infosec

Hackers exploiting SharePoint zero-day seen targeting government agencies

Security /

The hackers behind the initial wave of attacks exploiting a zero-day in Microsoft SharePoint servers have so far primarily targeted government organizations, according to researchers as well as news reports. Over the weekend U.S. cybersecurity agency CISA published an alert, warning that hackers were exploiting a previously unknown bug — known as a “zero-day” — […]

Hackers exploiting SharePoint zero-day seen targeting government agencies Read More »

These are our favorite cyber books on hacking, espionage, crypto, surveillance, and more

Security /

In the last 30 years or so, cybersecurity has gone from being a niche specialty within the larger field of computer science, to an industry estimated to be worth more than $170 billion made of a globe-spanning community of hackers. In turn, the industry’s growth, and high-profile hacks such as the 2015 Sony breach, the

These are our favorite cyber books on hacking, espionage, crypto, surveillance, and more Read More »

Hackers are trying to steal passwords and sensitive data from users of Signal clone

Security /

Hackers are targeting a previously reported bug in the Signal clone app TeleMessage in an effort to steal users’ private data, according to security researchers and a U.S. government agency. TeleMessage, which earlier this year was revealed to be used by high-ranking officials in the Trump administration, already experienced at least one data breach in

Hackers are trying to steal passwords and sensitive data from users of Signal clone Read More »

Marks & Spencer chair refuses to say if retailer paid hackers after ransomware attack

Security /

The chairman of U.K. retail giant Marks & Spencer declined to tell a panel of lawmakers whether the company paid a hacking group following a ransomware attack earlier this year.   “We’ve said that we are not discussing any of the details of our interaction with the threat actor,” said chairman Archie Norman, referring to the

Marks & Spencer chair refuses to say if retailer paid hackers after ransomware attack Read More »

Ransomware gang Hunters International says it’s shutting down

Security /

The ransomware gang known as Hunters International announced on its dark web page Thursday that it is shutting down.  “After careful consideration and in light of recent developments, we have decided to close the Hunters International project,” the hackers wrote in a post, without clarifying what specific developments it was referring to. “This decision was

Ransomware gang Hunters International says it’s shutting down Read More »

US, French authorities confirm arrest of BreachForums hackers

Security /

U.S. and French authorities have confirmed the arrests of five hackers accused of being behind several major hacks and being part of a notorious cybercrime forum.  On Thursday, the U.S. Department of Justice announced the indictment of British national Kai West, 25, accusing him of being “a serial hacker” known as IntelBroker. U.S. authorities allege

US, French authorities confirm arrest of BreachForums hackers Read More »

Researchers confirm two journalists were hacked with Paragon spyware

Security /

Two European journalists were hacked using government spyware made by Israeli surveillance tech provider Paragon, new research has confirmed.  On Thursday, digital rights group The Citizen Lab published a new report detailing the results of a new forensic investigation into the iPhones of Italian journalist Ciro Pellegrino and an unnamed “prominent” European journalist. The researchers

Researchers confirm two journalists were hacked with Paragon spyware Read More »

US government sanctions tech company involved in cyber scams

Security /

The U.S. government imposed sanctions on FUNNULL, a company accused of providing infrastructure for cybercriminals running so-called “pig butchering” crypto scams that have led to $200 million in losses for Americans victims.  On Thursday, the Treasury’s Office of Foreign Assets Control announced the sanctions, saying FUNNULL is “linked to the majority of virtual currency investment

US government sanctions tech company involved in cyber scams Read More »

Mysterious hacking group Careto was run by the Spanish government, sources say

Security /

More than a decade ago, researchers at antivirus company Kaspersky identified suspicious internet traffic of what they thought was a known government-backed group, based on similar targeting and its phishing techniques. Soon, the researchers realized they had found a much more advanced hacking operation that was targeting the Cuban government, among others. Eventually the researchers

Mysterious hacking group Careto was run by the Spanish government, sources say Read More »