• Police Reportedly Arrest Egregor Ransomware MembersFrench and Ukrainian police have been in action disrupting the Egregor ransomware group with several arrests last week, according to reports.The suspects were traced via analysis of Blockchain records after victims of the ransomware paid their extorters in Bitcoin, according to public radio channel, France Inter.Those arrested in Ukraine are thought to have been hackers as well as individuals providing logistical and financial support to th

  • Yandex Insider Breach Hits Nearly 5000 InboxesRussian internet giant Yandex has revealed that thousands of its customers had their accounts accessed due to a malicious insider working at the firm.The Moscow-headquartered multi-national provides search, email, e-commerce and even ride-hailing services, and claims to have tens of millions of unique monthly users.However, on Friday it noted in a brief statement that an employee had been selling access to users’ email accounts for personal gai

  • We need to develop a vaccine against media scare tactics | David Mitchell

    Last week the terrorism threat level was downgraded, but purveyors of news have myriad ways to keep us fretting about the futureIs it a sign of the devaluation of the currency of dread that hardly anyone seemed to notice last week’s announcement that a terrorist attack is likely? I mean, come on! That’s still frightening, isn’t it? Or have we maxed out on stressing about things we can’t control?No we haven’t. Don’t worry: we’re still worriers. The reason

  • Three Charged Over Fraudulent Vaccine Website Three men in Baltimore County have been accused of impersonating Massachusetts pharmaceutical and biotechnology company Moderna to sell fake COVID-19 vaccines. Twenty-two-year-old Owings Mills resident Kelly Lamont Williams, together with cousins and Windsor Mill residents 22-year-old Olakitan Oluwalade and 25-year-old Odunayo Baba Oluwalade, also known as Olaki and Baba respectively, were arrested on February 11. A criminal 

  • US Jails Money Mule KingpinA Ukrainian man will spend the next seven years in prison in the United States for helping Eastern European computer hackers to obtain and launder millions of dollars in stolen funds. Odessa resident Aleksandr Musienko partnered with the hackers to steal over $3m from online bank accounts and businesses in the United States, then launder the stolen money overseas. Information hacked and stolen by the 38-year-old’s partners in the scheme allowed them to i

  • Diners Devour Made-to-Order FraudRestaurants and food delivery services are being ripped off by a new made-to-order fraud scheme taking place on the messaging app Telegram.Research and analysis from Sift’s Digital Trust and Safety Architects found that bad actors are advertising heavily discounted food and beverage delivery services on the app’s forums. After receiving an order, the cyber-criminals pay with stolen credentials obtained from data breaches and cyber-attacks or leverage a

  • Real Bug Volumes in 2020 Exceed Official CVEs by 29%: ReportTotal vulnerability disclosures for 2020 are on track to exceed the previous year’s figures, with a large percentage not recorded in the official National Vulnerability Database (NVD), according to Risk Based Security.The security vendor’s 2020 Year End Vulnerability QuickView Report recorded 23,269 bugs last year, although there may still be some left to come in.“Organizations should be aware that … 1917 have a

  • Nearly Two-Thirds of CVEs Are Low Complexity Security experts have warned of an increase in published vulnerabilities which are relatively easy to exploit and require no user interaction.Managed security service provider Redscan’s latest report, NIST Security Vulnerability Trends in 2020: An Analysis, takes a look back at the 18,000+ CVEs recorded in NIST’s National Vulnerability Database (NVD).Aside from the fact that more CVEs were reported in 2020 than any year previously, a fact

  • Singtel Supply Chain Breach Traced to Zero-Day BugOne of APAC’s biggest telecoms companies has admitted that a supply chain attack may have led to the compromise of customer data.Singtel released a statement on Thursday revealing that it was running Accellion’s legacy file sharing system FTA to share information internally and with external stakeholders.Cyber-criminals appear to have exploited potentially multiple FTA vulnerabilities in attacks against various customers.Although

  • Queen’s University Belfast Recognized for Role in Growing Cybersecurity AwarenessQueen’s University Belfast in the UK has been recognized for its cybersecurity education program and work promoting cyber-skills in its local community.As a result of these efforts, the institution has been awarded silver recognition from its Academic Center of Excellence in Cyber Security (ACE-CSE) program by the National Cyber Security Center (NCSC). The ACE-CSE initiative was introduced

  • India Calls Out Twitter for Differential TreatmentTwitter has been issued a non-compliance notice by the Indian government for failing to block accounts used to spread misinformation and provoke violence.Prime Minister Narendra Modi ordered Twitter to block over 1,000 Twitter accounts after political protestors stormed Delhi’s Red Fort and clashed with police on January 26, India’s Republic Day. Twitter only partially complied with the request, temporarily blocking some of the acc

  • Apax to Acquire Herjavec Group Funds advised by Apax Partners today announced the signing of a definitive agreement to acquire a majority stake of global managed security services provider Herjavec Group (HG).Under the deal, Robert Herjavec, who founded the award-winning company in 2003, will stay on as chief executive officer and remain a significant stakeholder. Herjavec said he “couldn’t be more thrilled” to welcome the Apax Partners team to his award-

  • Illinois Is State Hit Hardest by Cybercrime The highest concentration of cybercrime victims in the United States can be found in Illinois, according to a recent study by Clario.The London-based cybersecurity company analyzed cybercrime data in the UK and the US to determine which geographical areas were hardest hit by attackers. In the US, Illinois topped the table with 14.6 victims per 1,000 people. The Prairie State was followed closely by Virginia, which had 13.2 victims per 1,

  • UK Govt Reveals Plans to Build Trust in Use of Digital IdentitiesThe UK government has unveiled draft rules for governing the future use of digital identities.The move is part of the government’s commitment to developing the digital identity market, making it quicker and easier for people to verify themselves using modern technology and create a process as trusted as using passports or bank statements.The new Trust Framework lays out the draft rules organizations should follow, includ

  • #WomenInScience: High Number of Girls Sign Up for Codebreaking Contest Over 6500 girls across the UK have signed up to a codebreaking competition aimed at encouraging more girls to consider a career in the cybersecurity industry, the National Cyber Security Center (NCSC) has revealed.These figures have been published on this year’s International Day of Women and Girls in Science, a global campaign that aims to achieve full and equal access to and participation in science for women and

  • Political Bias and Impulsive Behavior Open Door to Misinformation Americans are three-times as likely to follow strangers on Twitter if they share the same political views, according to new research which sheds more light on the spread of online misinformation and social media “echo chambers.”The peer-reviewed study from researchers at MIT and the UK’s Exeter University began by identifying 842 random Twitter users who displayed partisan bias towards the Republican or Democrati

  • UN Links North Korea to $281m Crypto Exchange HeistA cyber-attack on a cryptocurrency exchange last September which led to the theft of hundreds of millions of dollars in digital money has been blamed on North Korean actors.A United Nations report to the UN Security Council seen by Reuters “strongly suggests” that hackers from the “hermit kingdom” were involved in the cyber-heist at KuCoin last September.The attack led to the theft of $281m in cryptocurrency fro

  • UK Cops Arrest Eight in US Celeb SIM Swap CaseBritish law enforcers have arrested eight men on suspicion of running a SIM swapping ring targeting US celebrities and sports stars.The National Crime Agency (NCA) led the investigation in the UK, working alongside agents from the US Secret Service, Homeland Security Investigations, the FBI and the Santa Clara California District Attorney’s Office.SIM swapping is an increasingly popular way to hijack high-profile users’ social media and o

  • Cloud Security Firm iboss Appoints New Senior LeadersCloud security firm iboss has announced the appointment of two high-profile senior leaders as it looks to continue its rapid growth during the COVID-19 pandemic.Eric Cornelius has become its new chief product officer, while Wallace Sann joins as senior vice-president of technical operations, with the pair tasked with increasing adoption of iboss’ Secure Access Service Edge (SASE) and zero-trust (ZTNA) solutions. Cornelius will oversee th

  • Tenable Announces Intent to Acquire AlsidTenable Holdings today announced that it has entered into a definitive agreement to acquire Active Directory security startup Alsid SAS for $98m in cash.Alsid specializes in providing a Software as a Service (SaaS) solution that monitors the security of Active Directory in real time. The company was founded in France in 2016 by two former incident responders from the French National Cybersecurity Agency (ANSSI), Emmanuel

  • Researcher Hacks Apple and Microsoft A researcher claims to have hacked into the internal systems of major companies including Apple and Microsoft using a novel supply chain attack. Alex Biran created malicious Node packages and uploaded them to the npm registry under unclaimed names. The node packages collected information through their preinstall script about machines upon which they are installed. Next, Biran came up with a way to get the packages to send information back

  • Hacker Admits Stealing College Girls’ Nude SnapsA man from New York has admitted hacking into the social media accounts of female college students and stealing intimate photographs to trade online.Over a two-year period, Rochester resident Nicholas Faber compromised the accounts of dozens of women attending State University of New York (SUNY) Plattsburgh to access videos and images in which his victims appeared in a state of undress. The 25-year-old did not commit his crimes alone. Fa

  • Identity Verification Firm Veriff Appoints Amish Mody as New CFOEstonia-based online identity verification company Veriff has announced the appointment of Amish Mody as its new chief financial officer (CFO).Mody joins Veriff from FinTech firm Monese, where he served as VP of finance for five years, overseeing the company’s development from pre-launch to a headcount of several hundred, with operations in four countries.At Veriff, Mody will head the financial planning, accounting, business i

  • Credential Theft Attacks Doubled Between 2016 and 2020The number of attacks resulting in large-scale credential theft has almost doubled over the past four years, although the volume of breached login pairs declined, according to F5.The security vendor’s 2021 Credential Stuffing Report warned that although average breach volumes declined from 63 million records in 2016 to 17 million in 2020, poor security practice is driving downstream risk exposure.Perhaps unsurprisingly, plaintext storag

  • Romance Fraud Surges in Lockdown Following Shift to Online DatingBank transfer romance fraud rose 20% year-on-year between January and November 2020, according to new figures from UK Finance.Published shortly before this year’s Valentine’s Day, the trade association revealed that the total value of this type of scam – in which victims are duped into sending money to criminals who have convinced them they are in a genuine relationship – has increased by 12% to £18.5m

  • Scammers Selling Fake #COVID19 Vaccination Cards for Just $20Fraudsters are setting up Shopify-backed online stores to sell fake COVID-19 vaccination cards to anti-vaxxers, according to DomainTools.Due to the decentralized nature of the US healthcare system, the cards, which carry the logo of the US Centers for Disease Control and Prevention (CDC), were judged to be the simplest way the authorities can keep track of who has had the jab.Yet with 13% of Americans stating they will refuse the vacci

  • Zero-Day and Six Publicly Disclosed CVEs Fixed by MicrosoftMicrosoft has fixed 56 CVEs as part of this month’s Patch Tuesday, including several already publicly disclosed and one zero-day being actively exploited in the wild.Although the workload is relatively light for sysadmins this month, there’s plenty to be concerned about.The zero-day is CVE-2021-1732, a Windows Win32k.sys elevation of privilege vulnerability affecting Windows 10 and Windows Server 2019. Although rated as &ldqu

  • Cyber Command Major Imprisoned for Sex Crime A US Army Cyber Command major has been sentenced to 30 years in federal prison for producing child sexual abuse material (CSAM).Jason Michael Musgrove, of Grovetown, Georgia, was arrested in December 2019. At the time of his apprehension by law enforcement officers, the 41-year-old was serving as an integrated threat operations officer with Top Secret/Sensitive Compartmentalized Information clearance, assigned to the Army Cyber Joint Headquarters at F

  • Gaming Industry Is Fraudsters’ Prime TargetNew data released today by Arkose Labs shows increased fraud across all industries since Black Friday, with North America’s gaming industry being a primary target. As the popularity of online shopping continues under the ongoing COVID-19 pandemic, researchers observed a surge in credential stuffing, account takeover (ATO) attacks, and gift card fraud.Credential-stuffing attacks more than doubled in Q4 of 2020 compared to Q

  • Alison Partners with CODEREDCybersecurity course publisher CODERED has formed a partnership with one of the world’s largest fee-free online learning platforms.The publishing partnership between CODERED and Alison.com was announced earlier today. The first educational fruit to be born from this union is a certified online course titled Hands-On Android Security that takes approximately four to five hours to complete.Students of the course will become acquainted with

  • Source link

    Is your business effected by Cyber Crime?

    If a cyber crime or cyber attack happens to you, you need to respond quickly. Cyber crime in its several formats such as online identity theft, financial fraud, stalking, bullying, hacking, e-mail fraud, email spoofing, invoice fraud, email scams, banking scam, CEO fraud. Cyber fraud can lead to major disruption and financial disasters. Contact Digitpol’s hotlines or respond to us online.

    Digitpol’s Cyber Crime Investigation Unit provides investigative support to victims of cyber crimes. Digitpol is available 24/7. https://digitpol.com/cybercrime-investigation/

    Europe +31558448040
    UK +44 20 8089 9944
    ASIA +85239733884