July 28 — Please see the correction notice and update at the bottom of this post. On Sunday, a person or persons calling themself “NightLion” revealed that they had hacked DataViper.io. Data Viper is a service its founder, Vinny Troia, describes as “A Threat Intelligence Platform Designed To Provide Organizations, Investigators, And Law Enforcement With…
Update on Click2Gov incident in Palm Bay
The city of Palm Bay has apparently had enough of Click2Gov concerns and is parting company with their vendor. According to a report on Hometown News, the city has received an update from Central Square about the potential breach it learned about on June 29: Central Square has identified a security vulnerability within their system;…
Russian BEC Gang Targets Hundreds of Multinational Companies
Akshaya Asokan reports: A newly uncovered Russia-based business email compromise gang has been targeting hundreds of large, multinational corporations in over 40 countries since 2019, according to the security firm Agari. The gang, which Agari calls Cosmic Lynx, uses a combination of social engineering techniques and well-crafted email messages designed to target the upper echelon of…
Explained: What China security law means for Hong Kong and the global Internet
Karishma Mehrotra reports: Days after China passed a national security law giving it wide-ranging powers over Hong Kong, major technology companies have suspended their responses to Hong Kong government requests, saying they will first reassess the law’s new controls. Much of Hong Kong’s future identity and the global Internet hinges on what the technology companies…
Revenge is mine, saith a hacker. No big deal, saith a researcher.
Vinny Troia, a self-described security researcher and and the owner of cybersecurity firms Night Lion Security and DataViper.io, will be the opening keynote speaker at SecureWorld’s virtual conference this coming Wednesday. He has promoted himself and his talk by claiming that he will reveal all of the identities of key members of thedarkoverlord, GnosticPlayers, and…
How REvil Used the Underground Ecosystem to Form an Extortion Cartel
A new paper on Sodinokibi (REvil) ransomware operators by Advanced Intelligence begins: Just about one year ago, the makers of the infamous GandCrab ransomware announced their retirement, having reportedly earned an astonishing $2 billion since their entry into the ransomware market in January 2018. The vacuum was quickly filled, however. Forensic and malware evidence was…