February 6, 2024 at 05:38AM A Singapore-based cybersecurity firm, Group-IB, uncovered a new threat actor, ResumeLooters, targeting employment agencies and retail companies in the Asia-Pacific region. The group aims to steal sensitive data from job search platforms, compromising over 65 websites and collecting millions of user data records. The stolen information is then sold on … Read more
January 31, 2024 at 07:51AM Cybersecurity researchers highlight Telegram’s role in democratizing the phishing ecosystem, enabling cybercriminals to easily exchange tools and resources. This trend has made phishing more accessible to newcomers, with malicious activities facilitated through the platform’s public channels and groups. The article also discusses the various components and monetization strategies involved in … Read more
January 30, 2024 at 04:31PM The U.S. Department of Justice arrested and charged suspects involved in hacking almost 68,000 DraftKings accounts in a credential stuffing attack. Three defendants were charged, with two selling access to accounts that were compromised, leading to a loss of $635,000. Similar attacks affected FanDuel and Chick-fil-A. Automated tools and stolen … Read more
January 26, 2024 at 10:28AM Microsoft confirmed that the Russian hacking group Midnight Blizzard, linked to the Russian Foreign Intelligence Service, breached its systems in November 2023 and stole email from its leadership. The group gained access through a non-MFA-enabled test account and leveraged OAuth applications to access corporate mailboxes. Similar attacks targeting other organizations … Read more
January 23, 2024 at 06:54AM Hackers used SIM swapping to take over the US Securities and Exchange Commission’s Twitter account, announcing the approval of a bitcoin exchange-traded fund. After the post caused a spike in bitcoin price, the agency clarified that the account had been compromised. The hackers gained unauthorized access through a telecom carrier … Read more
January 22, 2024 at 12:06PM In December 2023, media organizations and North Korea experts were targeted by a cyber campaign orchestrated by the threat actor ScarCruft. This North Korea-linked group, also known as APT37, targeted individuals with malicious files, displaying a sophisticated and evolving approach. The attack is indicative of the group’s ongoing efforts to … Read more
January 18, 2024 at 11:10AM The U.S. government proposed a 15-year prison sentence for Conor Brian Fitzpatrick, the administrator of the BreachForums hacking platform. He was arrested for facilitating the trade of stolen data and using unauthorized access devices. The government also seeks penalties for possession of child pornography and restitution to victims. Fitzpatrick’s final … Read more
January 5, 2024 at 03:08PM BreathForums admin Conor Fitzpatrick was re-arrested for violating pretrial conditions, including using an unmonitored computer and a VPN. He openly admitted to being the threat actor “Pompourin” and creating BreachForums to leak stolen data. Fitzpatrick was charged with theft and sale of sensitive personal information and will remain in custody. … Read more
December 21, 2023 at 03:59PM Arion Kurtaj, an 18-year-old member of the Lapsus$ cybercrime group and a key threat actor, has been sentenced indefinitely to a “secure hospital” by a UK judge for his involvement in cybercriminal activity, including leaking assets associated with the video game Grand Theft Auto VI. Kurtaj, deemed a high risk … Read more
December 13, 2023 at 05:36AM Ukraine’s largest telecom operator, Kyivstar, was hit by a cyber attack, causing disruptions in mobile and internet services. The attack, linked to the conflict with Russia, led to nationwide impacts. While the company works to restore services, it assured compensation for affected users and warned against potential scams. Meanwhile, pro-Russia … Read more