News – March 2018


  • Russian Hacker Who Allegedly Hacked LinkedIn and Dropbox Extradited to US

    March 30, 2018

    A Russian man accused of hacking LinkedIn, Dropbox, and Formspring in 2012 and possibly compromising personal details of over 100 million users, has pleaded not guilty in a U.S. federal court after being extradited from the Czech Republic. Yevgeniy Aleksandrovich Nikulin, 30, of Moscow was arrested in Prague on October 5, 2016, by Interpol agents working in collaboration with the ...

  • Atlanta, hit by ransomware attack, also fell victim to leaked NSA exploits

    March 27, 2018

    It’s been almost a week since the City of Atlanta was hit by a ransomware attack, which encrypted city data and led to the shutdown of some services. Mayor Keisha Lance Bottoms said in a press conference Monday that the city’s government is working on recovering the network after ransom notes appeared on computer displays on Thursday afternoon. ...

  • Mastermind behind EUR 1 billion cyber bank robbery arrested in Spain

    March 26, 2018

    The leader of the crime gang behind the Carbanak and Cobalt malware attacks targeting over a 100 financial institutions worldwide has been arrested in Alicante, Spain, after a complex investigation conducted by the Spanish National Police, with the support of Europol, the US FBI, the Romanian, Belarussian and Taiwanese authorities and private cyber security companies. Since ...

  • FBI: Iranian Firm Stole Data In Massive Spear Phishing Campaign

    March 26, 2018

    The United States Department of Justice announced charges against nine Iranians accused of stealing private data from U.S. universities, private companies and U.S. government agencies. FBI Deputy Director David Bowdich said in a statement that the state-sponsored hackers worked for more than four years to steal expensive science and engineering-related research, company trade secrets, and sensitive U.S. government ...

  • A Closer Look at APT Group Sofacy’s Latest Targets

    March 23, 2018

    Threatpost talks to Kaspersky Lab researcher Kurt Baumgartner who was instrumental in tracking the latest activities of the Russian-speaking Sofacy APT gang. Research shows a continual march toward Far East targets and overlapping of activities with other groups such as Lamberts, Turla and Danti. Baumgartner, a researcher with Kaspersky Lab’s Global Research and Analysis Team, presented his ...

  • Website of Russian MoD Hit by DDoS Attacks From Western Europe, North America

    March 22, 2018

    The Russian Defense Ministry said a total of 7 denial-of-service (DDoS) attacks were carried out against its website on Thursday during the final vote on the names of new types of weaponry. “The site of the Russian Defense Ministry during the final vote for the names of the newest domestic weapons was subjected to a massive DDoS attack,” the ministry stated. The ...

  • Slingshot Malware ‘Was US Special Operations Spy Tool’

    March 22, 2018

    Malware discovered by Kaspersky Lab was developed by an elite group within the US military to spy on militants, officials say A highly advanced malware strain uncovered by Kaspersky Lab earlier this month was in fact developed by an elite US military unit, which was using it to track down militants associated with Islamic State and ...

  • Old banking Trojan TrickBot has been taught new tricks

    March 22, 2018

    The TrickBot Trojan has been upgraded with new modules to make detection, and defense, more difficult. First discovered in 2016, TrickBot is a financial Trojan which targets the customers of major banks. The Trojan is most commonly connected to phishing campaigns which trick users into entering their credentials into phishing and fraudulent banking websites, designed to appear as legitimate ...

  • Cryptocurrency Miner Distributed via PHP Weathermap Vulnerability, Targets Linux Servers

    March 21, 2018

    Legitimate and large-scale cryptocurrency mining operations often invest in dedicated hardware and electric consumption to make a profit. This doesn’t escape the attention of cybercriminals: Malicious cryptocurrency mining was so pervasive last year that it was the most detected network event in devices connected to home routers. Through our incident response-related monitoring, we observed intrusion attempts whose indicators we’ve been able to ...

  • ManageEngine zero-day vulnerabilities impact three out of five Fortune 500’s

    March 21, 2018

    Severe zero-day vulnerabilities have been discovered in ManageEngine products used by a substantial number of Fortune 500 companies. On Wednesday, researchers from Digital Defense disclosed the bugs, discovered by the firm’s Vulnerability Research Team (VRT). In a security advisory, the team said that six previously unknown vulnerabilities impact three ManageEngine products, Logs360, EventLog Analyzer and Applications Manager. Read more… Source: ZDNet  

  • GrayKey Device ‘Can Unlock Latest iPhones’

    March 21, 2018

    Researchers argue the stand-alone device, aimed at US law enforcement, could present a security risk if it ends up in the wrong hands A device produced by a small, secretive US company called Grayshift may be capable of unlocking the latest iPhones and the most recent versions of Apple’s iOS software, according researchers. Apple has gone to ...

  • Windows Remote Assistance Exploit Lets Hackers Steal Sensitive Files

    March 20, 2018

    You have always been warned not to share remote access to your computer with untrusted people for any reason—it’s a basic cybersecurity advice, and common sense, right? But what if, I say you should not even trust anyone who invites or offer you full remote access to their computers. A critical vulnerability has been discovered in Microsoft’s Windows ...

  • AMD Acknowledges Newly Disclosed Flaws In Its Processors — Patches Coming Soon

    March 20, 2018

    MD has finally acknowledged 13 critical vulnerabilities, and exploitable backdoors in its Ryzen and EPYC processors disclosed earlier this month by Israel-based CTS Labs and promised to roll out firmware patches for millions of affected devices ‘in the coming weeks.’ According to CTS-Labs researchers, critical vulnerabilities (RyzenFall, MasterKey, Fallout, and Chimera) that affect AMD’s Platform Security ...

  • UK police spend over £1m on cybersecurity training

    March 20, 2018

    The UK’s police forces have spent more than £1.3 million in the last three years training its staff on cybersecurity issues. The figures, contained in a new report released by the Parliament Street Think Tank, show that almost 40,000 staff have taken part in the training. North Wales Police lead the way when it came to the amount ...

  • Expedia’s Orbitz Says 880,000 Payment Cards Compromised in Security Breach

    March 20, 2018

    Chicago-based online travel booking company Orbitz, a subsidiary of Expedia, reveals that one of its old websites has been hacked, exposing nearly 880,000 payment card numbers of the people who made purchases online. The data breach incident, which was detected earlier this month, likely took place somewhere between October 2016 and December 2017, potentially exposing customers’ ...

  • Cambridge Analytica explodes following extraordinary TV expose

    March 19, 2018

    Controversial data analytics firm Cambridge Analytica has been hit with an emergency data seizure order in England following an extraordinary series of events Monday night that revolved around a TV undercover expose. Following a day in which the company became the focus of attention online, in print, and in the UK Parliament and US Congress for its ...

  • National Lottery: 10 million players told to change passwords as attackers hit online accounts

    March 19, 2018

    Millions of National Lottery players have been urged to change their passwords following what parent company Camelot describes as “suspicious activity” involving lottery accounts. Camelot, which runs the National Lottery, insists there’s been no access to core systems or databases that would affect lottery draws or prizes, but has recommended that its 10.5 million registered users ...

  • Facebook’s Role in Data Misuse Sets Off Storms on Two Continents

    March 18, 2018

    Facebook on Sunday faced a backlash about how it protects user data, as American and British lawmakers demanded that it explain how a political data firm with links to President Trump’s 2016 campaign was able to harvest private information from more than 50 million Facebook profiles without the social network’s alerting users. Senator Amy Klobuchar of ...

  • Phishing still number one method for cyber-attacks

    March 16, 2018

    Microsoft has just released its annual cybersecurity report and it says that phishing is still the most popular way for cyber-criminals to attack, giving security experts everywhere headaches. To create the report, Microsoft scanned more than 400 billion emails, 450 billion authentications and 1.2 billion devices. More than half (53 per cent) of all email threats are phishing ...

  • US slaps new sanctions on Russia over NotPetya cyberattack, election meddling

    March 15, 2018

    The White House has introduced a new round of sanctions on Russia, accusing the government of launching “the most destructive and costly cyberattack in history.” In a statement, the US Treasury said it has targeted 19 individuals and five entities for their parts in conducting “destabilizing activities,” including interfering with the US elections in 2016 to their ...