HackDig : Dig high-quality web security articles

High-Level Admin of FIN7 Cybercrime Group Sentenced to 10 Years in Prison

Fedir Hladyr pleaded guilty in 2019 to conspiracy to commit wire fraud and conspiracy to commit computer hacking.A high-level manager of cybercrime group FIN7, also known as the Carbanak Group and the Navigator Group, has been sentenced to ten years in prison, the Department of Justice reports.FIN7 has operated since at least 2015 and had more than
Publish At:2021-04-16 19:12 | Read:141 | Comments:0 | Tags: cybercrime cyber

Sanctioned Russian IT Firm Was Partner With Microsoft, IBM

The Treasury Department on Thursday slapped six Russian technology companies with sanctions for supporting Kremlin intelligence agencies engaged in “dangerous and disruptive cyber attacks.”But only one of them stands out for its international footprint and partnerships with such IT heavyweights as Microsoft and IBM.That company, Positive Technologies, claims
Publish At:2021-04-16 11:25 | Read:105 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY Incident Response Cybercrim

Industry Reactions to FBI Cleaning Up Hacked Exchange Servers: Feedback Friday

U.S. authorities revealed this week that the FBI executed a court-authorized cyber operation to remove malicious web shells from hundreds of compromised Microsoft Exchange servers located in the United States.FBI agents removed the backdoors by issuing a command through the web shell to the server. The agency said it may have been more challenging for indivi
Publish At:2021-04-16 11:25 | Read:232 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Incident Response Ma

How the Kremlin Provides a Safe Harbor for Ransomware

A global epidemic of digital extortion known as ransomware is crippling local governments, hospitals, school districts and businesses by scrambling their data files until they pay up. Law enforcement has been largely powerless to stop it.One big reason: Ransomware rackets are dominated by Russian-speaking cybercriminals who are shielded — and sometimes emplo
Publish At:2021-04-16 11:25 | Read:146 | Comments:0 | Tags:NEWS & INDUSTRY Cybercrime ransomware

Capcom Says Older VPN Device at Heart of Ransomware Attack

Japanese video game giant Capcom revealed on Tuesday that, as part of the November 2020 ransomware attack, adversaries targeted an older backup VPN device for initial access.Known for multi-million-selling game franchises, including Resident Evil, Street Fighter, Ace Attorney, and Devil May Cry, Capcom has offices across Asia, Europe, and North America. In N
Publish At:2021-04-14 12:25 | Read:77 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Cybercrime Management

Breaches Detected Faster, But Ransomware Surge a Major Factor: FireEye

Data from FireEye’s Mandiant incident response division shows that the time it takes organizations to detect a malicious hacker attack continues to drop, but it’s not only due to better threat detection capabilities. According to Mandiant, the surge in ransomware attacks, which are meant to be noisy and detected, is partially the reason for shorter dwel
Publish At:2021-04-13 16:50 | Read:94 | Comments:0 | Tags:NEWS & INDUSTRY Malware Cybercrime ransomware

Swedish Sports Body Hacked by Russians, Officials Say

The organization that oversees Sweden’s national sports federations was hacked by Russian military intelligence in 2017-18, officials said Tuesday, in a data-breaching campaign that also affected some of the world’s leading sporting bodies, including FIFA and the World Anti-Doping Agency.Swedish prosecutors said the “repeated and comprehensive breaches” of t
Publish At:2021-04-13 16:50 | Read:126 | Comments:0 | Tags:NEWS & INDUSTRY Cybercrime hack

Small Kansas Water Utility System Hacking Highlights Risks

A former Kansas utility worker has been charged with remotely tampering with a public water system’s cleaning procedures, highlighting the difficulty smaller utilities face in protecting against hackers.Wyatt Travnichek, 22, was charged last month with remotely accessing the Post Rock Rural Water District’s systems in March 2019, about two months after he qu
Publish At:2021-04-13 09:00 | Read:166 | Comments:0 | Tags:NEWS & INDUSTRY Risk Management Cybercrime Management &a

IcedID Trojan Operators Experimenting With New Delivery Methods

The threat actors behind the IcedID Trojan are experimenting with various delivery methods to increase efficiency, including sending malicious messages from web-based contact forms.First observed in 2017 and also referred to as BokBot, IcedID is a banking Trojan that features a modular design and which is often used in combination with ransomware and RATs, t
Publish At:2021-04-12 17:20 | Read:139 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

Crooks abuse website contact forms to deliver IcedID malware

Microsoft researchers spotted a malware campaign abusing contact forms on legitimate websites to deliver the IcedID malware. Security experts from Microsoft have uncovered a malware campaign abusing contact forms on legitimate websites to deliver the IcedID malware. Threat actors behind the operation are using contact forms published on websites to del
Publish At:2021-04-10 11:49 | Read:221 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybercrime Hacking hacking

Collaboration Platforms Increasingly Abused for Malware Distribution, Data Exfiltration

Threat actors are increasingly abusing collaboration platforms for nefarious purposes, including malware delivery and data exfiltration, security researchers with Cisco’s Talos division report.With the COVID-19 pandemic forcing many organizations to switch to telework, interactive communication platforms such as Discord and Slack saw increased adoption and a
Publish At:2021-04-09 07:10 | Read:149 | Comments:0 | Tags:Network Security NEWS & INDUSTRY Virus & Threats App

330K stolen payment cards and 895K stolen gift cards sold on dark web

A threat actor has sold almost 900,000 gift cards and over 300,000 payment cards on a cybercrime forum on the dark web. A crook has sold 895,000 gift cards and over 300,000 payment cards, for a total of US$38 million, on a  top-tier Russian-language hacking forum on the dark web. The criminal actor was spotted offering a huge amount of cards in February
Publish At:2021-04-09 04:35 | Read:237 | Comments:0 | Tags:Breaking News Cyber Crime Deep Web Cybercrime gift cards Hac

Cring Ransomware Targets Industrial Organizations

Cring ransomware operators are exploiting an old path traversal vulnerability in the FortiOS SSL VPN web portal to gain access to enterprise networks, Kaspersky warns.At the beginning of 2021, the threat actors behind the Cring ransomware were observed launching numerous attacks on European industrial enterprises, forcing at least one organization to shut do
Publish At:2021-04-08 11:40 | Read:89 | Comments:0 | Tags:ICS/OT NEWS & INDUSTRY Virus & Threats Virus & M

Belden Says Health-Related Information Exposed in Data Breach

Specialty networking solutions provider Belden on Wednesday shared an update on the data breach disclosed in November 2020, and said health-related information was also exposed.Belden revealed in November that it had detected a data breach that resulted in the theft of some information pertaining to business partners, as well as current and former employee d
Publish At:2021-04-08 11:40 | Read:127 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Cybercrime

PHP Developers Share Update on Recent Breach

The developers of the PHP scripting language have shared an update on the recently disclosed breach in which attackers planted malicious code.The malicious code, discovered in late March, was found in the php-src repository hosted on the git.php.net server and it was apparently designed to allow an attacker to remotely execute arbitrary PHP code. PHP develop
Publish At:2021-04-08 09:25 | Read:217 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response Cybercrime