Geek-Guy.com

Author: Charley Nash

Ex-Canadian Government Employee Pleads Guilty to Involvement With NetWalker Ransomware Group

Early this week, an ex-Canadian government employee pleaded guilty in a Florida court to charges of involvement with the NetWalker ransomware group. Sebastien Vachon-Desjardins, 34, was accused of conspiracy to commit computer fraud and wire fraud, as well as intentional damage to a protected computer and transmitting a demand concerning damaging a protected computer. In […]

The post Ex-Canadian Government Employee Pleads Guilty to Involvement With NetWalker Ransomware Group appeared first on IT Security Guru.

North Korea-Backed Hacking Collective Lazarus Group Suspected to be Behind Recent Harmony Bridge Attack

The notorious North Korea-backed hacking collective Lazarus Group is suspected to be behind the recent $100 million altcoin theft from Harmony Horizon Bridge. Last week Harmony confirmed that its Horizon Bridge, a platform that allows users to move cryptocurrency across different blockchains, had been breached. The incident involved the exploiter carrying out multiple transactions on […]

The post North Korea-Backed Hacking Collective Lazarus Group Suspected to be Behind Recent Harmony Bridge Attack appeared first on IT Security Guru.

$100m Stolen from California Based Cryptocurrency Firm by Unidentified Hackers

An unidentified hacker group has stolen more than $100million from Californian cryptocurrency firm Harmony. Last Thursday, the company made the announcement via Twitter. They said that they had identified a theft occurring on the Horizon bridge amounting to approximately $100m. The first Tweet reads, “we have begun working with national authorities and forensic specialists to identify […]

The post $100m Stolen from California Based Cryptocurrency Firm by Unidentified Hackers appeared first on IT Security Guru.

Global Police Operation Cracks Down on Widespread Criminal Activity

Police from South America and Europe have teamed up to take action against an organised crime group involved in human trafficking for sexual exploitation. Between the 20th and 23rd June, the police swooped on 14 locations, arrested 10 and interviewed eight victims. Among the items seized in the searches were vehicles, hard drives, electronic equipment, […]

The post Global Police Operation Cracks Down on Widespread Criminal Activity appeared first on IT Security Guru.

German Green Party’s Emails Compromised by Hackers

A German Green Party spokesperson told POLITICO that email accounts belonging to the party had been compromised in a cybersecurity incident. Omid Nouripour and Ricarda Lang, the party’s co-leaders, were among the hacking victims, in which some messages were forwarded to external servers. Additionally, German magazine Der Spiegel reported Thursday that the attack also affected […]

The post German Green Party’s Emails Compromised by Hackers appeared first on IT Security Guru.

WordPress Update Millions of Sites to patch a Critical Vulnerability Affecting the Ninja Forms Plugin

Content management system (CMS) provider WordPress has forcibly updated over a million sites in order to patch a critical vulnerability affecting the Ninja Forms plugin. The Wordfence threat intelligence team spotted the flaw in June and documented it in an advisory by the company on Thursday. The document said that the code injection vulnerability made […]

The post WordPress Update Millions of Sites to patch a Critical Vulnerability Affecting the Ninja Forms Plugin appeared first on IT Security Guru.

US Man Sentenced to Nine Years in Prison After Hacking Thousands of iCloud Accounts

A man from California was sentenced to time in prison on Wednesday after being found guilty of hacking thousands of iCloud accounts, stealing people’s nude images and videos and sharing them with conspirators. Hao Huo Chi acted under the online name of ‘icloudripper4you’. He would have illegally obtained the iCloud account credentials of approximately 4700 […]

The post US Man Sentenced to Nine Years in Prison After Hacking Thousands of iCloud Accounts appeared first on IT Security Guru.

Chinese Hackers Exploited Critical Security Vulnerability in Sophos Firewall

A sophisticated Chinese advanced persistent threat (APT) actor exploited a critical security vulnerability in Sophos’ firewall product that came to public attention earlier this year to infiltrate an unnamed South Asian target as part of a highly-targeted attack. Volexity said in a report, “the attacker implement[ed] an interesting web shell backdoor, create[d] a secondary form […]

The post Chinese Hackers Exploited Critical Security Vulnerability in Sophos Firewall appeared first on IT Security Guru.

New MaliBot Android Banking Malware Poses as Cryptocurrency Mining App

A new Android banking malware named MaliBot has been discovered by cybersecurity researchers. The malware poses as a cryptocurrency mining app or the Chrome web browser to target users in Spain and Italy. MaliBot focuses on stealing financial information, like e-banking credentials, crypto wallet passwords, and sensitive personal details. It is also capable of snatching […]

The post New MaliBot Android Banking Malware Poses as Cryptocurrency Mining App appeared first on IT Security Guru.

Several Data-Stealing Apps Remain on Google Play Store According to Cybersecurity Researchers

Cybersecurity researchers from Dr. Web claim to have spotted numerous apps on the Google Play Store in May with adware and information-stealing malware built in. According to the report, the most dangerous of these apps features spyware tools capable of stealing information from other apps’ notifications, mainly to capture one-time two-factor authentication (2FA) one-time passwords […]

The post Several Data-Stealing Apps Remain on Google Play Store According to Cybersecurity Researchers appeared first on IT Security Guru.

Hackers Exploit Old Telerik Flaws to Deploy Cobalt Strike

‘Blue Mockingbird’, a threat actor, targets Telerik UI vulnerabilities to compromise servers, install Cobalt Strike beacons, and mine Monero by hijacking system resources. The attacker leverages the CVE-2019-18935 flaw, a critical severity (CVSS v3.1: 9.8) deserialisation that leads to remote code execution in the Telerik UI library for ASP.NET AJAX. In May 2020, the same […]

The post Hackers Exploit Old Telerik Flaws to Deploy Cobalt Strike appeared first on IT Security Guru.

Microsoft Patch Fixes Follina Bug

Microsoft issued its last regular patch update round this week, fixing over 50 CVEs, including the malicious zero-day bug “Follina.” Officially named CVE-2022-30190, Follina, as reported last week, is being exploited in the wild by state-backed actors and the operators behind Qakbot, which has links to ransomware groups. It’s a remote code execution (RCE) bug […]

The post Microsoft Patch Fixes Follina Bug appeared first on IT Security Guru.

New Zimbra Bug Allows Data Stealing With No User Interaction

Technical details have emerged about a vulnerability affecting certain versions of the Zimbra email solution that hackers could exploit to steal logins without user interaction or authentication. The security issue is currently being tracked as CVE-2022-27924 and impacts Zimbra releases 8.8x and 9.x for both open-source and commercial versions of the platform. Since the 10th […]

The post New Zimbra Bug Allows Data Stealing With No User Interaction appeared first on IT Security Guru.

New Iranian Spear-Phishing Campaign Hijacks Email Conversations

A major new state-backed spear-phishing operation targeting multiple high-ranking Israeli and US officials has been uncovered by security researchers. The campaign has been traced to the Iranian Phosphorus ATP group, according to Check Point. It has targeted former Israeli foreign minister and deputy Prime Minister Tzipi Livni, a former US ambassador to Israel, and a […]

The post New Iranian Spear-Phishing Campaign Hijacks Email Conversations appeared first on IT Security Guru.

FDNY Building Digital Firewall to Protect Emergency Workers From Cyber Attacks

The New York City Fire Department (FDNY) said it’s aiming to build a digital firewall to protect the city’s emergency workers from cyber-attacks. The request was published in the City Record and called for consultant services “for the development and implementation of protective strategies to address the cyber-threat of doxxing and to provide resiliency for the […]

The post FDNY Building Digital Firewall to Protect Emergency Workers From Cyber Attacks appeared first on IT Security Guru.

Ransomware Gang Develops New Website That Allows Victims To Search For Their Data

BlackCat, the ALPHV ransomware gang, has created a website that allows customers and employees of their victim to check if their data was stolen in an attack. Ransomware gangs typically quietly steal corporate data and harvest everything of value. After they’ve done this, the threat actor starts to encrypt devices. The hackers then, in a […]

The post Ransomware Gang Develops New Website That Allows Victims To Search For Their Data appeared first on IT Security Guru.

Two Convicted in Major Drugs Bust Discovered by Police on EncroChat

UK law enforcement have shut down one of the country’s largest-ever drugs laboratories, thanks to the takedown of a popular encrypted comms service in 2020. Before police cracked it two years ago, EncroChat was used by tens of thousands of criminals globally. Hundreds of arrests and several convictions have been made as a result. The […]

The post Two Convicted in Major Drugs Bust Discovered by Police on EncroChat appeared first on IT Security Guru.

Organisations in Australia and Southeast Asia Targeted by Aoqin Dragon For Over 10 Years

A new advanced persistent threat (APT) actor, reportedly based in China and dubbed Aoqin Dragon, has been linked to several hacking attacks across Australia and Southeast Asia against education, government and telecom entities since 2013. Sentinel Labs, threat researchers, published a blog post on Thursday outlining the events. Joey Chen, threat intelligence researcher at SentinelOne, […]

The post Organisations in Australia and Southeast Asia Targeted by Aoqin Dragon For Over 10 Years appeared first on IT Security Guru.

Dark Web Vendors Allegedly Selling Western Weapons in Ukraine

Allegedly, military-grade firearms coming from Western countries that were sent to support the Ukrainian army in their fight against Russia have been listed on multiple weapon marketplaces on the dark web. These weapons were supposedly put aside from the received supplies and are now being sold to terrorists looking to buy rocket launchers and other […]

The post Dark Web Vendors Allegedly Selling Western Weapons in Ukraine appeared first on IT Security Guru.

New Emotet Malware Targets Chrome Users Card Information

Emotet malware has deployed a new module that is designed to steal credit card information stored in the Chrome web browser. Exclusively targeting Chrome, the module has the ability to exfiltrate the collected information to different remote command-and-control (C2) servers, according to Proofpoint. The enterprise security company discovered the component on the 6th June. Emotet […]

The post New Emotet Malware Targets Chrome Users Card Information appeared first on IT Security Guru.

Gamers Targeted On Roblox By Ransomware Selling Decryptors On Game Pass Store

A new ransomware is selling its decryptor on the gaming platform Roblox using the service’s in-game currency, Robux. Roblox is an online kids gaming platform that lets members create and monetize their own games by selling Game Passes. These passes provide various rewards, including special access, enhanced features and in-game items. These passes can only […]

The post Gamers Targeted On Roblox By Ransomware Selling Decryptors On Game Pass Store appeared first on IT Security Guru.

UK Government Acquires Its First Quantum Computer

The UK government has reportedly acquired its first quantum computer with the aim to help boost research capabilities in cyber-defence and other national security fields. The BBC have reported that The Ministry of Defence (MoD) is set to work with Orca Computing, a UK company, to explore the potential of quantum to enhance the nation’s […]

The post UK Government Acquires Its First Quantum Computer appeared first on IT Security Guru.

Unofficial Security Patch Released For Microsoft Zero-Day Vulnerability

As the Follina flaw continues to be exploited in the wild, an unofficial security patch for a new Windows zero-day vulnerability in the Microsoft Diagnostic Tool (MSDT) has been made available. Referenced as DogWalk, the issue relates to a path traversal flaw that, when a potential target opens a specially created “.diagcab” archive file that […]

The post Unofficial Security Patch Released For Microsoft Zero-Day Vulnerability appeared first on IT Security Guru.