-
"Greatness": a new phishing service
Cisco researchers have discovered a new PaaS service (Phishing-as-a-Service) that allows novice hackers to include "some of the most advanced" features in their cyberattacks.Like other cybercriminal services, PaaS platforms lower the login threshold for attackers by offering unskilled hackers the ability to automate phishing attacks to have victims enter their credentials on a fake login page.The Cisco Talos report says the new service is called "Greatness" and was first seen in mid-2022 - with activity peaking in December 2022 and March 2023, based on the number of samples available on VirusTotal.Greatness has been used to...
-
The cost of creating deepfake videos on the dark web: $300 to $20,000
Kaspersky Lab experts analyzed ads offering services for creating deepfake videos on forums on the dark web. The cost of creating one minute of such a video ranges from $300 to $20,000. Deepfakes can be created for use in scams, political manipulation, revenge, and cyberbullying. Demand for related services and tools on the darknet far outstrips supply.In a significant number of analyzed ads, they offer services for creating deepfakes for cryptofraud. This is a popular scam scheme in which attackers encourage viewers to transfer cryptocurrency to them. Fraudsters use fake celebrity videos to do this,...
-
Australia legalizes psychedelic therapy
The Australian authorities passed a law legalizing psilocybin and MDMA therapy for all adult residents and visitors to the country. Formally, starting from July this year, the country's Ministry of Health will begin certification of specialists and organizations that will be allowed to offer such treatment to the public. The law states that the use of psilocybin and MDMA in treatment will only be permitted in relation to the treatment of a number of serious and chronic mental illnesses, such as persistent depression and PTSD. However, in addition to the narrow range of diagnoses allowed...
-
Google on guard of personal information
Google has announced that all Gmail users in the United States will soon be able to use what the company calls "Dark Web Report," a feature that searches the "dark web" to see if a user's email address has fallen into the wrong hands.The company also said that the feature will be gradually rolled out over the coming weeks, with access to it gradually rolling out to other countries.Once enabled, Gmail users will be able to scan the dark web for their email addresses and take steps to protect data based on Google's recommendations. For...
-
VCaaS: how cybercriminals monetized people's voices
Text-to-speech technology has become a new business on the dark web.Recorded Future cybersecurity experts warn of a rise in attacker interest in Voice Cloning-as-a-Service (VCaaS), which makes it easier to scam using deepfake technology.Increasingly, off-the-shelf voice cloning platforms are appearing on the dark web, according to Recorded Future, lowering the entry barrier for cybercriminals. Some of them are free when you sign up for an account, while others cost only about $5 per month.Among the topics of discussions found on the forums related to such tools, impersonation, callback scams and voice phishing (vishing) are most...
-
FIN7 hackers are back with a new ransomvar Clop
Microsoft has discovered that the group is working in collaboration with other dangerous threat actors.The famous cybercrime group FIN7, also known as Carbanak, ELBRUS and Sangria Tempest, has resumed its activities after a long break. In April 2023, Microsoft discovered that the group was using Clop to attack various organizations. This is the first ransomware distribution campaign since the end of 2021.According to Microsoft, the attackers use a PowerShell script called POWERTRASH to download the Lizar (aka DICELOADER or Tirion) post-exploitation tool and gain access to targeted networks. They then use OpenSSH and Impacket to...
-
White Phoenix: A powerful decryptor that recovers data from ransomware attacks
The new "White Phoenix" decryptor allows victims of ransomware attacks to partially recover their files. The development is aimed primarily at decrypting data to which the so-called "discontinuous encryption" has been applied.With discontinuous encryption, the source data is divided into certain blocks, which are encrypted one by one at a certain interval. Unlike other encryption methods, it does not require the creation of additional data blocks or the use of placeholders. Discontinuous encryption allows victims' data to be processed extremely quickly, while making it completely unusable.In September 2022, Sentinel Labs reported that discontinuous encryption is...
-
The FBI seized 13 services conducting DDoS attacks on order
The US Department of Justice announced the seizure of 13 domains associated with DDoS-for-hire platforms, also known as "booters" or "stressers".The seizure is part of Operation PowerOFF, a coordinated international law enforcement operation aimed at disrupting online platforms that allow anyone to launch a massive DDoS attack against any target for a fee.The FBI seized 48 booter service domains back in December 2022, with 10 previously suppressed platforms registering new domains to allow them to stay online.The Justice Department said in a statement that 10 of the 13 seized domains are restarts of services that...
-
Can marijuana cause an allergic reaction?
In recent years, cannabis allergy has become more and more common. Not surprisingly, legalization is affecting more and more countries, and patients are less likely to hide the use of cannabis when communicating with a doctor.In fact, a cannabis allergy isn't all that different from an allergy to pollen from other plants, with some common symptoms that allergy sufferers are familiar with:Runny or stuffy noseSneezingItchy, watery eyesUrticaria or skin rashSwelling of the face, lips and/or tongueDifficulties with breathingNausea and/or vomitingCannabis can also cause skin allergies if the user comes into direct contact with the plant....
-
Z-Library changes domains after FBI takeover
The FBI has taken over the new domains of the world's largest darknet e-book library, Z-Library. In addition to "b-ok.lat", "booksc.me", and "b-ok.as" (first discovered by TorrentFreak), the list of domains seized in the confiscations also includes "singlelogin.me", which was previously the main URL address for logging in and registering new accounts.“Unfortunately, one of our main login domains was hijacked. Therefore, we recommend that you use the "singlelogin.re" domain to log into your account, as well as to register,” Z-Library said in a message.Although the main login panel has been removed, it remains available on...
