File hosting service Dropbox on Tuesday disclosed that it was the victim of a phishing campaign that allowed unidentified threat actors to gain unauthorized access to 130 of its source code repositories on GitHub. “These repositories included our own copies of third-party libraries slightly modified for use by Dropbox, internal prototypes, and some tools and […]
Dropbox Gets Hacked Read More »
On Wednesday, the Brazilian Federal Police reported that one person had been detained for allegedly having ties to the notorious LAPSUS$ extortion group. The arrest was made as part of Operation Dark Cloud, a new law enforcement initiative that was started in August 2022, according to the agency. Other than the possibility that the suspect
Brazilian Police Arrest Suspected Member of Lapsus$ Hacking Group Read More »
In response to a security mistake that left an endpoint publicly available over the internet without any authentication, Microsoft this week acknowledged that it unintentionally exposed information pertaining to thousands of customers. According to a warning from Microsoft, “this misconfiguration created the potential for unauthenticated access to some business transaction data corresponding to interactions between
Microsoft Confirms Server Misconfiguration Led to 65,000+ Companies’ Data Leak Read More »
An Android malware known as Triada has been discovered being used by YoWhatsApp, an unauthorized variant of the well-known WhatsApp messaging software. The malware’s objective, according to a recent report from Kaspersky, is to steal the keys that “enable the operation of a WhatsApp account without the app.” A user of a malicious WhatsApp mod
Popular YoWhatsapp Discovered Distributing Triada Android Malware Read More »
On Friday, Meta Platforms announced that it had discovered over 400 malicious apps on Android and iOS that it claimed were aimed at online users in order to steal their Facebook login credentials. According to a study provided with The Hacker News by the social media giant, “These programs were placed on the Google Play
400 Android and iOS Apps Stealing User Log-in Credentials Have Been Detected by Facebook Read More »
An exploit on a cross-chain bridge that stole about $100 million in digital assets was discovered by BNB Chain, a blockchain connected to the Binance cryptocurrency exchange. BSC Token Hub, a native cross-chain bridge connecting BNB Beacon Chain (BEP2) and BNB Smart Chain (BEP20 or BSC), was impacted by an exploit, it was reported last
$100 Million in Cryptocurrency Gets Stolen by Hackers from Binance Bridge Read More »
A former employee of the National Security Agency (NSA) in the United States has been detained on suspicion of attempting to sell sensitive information to a foreign agent who was actually a Federal Bureau of Investigation undercover agent (FBI). From June 6 to July 1, 2022, Jareh Sebastian Dalke, 30, worked for the NSA for
A 46-year-old man was found guilty of laundering more than $9.5 million amassed via the commission of financial fraud that was enabled by the internet and received a 25-year prison sentence as a result. Elvis Eghosa Ogiekpolor, of Norcross, Georgia, ran a money-laundering network that set up at least 50 corporate bank accounts to swindle
Nigerian BEC Scammer Sentenced To 25-Year Prison Term in the United States Read More »
A trojanized Windows installer for the Tor Browser is being distributed through a well-known Chinese-language YouTube channel. The campaign, OnionPoison, was named by Kaspersky, and all of the victims were in China. The scope of the attack is yet unknown, but the Russian cybersecurity firm reported that in March 2022, victims began to show up
Popular YouTube Channel Caught Sharing Fake Tor Browser Installer Read More »
A new code execution technique has been discovered to be used by the state-sponsored threat actor APT28 from Russia to spread malware. This technique takes use of mouse movement in phoney Microsoft PowerPoint slides. According to cybersecurity company Cluster25, the method “is meant to be activated when the user starts the presentation mode and moves
Hackers Using PowerPoint Mouseover Trick to Infect System with Malware Read More »
