Cybercrime/malcode – Lifeboat News: The Blog

Internet Archive data breach exposes more than 31 million user accounts: reports

Posted by Genevieve Klien in cybercrime/malcode, encryption, internet | Leave a Comment on Internet Archive data breach exposes more than 31 million user accounts: reports

Oct 11
2024

(NEXSTAR) — The Internet Archive, a popular digital library known for its Wayback Machine, was hacked and suffered a data breach that reportedly exposed 31 million user accounts.

Founder Brewster Kahle confirmed in a post on the social media platform X that a cyberattack on Tuesday knocked the website offline. He also said that usernames, emails, and encrypted passwords had been compromised.

“Services are currently stopped to upgrade internal systems,” Kahle wrote in a Thursday update. “We are working to restore services as quickly and safely as possible. Sorry for this disruption.”

Read more | >

Internet Archive Breach Exposes 31 Million Users

Posted by Saúl Morales Rodriguéz in cybercrime/malcode, internet, law | Leave a Comment on Internet Archive Breach Exposes 31 Million Users

Oct 9
2024

The hack exposed the data of 31 million users as the embattled Wayback Machine maker scrambles to stay online and contain the fallout of digital—and legal—attacks.

Read more | >

Zero-Day Alert: Three Critical Ivanti CSA Vulnerabilities Actively Exploited

Posted by Saúl Morales Rodriguéz in cybercrime/malcode | Leave a Comment on Zero-Day Alert: Three Critical Ivanti CSA Vulnerabilities Actively Exploited

Oct 9
2024

Ivanti warns of active exploitation of three new CSA vulnerabilities, enabling hackers to bypass security measures.

Read more | >

Gamers Tricked Into Downloading Lua-Based Malware via Fake Cheating Script Engines

Posted by Saúl Morales Rodriguéz in cybercrime/malcode | Leave a Comment on Gamers Tricked Into Downloading Lua-Based Malware via Fake Cheating Script Engines

Oct 9
2024

Gamers searching for game cheats are falling victim to a global malware campaign delivering RedLine Stealer.

Read more | >

GoldenJackal Target Embassies and Air-Gapped Systems Using Malware Toolsets

Posted by Saúl Morales Rodriguéz in cybercrime/malcode | Leave a Comment on GoldenJackal Target Embassies and Air-Gapped Systems Using Malware Toolsets

Oct 9
2024

GoldenJackal cyber threat targets air-gapped systems in embassies and governments, using USB-based malware.

Read more | >

New Gorilla Botnet Launches Over 300,000 DDoS Attacks Across 100 Countries

Posted by Saúl Morales Rodriguéz in cybercrime/malcode | Leave a Comment on New Gorilla Botnet Launches Over 300,000 DDoS Attacks Across 100 Countries

Oct 8
2024

New Gorilla botnet launches over 300,000 DDoS attacks globally, exploiting IoT devices and Apache Hadoop flaws.

Read more | >

Vulnerable APIs and Bot Attacks Costing Businesses Up to $186 Billion Annually

Posted by Saúl Morales Rodriguéz in business, cybercrime/malcode, economics, finance, robotics/AI | Leave a Comment on Vulnerable APIs and Bot Attacks Costing Businesses Up to $186 Billion Annually

Oct 8
2024

Organizations are losing between $94 — $186 billion annually to vulnerable or insecure APIs (Application Programming Interfaces) and automated abuse by bots. That’s according to The Economic Impact of API and Bot Attacks report from Imperva, a Thales company. The report highlights that these security threats account for up to 11.8% of global cyber events and losses, emphasizing the escalating risks they pose to businesses worldwide.

Drawing on a comprehensive study conducted by the Marsh McLennan Cyber Risk Intelligence Center, the report analyzes over 161,000 unique cybersecurity incidents. The findings demonstrate a concerning trend: the threats posed by vulnerable or insecure APIs and automated abuse by bots are increasingly interconnected and prevalent. Imperva warns that failing to address security risks associated with these threats could lead to substantial financial and reputational damage.

Read more | >

INTERPOL Arrests 8 in Major Phishing and Romance Fraud Crackdown in West Africa

Posted by Saúl Morales Rodriguéz in cybercrime/malcode | Leave a Comment on INTERPOL Arrests 8 in Major Phishing and Romance Fraud Crackdown in West Africa

Oct 5
2024

INTERPOL arrests 8 cybercriminals in West Africa linked to phishing scams and romance fraud, defrauding victims globally.

Read more | >

LockBit Ransomware and Evil Corp Members Arrested and Sanctioned in Joint Global Effort

Posted by Saúl Morales Rodriguéz in cybercrime/malcode | Leave a Comment on LockBit Ransomware and Evil Corp Members Arrested and Sanctioned in Joint Global Effort

Oct 5
2024

Europol and allies dismantle LockBit ransomware’s infrastructure, arresting key figures and sending a strong message to cybercriminals.

Read more | >

New Perfctl Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking

Posted by Saúl Morales Rodriguéz in cryptocurrencies, cybercrime/malcode, internet | Leave a Comment on New Perfctl Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking

Oct 5
2024

“When a new user logs into the server, it immediately stops all ‘noisy’ activities, lying dormant until the server is idle again. After execution, it deletes its binary and continues to run quietly in the background as a service.”

It’s worth noting that some aspects of the campaign were disclosed last month by Cado Security, which detailed an activity cluster that targets internet-exposed Selenium Grid instances with both cryptocurrency mining and proxyjacking software.

Specifically, the fileless perfctl malware has been found to exploit a security flaw in Polkit (CVE-2021–4043, aka PwnKit) to escalate privileges to root and drop a miner called perfcc.

Read more | >