Botnet Breach Cyber Security DDoS Malware Ransomware Vulnerability

Twitter’s data security incident causes bill info to leak, Vicious blackmail attempt targets Commonwealth Games athlete, and more

Major cybersecurity events on 24th June 2020 (Morning Post): Following BlueLeaks data dump, Twitter bans @DDoSecret. CryCryptor ransomware targets Canada, masquerades as COVID-19 tracing app. Organizations across Austria, Switzerland, and Germany hit by Thanos ransomware refuse to pay ransom.

Round Up of Major Breaches and Scams

Twitter bans DDoSecrets account over ‘BlueLeaks’ police data dump

A Twitter spokesperson has told ZDNet today that they’ve permanently suspended the @DDoSecrets Twitter account for violating its policy about the distribution of hacked data after the account shared links to hacked data stolen from US law enforcement agencies. Prior to the ban, enforced earlier today, the DDoSecrets account belonged to an activist group going by the formal name of Distributed Denial of Secrets.

Warning: ‘Invisible God’ Hacker Sold Access To More Than 135 Companies In Just Three Years

Major antivirus companies, banks, insurance providers, government agencies, large hotels, wineries, restaurants, airlines. Think of almost any kind of company and there’s a good chance a prolific, financially-motivated hacker known as Fxmsp has broken into it, or attempted to, according to a report released Tuesday.

Cyber-Extortionist Threatens Australian Swimming Pro

An Australian swimming star has been targeted by a vicious blackmail attempt undertaken via social media. Malicious messages were sent to Commonwealth Games gold medalist Shayna Jack over the weekend by an unidentified cyber-criminal via Facebook. The miscreant threatened to post pictures of Jack unless they received a ransom payment.

Twitter discloses billing info leak after ‘data security incident’

Twitter has disclosed a ‘Data Security Incident’ that caused the billing information for Twitter advertisers to be stored in the browser’s cache. This bug would have allowed other users on the computer to see this data. In February, Twitter disclosed that one of their APIs could have been abused by ‘nation state’ actors to match usernames of Twitter accounts against phone numbers.

Round Up of Major Malware and Ransomware Incidents

New ransomware posing as COVID‑19 tracing app targets Canada; ESET offers decryptor

New ransomware CryCryptor has been targeting Android users in Canada, distributed via two websites under the guise of an official COVID-19 tracing app provided by Health Canada. ESET researchers analyzed the ransomware and created a decryption tool for the victims.

European victims refuse to bow to Thanos ransomware

A Thanos ransomware campaign targeting mid-level employees of multiple organizations from Austria, Switzerland, and Germany was met by the victims’ refusal to pay the ransoms demanded to have their data decrypted. Thanos ransomware is a Ransomware-as-a-Service (RaaS) operation that allows affiliates to customize their own ransomware through a builder offered by the developer.

New WastedLocker Ransomware distributed via fake program updates

The Russian cybercrime group known as Evil Corp has added a new ransomware to its arsenal called WastedLocker. This ransomware is used in targeted attacks against the enterprise. The Evil Corp gang, also known by CrowdStrike as Indrik Spider, started as affiliates for the ZeuS botnet.

Round Up of Major Vulnerabilities and Patches

A daily average of 80,000 printers exposed online via IPP

It’s not a mystery, a printer left exposed online without proper security could open the doors to hackers, now researchers from Shadowserver Foundation have discovered tens of thousands of printers that are exposed online that are leaking information. The Shadowserver Foundation is a nonprofit security organization working altruistically behind the scenes to make the Internet more secure for everyone.