Round Up of Major Breaches and Scams
A Twitter spokesperson has told ZDNet today that they’ve permanently suspended the @DDoSecrets Twitter account for violating its policy about the distribution of hacked data after the account shared links to hacked data stolen from US law enforcement agencies. Prior to the ban, enforced earlier today, the DDoSecrets account belonged to an activist group going by the formal name of Distributed Denial of Secrets.
Major antivirus companies, banks, insurance providers, government agencies, large hotels, wineries, restaurants, airlines. Think of almost any kind of company and there’s a good chance a prolific, financially-motivated hacker known as Fxmsp has broken into it, or attempted to, according to a report released Tuesday.
An Australian swimming star has been targeted by a vicious blackmail attempt undertaken via social media. Malicious messages were sent to Commonwealth Games gold medalist Shayna Jack over the weekend by an unidentified cyber-criminal via Facebook. The miscreant threatened to post pictures of Jack unless they received a ransom payment.
Twitter has disclosed a ‘Data Security Incident’ that caused the billing information for Twitter advertisers to be stored in the browser’s cache. This bug would have allowed other users on the computer to see this data. In February, Twitter disclosed that one of their APIs could have been abused by ‘nation state’ actors to match usernames of Twitter accounts against phone numbers.
Round Up of Major Malware and Ransomware Incidents
New ransomware CryCryptor has been targeting Android users in Canada, distributed via two websites under the guise of an official COVID-19 tracing app provided by Health Canada. ESET researchers analyzed the ransomware and created a decryption tool for the victims.
A Thanos ransomware campaign targeting mid-level employees of multiple organizations from Austria, Switzerland, and Germany was met by the victims’ refusal to pay the ransoms demanded to have their data decrypted. Thanos ransomware is a Ransomware-as-a-Service (RaaS) operation that allows affiliates to customize their own ransomware through a builder offered by the developer.
The Russian cybercrime group known as Evil Corp has added a new ransomware to its arsenal called WastedLocker. This ransomware is used in targeted attacks against the enterprise. The Evil Corp gang, also known by CrowdStrike as Indrik Spider, started as affiliates for the ZeuS botnet.
Round Up of Major Vulnerabilities and Patches
It’s not a mystery, a printer left exposed online without proper security could open the doors to hackers, now researchers from Shadowserver Foundation have discovered tens of thousands of printers that are exposed online that are leaking information. The Shadowserver Foundation is a nonprofit security organization working altruistically behind the scenes to make the Internet more secure for everyone.