled Tasks is stealthily delivering spyware to companies.
22 March 2022

Social engineering attacks to dominate Web3, the metaverse

Researchers offer their thoughts on the most prevalent threats faced by emerging technologies.
22 March 2022

Okta says breach evidence posted by Lapsus$ hackers linked to January 'security incident'

Okta claims there is no proof of current malicious activity on its networks.
22 March 2022

Browser-in-the-Browser Attack Makes Phishing Nearly Invisible

Browser-in-the-Browser Attack Makes Phishing Nearly Invisible Can we trust web browsers to protect us, even if they say “https?” Not with the novel BitB attack, which fakes popup SSO windows to phish away credentials for Google, Facebook and Microsoft, et al.
21 March 2022

Facestealer Trojan Hidden in Google Play Plunders Facebook Accounts

Facestealer Trojan Hidden in Google Play Plunders Facebook Accounts The trojanized Craftsart Cartoon Photo Tools app is available in the official Android app store, but it's actually spyware capable of stealing any and all information from victims' social-media accounts.
21 March 2022

Conti Ransomware V. 3, Including Decryptor, Leaked

Conti Ransomware V. 3, Including Decryptor, Leaked The latest is a fresher version of the ransomware pro-Ukraine researcher ContiLeaks already released, but it’s reportedly clunkier code.
21 March 2022

Bridgestone Hit as Ransomware Torches Toyota Supply Chain

Bridgestone Hit as Ransomware Torches Toyota Supply Chain A ransomware attack struck Bridgestone Americas, weeks after another Toyota supplier experienced the same and a third reported some kind of cyber hit.
21 March 2022

Ukraine warns of InvisiMole attacks tied to state-sponsored Russian hackers

InvisiMole has been collaborating with the Gamaredon APT for years.
21 March 2022

New Conti ransomware source code leaked

The individual responsible is targeting Conti after the group announced its loyalty to Russia during the invasion of Ukraine.
21 March 2022

Suspected DarkHotel APT resurgence targets luxury Chinese hotels

Hospitality firms in Macao, China, are bearing the brunt of targeted cyberattacks.
21 March 2022

Sandworm: A tale of disruption told anew

As the war rages, the APT group with a long résumé of disruptive cyberattacks enters the spotlight again

The post Sandworm: A tale of disruption told anew appeared first on WeLiveSecurity

21 March 2022

Not using a password manager? Here’s why you should be…

Not using a password manager? Here’s why you should be…

Experts recommend password managers for convenience and enhanced online safety, yet few of us use them

In a competitive field, passwords are one of the worst things about the internet. Long and complex passwords are more secure but difficult to remember, leaving many people using weak and easy-to-guess credentials. One study by the UK’s National Cyber Security Centre (NCSC) revealed how millions are using their pet’s name, football team names, ‘password’ and “123456” to access online services.

But this leaves you wide open to attack: cybercriminals can crack weak passwords in seconds using automated tools. “A hacker needs roughly two seconds to crack an 11-character password made up of numbers,” says Alex Balan, director of security research at security company Bitdefender. If the password is more complex, containing numbers, symbols and uppercase and lowercase letters, the time needed to break it jumps to 400 years.

Continue reading...
19 March 2022

Agencies Warn on Satellite Hacks & GPS Jamming Affecting Airplanes, Critical Infrastructure

Agencies Warn on Satellite Hacks & GPS Jamming Affecting Airplanes, Critical Infrastructure The Russian invasion of Ukraine has coincided with the jamming of airplane navigation systems and hacks on the SATCOM networks that empower critical infrastructure.
18 March 2022

DarkHotel APT Targets Wynn, Macao Hotels to Rip Off Guest Data

DarkHotel APT Targets Wynn, Macao Hotels to Rip Off Guest Data A DarkHotel phishing campaign breached luxe hotel networks, including Wynn Palace and the Grand Coloane Resort in Macao, a new report says.
18 March 2022

Sandworm APT Hunts for ASUS Routers with Cyclops Blink Botnet

Sandworm APT Hunts for ASUS Routers with Cyclops Blink Botnet The Russian-speaking APT behind the NotPetya attacks and the Ukrainian power grid takedown could be setting up for additional sinister attacks, researchers said.
18 March 2022

Week in security with Tony Anscombe

ESET Research finds another data wiper in Ukraine – Securing data centers against threats – A cultural divide between the military and Silicon Valley

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

18 March 2022