Ian Thornton-Trump, the CISO at Cyjax, says he is not surprised to see tons of phishing and domains set up to do everything from stealing credentials to landing malware via exploit kits. "Anytime a company hit's the headlines, with good PR or bad, it's a ripe opportunity for cybercriminals to set up campaigns," Thornton-Trump says, "especially with recent stories trending globally about the security of Zoom and some ridiculous don't use zoom decisions from the uninformed and the ignorant."
Not to change the topic here:
Moscow Blames Hackers for Coronavirus Permit Problems as Cases Rise - The New York Times
MOSCOW — Authorities in Moscow on Monday blamed hackers for bringing down a new website meant to issue travel permits to the city's residents to use during the coronavirus lockdown after cases of the new virus rose by a record daily amount.
Moscow, the worst-hit area, and several other regions have imposed a lockdown to try to stop the spread of the virus, ordering residents to stay at home except to buy food, seek urgent medical treatment, take out the rubbish, or got to work if absolutely necessary.
Hacker Hit Italy-Owned Bank's Emails | PYMNTS.com
This attack is yet another example of the kind of cybercrimes committed during the coronavirus pandemic. Experts have warned over the past month that the confusion and disruption of the pandemic could be capitalized upon by hackers.
With governments imposing lockdowns to contain the virus, hackers have been known to pose as banks or other legitimate institutions to try to glean access to people’s private information to use for nefarious means, such as identity theft.
Subscribe to read | Financial Times
Quite a lot has been going on:
Hackers file fake tax returns in scheme to steal IRS refunds - CyberScoop
Attackers tried obtaining large tax refunds by posing as clients of Weber and Company, the California-based accounting firm revealed last week. The scammers apparently accessed clients' personal data — including, perhaps, Social Security numbers and bank account information — and used that to file fraudulent returns, Weber and Company said in a notification to California's attorney general.
* * *
The number of attempted IRS scams tends to increase every year in March and April in the U.S., as legions of crooks try to steal Americans’ refunds. Earlier this month, the IRS said attackers exploiting the COVID-19 crisis could use stolen data to commit tax fraud. In 2016, the IRS said attackers had attempted to breach its online filing portal and steal Social Security numbers.
Hackers Invited to Share Bug Bounties with #COVID19 Charity - Infosecurity Magazine
"The community has come together in some amazing ways to support COVID-19 relief efforts from Marc Rogers’ CTI League , the US Digital Response group helping governments, to individual hackers raising their hand to help.
"Hackers can invite 'hackforgood' as a collaborator on any paid bug bounty program to donate all or part of the money they earned to charity."
Although the donation profile was set up in response to an active pandemic, HackerOne said the concept could endure long after the health crisis is resolved.
Singapore teachers stop using Zoom after hackers crash class meetings
This Map Shows the Global Spread of Zero-Day Hacking Techniques | WIRED
So-called zero-day exploits—hacking techniques that take advantage of secret software flaws—were once the calling card of only the most sophisticated hackers. But today, the global map of zero-day hacking has expanded far beyond the United States, Russia, and China, as more countries than ever buy themselves a spot on it.
The resulting map and timeline, with a tally of which countries have used the most zero-days over the past decade, are far from comprehensive. Countries like the US almost certainly have used zero-days that remain undetected, FireEye acknowledges, and many others couldn't be pinned with certainty on any particular country. But it does show how the collection of countries using those hacking techniques now includes less expected players like the United Arab Emirates and Uzbekistan.
Happening on Twitter
Zoom isn't Malware. by @0xAmit https://t.co/tPbf3XKFDe ericsyuan (from San Jose, CA) Mon Apr 06 05:52:56 +0000 2020
No comments:
Post a Comment