HackDig : Dig high-quality web security articles for hackers

Meal Kit Service Home Chef Confirms Data Breach

Subscription meal kit service Home Chef has confirmed that it recently suffered a data breach impacting customer information.Earlier this month, a group of hackers referred to as 'Shiny Hunters' started advertising on the dark web data stolen in several fresh data breaches, including information claimed to have been stolen from Home Chef.At the time, the hac
Publish At:2020-05-24 07:52 | Read:53 | Comments:0 | Tags:NEWS & INDUSTRY Fraud & Identity Theft Cybercrime

Hackers Start Leaking Files Stolen From Shipping Giant Toll

Hackers claim to have obtained more than 200 GB of archived data from Australian transportation and logistics giant Toll, and they have already started leaking it after the company refused to pay a ransom.Toll admitted earlier this month that it was hit by ransomware for the second time this year. The company initially said that the attack, which involved Ne
Publish At:2020-05-24 07:52 | Read:89 | Comments:0 | Tags:NEWS & INDUSTRY Cybercrime

Tools Used in GhostDNS Router Hijack Campaigns Dissected

The source code of the GhostDNS exploit kit (EK) has been obtained and analyzed by researchers. GhostDNS is used to compromise a wide range of routers to facilitate phishing -- perhaps more accurately, pharming -- for banking credentials. Target routers are mostly, but not solely, located in Latin America.The source code used in a GhostDNS campaign was obtai
Publish At:2020-05-24 07:52 | Read:109 | Comments:0 | Tags:NEWS & INDUSTRY Phishing Cybercrime

Facebook Unveils Scam Warnings for Messenger Users

Facebook on Thursday said that its Messenger app will be watching behind the scenes for scammers using the smartphone communication system.Safety notices will pop up in Messenger text chats if activity taking place in the background is deemed suspicious by artificial intelligence software, according to director of privacy and safety product management Jay Su
Publish At:2020-05-24 07:51 | Read:92 | Comments:0 | Tags:NEWS & INDUSTRY Fraud & Identity Theft Cybercrime

Hackers Attempted to Deploy Ransomware in Attacks Targeting Sophos Firewalls

Malicious actors targeting a zero-day vulnerability in Sophos XG Firewall appliances last month attempted to deploy ransomware after Sophos started taking measures to neutralize the attack.In the incident, which Sophos refers to as Asnarök, adversaries targeted a previously unknown SQL injection vulnerability to insert a one-line command and download a Linux
Publish At:2020-05-24 07:51 | Read:120 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

Data Breach Hits Florida Unemployment System

Some Florida residents who have made unemployment claims may have had personal data stolen, officials said Thursday.The Florida Department of Economic Opportunity has notified 98 people who were part of a data breach associated with unemployment claims, agency spokeswoman Paige Landrum said in an email. Officials didn’t say when the breach occurred, how many
Publish At:2020-05-24 07:50 | Read:119 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Cybercrime Management

Industry Reactions to Verizon 2020 DBIR: Feedback Friday

Verizon this week published its 2020 Data Breach Investigation Report (DBIR). The report is based on insights from thousands of incidents and it’s more detailed and more thorough than ever.The report covers threat actors, including their activities and their tools, an analysis of the targeted industries, and a regional analysis.According to Verizon, malware
Publish At:2020-05-24 07:50 | Read:153 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY Virus & Threats Virus &

Ragnar Locker Ransomware Uses Virtual Machines for Evasion

The Ragnar Locker ransomware has been deploying a full virtual machine to ensure that it can evade detection, Sophos reveals.The cybercriminals behind Ragnar Locker use various exploits or target Remote Desktop Protocol (RDP) connections to compromise networks, and also steal data from targeted networks prior to deploying the ransomware, to entice victims to
Publish At:2020-05-24 07:50 | Read:77 | Comments:0 | Tags:Endpoint Security NEWS & INDUSTRY Virus & Threats Vi

Free ImmuniWeb Tool Allows Organizations to Check Dark Web Exposure

Web security company ImmuniWeb this week announced a free tool that allows businesses and government organizations to check their dark web exposure.Integrated into ImmuniWeb’s Domain Security Test, the new feature provides organizations of all types with the option to check their current exposure by simply entering their main website URL.ImmuniWeb, which say
Publish At:2020-05-24 07:50 | Read:95 | Comments:0 | Tags:NEWS & INDUSTRY Risk Management Cybercrime Management &a

Coronavirus Pandemic Claims Another Victim: Robocalls

Have you been missing something amid the lockdowns and stay-at-home orders? No, not human contact. Not even toilet paper.Robocalls.Industry experts say robocalls are way down — scam calls as well as nagging from your credit-card company to pay your bill. The coronavirus pandemic has inflicted millions of job losses, and scammers have not been immune.YouMail,
Publish At:2020-05-24 07:50 | Read:125 | Comments:0 | Tags:NEWS & INDUSTRY Fraud & Identity Theft Cybercrime Vi

Verizon’s 2020 DBIR

Verizon’s 2020 DBIR is out, you can download a copy or peruse their publication online. Kaspersky was a contributor once again, and we are happy to provide generalized incident data from our unique and objective research. We have contributed to this project and others like it for years now. This year’s ~120 page report analyses data from us and
Publish At:2020-05-24 07:11 | Read:123 | Comments:0 | Tags:Publications Cybercrime Data theft Malware Statistics Ransom

Why You May Not Need to Monitor the Dark Web

In recent years, the “Dark Web” has become mainstream. In the past, this collection of forums, chat rooms, marketplaces and tools populated by cybercriminals and other types of threat actors, used to be known mainly to law enforcement agents, security professionals and fraud teams, who were responsible of protecting organizations from the threats that emanat
Publish At:2020-05-18 13:57 | Read:238 | Comments:0 | Tags:INDUSTRY INSIGHTS Cybercrime

'Ramsay' Espionage Framework Can Exfiltrate Data From Air-Gapped Networks

A recently identified cyber-espionage framework is capable of collecting and exfiltrating sensitive information even from air-gapped networks, ESET reports.Dubbed Ramsay, the framework appears to be in the development stage, with its operators still working on refining delivery vectors. Visibility of victims is low, either because the framework hasn’t enjoye
Publish At:2020-05-18 13:56 | Read:241 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY Virus & Threats Virus &

Mysterious Chinese APT Linked to Multiple Central Asian Campaigns

An unknown threat actor, possibly Chinese, has been targeting high-profile organizations in Central Asia with a mix of commodity malware and previously unknown backdoors. Coding similarities suggest a possible link with multiple campaigns over several years.Researchers from Avast started monitoring and analyzing central Asian APT activity back in September 2
Publish At:2020-05-18 13:56 | Read:199 | Comments:0 | Tags:NEWS & INDUSTRY Cybercrime

Chinese Hackers Target Air-Gapped Military Networks

A threat actor believed to be operating out of China has been targeting physically isolated military networks in Taiwan and the Philippines, Trend Micro reports.Tracked as Tropic Trooper and KeyBoy, and active since at least 2011, the threat actor is known for the targeting of government, military, healthcare, transportation, and high-tech industries in Taiw
Publish At:2020-05-18 13:55 | Read:196 | Comments:0 | Tags:Cyberwarfare Endpoint Security NEWS & INDUSTRY Virus &am


Share high-quality web security related articles with you:)


Tag Cloud