Cybercrime Archives - Page 13 of 45 - Cyber Security Minute

‘Moobot’ Botnet Targets Hikvision Devices via Recent Vulnerability

Issued by: Security Week

Tracked as CVE-2021-36260 and affecting over 70 cameras and NVRs from Hikvision, the critical-severity bug can be exploited to gain root access and completely take over vulnerable devices, without any form of user interaction. Hikvision released patches for the vulnerability on September 18 and, shortly after, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) alerted…

Malware & Threats

Ransomware Operators Leak Data Stolen From Wind Turbine Giant Vestas

Issued by: Security Week

Vestas became aware of the breach on November 19 and it immediately started shutting down IT systems. The company confirmed in late November that it had been hit by ransomware and that the breach resulted in internal files getting compromised. The firm said the incident did not impact wind turbine operations and nearly all systems…

Malware & Threats

QNAP Warns of New Crypto-Mining Malware Targeting NAS Devices

Issued by: Security Week

The Taiwan-based company, which is well known for its NAS and professional network video recorder (NVR) solutions, on Tuesday urged users to take immediate action to keep their devices protected against the new threat. QNAP says it is currently investigating reports where attackers infect NAS appliances with a Bitcoin miner that can be identified by…

Malware & Threats

Cyberattack Causes Significant Disruption at Colorado Electric Utility

Issued by: Security Week

The Delta-Montrose Electric Association (DMEA) is a member-owned and locally controlled rural electric cooperative that serves more than 34,000 customers in Colorado’s Montrose, Delta, and Gunnison counties. It is part of Touchstone Energy Cooperatives, a cooperative federation that has over 750 members across the United States. DMEA last week revealed that it had discovered a…

Malware & Threats

Hackers Steal $150 Million Worth of Cryptocurrency From BitMart

Issued by: Security Week

The platform claims that only the Ethereum (ETH) and Binance Smart Chain (BSC) hot wallets were impacted, and notes that the two wallets were compromised using stolen private keys. “In response to this incident, BitMart has completed initial security checks and identified affected assets. This security breach was mainly caused by a stolen private key…

Network Security

Facebook, Twitter Take Down More State-Linked Accounts

Issued by: Security Week

Facebook removed over 800 accounts, pages and groups from the social media platform for engaging in what the company calls coordinated inauthentic behavior. Other accounts were taken down for brigading and mass reporting. The largest number of removed Facebook accounts, pages, and groups (548 in total, alongside 86 Instagram accounts) were associated with a network…

Network Security

Missouri Man Sentenced to Prison Over Role in SIM Swapping Scheme

Issued by: Security Week

The man, Garrett Endicott, 22, of Warrensburg, Johnson County, who pleaded guilty to his role in the scheme, was also ordered to pay $121,000 in restitution, the United States Department of Justice said on Tuesday. Endicott is the sixth member of the international hacking group “The Community” to have been sentenced in connection with the…

Malware & Threats

Wind Turbine Giant Vestas Confirms Ransomware Involved in Cyberattack

Issued by: Security Week

Vestas became aware of the breach on November 19 and it immediately started shutting down IT systems. Little information was provided when the attack was disclosed, but the company’s description of the incident suggested that it was a ransomware attack. In an update shared on Monday, Vestas confirmed that ransomware was indeed used and that…

Network Security

Ransomware Operators Threaten to Leak 1.5TB of Supernus Pharmaceuticals Data

Issued by: Security Week

The attack, the Rockville, Maryland-based company says, likely happened in mid-November, when a ransomware group accessed data on certain systems, deployed malware to prevent access to files, and then threatened to leak the exfiltrated files. Despite that, Supernus Pharmaceuticals says it did not experience a significant impact on its business, as its operations were not…

Vulnerabilities

Researchers Hack Conti Ransomware Infrastructure

Issued by: Security Week

The flaw also allowed the researchers to identify the real IP addresses of the hidden service hosting the recovery website, including 20 IPs communicating with the Conti servers, and two Tor entry nodes used for the recovery service, all of which were reported to the authorities. Furthermore, Prodaft discovered victim chat sessions that allowed them…