Ravie Lakshmanan reports: The Iranian nation-state group known as MuddyWater has been observed carrying out destructive attacks on hybrid environments under the guise of a ransomware operation. That’s according to new findings from the Microsoft Threat Intelligence team, which discovered the threat actor targeting both on-premises and cloud infrastructures in partnership with another emerging activity cluster dubbed DEV-1084….
Category: Non-U.S.
Rogers Communications data allegedly sold on a hacker forum
Vilius Petkauskas reports: Rogers’ leak includes data from the company’s active directory, including information on customers, the attackers claim. The company confirmed the leak, saying some of Rogers employees’ “business contact information” was exposed. Attackers posted an ad on a mostly Russian-speaking hacker forum, alleging the database for sale belongs to Rogers Communications, a Canadian…
Suspected hacker “9Near” is ‘a soldier’
Wassana Nanuam reports that a self-described “hacktivist” who calls himself “9Near” has been identified: A hacker who claimed to have obtained the personal data of 55 million Thais is an army officer who appears to have acted alone, authorities said yesterday. […] Mr Chaiwut said investigators had identified the hacker and are working with his…
10 Australians arrested as part of international illegal marketplace takedown
This is a joint media release between the Australian Federal Police and New South Wales Police Force, Queensland Police Service and Victoria Police. Editor’s note: Vision from the arrests is available via Hightail A well-known criminal marketplace offering access to stolen account credentials and compromised device information has been shut down following an international investigation led…
Hackers leak 16,000 Tas documents on dark web
The Fortra/GoAnywhere incident also affected Tasmanian school children. Emily Woods reports: Hackers have released 16,000 Tasmanian education department documents on the dark web including school children’s personal information, the state government has confirmed. Science and Technology Minister Madeleine Ogilvie said thousands of financial statements and invoices containing names and addresses of school students and their…
Money Message ransomware gang claims MSI breach, demands $4 million
Bill Toulas reports: Taiwanese PC parts maker MSI (Micro-Star International) has been listed on the extortion portal of a new ransomware gang known as “Money Message,” which claims to have stolen source code from the company’s network. MSI is a global hardware giant that makes motherboards, graphics cards, desktops, laptops, servers, industrial systems, PC peripherals,…