#data-theft

[ follow ]
#cybersecurity

THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [6 Jan]

Cybercriminals exploit trusted digital tools, like Chrome extensions, to steal sensitive data from users.
A recent attack involved spear-phishing and malicious Chrome extensions targeting millions of devices.

Urgent warning to Google users after hackers uploaded fake ads

Users were warned about a cyberattack posing as Google Authenticator, leading to personal data theft.

$75 Million Record-Breaking Ransom Paid To Cybercriminals, Say Researchers

The largest known ransom payment of US $75 million was made by a Fortune 50 company to the Dark Angels ransomware group.

Ongoing campaign compromises senior execs' Azure accounts, locks them using MFA

Unknown attackers are targeting Microsoft Azure accounts in an ongoing campaign to steal sensitive data and financial assets.
The attackers use phishing techniques and account takeovers to compromise the targeted accounts and enroll them in multifactor authentication to secure them.

Researchers warn high-risk ConnectWise flaw under attack is 'embarrassingly easy' to exploit | TechCrunch

High-risk vulnerability in ConnectWise ScreenConnect is easy to exploit
Malicious hackers actively exploiting the flaw

Fake IT workers from North Korea have started blackmailing their victims

North Korean group Nickel Tapestry is now training IT workers not only to find jobs abroad but also to steal data for extortion.

THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [6 Jan]

Cybercriminals exploit trusted digital tools, like Chrome extensions, to steal sensitive data from users.
A recent attack involved spear-phishing and malicious Chrome extensions targeting millions of devices.

Urgent warning to Google users after hackers uploaded fake ads

Users were warned about a cyberattack posing as Google Authenticator, leading to personal data theft.

$75 Million Record-Breaking Ransom Paid To Cybercriminals, Say Researchers

The largest known ransom payment of US $75 million was made by a Fortune 50 company to the Dark Angels ransomware group.

Ongoing campaign compromises senior execs' Azure accounts, locks them using MFA

Unknown attackers are targeting Microsoft Azure accounts in an ongoing campaign to steal sensitive data and financial assets.
The attackers use phishing techniques and account takeovers to compromise the targeted accounts and enroll them in multifactor authentication to secure them.

Researchers warn high-risk ConnectWise flaw under attack is 'embarrassingly easy' to exploit | TechCrunch

High-risk vulnerability in ConnectWise ScreenConnect is easy to exploit
Malicious hackers actively exploiting the flaw

Fake IT workers from North Korea have started blackmailing their victims

North Korean group Nickel Tapestry is now training IT workers not only to find jobs abroad but also to steal data for extortion.
morecybersecurity

Clop ransomware gang claims responsibility for Cleo attacks

Clop ransomware gang exploits vulnerabilities in Cleo file transfer software to steal data from organizations.
#cybercrime

Rydox Cybercrime Marketplace Shut Down and Three Administrators Arrested

The Justice Department has seized the Rydox website and arrested its administrators for selling stolen personal information and cybercrime tools.

Latvian Hacker Extradited to U.S. for Role in Karakurt Cybercrime Group

Deniss Zolotarjovs has been indicted in the U.S. for cybercrimes including data theft, extortion, and money laundering since August 2021.

Meow ransomware sees surge of activity post-overhaul

Meow ransomware has shifted from file encryption to pure data theft, becoming highly active in global cybercrime.

FCC staff targeted in phishing attack that cloned agency login site

The FCC was targeted in a phishing operation using a fake login page.
The phishing kit named CryptoChameleon targeted cryptocurrency exchange platforms and successfully collected sensitive information.

Brazilian police claim they've cuffed the USDoD cybercrook

Brazilian police arrest a suspected hacker linked to high-profile data thefts, including attacks on the FBI and Airbus.

Europol confirms incident after data breach claims

Europol is investigating a cybercriminal's claims of stealing data; Europol Platform for Experts affected but no core systems compromised.

Rydox Cybercrime Marketplace Shut Down and Three Administrators Arrested

The Justice Department has seized the Rydox website and arrested its administrators for selling stolen personal information and cybercrime tools.

Latvian Hacker Extradited to U.S. for Role in Karakurt Cybercrime Group

Deniss Zolotarjovs has been indicted in the U.S. for cybercrimes including data theft, extortion, and money laundering since August 2021.

Meow ransomware sees surge of activity post-overhaul

Meow ransomware has shifted from file encryption to pure data theft, becoming highly active in global cybercrime.

FCC staff targeted in phishing attack that cloned agency login site

The FCC was targeted in a phishing operation using a fake login page.
The phishing kit named CryptoChameleon targeted cryptocurrency exchange platforms and successfully collected sensitive information.

Brazilian police claim they've cuffed the USDoD cybercrook

Brazilian police arrest a suspected hacker linked to high-profile data thefts, including attacks on the FBI and Airbus.

Europol confirms incident after data breach claims

Europol is investigating a cybercriminal's claims of stealing data; Europol Platform for Experts affected but no core systems compromised.
morecybercrime
#corporate-espionage

SK hynix chip engineer gets 1.5 years in prison on IP theft

A former SK hynix employee was sentenced to 18 months for stealing semiconductor technology, raising concerns about corporate espionage and data protection.

In: Former employees booked for stealing company data and sharing with competitor

Two ex-employees of Baccarose Perfume allegedly stole and shared confidential company data with a competitor.

SK hynix chip engineer gets 1.5 years in prison on IP theft

A former SK hynix employee was sentenced to 18 months for stealing semiconductor technology, raising concerns about corporate espionage and data protection.

In: Former employees booked for stealing company data and sharing with competitor

Two ex-employees of Baccarose Perfume allegedly stole and shared confidential company data with a competitor.
morecorporate-espionage

Hazem Altal: Unraveling the Web of Fraud at a Turkish Hair Clinic - Social Media Explorer

A scandal in Istanbul exposes extensive medical fraud involving data theft and unauthorized practices by former clinic manager Hazem Altal.
#security-vulnerability

Google Cloud Document AI flaw (still) allows data theft

The Google Cloud Document AI service has a serious vulnerability that remains unaddressed, enabling potential data theft from Cloud Storage.

1Password vulnerability lets attackers steal Vault items

Mac users with versions before 8.10.36 of 1Password are vulnerable to a bug allowing theft of vault items.

Google Cloud Document AI flaw (still) allows data theft

The Google Cloud Document AI service has a serious vulnerability that remains unaddressed, enabling potential data theft from Cloud Storage.

1Password vulnerability lets attackers steal Vault items

Mac users with versions before 8.10.36 of 1Password are vulnerable to a bug allowing theft of vault items.
moresecurity-vulnerability
#malware-campaign

New Malware Hits 300,000 Users with Rogue Chrome and Edge Extensions

Malware campaign installs rogue extensions via trojan masquerading as popular software.
Trojan malware distributes adware to sophisticated malicious scripts targeting private data theft.
Extensions can't be disabled by users and newer scripts disable browser updates, affecting at least 300,000 Chrome and Edge users.

GitHub struggles to keep up with automated malicious forks

Malware campaign started in PyPI spread to GitHub infecting 100,000 repositories.
Attackers upload altered files to GitHub, cloning legitimate repos to spread malware loaders.

New Malware Hits 300,000 Users with Rogue Chrome and Edge Extensions

Malware campaign installs rogue extensions via trojan masquerading as popular software.
Trojan malware distributes adware to sophisticated malicious scripts targeting private data theft.
Extensions can't be disabled by users and newer scripts disable browser updates, affecting at least 300,000 Chrome and Edge users.

GitHub struggles to keep up with automated malicious forks

Malware campaign started in PyPI spread to GitHub infecting 100,000 repositories.
Attackers upload altered files to GitHub, cloning legitimate repos to spread malware loaders.
moremalware-campaign

Roundcube Webmail Flaws Allow Hackers to Steal Emails and Passwords

Security flaws in Roundcube webmail could allow theft of sensitive information through malicious JavaScript.

Facebook ads for this fake AI image editor were just an excuse to infect your PC with malware

Attackers exploit AI image editing tool popularity to distribute malware through fake applications on social media, stealing credentials and data for sale on the dark web.

Facebook Ads Lead to Fake Websites Stealing Credit Card Information

Facebook users targeted by ERIAKOS scam e-commerce network, employing fake websites for data theft.

New Nork-y cyberespionage outfit uncovered after three years

A new cybercrime group named LilacSquid has been active for three years, targeting organizations in the US, Europe, and Asia with espionage-focused attacks.

Hackers are threatening to publish a huge stolen sanctions and financial crimes watchlist | TechCrunch

The stolen World-Check database contains 5.3 million records

185K people's data stolen in Cherry Health ransomware raid

Ransomware attack on US healthcare organization compromised sensitive data of nearly 185,000 individuals.

PyPI suspends registrations amid malware attack

PyPI has suspended new project creation due to a malware upload campaign.
Attackers are using typosquatting to distribute malicious Python packages for data theft.

Ransomware gang leaks data stolen from Scottish NHS board | Computer Weekly

Inc Ransom claimed to have stolen three terabytes of data from NHS Scotland, including sensitive medical reports and patient letters.
NHS Dumfries and Galloway acknowledged a cyber attack, with a small data dump disclosed and ongoing efforts to limit any data sharing.
#minnesota-timberwolves

Fired Wolves employee given supervised release

An ex-employee of the Minnesota Timberwolves was arrested for stealing sensitive internal information.
The stolen data included strategic NBA information and the executive's personal details.

Wolves employee fired, arrested for alleged theft

An employee of the Minnesota Timberwolves was fired, arrested, and charged with felony third-degree burglary for stealing strategic NBA information.
The Timberwolves executive, Sachin Gupta, had his personal and team-related information stolen from a hard drive left in his office.

Fired Wolves employee given supervised release

An ex-employee of the Minnesota Timberwolves was arrested for stealing sensitive internal information.
The stolen data included strategic NBA information and the executive's personal details.

Wolves employee fired, arrested for alleged theft

An employee of the Minnesota Timberwolves was fired, arrested, and charged with felony third-degree burglary for stealing strategic NBA information.
The Timberwolves executive, Sachin Gupta, had his personal and team-related information stolen from a hard drive left in his office.
moreminnesota-timberwolves

Change Healthcare's data protection under US investigation

Change Healthcare under investigation for alleged data theft by ALPHV ransomware group
US HHS launching formal inquiry into Change Healthcare's data protection practices

Vastaamo victims' lawyer: Some took their own lives after patient record leak

Patient records from Vastaamo used in extortion led to suicides.
Trial of Aleksanteri Kivimäki nearing conclusion in data theft case.

Here Come the AI Worms

AI worms can now spread between generative AI agents, potentially causing data theft and malware deployment.
As generative AI systems become more autonomous, the risk of new cyberattacks increases.
#cyberattack

Pharmaceutical giant Cencora says data was stolen in a cyberattack

Cencora, previously AmerisourceBergen, faced a cyberattack involving data theft.
The company contained the incident, is cooperating with authorities, but impact on finances is undetermined.

Caravan club admits members' personal data possibly accessed

The Caravan and Motorhome Club (CAMC) still cannot confirm whether members' data was stolen in a January cyberattack.
The club has listed the types of data that might have been accessed, but remains uncertain about any theft.

Pharmaceutical giant Cencora says data was stolen in a cyberattack

Cencora, previously AmerisourceBergen, faced a cyberattack involving data theft.
The company contained the incident, is cooperating with authorities, but impact on finances is undetermined.

Caravan club admits members' personal data possibly accessed

The Caravan and Motorhome Club (CAMC) still cannot confirm whether members' data was stolen in a January cyberattack.
The club has listed the types of data that might have been accessed, but remains uncertain about any theft.
morecyberattack

Google's Threat Analysis Group's Spyware Research: How CSVs Target Devices and Applications

Commercial surveillance vendors sell surveillance services to governments for monitoring or spying purposes.
CSVs openly operate with websites, marketing content, and sales teams, and may change names to avoid scrutiny.

Phishers pwn hundreds of users, dozens of Azure environments

Phishing campaign targets senior business executives, including C-suite roles and VPs.
Attackers aim to gain access to privileged accounts and steal sensitive data.

Warzone RAT Sales and Support Actors in Malta and Nigeria Charged in U.S. Federal Indictments

Federal authorities seized internet domains used to sell RAT malware
Individuals in Malta and Nigeria were indicted for selling malware and supporting cybercriminals
[ Load more ]