cyberveille.decio.ch

7898 bookmarks

Custom sorting

Crooks threaten to leak 2.9B records of personal info

Billions of records detailing people's personal information may soon be dumped online after being allegedly obtained from a Florida firm that handles background checks and other requests for folks' private info. A criminal gang that goes by the handle USDoD put the database up for sale for $3.5 million on an underworld forum in April, and rather incredibly claimed the trove included 2.9 billion records on all US, Canadian, and British citizens. It's believed one or more miscreants using the handle SXUL was responsible for the alleged exfiltration, who passed it onto USDoD, which is acting as a broker.

#theregister #EN #2024 #USDoD #database #US #Florida #leak

·theregister.com·Jun 4, 2024

Crooks threaten to leak 2.9B records of personal info

Hacking Millions of Modems (and Investigating Who Hacked My Modem)

Two years ago, something very strange happened to me while working from my home network. I was exploiting a blind XXE vulnerability that required an external HTTP server to smuggle out files, so I spun up an AWS box and ran a simple Python webserver to receive the traffic from the vulnerable server:

#samcurry #EN #2024 #modem #cox #investigation

·samcurry.net·Jun 3, 2024

Hacking Millions of Modems (and Investigating Who Hacked My Modem)

Telegram Combolists and 361M Email Addresses

Last week, a security researcher sent me 122GB of data scraped out of thousands of Telegram channels. It contained 1.7k files with 2B lines and 361M unique email addresses of which 151M had never been seen in HIBP before. Alongside those addresses were passwords and, in many cases, the website the data pertains to. I've loaded it into Have I Been Pwned (HIBP) today because there's a huge amount of previously unseen email addresses and based on all the checks I've done, it's legitimate data. That's the high-level overview, now here are the details:

#troyhunt #EN #2024 #Telegram #Combolists #361M #Email #Addresses #122GB #HIBP #infostealer

·troyhunt.com·Jun 3, 2024

Telegram Combolists and 361M Email Addresses

Google Leak Reveals Thousands of Privacy Incidents

An internal Google database obtained by 404 Media shows Google recording childrens' voices, saving license plates from Street View, and many other self-reported incidents, large and small.

#404media #EN #2024 #Google #Leak #Privacy #database

·404media.co·Jun 3, 2024

Google Leak Reveals Thousands of Privacy Incidents

Detecting and Preventing Unauthorized User Access: Instructions

Snowflake recently observed and is investigating an increase in cyber threat activity targeting some of our customers’ accounts. We believe this is the result of ongoing industry-wide, identity-based attacks with the intent to obtain customer data. Research indicates that these types of attacks are performed with our customers’ user credentials that were exposed through unrelated cyber threat activity. To date, we do not believe this activity is caused by any vulnerability, misconfiguration, or malicious activity within the Snowflake product. Throughout the course of our ongoing investigation, we have promptly informed the limited number of customers who we believe may have been impacted. This post will assist with investigating any potential threat activity within Snowflake customer accounts and provide guidance in the “Recommended Actions” section below.

#Snowflake #EN #2024 #IoCs #Instructions #investigating

·community.snowflake.com·Jun 3, 2024

Detecting and Preventing Unauthorized User Access: Instructions

Molding lies into reality || Exploiting CVE-2024-4358

Progress Report Server Unauthenticated Remote Code Execution Chain

#summoning.team #EN #2024 #CVE-2024-4358 #Telerik #Report #Server

·summoning.team·Jun 3, 2024

Molding lies into reality || Exploiting CVE-2024-4358

Snowflake at centre of world’s largest data breach

Cloud AI Data platform Snowflake are having a bad month. Due to teenager threat actors and cybersecurity of its own customers… and its own cybersecurity, too, in terms of optics. There are several large data breaches playing out in the media currently. For example, Ticketmaster owner Live Nation filed an 8-K with the SEC for potentially the largest data breach ever, claimed to be 560 million customers.

#doublepulsar #EN #204 #Snowflake #Data-Breach #analysis #KevinBeaumont

·doublepulsar.com·Jun 3, 2024

Snowflake at centre of world’s largest data breach

Cyber house of cards – Politicians’ personal details exposed online

We searched the dark web for politicians’ official email addresses, and roughly 40% of them appeared, along with other sensitive information. This is a scandal waiting to happen.

#proton.me #EN #2024 #darkweb #politicians #PI #exposed #marketplace

·proton.me·Jun 3, 2024

Cyber house of cards – Politicians’ personal details exposed online

Ticketmaster confirms massive breach after stolen data for sale online

Live Nation has confirmed that Ticketmaster suffered a data breach after its data was stolen from a third-party cloud database provider, which is believed to be Snowflake.

#bleepingcomputer #EN #2024 #Cyberattack #Data-Breach #ShinyHunters #Snowflake #Ticketmaster

·bleepingcomputer.com·Jun 3, 2024

Ticketmaster confirms massive breach after stolen data for sale online

Shalev Hulio Made Pegasus Spyware, Now He’s King of Israeli AI

Shalev Hulio is remaking his image but is still involved in a web of cybersecurity ventures with his old colleagues from NSO Group.

#theintercept #EN #2024 #Shalev-Hulio #Spyware #Israel #AI #Pegasus #NSO

·theintercept.com·Jun 2, 2024

Shalev Hulio Made Pegasus Spyware, Now He’s King of Israeli AI

Stealing everything you’ve ever typed or viewed on your own Windows PC is now possible with two lines of code — inside the Copilot+ Recall disaster.

I wrote a piece recently about Copilot+ Recall, a new Microsoft Windows 11 feature which — in the words of Microsoft CEO Satya Nadella- takes “screenshots” of your PC constantly, and makes it into an…

#doublepulsar #EN #Microsoft #Copilot+#PC #Windows #Recall #Stealing #disaster #KevinBeaumont

·doublepulsar.com·Jun 1, 2024

Stealing everything you’ve ever typed or viewed on your own Windows PC is now possible with two lines of code — inside the Copilot+ Recall disaster.

NIST Getting Outside Help for National Vulnerability Database

NIST announced on Wednesday that it will be receiving outside help to get the National Vulnerability Database (NVD) back on track within the next few months. The organization informed the cybersecurity community in February that it should expect delays in the analysis of Common Vulnerabilities and Exposures (CVE) identifiers in the NVD, saying that it was working to establish a consortium to improve the program.

#securityweek #EN #2024 #NIST #CVE #National #Vulnerability #Database #NVD

·securityweek.com·Jun 1, 2024

NIST Getting Outside Help for National Vulnerability Database

How AI Will Change Democracy

I don’t think it’s an exaggeration to predict that artificial intelligence will affect every aspect of our society. Not by doing new things. But mostly by doing things that are already being done by humans, perfectly competently. Replacing humans with AIs isn’t necessarily interesting. But when an AI takes over a human task, the task changes.

#schneier #EN #2024 #AI #risk #Democracy #Change #analysis

·schneier.com·Jun 1, 2024

How AI Will Change Democracy

Hackers phish finance orgs using trojanized Minesweeper clone

Hackers are utilizing code from a Python clone of Microsoft's venerable Minesweeper game to hide malicious scripts in attacks on European and US financial organizations.

#bleepingcomputer #EN #2024 #Minesweeper #RAT #Remote-Access #Remote-Access-Trojan #Ukraine

·bleepingcomputer.com·Jun 1, 2024

Hackers phish finance orgs using trojanized Minesweeper clone

Space secrets security update

We’re on a journey to advance and democratize artificial intelligence through open source and open science.

#huggingface #EN #2024 #incident #breach #secrets #AI #tokens

·huggingface.co·Jun 1, 2024

Space secrets security update

Ticketmaster confirms data breach with a SEC filing

Live Nation Entertainment, also known as Ticketmaster, has submitted an official Form 8-K with the U.S. Securities and Exchange Commission (SEC),

#stackdiary #EN #2024 #Ticketmaster #SEC #data-breach

·stackdiary.com·Jun 1, 2024

Ticketmaster confirms data breach with a SEC filing

Hacker Releases Jailbroken "Godmode" Version of ChatGPT

A hacker has released a jailbroken version of ChatGPT called "GODMODE GPT." Earlier today, a self-avowed white hat operator and AI red teamer who goes by the name Pliny the Prompter took to X-formerly-Twitter to announce the creation of the jailbroken chatbot, proudly declaring that GPT-4o, OpenAI's latest large language model, is now free from its guardrail shackles.

#futurism #EN #2024 #chatgpt #jailbroken #GODMODE

·futurism.com·Jun 1, 2024

Hacker Releases Jailbroken "Godmode" Version of ChatGPT

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Obsolètes, des caméras sont des «proies faciles pour les pirates», conclut un audit interne qui affirme que l’armée néglige sa sécurité informatique.

#20min #FR #CH #2023 #IoT #armée #camera #webcam #audit #vulnérables

·20min.ch·Jan 24, 2023

Suisse: Caméras de surveillance de l’armée jugées trop vulnérables

Ransomware Diaries: Volume 1

The LockBit ransomware gang is one of the most notorious organized cybercrime syndicates that exists today. The gang is behind attacks targeting private-sector corporations and other high-profile industries worldwide. News and media outlets have documented many LockBit attacks, while security vendors offer technical assessments explaining how each occurred. Although these provide insight into the attacks, I wanted to know more about the human side of the operation to learn about the insights, motivations, and behaviors of the individuals on the other side of the keyboard. To prepare for this project, I spent months developing several online personas and established their credibility over time to gain access to the gang’s operation.

#analyst1 #EN #2023 #LockBit #ransomware #Insights

·analyst1.com·Jan 21, 2023

Ransomware Diaries: Volume 1

Accidentally Crashing a Botnet

As part of our research into the cryptomining botnet kmsdbot, we rendered it useless.

#akamai #EN #2022 #Security-Research #Research #Bot-Attacks #DDOS #Cyber-Security #Kmsdbot #botnet #SIRT #cryptomining #crash #malware

·akamai.com·Jan 15, 2023

Accidentally Crashing a Botnet

Schools hit by cyber attack and documents leaked

Confidential details including child passport scans and SEN data is published online, the BBC finds.

#bbc #EN #2023 #ViceSociety #vice-society #schools #UK #leak #ransomware #attack #education

·bbc.com·Jan 6, 2023

Schools hit by cyber attack and documents leaked

Shc Linux Malware Installing CoinMiner

The ASEC analysis team recently discovered that a Linux malware developed with Shc has been installing a CoinMiner. It is presumed that after successful authentication through a dictionary attack on inadequately managed Linux SSH servers, various malware were installed on the target system. Among those installed were the Shc downloader, XMRig CoinMiner installed through the former, and DDoS IRC Bot, developed with Perl.

#asec #2023 #EN #Shell #Script #Compiler #analysis #Linux #Malware #CoinMiner #Shc

·asec.ahnlab.com·Jan 4, 2023

Shc Linux Malware Installing CoinMiner

Cyber attacks set to become ‘uninsurable’, says Zurich chief

The chief executive of one of Europe’s biggest insurance companies has warned that cyber attacks, rather than natural catastrophes, will become “uninsurable” as the disruption from hacks continues to grow.

#ft #Financial-Times #archive #2022 #EN #chief #executive #insurance #cyber-attacks #uninsurable #Zurich

·archive.ph·Dec 30, 2022

Cyber attacks set to become ‘uninsurable’, says Zurich chief

Twitter in data-protection probe after '400 million' user details up for sale

A watchdog is to investigate Twitter after a hacker claimed to have private details linked to more than 400 million accounts.

#BBC #EN #2022 #hacker #data-protection #Twitter #sale #watchdog

·bbc.co.uk·Dec 29, 2022

Twitter in data-protection probe after '400 million' user details up for sale

Darknet markets generate millions in revenue selling stolen personal data

A handful of markets were responsible for trafficking most of the data.

#arstechnica #EN #2022 #Darknet #markets #data #stolen-data-supply-chain

·arstechnica.com·Dec 3, 2022

Darknet markets generate millions in revenue selling stolen personal data

Suisse: Une cyberattaque bloque la comptabilité de milliers de sociétés

Victime du piratage de son hébergeur cloud, le logiciel de gestion d'entreprise Winbiz ne peut pas être utilisé depuis lundi. Le retour à la normale prendra du temps.

#20min #FR #CH #2022 #Winbiz #inforpro #piratage #cloud #hébergeur

·20min.ch·Nov 24, 2022

Suisse: Une cyberattaque bloque la comptabilité de milliers de sociétés

Vanuatu: Hackers strand Pacific island government for over a week

Vanuatu - an island courted by the US and China - has been stranded offline for over a week.

#BBC #EN #2022 #Vanuatu #ransomware #government

·bbc.com·Nov 21, 2022

Vanuatu: Hackers strand Pacific island government for over a week

LockBit ransomware suspect nabbed in Canada, faces charges in the US

Automation features make LockBit one of the more destructive pieces of ransomware. Federal prosecutors on Thursday charged a dual Russian and Canadian national for his alleged participation in a global campaign to spread ransomware known as LockBit. Mikhail Vasiliev, 33, of Bradford, Ontario, Canada, was taken into custody in late October by authorities in Ontario, officials at Interpol said. He is now in custody in Canada awaiting extradition to the US.

#arstechnica #EN #2022 #LockBit #Canada #member #arrest

·arstechnica.com·Nov 13, 2022

LockBit ransomware suspect nabbed in Canada, faces charges in the US

Crimson Kingsnake: BEC Group Impersonates…

Recently, we identified a new BEC group leveraging blind third-party impersonation tactics to swindle companies around the world. The group, which we call Crimson Kingsnake, impersonates real attorneys, law firms, and debt recovery services to deceive accounting professionals into quickly paying bogus invoices.

#abnormalsecurity #EN #2022 #BEC #invoices #Crimson-Kingsnake #impersonation #scam

·abnormalsecurity.com·Nov 3, 2022

Crimson Kingsnake: BEC Group Impersonates…

How Vice Society got away with a global ransomware spree | Ars Technica

Vice Society has a superpower that’s allowed it to quietly thrive: Mediocrity.

#arstechnica #EN #2022 #vice-society #mediocrity #opinion #school

·arstechnica.com·Oct 22, 2022

How Vice Society got away with a global ransomware spree | Ars Technica