Lawrence Abrams reports: Email marketing firm MailChimp disclosed on Sunday that they had been hit by hackers who gained access to internal customer support and account management tools to steal audience data and conduct phishing attacks. Sunday morning, Twitter was abuzz with reports from owners of Trezor hardware cryptocurrency wallets who received phishing notifications claiming that the company suffered…
Category: Other
Germany closes Russian darknet market Hydra
DW reports: Federal police say they have shut down the German servers for the darknet hub, which saw its sales skyrocket during the pandemic. Investigators said on Tuesday that they had shut down the German servers for Hydra, a Russian darknet marketplace that was used to sell drugs, forged documents, intercepted data, and other illegal digital services….
Apple and Meta Gave User Data to Hackers Who Used Forged Legal Requests
More about the successful use of forged emergency data requests that Brian Krebs reported about yesterday. Now William Turton reports: Apple Inc. and Meta Platforms Inc., the parent company of Facebook, provided customer data to hackers who masqueraded as law enforcement officials, according to three people with knowledge of the matter. Apple and Meta provided…
Hackers Gaining Power of Subpoena Via Fake “Emergency Data Requests”
Brian Krebs reports: There is a terrifying and highly effective “method” that criminal hackers are now using to harvest sensitive customer data from Internet service providers, phone companies and social media firms. It involves compromising email accounts and websites tied to police departments and government agencies, and then sending unauthorized demands for subscriber data while…
Morgan Stanley client accounts breached in social engineering attacks
Sergiu Gatlan reports: Morgan Stanley Wealth Management, the wealth and asset management division of Morgan Stanley, says some of its customers had their accounts compromised in social engineering attacks. The account breaches were the result of vishing (aka voice phishing), a social engineering attack where scammers impersonate a trusted entity (in this case Morgan Stanley) during a…
Russian pipeline company Transneft hit by data leak dedicated to Hillary Clinton
Corin Faife reports: As the Russian invasion of Ukraine moves into its third week, unconventional actors continue to target Russian state-backed businesses with a string of hacks and data leaks — the latest apparently referencing pro-hacktivism comments made by Hillary Clinton. The targeted organization is Transneft, the Russian state-controlled oil pipeline giant. On Thursday, leak hosting website…