Cybercrime Archives - Page 5 of 45 - Cyber Security Minute

US Charges 8 People Over Cybercrime, Tax Fraud Scheme

Issued by: Security Week

The defendants, Andi Jacques, Monika Shauntel Jenkins, Louis Noel Michel, Jeff Jordan Propht-Francisque, Dickenson Elan, Michael Jean Poix, Vladimyr Cherelus, and Louisaint Jolteus, allegedly worked together to perform computer intrusions and fraud. An indictment unsealed this week alleges that, between 2015 and 2019, the defendants along with others, including a now-deceased conspirator referred to as…

Vulnerabilities

New York Post ‘Hacked’ in Tweets Calling for Assassination of Biden, Lawmakers

Issued by: Security Week

The rogue tweets were removed late Thursday morning. “The New York Post has been hacked. We are currently investigating the cause,” a message on the tabloid’s account said. “The New York Post’s investigation indicates that the unauthorized conduct was committed by an employee,” the Post said in a statement to AFP, adding that the worker…

Malware & Threats

FBI Warns of Iranian Cyber Firm’s Hack-and-Leak Operations

Issued by: Security Week

Previously known as Eeleyanet Gostar and Net Peygard Samavat, Emennet Pasargad is an organization that often changes its name to avoid US sanctions, and which is known for providing cybersecurity services to government entities in Iran. In November 2020, the US warned that Iranian hackers exploited known vulnerabilities to access voter registration data, and in…

Vulnerabilities

CISA Tells Organizations to Patch Linux Kernel Vulnerability Exploited by Malware

Issued by: Security Week

The vulnerability is tracked as CVE-2021-3493 and it’s related to the OverlayFS file system implementation in the Linux kernel. It allows an unprivileged local user to gain root privileges, but it only appears to affect Ubuntu. CVE-2021-3493 has been exploited in the wild by a stealthy Linux malware named Shikitega, which researchers at AT&T Alien…

Malware & Threats

Keystone Health Data Breach Impacts 235,000 Patients

Issued by: Security Week

In a data breach notification published on its website, Keystone is disclosing a cybersecurity incident identified on August 19 and which has resulted in the disruption of some systems. The healthcare provider says it immediately launched an investigation into the incident, which discovered that certain patient information might have been compromised. “Our investigation found that…

Malware & Threats

New ‘Prestige’ Ransomware Targets Transportation Industry in Ukraine, Poland

Issued by: Security Week

Initially observed last week, the activity surrounding the new malware family, which labels itself Prestige, does not appear to be connected with any of the ransomware or threat groups that Microsoft currently tracks, and is currently referred to as DEV-0960. However, the tech giant warns of potential overlaps with previously observed Russian state-sponsored activity through…

Malware & Threats

Retail Giant Woolworths Discloses Data Breach Impacting 2.2 Million MyDeal Customers

Issued by: Security Week

Woolworths acquired 80% of the MyDeal online marketplace in September, but says MyDeal systems are completely separate from its own systems, which have not been impacted by the incident. According to the company, a threat actor leveraged a user’s compromised credentials to access the MyDeal customer relationship management (CRM) system. This gave the attacker access…

Application Security, Software Security

Mirai Botnet Launched 2.5 Tbps DDoS Attack Against Minecraft Server

Issued by: Security Week

The attack was aimed at a Minecraft server named Wynncraft and it involved UDP and TCP floods. However, the web security firm said it mitigated the attack, preventing it from causing any disruption to the game. While this may have been a record-breaking attack for Cloudflare, Microsoft last year observed an attack that peaked at…