<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 8/13/2021

SHARE

Breaches

Chanel Apologizes for Data Breach

The Korean arm of French luxury brand Chanel has issued an apology after personal data belonging to its customers was exposed. In a statement issued earlier this week, Chanel Korea blamed the data leak that happened on August 8 on a recent cyber-attack. A database belonging to the famed perfume and fashion brand is believed to have been compromised by a hacker or hackers at some point between August 5 and 6. READ MORE...

Hacking

Hacker is returning $600M in crypto, claiming theft was just "for fun"

The hacker who breached the Poly Network crypto platform says the theft was just "for fun :)" and that the hacker is now returning the stolen coins. The hacker also claimed that the tokens had been transferred to the hacker's own wallets to "keep it safe." Poly Network first disclosed the hack on Tuesday, saying that the hacker, or hackers, had stolen crypto coins worth about $600 million at the time of the heist. READ MORE...


Rogue Marketplace AlphaBay Reboots

The illicit marketplace AlphaBay appears to have resurfaced, four years after a high-profile takedown by international law enforcement agencies. The reboot, according to researchers at Flashpoint, isn't an exact a replica. Rather, the reconstituted version of the site is described as an homage to the original and a tribute to the now deceased alleged AlphaBay moderator Alexandre Cazes. READ MORE...

Information Security

Ukraine shuts down money laundering cryptocurrency exchanges

The Security Service of Ukraine (SBU) took down a network of cryptocurrency exchanges used to anonymize transactions since the beginning of 2021. Over 1,000 "customers" used the clandestine exchanges to launder funds received from Russian electronic payments processors, including Yandex.Money, Qiwi, and Webmoney. "The clandestine cryptocurrency exchanges were in demand because they provided anonymity of transactions and possibility of money laundering," the SBU said. READ MORE...

Exploits/Vulnerabilities

Microsoft Exchange servers are getting hacked via ProxyShell exploits

Threat actors are actively exploiting Microsoft Exchange servers using the ProxyShell vulnerability to install backdoors for later access. ProxyShell is the name of an attack that uses three chained Microsoft Exchange vulnerabilities to perform unauthenticated, remote code execution. The three vulnerabilities were discovered by Devcore Principal Security Researcher Orange Tsai, who chained them together to take over a Microsoft Exchange server in April's Pwn2Own 2021 hacking contest. READ MORE...

On This Date

  • ...in 1860, celebrated performing sharpshooter Annie Oakley is born in a log cabin in Darke County, OH.
  • ...in 1913, metallurgist Harry Brearley first synthesizes stainless steel in his laboratory in Sheffield, England.
  • ...in 1942, the US Army Corps of Engineers authorizes the construction of facilities for creating the first atomic bomb, AKA the "Manhattan Project."
  • ...in 1961, composer Koji Kondo, who wrote the music for the original 8-bit "Super Mario Bros." and "Legend of Zelda" video games, is born in Nagoya, Japan.