Tag: cybercrime
-
Krebs on Security: Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm
Source URL: https://krebsonsecurity.com/2024/12/web-hacking-service-araneida-tied-to-turkish-it-firm/ Source: Krebs on Security Title: Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm Feedly Summary: Cybercriminals are selling hundreds of thousands of credential sets stolen with the help of a cracked version of Acunetix, a powerful commercial web app vulnerability scanner, new research finds. The cracked software is being resold as…
-
Hacker News: Law enforcement takes down ‘DDoS-for-Hire’ sites in Operation PowerOFF
Source URL: https://www.scworld.com/news/law-enforcement-takes-down-27-ddos-for-hire-sites-in-operation-poweroff Source: Hacker News Title: Law enforcement takes down ‘DDoS-for-Hire’ sites in Operation PowerOFF Feedly Summary: Comments AI Summary and Description: Yes Summary: The text details a significant international law enforcement operation that resulted in the takedown of 27 popular DDoS platforms, disrupting a critical aspect of cybercrime. However, experts caution that while…
-
The Register: Are your Prometheus servers and exporters secure? Probably not
Source URL: https://www.theregister.com/2024/12/15/prometheus_servers_exporters_exposed/ Source: The Register Title: Are your Prometheus servers and exporters secure? Probably not Feedly Summary: Plus: Netscaler brute force barrage; BeyondTrust API key stolen; and more Infosec in brief There’s a problem of titanic proportions brewing for users of the Prometheus open source monitoring toolkit: hundreds of thousands of servers and exporters…
-
Microsoft Security Blog: Frequent freeloader part II: Russian actor Secret Blizzard using tools of other groups to attack Ukraine
Source URL: https://www.microsoft.com/en-us/security/blog/2024/12/11/frequent-freeloader-part-ii-russian-actor-secret-blizzard-using-tools-of-other-groups-to-attack-ukraine/ Source: Microsoft Security Blog Title: Frequent freeloader part II: Russian actor Secret Blizzard using tools of other groups to attack Ukraine Feedly Summary: Since January 2024, Microsoft has observed Secret Blizzard using the tools or infrastructure of other threat groups to attack targets in Ukraine and download its custom backdoors Tavdig and…
-
The Register: North Korea’s fake IT worker scam hauled in at least $88 million over six years
Source URL: https://www.theregister.com/2024/12/13/doj_dpkr_fake_tech_worker_indictment/ Source: The Register Title: North Korea’s fake IT worker scam hauled in at least $88 million over six years Feedly Summary: DoJ thinks it’s found the folks that ran it, and some of the ‘IT warriors’ sent out to fleece employers North Korea’s fake IT worker scams netted the hermit kingdom $88…
-
The Register: Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push
Source URL: https://www.theregister.com/2024/12/12/operation_poweroff_ddos_takedowns/ Source: The Register Title: Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push Feedly Summary: Holiday cheer comes in the form of three arrests and 27 shuttered domains The Europol-coordinated Operation PowerOFF struck again this week as cross-border cops pulled the plug on 27 more domains tied to distributed…
-
Krebs on Security: How Cryptocurrency Turns to Cash in Russian Banks
Source URL: https://krebsonsecurity.com/2024/12/how-cryptocurrency-turns-to-cash-in-russian-banks/ Source: Krebs on Security Title: How Cryptocurrency Turns to Cash in Russian Banks Feedly Summary: A financial firm registered in Canada has emerged as the payment processor for dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services aimed at Russian-speaking customers, new research finds. Meanwhile, an investigation into the Vancouver street…
-
News: Law enforcement shuts down 27 DDoS booters ahead of annual Christmas attacks
Source URL: https://www.europol.europa.eu/media-press/newsroom/news/law-enforcement-shuts-down-27-ddos-booters-ahead-of-annual-christmas-attacks Source: News Title: Law enforcement shuts down 27 DDoS booters ahead of annual Christmas attacks Feedly Summary: Known as ‘booter’ and ‘stresser’ websites, these platforms enabled cybercriminals and hacktivists to flood targets with illegal traffic, rendering websites and other web-based services inaccessible.This multifaceted operation, coordinated by Europol and involving 15 countries, targeted…
-
The Register: Heart surgery device maker’s security bypassed, data encrypted and stolen
Source URL: https://www.theregister.com/2024/12/10/artivion_security_incident/ Source: The Register Title: Heart surgery device maker’s security bypassed, data encrypted and stolen Feedly Summary: Sounds like th-aorta get this sorted quickly A manufacturer of devices used in heart surgeries says it’s dealing with “a cybersecurity incident" that bears all the hallmarks of a ransomware attack.… AI Summary and Description: Yes…