The summary from Private Industry Notification #20200330 by the FBI, issued March 30: Since at least 2016, the FBI has observed an Advanced Persistent Threat (APT) actor conduct a global network exploitation campaign using the Kwampirs Remote Access Trojan (RAT) and is providing additional, non-technical information in an effort to highlight key objectives of the…
Category: Commentaries and Analyses
Houseparty app offers $1m reward to unmask entity behind hacking smear campaign
Catalin Cimpanu reports: Houseparty, a video conferencing desktop and mobile application, said it would pay a $1 million bounty to anyone who could unmask the entity behind what the company described as “a paid commercial smear campaign.” The company’s apparent anger comes after Houseparty has been at the center of media reports published yesterday by…
Secret Russian IoT Botnet Exposed In FSB Contractor Breach
Daniel Golightly reports: Russian hacking group Digital Revolution has discovered the existence of a secret FSB program dubbed the “Fronton Program” that reportedly points to the creation of an IoT botnet. Reported by SC Media, the hackers breached subcontractor ODT (Oday) LLC. ODT was working with frequent Russian Ministry of Internal Affairs contractor InformInvestGroup CJSC. The…
FSB Takes Down Top-Tier Marketplace, Arrests Admins
Gemini Advisory has a fascinating piece on the takedown of a top-tier marketplace and the arrest of its administrators. Stas Alforov and Christopher Thomas report that when the Russian Federal Security Service (FSB) reportedly arrested 30 members of a hacker ring that specialized in selling stolen card data, Gemini noted that a popular dark web…
Dark web hosting provider hacked again — 7,600 sites down
Catalin Cimpanu reports: Daniel’s Hosting (DH), the largest free web hosting provider for dark web services, has shut down today after getting hacked for the second time in 16 months, ZDNet has learned. Almost 7,600 dark web portals have been taken offline following the hack, during which an attacker deleted the web hosting portal’s entire database….
Scammers are using the promise of phony COVID-19 test kits to get Tricare recipient personal private info
We know that there is an increase in scamming trying to capitalize on the COVID-19 pandemic. The FBI has issued an alert, the DOJ has taken enforcement action against one company already, and the FDA and FTC have warned companies. Here’s one scam specifically targeting military members who have Tricare health insurance. Howard Altman reports:…