-
New banking trojan TgToxic attacks Android users in Southeast Asia
Cybersecurity researchers at security firm Trend Micro have reported an ongoing malware campaign to spread the TgToxic banking trojan, which has been active since July 2022. The campaign includes attacks on cryptocurrency wallets, illegal money transfers and the theft of credentials from banking and financial apps of Android users in Taiwan, Thailand and Indonesia.According to the researchers, the attackers use malware called TgToxic, which is distributed under the guise of legitimate applications and promoted through phishing sites related to cryptocurrency and intimate services.In their attacks, the cybercriminals abuse the legitimate Easyclick test environment to write...
-
ChatGPT: 5,000 Most Dangerous Files With Which You Can Easily Hack Websites
Often, developers (perhaps due to their inattention) forget files in the root folders that can serve as a tool for attackers to hack a site or steal important information. These can be database copies, configuration files, or even source code files. Bug hunters periodically discover such vulnerabilities and send reports to bug bounty programs (programs for finding vulnerabilities for a fee).The most dangerous files according to ChatGPTThe root folder is the part after the first slash in the site address. In simple terms, the attack on the root of the site looks like this: https://example.com/[part_of_the_URL_looked_by_the_intruder]....
-
Israeli hacker group "Team Jorge" claims impact on more than 30 election campaigns around the world
The head of the gang, a former Israeli intelligence officer, spoke about the activities of his team.Team Jorge, a hacker group led by former Israeli intelligence operative Tal Khanan, provides intelligence gathering services on political rivals and interference in election campaigns around the world. This was reported by RBC, referring to the investigations of the publications Haaretz, Le Monde and Der Spiegel.Hanan explained to reporters that the group collects information about the political competitors of customers by hacking their accounts in Telegram and Gmail, organizes the placement of custom materials in the media and spins...
-
Data of Mandarinbank payment service clients leaked to the Network
Cybercriminals have released 2 databases containing a total of more than 2.7 million records.According to one Telegram channel, hackers from the NLB group hacked the Mandarinbank payment service ( https://mandarin.io ) and made 2 databases public.The first base contains 16.307 lines with logins, hashed passwords, email addresses and other technical information. The experts found that the data in the file is current as of April 2022.The second database contains 2.714.048 records with full names of service clients, phone numbers, among which 1.036.918 are unique, as well as some technical information. The data in the second...
-
Google selectively relaxed restrictions on CBD ads in several markets
The Google administration announced that restrictions on the placement of advertisements for "certified CBD therapeutic products" will be relaxed on the organization's services, including a number of social networks, against advertisers from Puerto Rico, California and Colorado. Why, of all the US regions served by the company, these regions were chosen to introduce such an “exception” from the organization’s service rules, Google management did not explain.According to the published documents, the organization will allow other legal entities located in certain regions of the United States to enter into contracts to advertise CBD products. Applications will...
-
Anonymous messenger Exclu was closed during the international law enforcement operation
The anonymous messenger Exclu was liquidated after a series of large-scale raids across Europe. During a search of 79 properties in Germany, the Netherlands, Belgium and Poland, the authorities of these countries arrested 48 people who were users, operators and administrators of the Exclu messenger.The Exclu app, which was available as a €500 subscription for 3 months and €900 for 6 months, was widely used by organized crime and drug gangs. This was reported by the Dutch police.Exclu made it possible to exchange messages, media files and notes with users who, according to the Dutch...
-
Vaccine saved rats from opiate overdose
American scientists have tested a conjugate vaccine on rats that protects against an overdose of the opioid drug fentanyl. In vaccinated animals, which were injected with toxic doses of the substance, its concentration in the brain was ten times lower than in unvaccinated ones. However, the drug turned out to be narrowly targeted: it protected animals only from two types of opiates - fentanyl and sufentanil. The study was published in the journal Pharmaceuticals.Addiction to opiates - morphine, heroin, codeine and their derivatives - continues to be a serious problem throughout the world. Moreover, in...
-
Clop ransomware victims for Linux have been decrypting their data for free for several months
A ransomware gang called Clop has been using a ransomware of the same name targeting Linux servers in their attacks for several months. However, a bug in the encryption scheme allowed victims to quietly restore their files for several months, and absolutely free of charge.This version of Clop for Linux was discovered in December 2022 by Antonis Terefos, a researcher at SentinelLabs. The malware was identified after the group used it along with a similar Windows variant in an attack on a Colombian university.Even though the Linux and Windows versions are very similar, since both...
-
Chinese program Sunlogin Remote Control is actively used by hackers to carry out BYOVD attacks
A new hacking campaign exploits vulnerabilities in Sunlogin's remote access program to deploy Sliver's post-exploitation toolkit and launch BYOVD attacks to disable antivirus products.Sliver is a post-exploitation toolkit created by BishopFox that attackers started using as an alternative to Cobalt Strike last summer. They use it for network surveillance, executing commands, loading DLLs, creating sessions, manipulating processes, and so on.According to a report by AhnLab's Security Emergency Response Center (ASEC), the newly identified attacks targeted two vulnerabilities discovered last year in Sunlogin's remote access software.Attackers use these vulnerabilities to compromise a device and then execute...
-
China's Foreign Ministry calls US the world's biggest spy nation
Over the past decades, the United States has invested billions of dollars in surveillance, according to a Chinese Foreign Ministry spokesman.The "world leader" in spying on other countries is the United States. Such a statement, according to TASS, was made by the representative of the Chinese Foreign Ministry, Wang Wenbin.The diplomat said that the United States is actively monitoring Europe, among other things. At the same time, the Americans also practice personal surveillance of politicians, among whom was Angela Merkel, he recalled.In addition, American hackers, with the support of the authorities, are engaged in cyberattacks....