November 14, 2023 at 06:31PM Russian and Moldovan national Sergei Makinin has been arrested in Florida for operating a botnet called IPStorm. Makinin admitted to violating US law by intentionally causing damage to protected systems. The botnet used the InterPlanetary File System (IPFS) to hide its activities and allow infected machines to be used as … Read more
November 14, 2023 at 10:23AM “AlphaLock” is a Russian hacking group that operates as a “pentesting training organization,” training hackers and monetizing their services through an affiliate program. They offer a course called Bazooka Code Pentest Training, which costs $185 and provides knowledge and tools for work. They also plan to launch the ALPentest Hacking … Read more
November 13, 2023 at 01:06AM Malaysian law enforcement, with assistance from the Australian Federal Police and the U.S. Federal Bureau of Investigation, has shut down the phishing-as-a-service operation BulletProofLink. Eight individuals have been arrested and authorities seized servers, computers, jewelry, vehicles, and cryptocurrency wallets. BulletProofLink provided phishing templates to other actors, mimicking login pages of … Read more
November 12, 2023 at 03:56AM The Royal Malaysian Police have announced the seizure of the BulletProftLink phishing-as-a-service platform, which provided more than 300 phishing templates. The operation started in 2015 but became more active since 2018, with thousands of subscribers. The platform offered tools and resources for carrying out phishing attacks, including customizable templates and … Read more
November 9, 2023 at 11:49AM US Radiology Specialists, a major private radiology group, has been fined $450,000 by the attorney general of New York over a data breach caused by a ransomware attack. The breach compromised the personal and health information of nearly 200,000 patients, including 92,000 New Yorkers. The attackers gained access to the … Read more
November 8, 2023 at 06:39AM Approximately 665,000 customers of the Marina Bay Sands luxury resort in Singapore have been affected by a recent data breach. The breach specifically impacts members of the shopping loyalty program, with no indication that the casino rewards program was affected. While passwords and financial information were not compromised, the exposed … Read more
November 7, 2023 at 05:54AM ChatGPT, a popular AI chatbot, is both a productive tool and a security risk. Attackers can exploit ChatGPT for activities like data exfiltration, spreading misinformation, and writing phishing emails. On the other hand, defenders can use it to identify vulnerabilities and enhance their security posture. It is crucial to acknowledge … Read more
November 6, 2023 at 01:00PM An updated version of the information stealer malware Jupyter has resurfaced with new tactics to establish a persistent presence on compromised systems. The malware leverages PowerShell command modifications and signatures of private keys to appear as a legitimately signed file. It utilizes manipulated search engine optimization and malvertising to trick … Read more
November 3, 2023 at 09:42AM Facebook business accounts have been compromised and used to run fake ads featuring revealing photos of young women as bait to trick victims into downloading malware called NodeStealer. Clicking on the ads downloads a malicious .exe file that steals browser cookies and passwords. The malware is part of a growing … Read more
November 1, 2023 at 04:32PM The Toronto Public Library (TPL) is currently experiencing technical outages due to a ransomware attack by the Black Basta ransomware operation. Certain services, including the TPL website and online account access, are unavailable. The library assures that personal information has not been compromised and is working with cybersecurity experts and … Read more