All posts tagged: hackers

Hacking the hackers: How cyber gang Lockbit was ‘locked out’ | Science & Tech News

Hacking the hackers: How cyber gang Lockbit was ‘locked out’ | Science & Tech News

One of the world’s most prolific cyber crime gangs has been taken down by law enforcement agencies including the FBI, Europol and the UK’s National Crime Agency. Lockbit is an extortion website that held its victims’ data for ransom – some of the biggest UK bodies affected were the Royal Mail and the NHS. Five Russians have been charged by US authorities and dozens of crypto accounts frozen. On the Sky News Daily, Niall Paterson is joined by science and technology editor Tom Clarke and crime correspondent Martin Brunt to discuss what Lockbit is, Operation Cronos and what this means for other cyber gangs. Click to subscribe to the Sky News Daily wherever you get your podcasts Senior podcast producer: Annie JoycePromotions producer: Jada-Kai Meosa JohnEditor: Wendy Parker Source link

LockBit smashed: Notorious cyber crime group who targeted 1,700 firms worldwide is dismantled

LockBit smashed: Notorious cyber crime group who targeted 1,700 firms worldwide is dismantled

Security analysts had assessed that it was responsible for around 25 per cent of all ransomware attacks, making it the largest criminal organisation involved in such hacking. US officials have previously echoed the analysis of UK law enforcers in describing LockBit as the biggest threat to its companies, saying that more than 1,700 had been hit by its ransomware attacks. The hacking group was understood to operate by allowing affiliated criminal gangs to use its hacking tools.  “They are the Walmart of ransomware groups, they run it like a business–that’s what makes them different,”  Jon DiMaggio, chief security strategist at Analyst1, US cybersecurity firm told the Reuters news agency.  Don Smith, vice president of Secureworks, an arm of Dell Technologies, said LockBit “dwarfed all other [ransomware] groups” and that the success in halting its operations was “highly significant”. Source link

North Korean hackers use ChatGPT to scam Linkedin users

North Korean hackers use ChatGPT to scam Linkedin users

North Korean hackers are reportedly using ChatGPT to trick users on LinkedIn and other social media platforms into providing sensitive information and data, according to a report. ChatGPT parent company OpenAI and investor Microsoft revealed last week that it had “disrupted five state-affiliated actors that sought to use AI services in support of malicious cyber activities.” Using Microsoft Threat Intelligence, accounts associated with two China-affiliated threat actors known as Charcoal Typhoon and Salmon Typhoon, the Iran-affiliated threat actor known as Crimson Sandstorm, the North Korea-affiliated actor known as Emerald Sleet, and the Russia-affiliated actor known as Forest Blizzard were identified and terminated. Microsoft, which owns LinkedIn, noted that Emerald Sleet, also known as Kimsuky, impersonated “reputable academic institutions and NGOs to lure victims into replying with expert insights and commentary about foreign policies related to North Korea.” It said in its blog post that it had not found evidence of these actors having carried out any significant cyberattacks but that much of its findings were “representative of an adversary exploring the use cases of a …

How to Use This Free Tool to Catch Hackers When They Access Your Files

How to Use This Free Tool to Catch Hackers When They Access Your Files

Key Takeaways Canary Tokens is a free cybersecurity tool that alerts you when a hacker opens your files. Embed a token in a file, like a folder, and receive an email notification when it’s opened. Canary Tokens can be used on numerous files and services, and it works on different devices and operating systems. Are you worried about your personal files getting stolen by hackers? Canary Tokens is a free and easy-to-use tool you can quickly deploy to get notified when a hacker opens your files. What Is Canary Tokens? Canary Tokens is a cybersecurity tool by Thinkst Canary used to track hackers when they get access to your personal data. It works by embedding your file with a special tracking URL that alerts you through email when opened. Just like how honeypots work, the idea is to place a tracker disguised as a regular file on your device. When a hacker opens the file, a hidden link is opened, alerting you to the breach. How to Use Canary Tokens to Protect Your Data I’m …

Iran-backed hackers interrupt UAE, UK and Canadian programming with fake AI news broadcast

Iran-backed hackers interrupt UAE, UK and Canadian programming with fake AI news broadcast

A group of hackers linked to Iran have interrupted BBC and a host of other European TV streaming services in Britain, the United Arab Emirates and Canada, Microsoft stated in a report earlier this month, noting a marked acceleration of Iranian cyber attacks since Hamas’s October 7 attack on Israel. The programming was interrupted with a fake news report on Gaza featuring graphic images and what appeared to be an AI-generated anchor – the first time Iran has used AI in this way in its influence operations. Issued on: 14/02/2024 – 16:09 4 min According to the American IT giant, the hacker attack took place in early December and underscored “the fast and significant expansion in the scope of Iranian operations since the start of the Israel-Hamas conflict”. The fake news broadcast focused on Israel’s operations in Gaza and was accompanied by a banner that read: “We have no choice but to hack to deliver this message to you.” The AI news anchor then went on to present graphic – and unverified images – of Palestinians, …

Hackers for China, Russia and Others Used OpenAI Systems, Report Says

Hackers for China, Russia and Others Used OpenAI Systems, Report Says

Hackers working for nation-states have used OpenAI’s systems in the creation of their cyberattacks, according to research released Wednesday by OpenAI and Microsoft. The companies believe their research, published on their websites, documents for the first time how hackers with ties to foreign governments are using generative artificial intelligence in their attacks. But instead of using A.I. to generate exotic attacks, as some in the tech industry feared, the hackers have used it in mundane ways, like drafting emails, translating documents and debugging computer code, the companies said. “They’re just using it like everyone else is, to try to be more productive in what they’re doing,” said Tom Burt, who oversees Microsoft’s efforts to track and disrupt major cyberattacks. Microsoft has committed $13 billion to OpenAI, and the tech giant and start-up are close partners. They shared threat information to document how five hacking groups with ties to China, Russia, North Korea and Iran used OpenAI’s technology. The companies did not say which OpenAI technology was used. The start-up said it had shut down their …

Hackers uncover new TheTruthSpy stalkerware victims: Is your Android device compromised?

Hackers uncover new TheTruthSpy stalkerware victims: Is your Android device compromised?

A consumer-grade spyware operation called TheTruthSpy poses an ongoing security and privacy risk to thousands of people whose Android devices are unknowingly compromised with its mobile surveillance apps, not least due to a simple security flaw that its operators never fixed. Now, two hacking groups have independently found the flaw that allows the mass access of victims’ stolen mobile device data directly from TheTruthSpy’s servers. Switzerland-based hacker maia arson crimew said in a blog post that the hacking groups SiegedSec and ByteMeCrew identified and exploited the flaw in December 2023. Crimew, who was given a cache of TheTruthSpy’s victim data from ByteMeCrew, also described finding several new security vulnerabilities in TheTruthSpy’s software stack. SPYWARE LOOKUP TOOL You can check to see if your Android phone or tablet was compromised here. In a post on Telegram, SiegedSec and ByteMeCrew said they are not publicly releasing the breached data, given its highly sensitive nature. Crimew provided TechCrunch with some of the breached TheTruthSpy data for verification and analysis, which included the unique device IMEI numbers and advertising …

Bugcrowd snaps up 2M for a ‘bug bounty’ security platform that taps 500K+ hackers

Bugcrowd snaps up $102M for a ‘bug bounty’ security platform that taps 500K+ hackers

Bugcrowd — the startup that taps into a database of half a million hackers to help organizations like OpenAI and the U.S. government set up and run bug bounty programs, cash rewards to freelancers who can identify bugs and vulnerabilities in their code — has picked up a big cash award of its own to grow its business further: an equity round of $102 million. General Catalyst is leading the investment, with previous backers Rally Ventures and Costanoa Ventures also participating. Bugcrowd has raised over $180 million to date, and while valuation is not being disclosed, CEO Dave Gerry said in an interview it is “significantly up” on its last round back in 2020, a $30 million Series D. As a point of comparison, one of the startup’s bigger competitors, HackerOne, was last valued at $829 million in 2022, according to PitchBook data. The plan will be to use the funding to expand operations in the U.S. and beyond, including potentially M&A, and to build more functionality into its platform, which — in addition to …

How 3 Million ‘Hacked’ Toothbrushes Became a Cyber Urban Legend

How 3 Million ‘Hacked’ Toothbrushes Became a Cyber Urban Legend

Documents exclusively obtained by WIRED reveal that AI surveillance software tracked thousands of people using the London Underground to detect crime or unsafe situations. The machine learning software scoured live CCTV footage to spot aggressive behavior, weapons being brandished, and people dodging fares. The documents also detail errors made during the trial—for instance, mistakenly identifying children walking with their parents as fare evaders. Meanwhile, on Wednesday, cryptocurrency tracing firm Chainalysis published a report finding ransomware payments in 2023 reached over $1.1 billion, the highest annual total ever recorded. The record-breaking sum of extorted funds was due to two things: the high number of ransomware attacks and the amount of money that hackers were demanding from victims, many of whom were targeted specifically for their ability to pay and their inability to sustain a prolonged disruption of services. A tech company, notorious for keeping websites with far-right and other extreme content online, was bought last year by a secretive company whose business is to help set up businesses, often in ways that keep details of those …

U.S. insights company shows ransomware hackers drew in bn across 2023

U.S. insights company shows ransomware hackers drew in $1bn across 2023

Ransomware hackers extorted $1bn across 2023, according to data insights company and blockchain platform. The company published a report showing the extent of malicious hacking and developing trends affecting entities across the last year. Chainanalysis provides data, software, services, and research to government agencies and companies across seventy countries. ”Our data powers investigation, compliance, and market intelligence software that has been used to solve some of the world’s most high-profile criminal cases and grow consumer access to cryptocurrency safely,” says the company site. The report details a staggering increase of $433 million in ransom taken from victims compared to 2022, growing to the highest-ever rate of $1bn in 2023. Report shows biggest ransomware attack of 2023 The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI) released a Cybersecurity Advisory (CSA) in June of last year highlighting the MOVEit vulnerability, carried out by the CL0P Ransomware Gang. This would be one of the biggest reported ransomware attacks recorded and was the spike point of 2023’s issue with ‘Zero-Day’ exploits. What is a Zero-Day? …