Tag: FBI

FBI: Androxgh0st malware botnet steals AWS and Microsoft credentials
News

FBI: Androxgh0st malware botnet steals AWS and Microsoft credentials

Threat actors utilizing the Androxgh0st virus are constructing a botnet aimed at stealing cloud credentials and exploiting the obtained data to distribute further malicious payloads, according to a warning issued today by CISA and the FBI. The botnet, which was first discovered by Lacework Labs in 2022, searches for websites and servers that have remote code execution (RCE) vulnerabilities by utilizing versions of the PHPUnit unit testing framework, PHP web framework, and Apache web server. CVE-2017-9841 (PHPUnit), CVE-2021-41773 (Apache HTTP Server), and CVE-2018-15133 (Laravel) are among the RCE weaknesses targeted by these attacks. The two agencies warned that Androxgh0st is a Python-scripted malware that is mainly used to target.env files that contain sensitive data read more...
FBI Takes Down BlackCat Ransomware, Releases Free Decryption Tool
News

FBI Takes Down BlackCat Ransomware, Releases Free Decryption Tool

In addition to formally announcing the stop of the BlackCat ransomware campaign, the U.S. Justice Department (DoJ) has made available a decryption tool that over 500 impacted victims can utilize to unlock files that the malware has locked. In a case of hacking the hackers, court documents reveal that the U.S. Federal Bureau of Investigation (FBI) sought the assistance of a confidential human source (CHS) to function as an associate for the BlackCat group and obtain access to a web panel used for managing the gang's victims. A number of law enforcement agencies from the United States, Germany, Denmark, Australia, the United Kingdom, Spain, Switzerland, and Austria collaborated and assisted read more FBI Takes Down BlackCat Ransomware, Releases Free Decryption Tool. Get up to date ...
CISA, FBI urge admins to patch Atlassian Confluence immediately
News

CISA, FBI urge admins to patch Atlassian Confluence immediately

Network administrators were alerted today by CISA, FBI, and MS-ISAC to patch their Atlassian Confluence servers right away to prevent attacks that actively take advantage of a maximum severity vulnerability. This major privilege escalation problem, tracked as CVE-2023-22515, affects Confluence Data Center and Server 8.0.0 and later. Low-complexity attacks that don't require user input can remotely exploit it. Atlassian urged users to update their Confluence instances as quickly as possible to one of the corrected versions (i.e., 8.3.3 or later, 8.4.3 or later, or 8.5.2 or later) when it provided security patches on October 4. This was because the flaw had already been exploited in the wild as a zero-day. It was advised for those who were unable to upgrade to either terminate the ...
FBI Dismantles QakBot Malware,Frees 700,000 Computers, Seizes $8.6 Million
News

FBI Dismantles QakBot Malware,Frees 700,000 Computers, Seizes $8.6 Million

The notorious Windows malware family QakBot, which is thought to have infected over 700,000 machines worldwide and enabled financial theft and ransomware, was brought down by a concerted law enforcement operation known as Operation Duck Hunt. In order to accomplish this, the U.S. Justice Department (DoJ) claimed that the virus is "being deleted from victim computers, preventing it from doing any more harm," and that it also seized more than $8.6 million in cryptocurrencies in illegal gains. In addition to providing technical support, the cybersecurity firm Zscaler, the cross-border exercise included France, Germany, Latvia, Romania, the Netherlands, the United Kingdom, and the United States read more FBI Dismantles QakBot Malware Frees 700000 Computers Seizes $8.6 Million. Stay i...
North Korean Affiliates Suspected in $40M Cryptocurrency Heist, FBI Warns
News

North Korean Affiliates Suspected in $40M Cryptocurrency Heist, FBI Warns

The U.S. Federal Bureau of Investigation (FBI) issued a warning on Tuesday about threat actors connected to North Korea who may try to withdraw $40 million worth of stolen cryptocurrencies. The law enforcement organization linked the blockchain activity to TraderTraitor, also known as Jade Sleet, a rival that the US government keeps tabs on. According to an FBI investigation, the organization stole about 1,580 bitcoin in the last day from numerous cryptocurrency heists and is now believed to be keeping those cash in six different wallets read more North Korean Affiliates Suspected in $40M Cryptocurrency Heist, FBI Warns. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and soluti...
FBI Warns of Alarming Increase in Cybercrime Targeting Children
News

FBI Warns of Alarming Increase in Cybercrime Targeting Children

In 2022, cybercrime against children increased by 20%. The FBI has gathered alarming statistics showing that seven individuals under the age of 18 are at risk every day read the complete article FBI Warns of Alarming Increase in Cybercrime Targeting Children. Cybersecurity expert Surfshark, which combed over data from Internet Crime Centre reports covering the period from 2015 to 2022, cited the FBI's conclusions. Over 14,000 children were allegedly victimized online between those years, according to the FBI, costing them, or more precisely their parents and guardians, $2.9 million. A second indication that the tendency is escalating is the fact that more than half of that amount (or almost 8,000 crimes) happened in the first three years of this decade read more FBI Warns of Alar...
FBI issues scary warning about public phone charging stations
News

FBI issues scary warning about public phone charging stations

It's a quick method to charge your phone, but it might also offer hackers access to your data directly. According to the FBI, sly offenders have been known to use free public phone chargers to infect phones with harmful malware and software that can grant hackers access to your phone, tablet, or computer. Avoid utilizing the free charging stations at hotels, shopping malls, and airports, the FBI's official Twitter account advised in a message. Use an outlet instead and bring your own charger and USB wire. The hijacking, often known as "juice jacking," was previously forewarned against by the Federal Communications Commission. According to the FCC, hackers have been known to install infected read more FBI issues scary warning about public phone-charging stations. With ReconB...
FBI Warns of Crypto Stealing Play to Earn Games
Availability, Resources, Risk, Security

FBI Warns of Crypto Stealing Play to Earn Games

Customers have been cautioned not to fall for a brand-new class of fraudulent gaming applications that have already defrauded users out of millions of dollars worth of cryptocurrencies. According to a recent PSA from the FBI's Internet Crime Complaint Center, scammers generally contact victims online before introducing them to the online or mobile game in time (IC3). The game claims to give users bitcoin just for playing. The FBI chose the example of a player raising virtual crops on an animated farm, despite the fact that there are numerous variations of this scam read more FBI Warns of Crypto Stealing Play to Earn Games. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solu...
US announces it seized Hive ransomware gang’s leak sites and decryption keys
Events, Risk, Security

US announces it seized Hive ransomware gang’s leak sites and decryption keys

Law enforcement organizations in the US and Europe have taken control of Hive's infrastructure, one of the most successful ransomware operations. Just months after the federal government's cybersecurity unit CISA raised the alarm about Hive's ongoing extortion efforts, the U.S. Department of Justice, the FBI, Secret Service, and several European government agencies joined forces to conduct a coordinated law enforcement action that resulted in the seizure of Hive's dark web portal. This secret location has been taken. As part of a concerted law enforcement effort against Hive Ransomware, the Federal Bureau of Investigation confiscated this site, according to a seizure notice posted on Hive's dark web leak site read the complete article US announces it seized Hive ransomware gangs lea...
FBI Says North Korean Hackers Behind $100 Million Horizon Bridge Crypto Theft
Risk, Security

FBI Says North Korean Hackers Behind $100 Million Horizon Bridge Crypto Theft

The loss of $100 million in cryptocurrency assets from Harmony Horizon Bridge in June 2022 was confirmed by the American Federal Bureau of Investigation (FBI) on Monday. The Lazarus Group and APT38 (also known as BlueNoroff, Copernicium, and Stardust Chollima), a state-sponsored threat group from North Korea that specializes in financial cyber operations, were both blamed by the law enforcement agency for the hack. The FBI added that the TraderTraitor attack campaign, which was made public by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) in April 2022, was used by the Harmony infiltration. The strategy involved using social engineeri...