Incidents

After rebranding themselves as a new operation dubbed as El_Cometa, the SynAck ransomware group decided to publish the master keys for the decryption of systems infected by this malware variant. As some users may know, when ransomware operations encrypt files an encryption key is generated on the victim’s device, which in turn is encrypted using […]

Security teams at telecommunications firm T-Mobile are investigating a data breach after a hacker appeared claiming he has access to the records of some 100 million customers. The investigation began after the company was alerted to a dark web post offering the information for sale in exchange for 6 Bitcoin. Although the seller does not […]

Europol announced that it will initiate legal proceedings against 23 people accused of participating in a business email engagement (BEC) operation that would have resulted in losses of up to $1.2 million USD. The charges against the suspects were filed after multiple raids in Ireland, Romania and the Netherlands. This campaign began with the sending […]

Just a few hours ago the heads of the Poly Network platform confirmed that a hacking group managed to steal more than $613 million USD in cryptocurrency, in what could be the largest virtual asset theft in history. Now, the blockchain network confirmed that more than a third of the stolen assets (about $260 million […]

In early August, Group-IB researchers began tracking unusual activity on a hacking forum specializing in selling stolen payment cards. According to the researchers, the user AW_cards posted a link that directed users of a couple dark web forums to an archive with more than 1 million stolen financial records, available to anyone interested completely free […]

A recent security report notes that the confidential information of more than 57,000 StarHub customers has been leaked in what appears to be a severe oversight by the Singapore-based telecommunications company. The company’s security teams discovered the data breach this weekend, when they found a file posted without the company’s authorization on a download website […]

Ransomware as a Service (RaaS) has become one of the most prolific models of cybercriminal operation, although this does not mean that there are no disputes between the various threat actors involved in the process. A recent security report notes that an angry Conti ransomware affiliate decided to leak manuals and other technical details prepared […]

The Department of Justice (DOJ) has revealed that the Microsoft Office 365 email accounts of employees at all U.S. prosecutors’ offices were compromised by Russia’s Foreign Intelligence Service (SVR) during the SolarWinds supply chain attack: “This threat group has access to compromised accounts from approximately May 7 to December 27, 2020.” , the statement said. […]

In a press release, Europol announced the arrest of two Belarusian citizens identified as the main responsible for a jackpotting campaign at ATMs in Europe, which allowed them to steal around 230 thousand Euros. These cybercriminals gained access to ATM cables by drilling small holes in them to connect directly to the attacking machine in […]

A recent report states that Justdial, one of the largest service companies in India, has suffered a data breach that led to the exposure of confidential records of more than 100 million users. According to researcher Rajshekhar Rajaharia, the information remained exposed since March 2020. Starting as a local phone-based directory, Justdial offers bill services, […]

After multiple reports and rumors, Transnet Port Terminals (TPT) confirmed a cyberattack that affected its entire it infrastructure. As some will recall, Transnet Group is the operator of state ports in South Africa, operating as a state monopoly. The company is trying to minimize the incident and downplay it, describing it as a simple outage […]

Full user records of Guntrader.uk, a British website for buying and selling rifles are available on the dark web as a result of a security incident. The website administrators reported the incident to the Information Commissioner’s Office and the National Crime Agency. In this regard, one of the affected users expressed his concern about the […]

Authorities in the Brazilian state of Sao Paulo announced the arrest of multiple individuals identified as members of a gang dedicated to stealing and hacking iPhone devices in order to access victims’ online banking accounts and steal all their money. Authorities consider this to be a highly sophisticated criminal group, capable of bypassing the complex […]

Facebook announced its decision to fire 52 employees for using their privileged position on the platform to access users’ private data. Apparently, these individuals even tried to get the exact location of some women they were curious or attracted to. Using their access to large amounts of user data through Facebook’s internal systems, the fired […]

A recent security report claims that four individuals were arrested on Japanese territory due to their alleged involvement in a fraudulent scheme for cryptocurrency investment in which users were invited to invest in a digital trading system operated with artificial intelligence. Authorities estimate that about 20,000 Japanese invested in this scheme, which rose about $55 […]

Ukrainian authorities have announced the seizure of thousands of PlayStation 4 video game consoles used for cryptocurrency mining. The Security Service of Ukraine detected this illegal operation in the city of Vinnytsia, specifically in an old warehouse that formerly belonged to the JSC Vinnytsiaoblenergo power company. During the raid, authorities found nearly 4,000 video game […]

Iranian authorities announced the delay or cancellation of some of its train services due to an alleged cyberattack that led to massive disruptions to the national railway company’s systems. While the exact cause of these disruptions is unknown, it has been confirmed that the incident impacted both public transport services and freight transport. Initial reports […]

Operation Lyrebird, deployed by the international police agency Interpol in collaboration with infosec firm Group-IB, led to the arrest of one of the most wanted threat actors in the world of cybercrime, linked to dozens of high-profile attacks, affecting telecommunications companies, financial institutions and even some transnational firms. The accused, originally from Morocco, was arrested […]

It has been more than two years since Google decided to definitively close its social network Google+, although apparently the history of this platform did not end with the company’s decision. In recent weeks, users and researchers reported how a feature called GooglePlusBot was detected trying to log into some Instagram accounts for no apparent […]

The operators of the REvil ransomware, one of the most dangerous hacking groups in the world, have deployed a massive new operation. This time, the victim is software development firm Kaseya, which suffered a severe infection and must now pay a ransom of up to $70 million. This weekend, the cybersecurity community issued an alert […]

Just a few hours ago it was revealed that a JSON database with over 68 MB of data extracted from LinkedIn is available on a popular dark web hacking forum. The person responsible for the publication states that the database includes information about some business owners in the U.S., including full names, email addresses, work […]