Hydra, the world's biggest cybercrime forum, shut down in police sting
Hydra, the world's biggest cybercrime forum, is no more. Authorities in Germany have seized servers and other infrastructure used by the sprawling, billion-dollar enterprise along with a stash of about $25 million in bitcoin. Hydra had been operating since at least 2015 and had seen a meteoric rise since then. In 2020, it had annual revenue of more than $1.37 billion, according to a 2021 report jointly published by security firm Flashpoint and blockchain analysis company Chainalysis. READ MORE...
Cash App notifies 8.2 million US customers about data breach
Cash App is notifying 8.2 million current and former US customers of a data breach after a former employee accessed their account information. Block, Inc., the owner of Cash App, disclosed in a Form 8-K SEC filing that the breach occurred on December 10th, 2021, after a former employee downloaded internal Cash App reports while no longer employed at the company. READ MORE...
Texas Department of Insurance Exposed Data of 1.8 Million People
The Texas Department of Insurance recently disclosed a "data security event" that appears to have affected roughly 1.8 million people. The Texas Department of Insurance (TDI) disclosed the incident on March 24, but DataBreaches[.]net noticed that the Texas Attorney General's office reported on April 4 that 1.8 million Texans are impacted. The exposed information includes names, addresses, phone numbers, dates of births, and partial or full social security numbers. READ MORE...
Attackers Spoof WhatsApp Voice-Message Alerts to Steal Info
Attackers are spoofing voice message notifications from WhatsApp in a malicious phishing campaign that uses a legitimate domain to spread an info-stealing malware, researchers have found. Researchers at cloud email security firm Armorblox discovered the malicious campaign targeting Office 365 and Google Workspace accounts using emails sent from domain associated with the Center for Road Safety, an entity believed to reside within the Moscow, Russia region. READ MORE...
Chinese hackers abuse VLC Media Player to launch malware loader
Security researchers have uncovered a long-running malicious campaign from hackers associated with the Chinese government who are using VLC Media Player to launch a custom malware loader. The campaign appears to serve espionage purposes and has targeted various entities involved in government, legal, and religious activities, as well as non-governmental organizations (NGOs) on at least three continents. READ MORE...
US says it disrupted Russian botnet 'before it could be weaponized'
The U.S. government disrupted a botnet attributable to Russia's GRU intelligence agency before it could be used for malicious purposes, Attorney General Merrick Garland said Wednesday at a news conference. "Thanks to our close work with international partners, we were able to detect the infection of thousands of network hardware devices," Garland said. "We were then able to disable the GRU's control over those devices before the botnet could be weaponized." READ MORE...
What We Can Learn From Lapsus$ Techniques
The Lapsus$ cybercriminal collective has been making headlines in recent weeks. After several high-profile attacks, the security community is turning its gaze toward this new threat actor and its techniques. The Okta incident also reveals some details of their techniques. Microsoft has now published an in-depth blog post detailing the activities it has observed associated to DEV-0537, its reference name for Lapsus$. READ MORE...
CISA advises D-Link users to take vulnerable routers offline
On April 4 2022, the Cybersecurity & Infrastructure Security Agency (CISA) added CVE-2021-45382 to its known exploited vulnerabilities catalog. But since the affected products have reached end of life (EOL), the advice is to disconnect them, if still in use. The CISA catalog of known exploited vulnerabilities was set up to list the most important vulnerabilities that have proven to pose the biggest risks. READ MORE...
- ...in 1830, the Church of Christ, the original church of the Latter Day Saint movement (popularly known as Mormonism), is organized in the state of New York.
- ...in 1841, John Tyler is inaugurated as the 10th president, two days after the sudden death of President William Henry Harrison.
- ...in 1896, the first modern Olympic Games opens in Athens, Greece, over 1500 years after the original games were banned by Roman Emperor Theodosius I.
- ...in 1974, the Swedish pop group ABBA wins the Eurovision Song Contest with the song "Waterloo", launching them to international fame.
