A naukri.com initiative
Cyber Crime News
TechCrunch
1d
334
Image Credit: TechCrunch
US student agrees to plead guilty to hack affecting tens of millions of students
- Massachusetts student, Matthew D. Lane, to plead guilty to federal charges related to hacking and extorting a major U.S. education tech company.
- Lane accessed network of an unnamed software company, stealing personal information of over 60 million students and 10 million teachers, including sensitive data like Social Security numbers and medical information.
- Lane worked with a co-conspirator to extort about $2.85 million in cryptocurrency from the education software maker.
- The compromised company, likely PowerSchool, paid hackers to delete stolen data, facing subsequent extortion attempts from others claiming the data was not destroyed.
Read Full Article
20 Likes
Silicon
1d
261
Image Credit: Silicon
M&S Cyberattack To Cost £300m And Upheaval To Last Into July
- Marks & Spencer (M&S) confirms financial and operational impact of recent cyberattack, revealing customer data theft and disrupted operations.
- M&S estimates £300m impact on Group operating profit for 2025/26 due to cyberattack, with online disruption expected to continue into July.
- UK's National Crime Agency identifies cyber-criminal collective Scattered Spider as key focus, known for ransomware attacks using DragonForce platform.
- Leader of Scattered Spider, Tyler Buchanan, arrested in Spain, while other alleged members include Noah Michael Urban and Remington Ogletree, with global arrests made in connection with previous hacks.
Read Full Article
15 Likes
Securityaffairs
1d
69
Image Credit: Securityaffairs
Coinbase data breach impacted 69,461 individuals
- Coinbase disclosed that a recent data breach impacted 69,461 individuals after overseas support staff accessed customer and corporate data improperly.
- Rogue contractors stole data on under 1% of users from Coinbase and demanded $20 million; breach initially disclosed in an SEC filing.
- Unauthorized data access was detected by support personnel, prompting termination, enhanced monitoring, and user alerts; breach involved a coordinated campaign.
- Exposed data did not include passwords, private keys, or customer funds but included contact details, partial SSNs, bank info, ID images, account history, and limited internal documents.
Read Full Article
4 Likes
Silicon
1d
319
Image Credit: Silicon
Legal Aid Agency Confirms Cyberattack, Data Theft
- The Legal Aid Agency, an agency of the UK Ministry of Justice, experienced a cyberattack resulting in a significant data breach of personal information.
- Sensitive data, including financial information, of legal aid applicants dating back to 2010 has been compromised in the breach.
- The agency has taken down its online services and urged affected individuals to safeguard themselves against potential identity theft and suspicious activity.
- The Ministry of Justice is working with authorities to address the breach, and the Legal Aid Agency CEO has apologized for the incident and emphasized the need for enhanced system security.
Read Full Article
19 Likes
TechCrunch
1d
366
Image Credit: TechCrunch
Coinbase says its data breach affects at least 69,000 customers
- Coinbase disclosed a data breach affecting at least 69,461 customers' personal and financial information.
- The breach occurred from December 26, 2024, until earlier this month, with a hacker demanding $20 million as ransom, which Coinbase refused to pay.
- The stolen data includes customer names, email addresses, phone numbers, government-issued ID documents, account balances, and transaction histories.
- The hacker gained unauthorized access through bribing Coinbase customer support workers, leading to concerns about wealthy customers being targeted.
Read Full Article
22 Likes
VoIP
1d
213
Image Credit: VoIP
SK Telecom Breach Spurs Global Telecom Data Security Efforts
- A server breach at SK Telecom has compromised personal and USIM data of all subscribers, potentially leaking 9.32 gigabytes of sensitive information.
- SK Telecom took proactive measures like offering free USIM card replacements and enrolling customers in a USIM protection program to address identity theft concerns.
- International collaboration in the telecom sector regarding data security includes efforts from South Korea and the U.S., aiming at better international coordination against cyber threats and aligning cybersecurity standards.
- Despite challenges like South Korea being categorized as a 'sensitive country' affecting research funding, efforts continue to enhance U.S.-South Korea cooperation in technological research, with investments in areas like artificial intelligence and biotechnology.
Read Full Article
12 Likes
TechDigest
1d
244
Image Credit: TechDigest
M&S cyber attack could cost £300 million, disruptions expected until July
- Marks & Spencer (M&S) anticipates a £300 million impact on trading profits this year due to a recent cyberattack, leading to operational disruptions expected until July.
- The ransomware attack has caused over £1 billion reduction in M&S's market value, primarily affecting online ordering capabilities, with website sales set to resume partially in the upcoming weeks.
- The cyberattack is suspected to be orchestrated by a hacking group called Scattered Spider, compromising customer data while assuring the security of payment information.
- M&S CEO Stuart Machin acknowledges the severity of the incident but remains optimistic, stating that it will not derail the company's plans for reshaping and improving technology transformation, despite the projected profit reduction of £300 million.
Read Full Article
14 Likes
Guardian
1d
177
Image Credit: Guardian
Marks & Spencer expects £300m hit in lost sales from cyber-attack
- Marks & Spencer expects to lose around £300m in sales due to a cyber-attack that forced the company to halt online orders and face challenges in stocking store shelves.
- Despite the cyber-attack, Marks & Spencer reported a 22% increase in annual pre-tax profits to £876m, showing better-than-expected performance before the incident.
- The company had over £400m of net funds before the cyber-attack, stating it was in a strong financial position that could help mitigate the expected financial impact through insurance and other measures.
- The cyber-attack on Marks & Spencer's IT systems over the Easter weekend led to disruptions in online orders, deliveries to stores, and partnerships, with personal information of thousands of customers being compromised.
Read Full Article
10 Likes
Cybersecurity-Insiders
2d
163
Image Credit: Cybersecurity-Insiders
Google Warns Users About Phishing Scam Targeting 2 Billion Active Accounts
- Google has issued a security alert regarding a phishing scam targeting its 2 billion active accounts.
- Fraudulent emails from '[email protected]' claim data compromise to steal personal information.
- Recipients are urged to click on links leading to fake government actions threatening data inspection.
- Google emphasizes it never requests sensitive data like passwords or OTPs via email.
- Phishing links direct users to malicious sites harvesting login details and financial information.
- Scammers use Gmail to distribute malicious content, posing a new level of deception.
- Google advises users to report phishing attempts, keep devices updated, and use anti-malware solutions.
- Staying cautious and informed is crucial in staying safe from evolving cyber threats.
- The incident highlights the need for enhanced security measures to combat phishing scams.
- Vigilance and cybersecurity practices are key to protecting personal data in the digital age.
Read Full Article
9 Likes
Guardian
2d
361
Image Credit: Guardian
What to do if you can’t get into your Facebook or Instagram account
- If you can't access your Facebook or Instagram account, try resetting your password using the 'Forgot password?' link on the login screen.
- If you no longer have access to the associated email, visit facebook.com/login/identify and follow the instructions to prove your identity and reset your password.
- If your account was hacked, visit facebook.com/hacked or instagram.com/hacked/ on a previously used device and follow the instructions provided.
- After regaining access, change your password to something strong, enable two-step verification, turn on 'unrecognised login' alerts, remove suspicious friends, and consider advanced protection options.
Read Full Article
21 Likes
Securityaffairs
2d
385
Image Credit: Securityaffairs
SK Telecom revealed that malware breach began in 2022
- SK Telecom revealed that the security breach disclosed in April began in 2022.
- SK Telecom, South Korea's largest wireless telecom company, detected a malware attack in April affecting 27 million users.
- The breach exposed data like phone numbers, IMSIs, SIM keys, and HSS-stored info of users.
- Investigations found that the breach began in 2022, went undetected for nearly three years, and involved 25 malware types across 23 servers.
Read Full Article
23 Likes
Kaspersky
2d
15
Image Credit: Kaspersky
Phishing through Google Ads: attacks on SEO and marketing
- Cybercriminals target users who click on the first link in search engine results by promoting fake sites through Google Ads.
- Google blocked 415 million ads in 2024 for rule violations, including scams, highlighting the scale of the issue.
- Scammers create fake Semrush pages to phish for SEO professionals' credentials, using similar domain names and Google Ads for promotion.
- Fake pages imitate legitimate sign-in processes to steal Semrush or Google account credentials.
- Another tactic involves promoting fake Google Ads within Google Ads by leveraging Google Sites to create convincing phishing pages.
- Google acted swiftly to remove these malicious sites from search results, but comprehensive solutions require proactive steps.
- To protect against phishing attacks, organizations should encourage bookmarking trusted sites, conduct security awareness training, and implement multi-factor authentication.
- It is recommended to deploy robust security solutions on all company devices to prevent visits to malicious websites.
Read Full Article
Like
Guardian
2d
232
Image Credit: Guardian
Online criminals attacking HSBC ‘all the time’, says head of UK arm
- HSBC's UK arm head stated that the bank is constantly under attack by online criminals, making cybersecurity its biggest expense.
- The bank has invested hundreds of millions of pounds in defense mechanisms to protect against cyber threats as customers rely heavily on digital technology.
- HSBC processes 1,000 payments per second and makes about 8,000 changes to its IT systems weekly to ensure seamless operations for customers.
- Barclays' UK CEO mentioned that a recent technical issue was caused by an external software provider and assured customers that steps have been taken to prevent future recurrences.
Read Full Article
13 Likes
Infoblox
2d
264
Image Credit: Infoblox
Cloudy with a Chance of Hijacking Forgotten DNS Records Enable Scam Actor
- Hazy Hawk is a DNS-savvy threat actor that hijacks abandoned cloud resources of high-profile organizations, such as S3 buckets and Azure endpoints, to host scams and malware URLs.
- The discovery of vulnerable DNS records indicates that Hazy Hawk likely has access to a large passive DNS service, with attacks involving complex DNS misconfigurations.
- Hazy Hawk leverages layered defenses and obfuscation techniques, including hijacking subdomains of reputable domains, obfuscating URLs, and using legitimate website content for redirection.
- The threat actor, Hazy Hawk, targets various organizations globally and prominent cloud services like Akamai, Amazon EC2, Azure, and Cloudflare CDN for domain hijacking and scam operations.
- Hazy Hawk employs push notifications, TDS mechanisms, and URL obfuscation to lure victims into scams, affiliated with other malicious actors and redirecting users through multiple domains.
- To prevent Hazy Hawk attacks, organizations are advised to manage DNS records effectively and invest in protective DNS solutions, while educating users to reject unknown website notification requests.
- The FBI reports a rise in scams enabled by threat actors like Hazy Hawk, emphasizing the importance of protecting both hijacked domains and end users from malicious activities in the affiliate marketing space.
- Hazy Hawk's extensive list of hijacked domains and indicators include reputable entities like universities, government agencies, healthcare companies, media, and corporations, showcasing the scale and impact of their operations.
- The post also delves into technical details of DNS hijacking, CNAME records, URL obfuscation, and the use of legitimate website content in disguising malicious activities by Hazy Hawk.
- Overall, the article sheds light on the sophisticated tactics employed by Hazy Hawk in exploiting abandoned cloud resources for malicious purposes and emphasizes the need for robust cybersecurity measures to combat such threats.
Read Full Article
15 Likes
Securityaffairs
2d
130
Image Credit: Securityaffairs
UK’s Legal Aid Agency discloses a data breach following April cyber attack
- The UK's Legal Aid Agency suffered a cyberattack in April, leading to a data breach where sensitive information of legal aid applicants was stolen.
- The cyberattack on the Legal Aid Agency, part of the UK Ministry of Justice, compromised personal data dating back to 2010, including contact details, national ID numbers, and financial information.
- The agency worked with authorities like the National Crime Agency and National Cyber Security Centre to investigate the breach and discovered that hackers accessed and downloaded significant amounts of personal data.
- In response to the breach, the Legal Aid Agency took down its online service, implemented security measures, and assured continued access to legal support for those in need.
Read Full Article
7 Likes
For uninterrupted reading, download the app