Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog

Category: cybercrime/malcode – Page 29

FICORA and Kaiten Botnets Exploit Old D-Link Vulnerabilities for Global Attacks

Cybersecurity researchers are warning about a spike in malicious activity that involves roping vulnerable D-Link routers into two different botnets, a Mirai variant dubbed FICORA and a Kaiten (aka Tsunami) variant called CAPSAICIN.

“These botnets are frequently spread through documented D-Link vulnerabilities that allow remote attackers to execute malicious commands via a GetDeviceSettings action on the HNAP (Home Network Administration Protocol) interface,” Fortinet FortiGuard Labs researcher Vincent Li said in a Thursday analysis.

“This HNAP weakness was first exposed almost a decade ago, with numerous devices affected by a variety of CVE numbers, including CVE-2015–2051, CVE-2019–10891, CVE-2022–37056, and CVE-2024–33112.”

SRP Federal Credit Union reports data breach affecting more than 240,000 people

A data breach earlier this year at SRP Federal Credit Union has left nearly a quarter-million people exposed to possible identity theft and account fraud.

The ransomware group Nitrogen has claimed responsibility for extracting 650 gigabytes of sensitive customer data, according to reports filed recently with the state attorney general’s offices in Texas and Maine. The breach has been publicly reported throughout December by cybersecurity analysts, financial technology companies and national news media.

Screen captures of what seemed to be raw customer data from SRP were posted on social media through bogus accounts as early as Dec. 5.

Is Artificial Intelligence The Cure For Healthcare’s Chronic Problems?

This presents another challenge: convincing patients to allow the use of their data. Some 70% of Americans have expressed concerns about data privacy, with 56% admitting they find AI in healthcare “scary.”

It isn’t helped by the growing number of data breaches in the healthcare space, with 88 million patients having had their personal health information compromised in data breaches last year alone. Undoubtedly, if AI-powered healthcare is to maintain its trajectory, the sector will need to address these cybersecurity concerns.

AI is no longer a prospect but a reality today. It’s already being deployed in doctors’ offices and hospitals to analyze patient data, handle back-office tasks and assist surgeons. Anticipated to decrease administrative costs by up to 30%, free up hundreds of thousands of hours of physicians’ time and cut surgical waiting times—for the millions of Americans currently suffering in silence, whether due to affordability or accessibility, AI will offer a lifeline.

Hacker breaks into crypto wallet and recovers $2,000,000 in ‘high-stakes’ hack

One hacker has managed to recover over $2,000,000 for a man who forgot the password to his crypto wallet by breaking into the physical device in a ‘high-stakes’ hacking attempt.

Even in its infancy cryptocurrency was worth a lot of money, and it’s surprisingly easy to lose it all with one simple mistake.

Horror stories of people accidentally throwing away hard drives with hundreds of millions of dollars worth of Bitcoin are more than enough to scare anyone away, and this particular video shows how close of a call it can be to recover otherwise simple information.

BadBox malware botnet infects 192,000 Android devices despite disruption

The BadBox Android malware botnet has grown to over 192,000 infected devices worldwide despite a recent sinkhole operation that attempted to disrupt the operation in Germany.

Researchers from BitSight warn that the malware appears to have expanded its targeting scope beyond no-name Chinese Android devices, now infecting more well-known and trusted brands like Yandex TVs and Hisense smartphones.