Category: Cyber-Crime

The hacker behind the recent attack on Airbus has warned that he will sell US and European military intelligence on the dark web. Known by the moniker “USDoD,” the hacker said he recently managed to enter the company’s website by exploiting employee access from Turkish Airlines. He also immediately posted the stolen data on a hacker forum. In a lengthy interview with databreaches.net, USDoD revealed that his next targets would be American defense contractors, NATO, Europol, and Interpol. He threatened…

The US Department of Homeland Security (DHS) has introduced new recommendations to streamline the reporting of cyber incidents across the Department of Defense and 32 other federal agencies. The guide is expected to further protect the country’s vital infrastructure, reduce the burden on cybersecurity partners, and decrease the downtime of associated operations in each sector covered. The recommendations will also enhance the prevention, response, and recovery from cyber attacks and aid organizations in improving malicious cyber threat identification. ‘Clear, Consistent…

Credit reporting firm TransUnion has denied claims of a security breach after a threat actor known as USDoD leaked data allegedly stolen from the company’s network. The Chicago-based company’s over 10,000 employees provide their services to millions of consumers and more than 65,000 businesses from 30 countries. “Immediately upon discovering these assertions, we partnered with outside cybersecurity and forensic experts to launch a thorough investigation,” the company said. “At this time, we and our internal and external experts have found…

The International Criminal Court (ICC) said on Tuesday its computer system had been hacked, a breach at one of the world’s most high-profile international institutions and one that handles highly sensitive information about war crimes. The ICC said it had detected unusual activity on its computer network at the end of last week, prompting a response that was still ongoing. A spokesperson declined to comment on how serious the hack was, whether it has been fully resolved, or who might…

The Microsoft AI research division accidentally leaked dozens of terabytes of sensitive data starting in July 2020 while contributing open-source AI learning models to a public GitHub repository. Almost three years later, this was discovered by cloud security firm Wiz whose security researchers found that a Microsoft employee inadvertently shared the URL for a misconfigured Azure Blob storage bucket containing the leaked information. Microsoft linked the data exposure to using an excessively permissive Shared Access Signature (SAS) token, which allowed full…

  The University of Sydney (USYD) announced that a breach at a third-party service provider exposed personal information of recently applied and enrolled international applicants. The public university started operations in 1850 and has nearly 70,000 students and about 8,500 academic and administrative personnel. It is considered one of Australia’s most important educational institutes. In the data breach announcement, the university says that incident had a limited impact and the preliminary investigation found no evidence that local students, staff, or…

The scraped data of 2.6 million DuoLingo users was leaked on a hacking forum, allowing threat actors to conduct targeted phishing attacks using the exposed information. Duolingo is one of the largest language learning sites in the world, with over 74 million monthly users worldwide. In January 2023, someone was selling the scraped data of 2.6 million DuoLingo users on the now-shutdown Breached hacking forum for $1,500. This data includes a mixture of public login and real names, and non-public…

A joint operation between Interpol and cybersecurity firms has led to an arrest and shutdown of the notorious 16shop phishing-as-a-service (PhaaS) platform. Phishing-as-a-service platforms offer cybercriminals a one-stop-shop to conduct phishing attacks. These platforms typically include everything you need, including email distribution, ready-made phishing kits for well-known brands, hosting, data proxying, victim overview dashboards, and other tools that help increase the success of their operations. These platforms are a significant risk as they lower the bar of entry for inexperienced…

Canadian news industry groups have asked the country’s antitrust regulator to investigate Meta Platforms’ decision to block news on its platforms in the country, accusing the Facebook parent of abusing its dominant position. Meta started blocking news on its Facebook and Instagram platforms for all users in Canada last week in response to a law requiring internet giants to pay for news articles. Canada’s Online News Act, part of a global trend to make tech firms pay for news, became…

Students rights are limited on school grounds. But they don’t cease to exist. And what they do off-campus is subject to even fewer limitations. These are long-held facts backed by years of court precedent, the most famous of which is the Supreme Court’s 1969 Tinker decision. This is the baseline for school-student interactions when it comes to constitutional rights, as written by Justice Abe Fortas: It can hardly be argued that either students or teachers shed their constitutional rights to…

Researchers have discovered a new and powerful transient execution attack called ‘Inception’ that can leak privileged secrets and data using unprivileged processes on all AMD Zen CPUs, including the latest models. Transient execution attacks exploit a feature present on all modern processors named speculative execution, which dramatically increases the performance of CPUs by guessing what will be executed next before a slower operation if completed. If the guess is correct, the CPU has increased performance by not waiting for an…

The European Commission (EC) has confirmed that it’s opening an in-depth investigation into Adobe’s proposed $20 billion bid for digital design software rival Figma. The Commission said that the acquisition “may reduce competition in the global markets for the supply of interactive product design software and for digital asset creation tools.” First announced last September, Adobe’s megabucks bid for one of its biggest competitors was always likely to attract scrutiny from regulators around the globe. The U.S. Department of Justice…

The pervasive use of facial recognition technology across all facets of life in China has elicited both praise for its convenience and backlash around privacy concerns. The widespread adoption has also fueled the exponential growth of valuations in companies specializing in the field, such as AI giants SenseTime and Megvii. Now the industry is facing some potentially significant changes as Beijing steps up efforts to establish more defined boundaries for the technology’s usage. The move is building upon the implementation…

The Colorado Department of Higher Education (CDHE) discloses a massive data breach impacting students, past students, and teachers after suffering a ransomware attack in June. In a ‘Notice of Data Incident’ published on the CDHE website, the Department says they suffered a ransomware attack on June 19th, 2023. “On June 19, 2023, CDHE became aware it was the victim of a cybersecurity ransomware incident that impacted its network systems,” explains the data breach notification. “CDHE took steps to secure the…

As information started to leak out from the… everywhere about NSO Group’s secondhand contribution to surveillance abuses all over the world, the world (except for the worst of NSO’s customers) began taking action. Even the government that facilitated many of NSO’s sales to human rights violators decided it might be time to toss a few restrictions on the Israel-based malware merchant founded by former Israeli intelligence officers. The same thing happened in the United States. NSO was joined by lesser…

Intellexa (AKA Intellexa Anonymi Etaireia), an alliance of digital intelligence firms in Greece run by an ex-Israeli intel officer, and Cytrox AD (AKA Sytrox), which produces their Predator spyware, added to U.S. ‘entity list’ which already includes Israel’s NSO and Candiru. Late last year, Citizen Lab uncovered the hacking of an Egyptian dissident’s phone. The affected device was host to two forms of malware, one created by NSO Group and the other by Cytrox. According to the Citizen Lab investigation, these infections were…