Browsing tag
As the ongoing Russia-Ukraine conflict continues to escalate, the Russian government on Thursday released a massive list containing 17,576 IP addresses and 166 domains that it said are behind a series of distributed denial-of-service (DDoS) attacks aimed at its domestic infrastructure. Some of the noticeable domains in the listing released by Russia’s National Coordination Center […]
Ukraine’s Computer Emergency Response Team (CERT-UA) has warned of Belarusian state-sponsored hackers targeting its military personnel and related individuals as part of a phishing campaign mounted amidst Russia’s military invasion of the country. “Mass phishing emails have recently been observed targeting private ‘i.ua’ and ‘meta.ua’ accounts of Ukrainian military personnel and related individuals,” the CERT-UA […]
These attacks started on December 13th in which the Conti gang focused on targeting VMWare vCenter servers vulnerable to Log4Shell attacks. Advanced Intelligence (AdvIntel) security firm has discovered that the Conti ransomware gang is the first cybercriminal group to adopt and embed the Log4Shell vulnerability in their operations targeting VMware vCenter Servers. “A week after […]
The new campaign also involves replacing cryptocurrency addresses shared via clipboard and setting up fake cryptocurrency websites. Trend Micro researchers have shared details of a new campaign distributing SpyAgent malware by abusing legitimate use RATs (remote access tools), including TeamViewer. Safib assistant also abused in the scam According to a report from Trend Micro, the campaign […]
Russian cybercrime and hacking forums are opening doors to Chinese and English-speaking threat actors, which so far had been a relatively restricted domain for them. Researchers at threat intelligence firm Flashpoint have observed a spike in activities of Chinese origin and Mandarin-speaking hackers on RAMP, a Russian-language ransomware forum, and other illegal communities on the […]
So far, Microsoft has informed 140 companies about the new attack campaign being carried out by Nobelium 14 of which were compromised by the group. The IT security researchers at Microsoft have revealed that the threat actors from the Nobelium group are back in action and currently targeting resellers and Cloud service providers. Nobelium is […]
In July 2021 the REvil ransomware group vanished due to mounting US pressure after the Kaseya attack. However, the group was back in September 2021 by carrying out extortion-based DDoS attacks on ITSPs in the UK and Canada/America. The infamous REvil ransomware group has suddenly announced to end its activities. The group, which gained prominence […]
Microsoft Office zero-day also dubbed MSHTML attack exploited to target Russian government including Interior ministry and State Rocket Center. Malwarebytes Intelligence team reports that the MSHTML vulnerability classified as CVE-2021-40444 has become the focus of threat actors targeting Russian government entities. Malwarebytes researchers intercepted phishing email attachments revealing that attackers were trying to target Russian organizations. The […]
According to local Russian media, these DDoS attacks originated from several different countries including India, China, Brazil, Russia, Germany, Thailand, Lithuania, Bangladesh, and the United States. Last week, the Russian technology and search engine giant Yandex revealed that it suffered the world’s largest DDoS attacks ever recorded. Now, in what seems to be a continuation […]
Yandex, a Russia-based technology and search engine giant, has confirmed that its servers were targeted with cyber history’s largest DDoS attack last week. In its blog post published on 9 September, Yandex revealed that the company discovered a powerful new network of botnets that have carried out DDoS attacks not just against Runet, Russia’s version […]
S.O.V.A. Android banking trojan is actively being advertised on Russian hacker and cybercrime forums. In early August 2021, ThreatFabric’s team of researchers discovered a new Android banking trojan named S.O.V.A. by its creators. Researchers wrote in their report that the trojan is named so because of the login panel of its C&C server. S.O.V.A. is […]
Currently, the official website of the REvil group along with its chat and payment gateways are offline. A few days ago, we saw how the REvil group, believed to be located in Russia conducted one of the largest cyberattacks against Kaseya, a software company located in the U.S. The group demanded a record-breaking $70 million […]
It is time for anti-piracy groups to rejoice as the database of DDoS-Guard is reportedly on sale on a hacking forum. It is an infamous bulletproof hosting service dubbed a ‘notorious market’ that many pirate websites use. The service is known for hosting numerous file-sharing giants, including BS., S., and Go-Unlimited file hosting services. The […]
Microsoft has disclosed that the SolarWinds hackers or SolarWinds supply chain attack-fame threat actors are back in action. This time, they are targeting government agencies, consultants, think tanks, and non-governmental organizations across 24 countries. Microsoft’s findings were corroborated by cybersecurity firm Volexity. Research reveals that this time, SolarWinds attackers have singled out NGOs, research institutions, government […]
Kirill Victorovich Firsov, a Russian Citizen has been jailed for 30 months (2.5 years) in US prison for running popular cybercrime marketplace Deer.io. According to a press release from the U.S. Department of Justice (DoJ), Kirill Victorovich Firsov has been sentenced to 30 months in custody because of his role as the “administrator of a […]
The website was scamming users in the name of providing the COVID-19 vaccine but actually collecting their personal data for malicious purposes. The US Attorney’s office for the District of Maryland has seized “freevaccinecovax.org” which purported to be the website of an actual biotechnology company developing a vaccine for COVID-19 but in reality, it was […]
The US has designated 6 Russian technology companies involved in developing tools to facilitate malicious cyber activities like the SolarWinds hack. In a new development, the United States and the United Kingdom have announced that hackers working for the Russian Foreign Intelligence Service (SVR) are behind the infamous SolarWinds hack and other recently targeted espionage […]
Moscow, the capital of Russia, has 175,000 CCTV cameras for surveillance purposes. Out of these, over 4,000 cameras are installed in crowded places in the city. In 2017, the mayor of Moscow said that the 3,000 cameras installed in the city had been integrated with the government’s facial recognition technology. Moscow’s city video surveillance system’s […]
In an unprecedented event, Russian federal investigators succeeded in arresting those responsible for what is likely to be the first murder contracted via dark web, as mentioned by digital forensics experts. Russian authorities arrested two individuals related to the murder of Russian agent Yevgeniya Shishkina in October 2018. The person in charge of perpetrating the […]
Although it finished over a year ago, the FIFA World Cup Russia 2018 is still linked to various controversies over information leaks and corruption cases. According to information security specialists, some documents with detailed profiles on several FIFA officials were published through the BlackMirror Telegram channel, specifying how and to whom the Rusian committee should […]
The fake version was targeting users for years. Cryptocurrencies like Bitcoin, anonymity-retaining browsers like Tor and underground platforms like the Dark Web have offered users a great opportunity to carry out their nefarious deeds online without getting caught. However, tables have turned now as hackers and spammers aren’t sparing Dark Web users. Reportedly, a malicious […]