menu
techminis

A naukri.com initiative

New

google-web-stories
Home

>

Cyber Crime News

Cyber Crime News

source image

TechJuice

22h

read

324

img
dot

Image Credit: TechJuice

FIA Breaks Up Major Online Fraud Network Across Provinces, Arrests Ringleader

  • The Federal Investigation Agency’s (FIA) cybercrime department has apprehended Muhammad Shariq, the ringleader of an inter-provincial group involved in online financial fraud.
  • The group utilized advanced spoofing technology and stolen bank account-linked phone numbers to scam people and collect fraudulent payments.
  • Shariq managed hundreds of fake microfinance accounts through cloned apps, resulting in the theft of over Rs40 million over three years.
  • Authorities are actively investigating the network and seeking to apprehend other individuals connected to the online fraud operation.

Read Full Article

like

19 Likes

share

4 Shares

source image

Cybersecurity-Insiders

23h

read

228

img
dot

Image Credit: Cybersecurity-Insiders

Satanic Threat Actor demands $100k ransom from Hot Topic

  • Hot Topic, the popular retailer, is dealing with a data breach situation.
  • The cybercriminal group 'Satanic' is demanding a $100,000 ransom to delete stolen user data.
  • The breach occurred through Hot Topic employee credentials, leading to the theft of sensitive information.
  • Hot Topic has activated its incident response plan and advised affected users to monitor their accounts.

Read Full Article

like

13 Likes

share

3 Shares

source image

TechCrunch

1d

read

329

img
dot

Image Credit: TechCrunch

Snowflake hackers identified and charged with stealing 50 billion AT&T records

  • Two hackers, Connor Moucka and John Binns, have been identified and charged with stealing around 50 billion customer call and text records from AT&T.
  • The stolen records were taken from AT&T's systems hosted on Snowflake, a provider of cloud services for data analysis.
  • The indictment reveals that the hackers accessed billions of sensitive customer records and successfully extorted at least three victims.
  • AT&T is one of several companies who had sensitive data stolen from their Snowflake instances, making these Snowflake-related breaches some of the worst cyberattacks of the year.

Read Full Article

like

19 Likes

share

4 Shares

source image

Cybersecurity-Insiders

1d

read

165

img
dot

Image Credit: Cybersecurity-Insiders

UK Senior Citizens should be cautious with SMS Scams for winter heating pay

  • Winter Fuel Payments in the UK have seen a significant reduction in recipients, causing concern among senior citizens.
  • A scam targeting pensioners involves fraudulent SMS messages offering access to Winter Fuel Payments.
  • The SMS messages contain a link to a fake website where victims are asked to provide personal and financial information.
  • Authorities advise senior citizens to be cautious, avoid clicking on suspicious links, and report any suspicious messages.

Read Full Article

like

9 Likes

share

2 Shares

source image

Socprime

1d

read

130

img
dot

Image Credit: Socprime

Interlock Ransomware Detection: High-Profile and Double-Extortion Attacks Using a New Ransomware Variant

  • Adversaries employ new Interlock ransomware in big-game hunting and double-extortion attacks.
  • Interlock ransomware variant targets organizations globally in various sectors.
  • Interlock ransomware operators maintain a data leak site and exploit unpatched vulnerabilities.
  • Interlock ransomware encrypts files and demands ransom under threat of data leakage.

Read Full Article

like

7 Likes

share

1 Share

source image

Siliconangle

1d

read

326

img
dot

Image Credit: Siliconangle

SlashNext warns of ‘GoIssue’ phishing tool targeting GitHub users

  • Phishing protection company SlashNext Inc. warns of a new phishing tool called GoIssue that targets GitHub users.
  • GoIssue allows attackers to extract email addresses from GitHub profiles and send bulk phishing emails to developers.
  • The tool's advanced features enable targeted phishing campaigns, increasing the risk of credential theft.
  • GoIssue is sold for $700 for a customized version, making it accessible to cybercriminals.

Read Full Article

like

19 Likes

share

4 Shares

source image

HRKatha

1d

read

150

img
dot

Image Credit: HRKatha

Amazon employee data breach exposes contact information

  • Amazon confirmed a data breach affecting employee information due to a vulnerability in a third-party vendor's system.
  • The breach exposed work-related contact details such as employee emails, desk phone numbers, and building locations.
  • Sensitive information like Social Security numbers and financial data remained secure, and Amazon's core systems were unaffected.
  • This incident highlights the challenges of managing cybersecurity across third-party services and the need for comprehensive security practices within vendor networks.

Read Full Article

like

9 Likes

share

2 Shares

source image

TechCrunch

13h

read

228

img
dot

Image Credit: TechCrunch

Hot Topic data breach exposed personal data of 57 million customers

  • Hot Topic, an American retailer, has suffered a data breach in October, exposing personal data of 57 million customers.
  • The stolen data includes email addresses, physical addresses, phone numbers, purchases, genders, and dates of birth.
  • Partial credit card data was also compromised, including credit card type, expiry dates, and the last four digits of the card number.
  • The breach was claimed by a threat actor operating under the alias 'Satanic', who initially attempted to sell the stolen database.

Read Full Article

like

13 Likes

share

3 Shares

source image

TechJuice

21h

read

308

img
dot

Image Credit: TechJuice

NADRA Officials Dismissed After Data Breach Affects 2.7 Million Citizens

  • Several NADRA officials have been dismissed following a data breach affecting 2.7 million Pakistani citizens.
  • A Grade-19 officer and five other staff members were terminated, but concerns were raised over the lack of action against key figures involved.
  • NADRA is facing challenges in expanding operations due to insufficient funding, especially in Khyber Pakhtunkhwa and Balochistan.
  • The committee also discussed the need for additional NADRA facilitation centers and ongoing investigations into smuggling offenses.

Read Full Article

like

18 Likes

share

4 Shares

source image

Tech Story

1d

read

109

img
dot

Amazon Data Breach Exposes Employee Contact Information Details and Implications of the MOVEit Vulnerability

  • Amazon employees’ contact details, including work email addresses and phone numbers, were exposed in a significant data breach impacting over 25 major companies.
  • This breach traces back to a vulnerability in the widely used file transfer software MOVEit.
  • The compromised data, dating back to May 2023, includes names, work email addresses, phone numbers, and, in some cases, details about company hierarchies.
  • Fortunately, social security numbers, financial data, and more sensitive personal information were not part of this leak.
  • The vulnerability enabled the hacker, who operates under the alias “Nam3L3ss,” to gather and leak data, causing a ripple effect across affected companies.
  • Amazon’s systems themselves were not directly compromised, but this incident has raised concerns over third-party software security and data protection protocols.
  • The breach is a reminder of the ever-present risks to corporate data security, and companies must prioritize not only their own security infrastructure but also that of any vendors they rely on.
  • This incident serves as a wake-up call for businesses to adopt more rigorous cybersecurity measures and ensure that their third-party vendors adhere to strict security standards.
  • Moving forward, companies need to prioritize third-party risk management, performing routine security audits on external vendors and ensuring that any software they depend on is frequently updated and secure.
  • This breach serves as a critical reminder for organizations across all sectors to adopt robust cybersecurity protocols, especially when relying on third-party software solutions.

Read Full Article

like

6 Likes

share

1 Share

source image

Securityaffairs

1d

read

107

img
dot

Image Credit: Securityaffairs

A cyberattack on payment systems blocked cards readers across stores and gas stations in Israel

  • A cyberattack in Israel disrupted credit card readers across stores and gas stations.
  • The attack was a DDoS attack that targeted the company responsible for the operations of the devices.
  • The attack lasted for an hour but was mitigated, and no personal or financial data was compromised.
  • The attack is believed to be linked to ongoing military operations, and an Iran-linked hacker group claimed responsibility.

Read Full Article

like

6 Likes

share

1 Share

source image

Securityaffairs

1d

read

293

img
dot

Image Credit: Securityaffairs

Ymir ransomware, a new stealthy ransomware grow in the wild

  • Kaspersky researchers discovered a new ransomware family called Ymir ransomware.
  • Ymir ransomware was deployed after breaching systems via PowerShell commands.
  • The ransomware uses the stream cipher ChaCha20 algorithm to encrypt files.
  • The attack involved the use of RustyStealer malware as a precursor to weaken defenses.

Read Full Article

like

17 Likes

share

4 Shares

source image

Securityaffairs

2d

read

58

img
dot

Image Credit: Securityaffairs

Amazon discloses employee data breach after May 2023 MOVEit attacks

  • Amazon disclosed a data breach exposing employee data, with information allegedly stolen in the May 2023 MOVEit attacks.
  • The data breach occurred through a third-party vendor and the exact number of impacted employees was not disclosed.
  • Over 2.8 million records containing employee data were leaked by a threat actor named Nam3L3ss on BreachForums.
  • The compromised data includes names, contact information, building locations, and email addresses, but did not include SSNs or financial information.

Read Full Article

like

3 Likes

share

Share

source image

TechCrunch

2d

read

129

img
dot

Image Credit: TechCrunch

Amazon confirms employee data stolen after hacker claims MOVEit breach

  • Amazon confirms employee data compromised after a 'security event' at a third-party vendor.
  • The breach involved employee work contact information, such as work email addresses, desk phone numbers, and building locations.
  • The third-party vendor does not have access to sensitive data like Social Security numbers or financial information.
  • A threat actor claims to have stolen data from Amazon and other major organizations during the MOVEit Transfer hack.

Read Full Article

like

7 Likes

share

1 Share

source image

Securityaffairs

2d

read

134

img
dot

Image Credit: Securityaffairs

A new fileless variant of Remcos RAT observed in the wild

  • Fortinet researchers discovered a new phishing campaign spreading a variant of the commercial malware Remcos RAT.
  • The phishing messages contain a malicious Excel document disguised as an order file to trick the recipient into opening the document.
  • Once opened, the RCE vulnerability CVE-2017-0199 is exploited, leading to the download and execution of a series of malicious files.
  • The final payload is the Remcos RAT, which allows attackers to gain remote control over the infected system.

Read Full Article

like

8 Likes

share

1 Share

Prev

1
2
3
4
5
6
7
8
9
10

Next

For uninterrupted reading, download the app