Must Read
Source: The hackers News |
Russian hackers are deploying cyber espionage campaigns against Ukraine.
The State Service of Special Communication and Information Protection of Ukraine made the statement.
More:
According to Ukrainian authorities, Russia is attempting to infect Ukrainian digital infrastructure with spyware to gain the upper hand regarding military maneuvers, weapon purchases, equipment, etc.
The SSSCIP is cooperating with tech companies such as:
- Google,
- Microsoft,
- Amazon,
- Palantir,
- ESET,
- Cisco,
- and Logpoint.
Google, for example, has provided 50,000 Google Workspace licenses for the Ukrainian government, the rapid Air Raid Alerts system for Android phones, support for refugees, businesses, and entrepreneurs, and measures to indefinitely pause monetization and limit the reach of Russian state news media.
Ukraine currently experiences up to 10 major cyber incidents per day.
Zoom Out:
The cyberattacking campaigns between Russia and Ukraine have been called by several industry researchers the world's first cyberwar.
Russia has consistently launched cyberattacks against Ukraine since 2013 with Operation Armageddon, then continuing with the 2015 power grid attack, up to the 2022 attacks that preceded the war.
Russia began cyberattacking Ukraine on Jan. 14, 2022, taking down around 70 government websites.
U.S. authorities recently warned that Russia is set to deploy more cyberattacks against Ukraine.
Efforts to ban TikTok are increasingly gathering support from U.S. Congress members.
Stocks such as Snap have gone up over 16% in the last five days as a result.
More:
U.S. Senate Intelligence Committee Chairman Mark Warner recently stated that he plans to present a bill that would allow the U.S. to ban TikTok, among other Chinese apps.
If TikTok is banned, apps like Snap are seen as the immediate beneficiaries due to their established presence with younger users and their existing products that offer short-form content.
Snapchat has 363 million daily active users worldwide, a third of which are in the U.S.
TikTok has surpassed 1 billion users globally. In the U.S., the app has over 130 million monthly active users, most of whom are 13-30 years old.
Since November 2022, over two dozen U.S. states have banned TikTok on government-issued devices.
Some of them are:
- Texas,
- Nebraska,
- South Carolina,
- South Dakota, etc.
Western legislators and IT experts believe that TikTok has the potential to bring sensitive data from private citizens into the hands of the Chinese government, considering the fact it is essentially headquartered in Beijing.
Many industry researchers also consider TikTok's algorithm an effective way to spread any propaganda the Chinese government wants.
The company has denied such claims, saying that it is willing to route the information via its U.S. offices.
Zoom Out:
The White House recently directed U.S. federal agencies to delete the app from government devices within 30 days due to security concerns.
Canada and the European Union also recently banned the app from government officials' devices.
Hackers have leaked over 2 million stolen credit cards on online forums.
The majority of the cards are unique and not duplicates.
More:
Out of all the credit cards, over 2.1 million cards are unique, while duplicates are only a small percentage of the overall list.
70% of the cards have 2023 expiration dates, and 50% belong to U.S. users.
In addition to financial information such as credit card expiration dates and CVV codes, hackers have also leaked details such as:
- names,
- emails,
- phone numbers,
- home addresses, etc.
Over 497,000 unique emails were leaked.
Card shop BidenCash, an illegal marketplace that has been active since February 28, 2022, leaked the data on the Russian-speaking darknet forum XSS to celebrate its first anniversary.
BidenCash ranks in the top five among card shops by global volume.
Google has announced that it awarded over $12M in bounty rewards in 2022 as part of its vulnerability reporting program.
Over 2,900 bugs were tracked in this period.
More:
Google claims that 2022 broke the previous record amount of rewards given.
In 2021, the tech giant awarded $8.7M, while in 2015, the company awarded $2M.
The highest amount given to one security researcher was $605,000.
Researchers from 68 countries participated in the company's vulnerability reporting program.
Most money was awarded to researchers that found security flaws in Android and Google devices ($4.8M), with Chrome coming in second ($4M).
Hackers have breached one of Brazil's largest oil and gas engineering companies.
The threat actor has stolen 3TB worth of data.
More:
The threat actor, named Dark Angels, is believed to have stolen information such as:
- names,
- email addresses,
- passport details,
- payment info,
- tax ID numbers,
- and health insurance information on over 10,000 employees.
Outside of employee information, the threat actor also stole projects on urban buildings, the 2016 Rio Olympics stadiums, healthcare facilities, etc.
Brazilian media publications claim to have contacted the threat actor to confirm the authenticity of this breach. According to these media publications, the documents stolen by Dark Angel are authentic.
Andrade Gutierrez, the company that was allegedly breached, has not commented on these reports.
Zoom Out:
There were over 30 million cyberattacks tracked in Brazil just in the first half of 2022.