This site has reported on VandaTheGod more than half a dozen times over the past years. Now Check Point researchers report on how an open tab in a screenshot ultimately enabled them to identify him: Since 2013, many official websites belonging to governments worldwide were hacked and defaced by an attacker who self-identified as ’VandaTheGod.’…
Category: Of Note
Michigan State hit by ransomware threatening leak of student and financial data
Benjamin Freed reports: Michigan State University is being targeted by a ransomware attack carried out by a hacker claiming to have stolen files, including students’ personal information, with the threat of publishing them online if a bounty is not paid. A post appeared Wednesday on a blog affiliated with NetWalker, a relatively newer form of…
Another Alleged FIN7 Cybercrime Gang Member Arrested
Ishita Chigilli Palli reports: The FBI has arrested another alleged member of the FIN7 cybercrime gang, which has been stealing millions of payment cards and other financial data since at least September 2015, according to federal court documents. Ukrainian national Denys Iarmak was extradited from Thailand and arrested in Seattle on Friday, according to documents unsealed…
NZ: ASB Securities hit with $80,000 fine for 14-year privacy breach
The New Zealand Herald reports: ASB Securities has been fined $80,000 for a privacy breach which left hundreds of online accounts able to be viewed and traded by users without permission. The New Zealand Markets Disciplinary Tribunal censured the online share trading platform after 576 of its trading accounts were made vulnerable to unauthorised use…
StrandHogg 2.0 flaw allows hackers to hijack almost any Android app
Keumars Afifi-Sabet reports: Google has patched a critical vulnerability, resembling 2019’s infamous StrandHogg flaw, that allows hackers to hijack almost any app on the Android mobile operating system. The flaw, assigned CVE-2020-0096, has been dubbed StrandHogg 2.0 due to the similarities with the original flaw discovered in December. The successor allows for broader attacks and is…
Hacker, 22, who released personal data of German politicians charged
AFP reports the latest update in the case of the hacker formerly known as “@_Orbit” on Twitter. The man had reportedly confessed back in January 2019. German prosecutors said Tuesday they had brought charges against a 22-year-old hacker who released personal data of dozens of politicians, journalists and other public figures online, embarrassing national authorities….