2014, Communications and Passwords - Information Management Today

Zoom client for Windows could allow hackers to steal users’Windows password

Security Affairs

APRIL 1, 2020

The popular Zoom app is under scrutiny, experts have discovered a vulnerability that could be exploited to steal users’ Windows passwords. Security experts and privacy advocates believe that the Zoom is an efficient online video communication platform, but evidently it has some serious privacy and security solutions.

Passwords

Passwords Communications Privacy Security

DRAGONBLOOD flaws allow hacking WPA3 protected WiFi passwords

Security Affairs

AUGUST 3, 2019

Dragonblood researchers found two new weaknesses in WPA3 protocol that could be exploited to hack WPA3 protected WiFi passwords. passwords. A group of researchers known as Dragonblood (Mathy Vanhoef and Eyal Ronen ) devised new methods to hack WPA3 protected WiFi passwords by exploiting two new vulnerabilities dubbed Dragonblood flaws.

Passwords

Passwords Authentication Encryption Paper

Shitcoin Wallet Chrome extension steals crypto-wallet private keys and passwords

Security Affairs

JANUARY 2, 2020

Security expert discovered a Google Chrome extension named Shitcoin Wallet that steals passwords and wallet private keys. Harry Denley, director of security at the MyCrypto , discovered that the Google Chrome extension named Shitcoin Wallet is stealing passwords and wallet private keys. Pierluigi Paganini.

Passwords

Passwords Blockchain Communications Security

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

Bodybuilding.com forces password reset after a security breach

Security Affairs

APRIL 23, 2019

The IT staff behind Bodybuilding.com also introduced additional security measures and forced a password reset for its customers. Data potentially exposed in the incident includes name, Bodybuilding.com usernames and passwords. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” As usual.

Passwords

Passwords Security Retail Personal data

Million password resets and 2FA codes exposed in unsecured Vovox DB

Security Affairs

NOVEMBER 17, 2018

Million of password resets and two-factor authentication codes exposed in unsecured Vovox DB. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. Security Affairs – Voxox, data leak).

Passwords

Passwords Data breaches Archiving Authentication

Who’s Behind the Botnet-Based Service BHProxies?

Krebs on Security

FEBRUARY 24, 2023

BHProxies sells access to “residential proxy” networks, which allow someone to rent a residential IP address to use as a relay for their Internet communications, providing anonymity and the advantage of being perceived as a residential user surfing the web. The account didn’t resume posting on the forum until April 2014.

Passwords

Passwords Blockchain Mining Marketing

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

.” Constella Intelligence , a company that tracks exposed databases, finds that 774748@gmail.com was used in connection with just a handful of passwords, but most frequently the password “ featar24 “ Pivoting off of that password reveals a handful of email addresses, including akafitis@gmail.com. ru in 2008.

Healthcare

Healthcare Passwords Sales Ransomware

Cisco fixes a static default credential issue in Smart Software Manager tool

Security Affairs

FEBRUARY 20, 2020

Cisco has released security updates to address 17 vulnerabilities affecting its networking and unified communications product lines. Cisco has released security patches to fix 17 vulnerabilities affecting its networking and unified communications product lines. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Systems administration

Systems administration Passwords Communications Access

Great news, now you can protect your Zoom account with 2FA

Security Affairs

SEPTEMBER 11, 2020

This is a great news due to the spike in the popularity of the communication software during the ongoing COVID-19 pandemic. The 2FA introduce an extra layer of security for the protection of the Zoom accounts and avoid threat actors from taking over them by guessing their password or launching credential stuffing attacks.

Authentication

Authentication Passwords Communications Security

French daily Le Figaro leaks 7.4 Billion records

Security Affairs

MAY 2, 2020

” Exposed data included full names, emails, home addresses (countries of residence, ZIP codes), passwords in plain text hashed using MD5, and IP addresses and tokens used for access to internal servers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the experts. Pierluigi Paganini.

Passwords

Passwords Archiving Phishing Access

South Korean Woori Bank is accused of unauthorized use of customer data

Security Affairs

FEBRUARY 11, 2020

The bank changed 23,000 passwords in 2018 without consent. However, some branch employees of Woori Bank modified the passwords and as a result of the operation, the accounts have been reactivated. However, some branch employees of Woori Bank modified the passwords and as a result of the operation, the accounts have been reactivated.

Passwords

Passwords Communications Information Security IT

Iran-Linked PupyRAT backdoor used in recent attacks on European energy sector

Security Affairs

JANUARY 23, 2020

The communication involved a mail server for a European energy sector organization and took place between November 2019 and at least January 5, 2020. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . Iran, hacking).

Communications

Communications Passwords Metadata Access

Iran-linked APT34 group is targeting US federal workers

Security Affairs

JANUARY 30, 2020

APT34 is an Iran-linked APT group that has been around since at least 2014, it mainly targeted organizations in the financial, government, energy, telecoms and chemical sectors in the United States and Middle Eastern countries. The TONEDEAF backdoor communicates with its C&C via HTTP, but version 2.0 The C2 domain ( manygoodnews[.]com

Passwords

Passwords Communications Government Phishing

New Coronavirus-themed campaign spread Lokibot worldwide

Security Affairs

APRIL 4, 2020

The campaign was uncovered on March 27 when the researchers noticed messages claiming to be WHO communications to address misinformation related to the COVID19 outbreak. “The email contains the subject line “Coronavirus disease (COVID-19) Important Communication[.]”. . arj ,” that distributes the infostealer LokiBot.

Passwords

Passwords Communications Authentication IT

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Security Affairs

NOVEMBER 5, 2021

“They are officers of the ‘Crimean’ FSB and traitors who defected to the enemy during the occupation of the peninsula in 2014. The SSU has managed to identify the perpetrators’ names, intercept their communication and obtain irrefutable evidence of their involvement in the attacks. ” concludes the announcement.

Military

Military Metadata Government Passwords

SHARED INTEL: Coming very soon — ‘passwordless authentication’ as a de facto security practice

The Last Watchdog

NOVEMBER 11, 2020

As a tradeoff for enjoying our digital lives, we’ve learned to live with password overload and even tolerate two-factor authentication. But now, at long last, we’re on the brink of eliminating passwords altogether, once and for all. Password tradeoffs Passwords have always been a big pain. Here are a few big takeaways.

Authentication

Authentication Passwords Security Access

Internal Revenue Service warns taxpayers of a malware campaign

Security Affairs

AUGUST 25, 2019

The emails contain a ‘temporary password’ or ‘one-time password’ to ‘access’ the files to submit the refund. The Agency recommends users of not responding to requests for PIN numbers, passwords or any other financial information. . “The emails have links that show an IRS.

Computer and Electronics

Computer and Electronics Passwords Phishing Communications

Experts disclose tens of flaws in Zyxel Cloud CNM SecuManager, includes dangerous backdoors

Security Affairs

MARCH 12, 2020

no authentication and clear-text communication Incorrect HTTP requests cause out of range access in Zope XSS on the web interface Private SSH key Backdoor APIs Backdoor management access and RCE Pre-auth RCE with chrooted access. ” Experts also reported the use of predefined passwords for admin accounts. Pierluigi Paganini.

Cloud

Cloud Communications Passwords Authentication

HinataBot, a new Go-Based DDoS botnet in the threat landscape

Security Affairs

MARCH 17, 2023

The sample captured by the experts abuses old vulnerabilities and weak credentials, the researchers reported that it attempts to exploit flaws in the miniigd SOAP service on Realtek SDK devices ( CVE-2014-8361 ), Huawei HG532 routers ( CVE-2017-17215 ), and exposed Hadoop YARN servers (CVE N/A).

Honeypots

Honeypots Passwords Communications IT

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

As detailed in my 2014 book, Spam Nation , Spamdot was home to crooks controlling some of the world’s nastiest botnets, global malware contagions that went by exotic names like Rustock , Cutwail , Mega-D , Festi , Waledac , and Grum. Image: maps.google.com Still, other clues suggested Icamis and Sal were two separate individuals.

Computer and Electronics

Computer and Electronics Passwords Sales Government

The hacker behind Matrix.org hack offers advice to improve security

Security Affairs

APRIL 12, 2019

Matrix is an open network for secure, decentralized real-time communication that is also used for instant messaging, IoT communications, and VoIP or WebRTC signaling. The intruder had access to the production databases, potentially giving them access to unencrypted message data, password hashes and access tokens.

Security

Security Passwords Data breaches Access

STOP ransomware encrypts files and steals victim’s data

Security Affairs

MARCH 11, 2019

Experts observed the STOP ransomware installing the Azorult password-stealing Trojan to steal account credentials, cryptocurrency wallets, and more. The STOP ransomware made the headlines because it is installing password-stealing Trojans on the victims’ machines. ” reads a blog post published by Bleepingcomputer.

Encryption

Encryption Ransomware Passwords File names

Microsoft Teams phishing campaign targeted up to 50,000 Office 365 users

Security Affairs

OCTOBER 24, 2020

Like other collaboration and communications platforms, the popularity of Microsoft Teams has risen since the beginning of the Covid-19 pandemic because a growing number of organizations started using the remote working model. The phishing page asks the recipient to enter their email and password.”. ” concludes the report.

Phishing

Phishing Passwords Communications Security

Poshmark, the social commerce marketplace, discloses a data breach

Security Affairs

AUGUST 4, 2019

The company discovered unauthorized access to its servers, the intruders stole personal information of the users, including usernames , hashed passwords, first and last names, gender information, and city of residence. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ” states the company.

Data breaches

Data breaches Passwords Encryption Access

Newcastle University infected with DoppelPaymer Ransomware

Security Affairs

SEPTEMBER 8, 2020

. “All University systems – with the exceptions of those listed in the communications (Office365 – including email and Teams, Canvas and Zoom) are either unavailable or available but with limitations. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Access may cease at any point.”

Ransomware

Ransomware Data breaches Passwords Communications

Operation In(ter)reception targets Military and Aerospace employees in Europe and the Middle East

Security Affairs

JUNE 17, 2020

The activity of the Lazarus APT group (aka HIDDEN COBRA ) surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. “Once the contact was established, the attackers snuck malicious files into the communication, disguising them as documents related to the advertised job offer,” reads the report.

Military

Military Archiving Passwords Communications

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Security Affairs

APRIL 6, 2020

Cloud security firm Aqua Security uncovered a hacking campaign carried out during the past months, hackers are scanning the Internet for Docker servers running API ports exposed without a password. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. diskv – A disk-backed key-value store, for storage.

Mining

Mining Libraries Cloud Communications

Very trivial Spotify phishing campaign uncovered by experts

Security Affairs

NOVEMBER 25, 2018

The messages include a link that points to phishing websites that prompt users into entering their username and password. Once at the site, users were prompted to enter their user name and password (surprise!), Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Phishing

Phishing Passwords Communications Security

Visa warns of new sophisticated credit card skimmer dubbed Baka

Security Affairs

SEPTEMBER 6, 2020

The alert includes Indicators of Compromise and the following list of best practices and mitigation measures: • Institute recurring checks in eCommerce environments for communications with the C2s. Require strong administrative passwords(use a password manager for best results) and enable two-factor authentication.

e-Delivery

e-Delivery Encryption Passwords Authentication

A new variant of Trickbot banking Trojan targets Verizon, T-Mobile, and Sprint users

Security Affairs

AUGUST 29, 2019

. “This fraud allows an attacker to assume control of a victim’s telephone number, including all inbound and outbound text and voice communications. The interception of short message service (SMS)-based authentication tokens or password resets is frequently used during account takeover (ATO) fraud.” Pierluigi Paganini.

Passwords

Passwords Authentication Communications Security

Maze ransomware operators claim to have breached LG Electronics

Security Affairs

JUNE 25, 2020

In 2014 its global sales reached $55.91 trillion), LG comprises four business units: Home Entertainment, Mobile Communications, Home Appliances & Air Solutions, and Vehicle Components employing a total of 83,000 people. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Ransomware

Ransomware Computer and Electronics Military Data breaches

MonitorMinor, the outstanding stalkerware can track Gmail, WhatsApp, Instagram, and Facebook

Security Affairs

MARCH 16, 2020

Stalkerware are able to gather the victim’s current geolocation , to intercept SMS and call data, and sometimes implements geofencing features, MonitorMinor outstands because it also allows spying on other communication channels such as instant messaging applications. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Access

Access Communications Passwords IT

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

As a result, you will prevent unauthorized access or communication interception. Simple or reused passwords are still a problem. While the cybersecurity industry has presented options for every netizen, the recommendation to use original and complex passwords continues to be disregarded. Poor credentials. What does this mean?

IoT

IoT Cybersecurity Manufacturing Passwords

WikiLeaks founder Julian Assange faces superseding indictment for conspiring with LulzSec hackers

Security Affairs

JUNE 25, 2020

In 2012, Assange communicated directly with a leader of the hacking group LulzSec (who by then was cooperating with the FBI), and provided a list of targets for LulzSec to hack. In another communication, Assange told the LulzSec leader that the most impactful release of hacked materials would be from the CIA, NSA, or the New York Times. .

Passwords

Passwords Communications Data breaches Access

Chat app Knuddels fined €20k under GDPR regulation

Security Affairs

NOVEMBER 24, 2018

The case is making the headlines, the German chat platform Knuddels.de (“Cuddles”) has been fined €20,000 for storing user passwords in plain text. Knuddels published a data breach notification and forced users into changing passwords, Knuddels also reported the incident to the Baden-Württemberg data protection authority.

GDPR

GDPR Passwords Data breaches Personal data

FBI IC3 warns of cyber attacks exploiting Remote Desktop Protocol (RDP)

Security Affairs

SEPTEMBER 29, 2018

The IC3 warns of the following vulnerabilities: Weak passwords. The alert includes the audit of network for systems using RDP for remote communication, limiting the use of the Remote Desktop Protocol, keeping systems up to date, and implements multi-factor authentication wherever possible. Pierluigi Paganini.

Passwords

Passwords Authentication Communications Access

Zeus Sphinx spam campaign attempt to exploit Coronavirus outbreak

Security Affairs

MARCH 30, 2020

The document is password-protected, likely to prevent analysis before it is received by the potential victim, the password is included in the content of the email. ”Next, the downloader will communicate with a remote command-and-control (C&C) server and fetch the relevant malware — in this case, the new Sphinx variant.”

File names

File names Passwords Sales Government

Security Affairs newsletter Round 253

Security Affairs

MARCH 1, 2020

FBI recommends using passphrases instead of complex passwords. European Commission has chosen the Signal app to secure its communications. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Lampion malware v2 February 2020.

Security

Security Ransomware Military Data breaches

Lyceum APT made the headlines with attacks in Middle East

Security Affairs

AUGUST 27, 2019

Lyceum was observed using password spraying and brute-force attacks to compromise email accounts of targeted individuals. “LYCEUM initially accesses an organization using account credentials obtained via password spraying or brute-force attacks. The malware uses DNS and HTTP-based communication mechanisms.

Passwords

Passwords Communications Access Security

Information Disclosure flaw allows attackers to find Huawei routers with default credentials

Security Affairs

DECEMBER 23, 2018

An attacker could use IoT search engines such as ZoomEye or Shodan to scan the internet for devices having default passwords. “Hence the attacker can craft a ZoomEye / Shodan dork to implicitly get a list of the devices having default password. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

IoT

IoT Honeypots Passwords Communications

Netwalker Ransomware hit Argentina’s official immigration agency

Security Affairs

SEPTEMBER 6, 2020

of the day indicated in the paragraph above, the Directorate of Technology and Communications under the Directorate General Information Systems and Technologies of this Organization received numerous calls from various checkpoints requesting technical support.” Use two-factor authentication with strong passwords.

Ransomware

Ransomware Passwords Access Government

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

In 2014, a prominent member of the Russian language cybercrime community Antichat filed a complaint against DonChicho, saying this user scammed them and had used the email address dfyz_bk@bk.ru. Constella finds that the password most frequently used by the email address dfyz_bk@bk.ru A review of those address ranges at spur.us

Cloud

Cloud Education Government Communications

TrueDialog database leaked online tens of millions of SMS text messages

Security Affairs

DECEMBER 1, 2019

Security experts at vpnMentor discovered a database belonging to the US communications company, TrueDialog that was leaking millions of SMS messages. “Aside from private text messages, our team discovered millions of account usernames and passwords, PII data of TrueDialog users and their customers, and much more.”

Education

Education Marketing Archiving Passwords

Security Affairs newsletter Round 260

Security Affairs

APRIL 19, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Security

Security Phishing Ransomware Sales

Zoom client for Windows could allow hackers to steal users’Windows password

DRAGONBLOOD flaws allow hacking WPA3 protected WiFi passwords

Webinars

Trending Sources

Shitcoin Wallet Chrome extension steals crypto-wallet private keys and passwords

Webinars

Bodybuilding.com forces password reset after a security breach

Million password resets and 2FA codes exposed in unsecured Vovox DB

Who’s Behind the Botnet-Based Service BHProxies?

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Cisco fixes a static default credential issue in Smart Software Manager tool

Great news, now you can protect your Zoom account with 2FA

French daily Le Figaro leaks 7.4 Billion records

South Korean Woori Bank is accused of unauthorized use of customer data

Iran-Linked PupyRAT backdoor used in recent attacks on European energy sector

Iran-linked APT34 group is targeting US federal workers

New Coronavirus-themed campaign spread Lokibot worldwide

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

SHARED INTEL: Coming very soon — ‘passwordless authentication’ as a de facto security practice

Internal Revenue Service warns taxpayers of a malware campaign

Experts disclose tens of flaws in Zyxel Cloud CNM SecuManager, includes dangerous backdoors

HinataBot, a new Go-Based DDoS botnet in the threat landscape

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

The hacker behind Matrix.org hack offers advice to improve security

STOP ransomware encrypts files and steals victim’s data

Microsoft Teams phishing campaign targeted up to 50,000 Office 365 users

Poshmark, the social commerce marketplace, discloses a data breach

Newcastle University infected with DoppelPaymer Ransomware

Operation In(ter)reception targets Military and Aerospace employees in Europe and the Middle East

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Very trivial Spotify phishing campaign uncovered by experts

Visa warns of new sophisticated credit card skimmer dubbed Baka

A new variant of Trickbot banking Trojan targets Verizon, T-Mobile, and Sprint users

Maze ransomware operators claim to have breached LG Electronics

MonitorMinor, the outstanding stalkerware can track Gmail, WhatsApp, Instagram, and Facebook

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

WikiLeaks founder Julian Assange faces superseding indictment for conspiring with LulzSec hackers

Chat app Knuddels fined €20k under GDPR regulation

FBI IC3 warns of cyber attacks exploiting Remote Desktop Protocol (RDP)

Zeus Sphinx spam campaign attempt to exploit Coronavirus outbreak

Security Affairs newsletter Round 253

Lyceum APT made the headlines with attacks in Middle East

Information Disclosure flaw allows attackers to find Huawei routers with default credentials

Netwalker Ransomware hit Argentina’s official immigration agency

Stark Industries Solutions: An Iron Hammer in the Cloud

TrueDialog database leaked online tens of millions of SMS text messages

Security Affairs newsletter Round 260

Stay Connected