Security Affairs

JANUARY 28, 2019

After the discovery of hacking attempts, the French firm logged users out and forced a password reset procedure by including in the notification a link to change the password and re-gain access to the account. The post Dailymotion forces password reset in response to credential stuffing Attack appeared first on Security Affairs.

Passwords 65

Passwords Data breaches Archiving Sales 65

Security Affairs

NOVEMBER 17, 2018

Million of password resets and two-factor authentication codes exposed in unsecured Vovox DB. It has been estimated that the exposed archive included at least 26 million text messages year-to-date. The post Million password resets and 2FA codes exposed in unsecured Vovox DB appeared first on Security Affairs.

Passwords 87

Passwords Data breaches Archiving Authentication 87

Krebs on Security

MARCH 15, 2021

com , a wildly popular service that sold access to more than 12 billion usernames and passwords stolen from thousands of hacked websites. For several years, WeLeakInfo was the largest of several services selling access to hacked passwords. A little over a year ago, the FBI and law enforcement partners overseas seized WeLeakInfo[.]com

Passwords 294

Passwords Mining Sales Data breaches 294

Security Affairs

MARCH 17, 2024

The researchers noticed that the users must unpack several layers of archives using the password “GIT1HUB1FREE,” which is provided in the README.md ” Threat actors used this MSI installer to unpack the next stage using the password “LBjWCsXKUz1Gwhg” The resulting file is named Installer-Ultimate_v4.3e.9b.exe.

Passwords 107

Passwords File names Archiving Cybersecurity 107

Krebs on Security

JANUARY 17, 2019

My inbox and Twitter messages positively lit up today with people forwarding stories from Wired and other publications about a supposedly new trove of nearly 773 million unique email addresses and 21 million unique passwords that were posted to a hacking forum. 000002 cents per password). Please don’t do that.

Passwords 54

Passwords Archiving Authentication Data breaches 54

Security Affairs

MARCH 27, 2023

A new MacStealer macOS malware allows operators to steal iCloud Keychain data and passwords from infected systems. Uptycs researchers team discovered a new macOS information stealer, called MacStealer, which allows operators to steal iCloud Keychain data and passwords from infected systems.

Passwords 90

Passwords Archiving IT Security 90

Security Affairs

SEPTEMBER 16, 2022

Researchers from Kaspersky have spotted a self-extracting archive, served to gamers looking for cheats on YouTube, that was employed to deliver the RedLine Stealer information-stealing malware and crypto miners. Stolen data are stored in an archive (logs) before being uploaded to a server under the control of the attackers.

Archiving 84

Archiving Passwords Access Security 84

Security Affairs

JANUARY 7, 2022

The attack was carried out by a group calling themselves Uawrongteam, who published links to archives and files containing IDs, driver’s licenses, photos. The threat actors claim the stolen database contains customer information, including names, emails, phone numbers, hashed passwords, and password salt. million accounts.

Data breaches 136

Data breaches Passwords Sales Archiving 136

Security Affairs

MAY 28, 2022

Now the Microsoft-owned company provided an update on the incident, the attackers were able to escalate access to npm infrastructure and access the following files exfiltrated from npm cloud storage: A backup of skimdb.npmjs.com containing data from April 7, 2021, with the following information:An archive of user information from 2015.

Metadata 138

Metadata Passwords Archiving Access 138

Security Affairs

DECEMBER 14, 2022

” The JavaScript embedded in the SVG image contains a malicious zip archive, and then the JavaScript assembled the malware on the end user’s device. The script creates a password-protected malicious zip archive and then presents the user with a dialog box to save the file.

Archiving 89

Archiving Phishing Passwords Security 89

Security Affairs

APRIL 20, 2020

Over 267 million Facebook profiles are offered for sale on dark web sites and hacker forums, the dump is offered for £500 ($623) and doesn’t include passwords. Hackers are offering for sale over 267 million Facebook profiles for £500 ($623) on dark web sites and hacker forums, the archive doesn’t include passwords.

Sales 145

Sales Data breaches Archiving Passwords 145

Security Affairs

JUNE 29, 2021

Passwords are not included in the archive. The threat actor that is offering for sale the data shared a sample of 1M records as proof of the authenticity of the archive. According to media that analyzed the data were able to confirm that they are genuine and up-to-date.

Sales 144

Sales Archiving Phishing Authentication 144

Security Affairs

JUNE 13, 2023

The availability of the archive was reported by the data breach notification service Have I Been Pwned , which notified Zecks. According to HIBP, the records in the database contain names, addresses, phone numbers, email addresses, usernames, and passwords stored as unsalted SHA-256 hashes. ” reported HIBP.

Data breaches 84

Data breaches Passwords Encryption Archiving 84

Security Affairs

NOVEMBER 16, 2020

Researchers at vpnMentor discovered an ElasticSearch database exposed online that contained an archive of over 100.000 compromised Facebook accounts. The archive was used by crooks as part of a global hacking campaign against users of the social network. The size of the archive was over 5.5 ” concludes the report.

Archiving 112

Archiving Passwords Access IT 112

Krebs on Security

MARCH 21, 2019

Hundreds of millions of Facebook users had their account passwords stored in plain text and searchable by thousands of Facebook employees — in some cases going back to 2012, KrebsOnSecurity has learned. Renfro said the company planned to alert Facebook users today, but that no password resets would be required.

Passwords 56

Passwords Access Archiving Authentication 56

Security Affairs

AUGUST 18, 2023

Then the loaders retrieve a second-stage payload stored in password-protected ZIP archive from Alibaba buckets. “The zip archives downloaded by agentupdate_plugins.exe and AdventureQuest.exe contain sideloading capabilities. The attackers used modified installers for chat applications to download a.NET malware loaders.

Archiving 90

Archiving File names Encryption Passwords 90

Security Affairs

NOVEMBER 9, 2018

Login information for 37 administrators, including full names, username, password and email: [link]. 11 Usernames, Passwords & Emails for Database eSG: [link]. 110 Usernames, Passwords & Emails for Database exe: [link]. 40 Usernames, Passwords & Emails for Database exe2: [link]. MassaCarrara Web Archives.

Passwords 93

Passwords Archiving Mining Education 93

Security Affairs

JULY 12, 2021

Once again, an archive of data collected from hundreds of millions of LinkedIn user profiles surfaced on a hacker forum, where it’s currently being sold for an undisclosed sum. Change the password of your LinkedIn and email accounts. Consider using a password manager to create unique strong passwords and store them securely.

Archiving 140

Archiving Passwords Data collection Sales 140

Krebs on Security

JUNE 1, 2023

.” Constella Intelligence , a company that tracks exposed databases, finds that 774748@gmail.com was used in connection with just a handful of passwords, but most frequently the password “ featar24 “ Pivoting off of that password reveals a handful of email addresses, including akafitis@gmail.com. ru in 2008.

Healthcare 242

Healthcare Passwords Sales Ransomware 242

Security Affairs

JANUARY 7, 2024

Hunt & Hackett also observed the threat actor collecting at least one e-mail archive, of one of the multiple victim organizations. Create and enforce a password policy with adequate complexity requirements for specific accounts. Store passwords in a secrets management system, that can also be used by development environments.

IT 113

IT Passwords Government Archiving 113

Security Affairs

FEBRUARY 27, 2020

Hackers share SQL databases from unsecured AWS buckets, including the archive belonging to the BGR tech news site in India. The data leak was first reported by experts from the security firm Under the Breach , the full SQL backup contains , emails, hashed passwords, and other information. Hacked due to exposed s3 AWS bucket.

Archiving 112

Archiving Passwords Access Security 112

Security Affairs

APRIL 29, 2023

The Atomic macOS Stealer allows operators to can steal various types of information from the infected machines, including Keychain passwords, complete system information, files from the desktop and documents folder, and even the macOS password. The threat actors spread the malware in the form of a ‘.dmg’

Passwords 80

Passwords Archiving Education Phishing 80

Security Affairs

AUGUST 12, 2019

A threat actor stole details of 6 million users, the stolen data includes user names, email addresses, addresses, shoe size, purchase history, and encrypted passwords (salted MD5). The database is offered for sale in hacking forums, hackers claim to have begun to decrypt the passwords. How to check if your account has been compromised?

Passwords 81

Passwords Archiving Data breaches Sales 81

Security Affairs

AUGUST 4, 2022

The attackers were delivering the malware using archive files and Microsoft Office documents exploiting the Follina Windows flaw ( CVE-2022-30190 ). “The earliest versions of this Rat was typically archived into a zip file pretending to be a document specific to a Russian group. .

Archiving 94

Archiving Phishing Encryption Passwords 94

Security Affairs

JUNE 27, 2022

The malspam messages have the topic “Free primary legal aid” use a password-protected attachment “Algorithm of actions of members of the family of a missing serviceman LegalAid.rar.” ” The RAR archive analyzed by the Ukrainian CERT-UA contains the document “Algorithm_LegalAid.xlsm.”

Archiving 122

Archiving Passwords Security Information Security 122

Security Affairs

DECEMBER 31, 2021

Stolen data are stored in an archive (logs) before being uploaded to a server under the control of the attackers. The data included usernames, email addresses and plain text passwords.” Users have also to change passwords for any account accessed through the infected machine. Pierluigi Paganini.

Data breaches 131

Data breaches Passwords Archiving Access 131

Security Affairs

MARCH 17, 2020

This brand new Ursnif campaign is delivered as a malicious mail containing a password protected document: Hash e9697d963d66792a91991e64537707a94f466421615277d91675b83a408eef93 Threat Ursnif document dropper Brief Description Ursnif Document Dropper Password Protected Ssdeep 12288:9ZPntL7GQw8jzl7v4MvvnaTiIY11jTW84LYMdX9:ftXGxQ7vBvvnjVbTWthdt.

Archiving 125

Archiving Passwords Encryption IT 125

Security Affairs

FEBRUARY 21, 2024

The spear-phishing emails sent by the threat actors include a Google Drive link that hosts a password-protected archive file, which will download DOPLUGS malware. Threat actors conducted spear-phishing attacks, using files related to current events as bait, such as the Taiwanese presidential election that took place in January 2024.

Phishing 114

Phishing Government Archiving Passwords 114

Security Affairs

FEBRUARY 7, 2021

Threat actors offered for sale an archive containing user details for one million SitePoint users on a cybercrime forum. “As a precautionary measure, while we continue to investigate, we have reset passwords on all accounts and increased our required length to 10 characters.

Data breaches 98

Data breaches Passwords Sales Archiving 98

Security Affairs

NOVEMBER 15, 2020

The dump includes PLUTO TV’s display name, email address, bcrypt hashed password, birthday, device platform, and IP address. Bleeping Computer, which has validated the authenticity of the archive, reported that the latest record in the database was created on October 12th, 2018.

Passwords 98

Passwords Data breaches Archiving Authentication 98

Security Affairs

SEPTEMBER 24, 2020

The recent Emotet campaign uses spam messages with password-protected attachments, experts noticed a decline in infections over the weekend, a behavior already observed in the past. Emotet joined the password-protected attachment bandwagon with a campaign starting Friday. ” states the Italian CSIRT’s alert.

Passwords 125

Passwords Archiving Ransomware Security 125

Security Affairs

MARCH 27, 2023

The link points to a password-protected archive, the document also includes the password. The group used several tools and commands for the C2 stage, such as certutil.exe to download the legitimate WinRAR binary and PowerShell to download multiple malicious archives from a remote server (103[.]159[.]132[.]181).

Archiving 82

Archiving Phishing Passwords Government 82

Security Affairs

DECEMBER 31, 2020

The Emotet campaign uses malicious emails that attempt to trick recipients into opening the zipped archive with the password included in the message. Emails accessed in this way require user action: open the file, unzip it with a password. Emails accessed in this way require user action: open the file, unzip it with a password.

Passwords 101

Passwords Archiving Libraries Government 101

Security Affairs

FEBRUARY 25, 2020

The unsecure archive is greater than 9GB in size and was published on an ElasticSearch server. The experts discovered the database on February 12, 2020, and reported their discovery to Decathlon on February 16, the archive was security on February 17. ” reads the post published by vpnMentor. ” reported vpnMentor.

Archiving 93

Archiving Passwords Retail Education 93

eSecurity Planet

DECEMBER 1, 2022

Archive files are now the most common file type used to deliver malware – eclipsing Microsoft Office files for the first time – according to HP Wolf Security’s Q3 2022 Quarterly Threat Insights Report. When the victim enters a password provided to them on the web page, the ZIP file then deploys malware on the victim’s PC.

Archiving 98

Archiving Encryption Passwords Security 98

Security Affairs

APRIL 13, 2020

The data were first discovered by experts at cybersecurity intelligence firm Cyble, lists of email addresses and associated passwords were published on text sharing sites. These accounts are shared via text sharing sites where the threat actors are posting lists of email addresses and password combinations.

Sales 145

Sales Passwords Phishing Data breaches 145

Security Affairs

NOVEMBER 27, 2020

An employee of Albert Einstein Hospital in Sao Paolo has uploaded a spreadsheet containing usernames, passwords, and access keys to sensitive government systems on GitHub. The archive includes data belonging to government representatives, including Brazil President Jair Bolsonaro, seven ministers, and 17 provincial governors.

e-Discovery 100

e-Discovery Passwords Archiving Government 100