A Year Later, Cybercrime Groups Still Rampant on Facebook

Krebs on Security

Almost exactly one year ago, KrebsOnSecurity reported that a mere two hours of searching revealed more than 100 Facebook groups with some 300,000 members openly advertising services to support all types of cybercrime, including spam, credit card fraud and identity theft.

Iranian Hacking Group Continues Targeting Universities

Data Breach Today

Cobalt Dickens' Group Attempting to Steal Intellectual Property "Cobalt Dickens," a threat group with suspected ties to Iran, is continuing its attempts to steal intellectual property from schools and universities, according to an analysis by SecureWorks.

IT 231

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

TA505 Group Hides Malware in Legitimate Certificates

Data Breach Today

APT Group Targets Banks With Backdoor Malware to Penetrate Networks TA505, a sophisticated advanced persistent threat group, is now using legitimately signed certificates to disguise malware that can penetrate banking networks, security researchers warn in a new report

Chinese APT Group 'Thrip' Powers Ahead

Data Breach Today

Hackers Have Attacked at Least 12 Targets Since 2018, Symantec Researchers Say A Chinese advanced persistent threat group dubbed "Thrip" has attacked at least 12 organizations in Southeast Asia since being exposed last year, Symantec researchers say.

199
199

US Sanctions 3 North Korean Hacking Groups

Data Breach Today

Treasury Department has sanctioned three alleged North Korean hacking groups that have been blamed for the WannaCry ransomware, online bank heists and destructive malware attacks Trump Administration Cites WannaCry, Sony Pictures, Bangladesh Bank Attacks As part of the U.S.

Russian Hackers Coopted Iranian APT Group's Infrastructure

Data Breach Today

UK and US Intelligence Agencies Report That Turla Group Seized OilRig APT Assets Turla, an advanced persistent threat group with apparent ties to Russia, seized attack infrastructure and tools used by OilRig, an Iranian APT group, U.K.

IT 173

Pacha Group declares war to rival crypto mining hacking groups

Security Affairs

Two hacking groups associated with large-scale crypto mining campaigns, Pacha Group and Rocke Group , wage war to compromise as much as possible cloud-based infrastructure. SecurityAffairs – Pacha Group, cryptocurrency miners).

Mining 105

Leak Exposes OilRig APT Group's Tools

Data Breach Today

Group, Apparently Backed By Iran, Was Broadening Its Targets, Analysts Say A set of malicious tools, along with a list of potential targets and victims, belonging to an APT group dubbed OilRig has leaked online, exposing some of the organization's methods and goals, analysts say

IT 227

Magecart Group Continues Targeting E-Commerce Sites

Data Breach Today

NSO Group President Defends Controversial Tactics

Threatpost

Cryptography Facebook Privacy Amnesty International end-to-end encrypted messaging messaging NSO Group NSO Group Technologies WhatsAppFirm defends controversial business offerings, claims it should be considered a force of good.

IT 98

Signal Tests Upgraded Cryptography for Groups Function

Threatpost

Cryptography Privacy cryptography groups private groups secure messaging Signal usabilityThe secure messaging service is looking to address usability issues.

Alleged Member of Neo-Nazi Swatting Group Charged

Krebs on Security

An FBI affidavit unsealed this week identifies one member of the group as John William Kirby Kelley. “The group’s neo-Nazi ideology is apparent in the racial tones throughout the conversation logs,” the affidavit reads.

Microsoft Takes Control of 99 Websites From APT Group

Data Breach Today

Phosphorus Group Waged Spear-Phishing Campaign, Company Reports Microsoft is using its legal muscle to push back against an advanced persistent threat group that is says is "widely associated with Iranian hackers."

Chinese APT Groups Target Cancer Research Facilities: Report

Data Breach Today

Chinese APT Group Began Targeting SSL VPN Flaws in July

Data Breach Today

Pulse Secure and Fortinet Released Critical Fixes Months Ago, But Patching Lags A hacking group known as APT5 - believed to be affiliated with the Chinese government - has been targeting serious flaws in Pulse Secure and Fortinet SSL VPNs for more than six weeks, security experts warn.

ScarCruft APT Group Targets Bluetooth With Malware: Report

Data Breach Today

Kaspersky Lab Says Korean-Speaking Group Expanding Its Arsenal ScarCruft, a Korean-speaking APT group that has been targeting organizations mainly in Southeast Asia over the past three years, is developing new malware that targets Bluetooth-enabled devices, according to Kaspersky Lab

IT 226

Chinese APT Group Targets Mobile Networks: FireEye Mandiant

Data Breach Today

Cyber-Intelligence Firm NSO Group Tries to Boost Reputation

Data Breach Today

Critics Questions Whether Israeli Firm's Moves Will Have an Impact Israel-based cyber-intelligence firm NSO Group, which has been accused of selling technology that enables governments to spy on citizens, is pledging to adopt human rights guidelines developed by the United Nations.

Despite Doxing, OilRig APT Group Remains a Threat

Data Breach Today

Researchers Describe What They've Learned From Data Dump Despite a doxing of its targets and tools in March, the advanced persistent threat group known as OilRig remains a significant threat to governments and businesses, researchers at Palo Alto Network's Unit 42 report

Toyota Australia, Healthcare Group Hit By Cyberattacks

Data Breach Today

A healthcare group acknowledged it was the victim of a ransomware attack. Country Has Faced a Series of Security Incidents in Recent Weeks Australia has faced a few tough weeks on the cybersecurity front. Toyota Australia's computer systems were still down Friday after an attempted cyberattack. And last week, suspected nation-state attackers hit Parliament's email systems

Magecart Cybercrime Groups Harvest Payment Card Data

Data Breach Today

Researchers say they are tracing at least six active Magecart groups, each with unique infrastructure, skimmers and targeting

208
208

Groups Offer Ideas for Improving Healthcare Cybersecurity

Data Breach Today

Mark Warner Several industry groups have offered suggestions - ranging from better cyber information sharing to new regulatory "safe harbors" for entities complying with best practices - in response to Sen. Recommendations Made in Response to Request by Sen.

M6 Group, largest France private multimedia group, hit by ransomware attack

Security Affairs

The M6 Group, the largest France private multimedia group, was the victim of ransomware over the weekend. Le Groupe M6 a été la cible samedi matin d’une attaque informatique malveillante. — Groupe M6 (@M6Groupe) October 13, 2019.

Vietnamese APT Group Targets BMW, Hyundai: Report

Data Breach Today

APT32/OceanLotus Suspected in Espionage Incident Hackers suspected to be based in Vietnam compromised the network of German automaker BMW to attempt industrial espionage, according to German media outlet Bayerischer Rundfunk.

141
141

Groups Ask FDA to Rethink Some Medical Device Cyber Proposals

Data Breach Today

But a variety of changes are needed, say some of the healthcare sector companies and groups that submitted feedback to the agency

'Fancy Bear' Hacking Group Adds New Capabilities, Targets

Data Breach Today

U.S. Sanctions North Korean Group Behind WannaCry, Sony Hacks

Threatpost

Three North Korean threat groups have been sanctioned in the U.S. Government Hacks Andariel bangladesh central bank Bluenoroff hack Lazarus Group North Korea ransomware Sony picture hack SWIFT threat group US us sanctions wannacry attack

Oil and Gas Firms Targeted By New LYCEUM Threat Group

Threatpost

A new threat group has been discovered targeting Middle Eastern critical infrastructure firms with spearphishing emails laced with malware.

99

Russia-Backed APT Groups Compete With Each Other: Report

Data Breach Today

Researchers Find That State-Sponsored Cyberespionage Groups Seldom Share Code APT groups that are backed by the Russian government rarely share code with each other, fostering a competitive landscape, according to a new report.

'Sea Turtle' DNS Hijacking Group Conducts Espionage: Report

Data Breach Today

Cisco Talos Researchers Describe Group's Methods A nation-state sponsored espionage campaign dubbed "Sea Turtle" has been manipulating the domain name system to target more than 40 organizations, including intelligence agencies - especially in North Africa and the Middle East, Cisco Talos warns.

231
231

Democratic Campaign Group Left 6 Million Emails Exposed

Data Breach Today

UpGuard Finds Misconfigured Amazon S3 Bucket Left Addresses Exposed Security firm UpGuard found that a misconfigured Amazon S3 bucket belonging to the Democratic Senatorial Campaign Committee left the email addresses of more than 6 million U.S. citizens exposed to the internet.

Lotsy group targets Italian and Spanish-speaking users

Security Affairs

Group-IB discovered massive fraudulent campaigns carried out by Lotsy group involving the use of dozens of well-known brands aimed at Italian and Spanish-speaking customers. Group-IB’s Brand Protection team has detected a total of 114 related fake web-resources involved in the scheme.

Retail 100

WhatsApp Spyware Attack: Uncovering NSO Group Activity

Threatpost

John Scott-Railton with Citizen Lab, who helped WhatsApp investigate the NSO Group over the alleged WhatsApp hack, said the subsequent lawsuit is a "certified big deal.".

MuddyWater APT Group Upgrades Tactics to Avoid Detection

Data Breach Today

IT 205

FIN8 Group Returns, Targeting POS Devices With New Tools

Data Breach Today

Retail 188

Magecart Cybercrime Groups Mass Harvest Payment Card Data

Data Breach Today

Researchers say they are tracing at least six active Magecart groups, each with unique infrastructure, skimmers and targeting

242
242

Robots at HIS Group are vulnerable to hack

Security Affairs

The Japanese hotel chain HIS Group admitted that its in-room robots were vulnerable and could allow hackers to remotely view video footage from the devices. The HIS Group hotel chain has 10 locations in Japan that used robots instead of human personnel to provide some services.

AccorHotels subsidiary Gekko Group exposes hotels and travelers data in massive data leak

Security Affairs

Security experts from vpnMentor discovered that Gekko Group, an AccorHotels subsidiary, exposes hotels and travelers in a massive data leak. Gekko Group is a leading European B2B hotel booking platform that also owns smaller hospitality brands, including Teldar Travel & Infinite Hotel.

B2B 95

Lyceum APT Group a New Threat to Oil and Gas Companies

Data Breach Today

Reports Say Group Also Targeting Telecom Firms An emerging cyber espionage group that apparently started its work in South Africa last year is now focusing on targeting critical control systems for oil and gas companies in the Middle East, according to researchers at two cybersecurity firms

Xenotime Group Sets Sights on Electrical Power Plants

Data Breach Today