November 25, 2024 at 08:01AM Microsoft reports that North Korean fake IT workers have infiltrated global markets, particularly in the US, UK, and Australia, generating revenue for the regime while potentially stealing data. Numerous fake profiles exist online, and various North Korean threat actors engage in phishing and cryptocurrency theft, targeting sensitive sectors like aerospace … Read more
November 21, 2024 at 01:39PM The BianLian ransomware group has transitioned to primarily data theft extortion techniques, as noted in a U.S. and Australian advisory. Since January 2024, they focus exclusively on this method, employing new tactics like exploiting Windows vulnerabilities and using RDP for access. Recent attacks include breaches of notable organizations. ### Meeting … Read more
November 21, 2024 at 10:51AM The U.S. has seized the cybercrime website ‘PopeyeTools’ and charged three administrators for selling stolen data. Authorities confiscated multiple domains and $283,000 in cryptocurrency. PopeyeTools trafficked financial information, offering services for cybercrime. Each administrator faces up to 10 years in prison if convicted, though no arrests have been made. ### … Read more
November 18, 2024 at 05:48PM Chinese hackers “BrazenBamboo” exploit a zero-day vulnerability in Fortinet’s FortiClient VPN using a tool called ‘DeepData’ to extract user credentials. Discovered by Volexity in July 2024, the flaw has not been patched, risking corporate networks. VPN access should be restricted until Fortinet releases a fix. ### Meeting Takeaways 1. **Zero-Day … Read more
November 14, 2024 at 07:39AM Robert Purbeck received a 10-year prison sentence for stealing personal information from over 132,000 individuals and committing extortion. This case highlights serious concerns regarding data security and cybercrime. ### Meeting Notes Takeaways: – **Individual Involved**: Robert Purbeck – **Offense**: Hacking, data theft, and extortion – **Sentence**: 10 years in prison … Read more
November 13, 2024 at 05:58PM China’s APT41 threat group has developed a sophisticated Windows-based malware toolkit, “DeepData Framework,” targeting South Asian organizations. The toolkit includes 12 modular plug-ins for data theft, including communications and system information. Analysts emphasize the need for heightened security measures against APT41’s ongoing cyber-espionage campaigns. ### Meeting Takeaways: 1. **APT41 Threat … Read more
November 6, 2024 at 01:00PM SteelFox is a newly discovered malware that mines cryptocurrency and steals credit card data by exploiting vulnerable drivers for SYSTEM privileges on Windows. Distributed as a crack tool via forums and torrents, it affects users of specific software like AutoCAD. Kaspersky reports significant detections, indicating its widespread impact since early … Read more
November 4, 2024 at 08:31AM Kolade Akinwale Ojelade received a 26-year prison sentence in the US for compromising email accounts via phishing, resulting in the theft of millions of dollars. **Meeting Takeaways:** 1. **Individual Sentenced**: Kolade Akinwale Ojelade. 2. **Sentence Duration**: 26 years in prison. 3. **Location**: United States. 4. **Criminal Activity**: Compromised email accounts … Read more
October 31, 2024 at 10:09AM The ‘Phish n’ Ships’ phishing campaign has infected over a thousand legitimate online stores since 2019, promoting fake product listings and redirecting users to fraudulent sites. This has caused significant financial losses. Despite disruptions to the operation, consumers are advised to remain vigilant against suspicious e-commerce activities. **Meeting Takeaways: Phish … Read more
October 30, 2024 at 07:54AM Researchers identified a malicious Python package, “CryptoAITools,” disguised as a cryptocurrency trading tool. It steals sensitive data and drains crypto wallets. Distributed via PyPI and fake GitHub repos, it infected over 1,300 systems, exploiting both Windows and macOS while using a deceptive GUI to distract victims during data theft. ### … Read more