-
Telegram blocked the channel of hackers KillNet
The messenger also prohibited the administrator from creating other channels.Telegram banned the channel of the pro-Russian hacker group KillNet, according to the Russian OSINT Telegram channel.The messenger also prohibited the administrator from creating other channels. However, despite the ban, the hackers continued their activities from other accounts.In its Telegram channel, the group talked about its plans, covered ongoing cyberattacks, and also reported on the recruitment of new members.Killnet is a relatively recent pro-Russian hacker group. The first post in their official Telegram channel is dated January 23, 2022. Representatives of the group claim that their...
-
Researcher Publishes New Method to Bypass CSP with WordPress
A graceful attack negates the creation of a secure CSP if the site is using WordPress.The hacking technique, developed by security researcher Paulos Yibelo, is based on exploiting a “same origin method execution” vulnerability that allows an attacker to perform unintended actions on behalf of a user. The technique also uses JSONP (JSON Basic Format Complement) to call the function. Things like this could allow a WordPress account to be compromised, but only if there is a cross-site scripting (XSS) exploit, which the researcher doesn't have yet.Yibelo said that he did not try to use...
-
Police Still Need the Password to a Seized Hydra BTC Wallet
The owner of a cryptocurrency wallet associated with Hydra Market refuses to provide police with the password, preventing investigators from establishing the wallet’s value.According to Mash, a popular Telegram channel for news-related content, a court ordered the seizure of a cryptocurrency wallet owned by the alleged “co-founder” of Hydra Market, Dmitry Pavlov. Pavlov will not provide the police with the password needed to access the wallet’s contents.The Alleged Co-FounderPavlov’s alleged role in the administration of Hydra remains undetermined. The United States Department of Justice indicted Pavlov in April 2022 for conspiracy to distribute narcotics and...
-
Breaking bad: Dutch intelligence agencies used Pegasus spyware to catch drug lord
AIVD of the Netherlands in 2019 bought and used software from the Israeli company NSO Group.The Dutch General Intelligence and Security Service (AIVD) uses Pegasus spyware developed by the Israeli company NSO Group, the Volkskrant newspaper reported, citing four confidential sources. Neither AIVD nor NSO Group commented on these claims.Spyware was used in the investigation of drug lord Riduan Tagi. After the assassination of lawyer Derk Wirsum, Attorney General Ferd Grapperhaus enlisted the AIVD, which, with the help of Pegasus, hacked into the criminal's phone. Thanks to the efforts of specialists from the Netherlands, Tagi...
-
BIG ROLL: Clipminer botnet operators earn $1.7 million
The Trojan can not only mine cryptocurrency, but also replace the address of the crypto wallet in the victim's clipboard.The Clipminer Trojan is distributed through hacked and pirated software, experts compare it with KryptoCibule due to similar working methods. According to Symantec, Clipminer was first spotted in January 2021, shortly after KryptoCibule was detailed in an ESET research project.After infecting a computer, the malware can use its resources to mine cryptocurrency, and is also able to change the contents of the clipboard. When Clipminer finds the victim's crypto wallet address on the clipboard, it replaces...
-
Drug dealer flees after hitting pedestrians by car in Plainville
PLAINVILLE - A pedestrian was seriously injured Wednesday afternoon when the driver, a suspected drug dealer, hit a man in a rollover and fled the scene, police said.The driver, identified by police as Sharif Jackson, 42, was found in a nearby apartment and arrested on more than a dozen charges, police said.The pedestrian is expected to survive.The incident began around 1:00 p.m. when police received a 911 call about a serious rollover accident on Woodford Avenue in front of the Blue Plate Tavern. According to Sergeant Mark Connoy, officers who arrived found the injured pedestrian...
-
USA told how not to fall into the clutches of Karakurt and maintain confidentiality.
Several U.S. federal agencies today warned organizations against paying a ransom to the Karakurt gang, as the money will not stop the sale of stolen data to third parties.Karakurt is a division of the Conti group and has specialized in stealing data from companies since 2021. From September to November 2021, more than 40 organizations fell victim to the group. After stealing the data, the gang demands a ransom of between $25,000 and $13 million in bitcoins. Karakurt forces victims to pay a ransom by harassing their business partners, customers and employees via email and...
-
FBI: Iranian government hacker's dastardly attack threatened the lives of hundreds of sick children
Fortunately, the FBI managed to prevent an attack on the Boston Children's Hospital.A group of Iranian government officials attempted to carry out a cyberattack on the Boston Children's Hospital last summer, but their attempt was thwarted and halted, FBI Director Christopher Wray said Wednesday.Speaking at the Boston Cyber Security Conference at Boston College, Ray said: "In the summer of 2021, Iranian government hackers tried to carry out one of the most heinous cyberattacks I have seen ... They decided to attack the Boston Children's Hospital."The FBI became aware of the impending attack after reports from...
-
Microsoft spoke about the attacks of Lebanese Polonium hackers on Israeli organizations
Microsoft has blocked the Lebanese hacker group Polonium from using OneDrive cloud storage to steal data from Israeli organizations.The company also blocked more than 20 malicious OneDrive applications used by Polonium in its attacks, alerted attacked organizations about them, and quarantined malicious hacker tools with security updates.According to Microsoft, since February of this year, Polonium has been attacking mainly Israeli manufacturing, IT and defense enterprises. Apparently, the hackers are coordinating their attacks with various Iranian groups. For example, organizations previously hacked by the MuddyWater APT group, tracked by Microsoft as Mercury and linked by the...
-
Hackers attack Costa Rica again
Another attempt to hack into the computer system of the government of Costa Rica led to the shutdown of the country's IT healthcare system and complicated the medical care of thousands of people. According to the government, 30 out of 1,500 Social Security Agency (SSA) servers were infected with ransomware.The attack was carried out by the Hive ransomware gang, but Emsisoft analyst Brett Callow speculated that Conti and Hive have established a working relationship for the time being.“It would seem that someone who works with Conti also works with Hive. Conti is likely collaborating with...