BTC $58270.6324
ETH $3301.4664
BNB $400.6794
SOL $110.0515
XRP $0.5824
ADA $0.6271
AVAX $39.6830
DOGE $0.0970
TRX $0.1429
wstETH $3808.1443
DOT $8.3586
LINK $19.1334
WETH $3305.4834
MATIC $1.0428
UNI $11.0186
WBTC $57881.0446
IMX $3.3465
ICP $13.0316
BCH $301.2119
LTC $74.8427
CAKE $3.2026
ETC $28.3635
FIL $7.9610
LEO $4.4139
RNDR $7.4060
KAS $0.1700
HBAR $0.1136
DAI $1.0002
ATOM $11.3163
INJ $41.0291
VET $0.0502
TON $2.1419
OKB $51.8401
STX $3.2222
LDO $3.5190
FDUSD $0.9951
XMR $138.3902
XLM $0.1221
ARB $1.8935
NEAR $3.9358
TIA $16.9317
GRT $0.2829
WEMIX $2.2582
ENS $22.5313
MKR $2167.8555
APEX $2.4646
THETA $1.9298
BTC $58270.6324
ETH $3301.4664
BNB $400.6794
SOL $110.0515
XRP $0.5824
ADA $0.6271
AVAX $39.6830
DOGE $0.0970
TRX $0.1429
wstETH $3808.1443
DOT $8.3586
LINK $19.1334
WETH $3305.4834
MATIC $1.0428
UNI $11.0186
WBTC $57881.0446
IMX $3.3465
ICP $13.0316
BCH $301.2119
LTC $74.8427
CAKE $3.2026
ETC $28.3635
FIL $7.9610
LEO $4.4139
RNDR $7.4060
KAS $0.1700
HBAR $0.1136
DAI $1.0002
ATOM $11.3163
INJ $41.0291
VET $0.0502
TON $2.1419
OKB $51.8401
STX $3.2222
LDO $3.5190
FDUSD $0.9951
XMR $138.3902
XLM $0.1221
ARB $1.8935
NEAR $3.9358
TIA $16.9317
GRT $0.2829
WEMIX $2.2582
ENS $22.5313
MKR $2167.8555
APEX $2.4646
THETA $1.9298
  • Catalog
  • Blog
  • Tor Relay
  • Jabber
  • One-Time notes
  • Temp Email
  • What is TOR?
  • We are in tor
  • US Federal Agencies Face AnyDesk Fraud


    Bank accounts of US government employees can fall into the hands of government hackers.

    2 unnamed US federal agencies were targeted by a fraudulent campaign using Remote Monitoring and Management (RMM) software.

    The Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA) and the Interstate Information Sharing and Analysis Center (MS-ISAC) discovered the campaign back in October. One federal bureau was hacked in June and another was attacked in September.

    The cybercriminal sent phishing emails that resulted in the download of legitimate ScreenConnect (ConnectWise Control) and AnyDesk remote access programs, which the attacker used to steal money from victims' bank accounts.

    The hacker first connected to the recipient's system and convinced them to log into their online bank. The hacker then changed the balance of the account via remote access, as if the recipient had been transferred an excess amount of money by mistake. The scammer then asked the victim to return this amount to him.

    In June, during a similar campaign, a phishing email with a phone number was sent to the email address of a civil servant. The employee called the specified number and was sent to a malicious site.

    From there, the hacker downloaded portable versions of AnyDesk and ScreenConnect, which were then configured to connect to the attacker's server. CISA noted that cybercriminals use portable versions because they can run on a device without installation and administrator rights.

    After connecting to the victim's system, the scammer convinces the user to enter the online bank. He then changes the balance of the account to give the impression that too much money has been returned to the victim and asks for the funds to be returned to the scammer.

    Both incidents involved phishing emails on behalf of the helpdesk sent to employees' personal and work addresses. According to the CISA and the NSA, this campaign aims to steal money, but the attacker could also sell access to the victim's account to government hackers. RMM programs allow attackers to establish local user access without administrator privileges and bypass monitoring tools.

    Author DeepWeb
    Elimination of the Hive APT group: the US Department of Justice announced the final victory over the group
    UK warns of threat from hackers from Russia and Iran

    Comments 0

    Add comment