Ne’er-Do-Well News – Page 11 – PossibleThreat Articles

Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade Sanctions

May 31, 2022 0 Comments A Little Sunshine, advintel, conti, costa rica, crprensa.com, cyberscoop, Data Breaches, data ransom, hive, Ne'er-Do-Well News, Ransomware, russia's war on ukraine, unc1756

Credit to Author: BrianKrebs| Date: Tue, 31 May 2022 19:57:58 +0000

Costa Rica’s national health service was hacked sometime earlier this morning by a Russian ransomware group known as Hive. The intrusion comes just weeks after Costa Rican President Rodrigo Chaves declared a state of emergency in response to a data ransom attack from a different Russian ransomware gang — Conti. Ransomware experts say there is good reason to believe the same cybercriminals are behind both attacks, and that Hive has been helping Conti rebrand and evade international sanctions targeting extortion payouts to cybercriminals operating in Russia.

Independent Krebs Security

DEA Investigating Breach of Law Enforcement Data Portal

May 12, 2022 0 Comments A Little Sunshine, Data Breaches, Department of Justice, domain block list, doxbin, drug enforcement administration, el paso intelligence center, emergency data request, epic, esp.usdoj.gov, FBI, icsi, kt, lapsus, law enforcement inquiry and alerts, leia, national seizure system, Ne'er-Do-Well News, nicholas weaver, nss, spamhaus, The Coming Storm, u.s. drug enforcement agency

Credit to Author: BrianKrebs| Date: Thu, 12 May 2022 11:00:30 +0000

The U.S. Drug Enforcement Administration (DEA) says it is investigating reports that hackers gained unauthorized access to an agency portal that taps into 16 different federal law enforcement databases. KrebsOnSecurity has learned the alleged compromise is tied to a cybercrime and online harassment community that routinely impersonates police and government officials to harvest personal information on their targets.

Independent Krebs Security

Russia to Rent Tech-Savvy Prisoners to Corporate IT?

May 2, 2022 0 Comments A Little Sunshine, Ne'er-Do-Well News, russia's war on ukraine

Credit to Author: BrianKrebs| Date: Mon, 02 May 2022 21:29:34 +0000

Faced with a brain drain of smart people fleeing the country following its invasion of Ukraine, the Russian Federation is floating a new strategy to address a worsening shortage of qualified information technology experts: Forcing tech-savvy people within the nation’s prison population to perform low-cost IT work for domestic companies.

Independent Krebs Security

Leaked Chats Show LAPSUS$ Stole T-Mobile Source Code

April 22, 2022 0 Comments A Little Sunshine, amtrak, Apple, bitbucket, Breadcrumbs, dan goodin, doxbin, electronic arts, emergency data request, everlynn, flashpoint, genesis, globant, iqor, kt, lapsus, lapsus$ jobs, michelin, Microsoft, mobile device management, mox, Ne'er-Do-Well News, NVIDIA, recursion team, russian market, Samsung, sascar, SIM swapping, Slack, source code theft, SWATting, T-Mobile, t-mobile atlas, whitedoxbin

Credit to Author: BrianKrebs| Date: Fri, 22 Apr 2022 13:09:39 +0000

KrebsOnSecurity recently reviewed a copy of the private chat messages between members of the LAPSUS$ cybercrime group in the week leading up to the arrest of its most active members last month. The logs show LAPSUS$ breached T-Mobile multiple times in March, stealing source code for a range of company projects. T-Mobile says no customer or government information was stolen in the intrusion. LAPSUS$ is known for stealing data and then demanding a ransom not to publish or sell it. But the leaked chats indicate this mercenary activity was of little interest to the tyrannical teenage leader of LAPSUS$, whose obsession with stealing and leaking proprietary computer source code from the world’s largest tech companies ultimately led to the group’s undoing.

Independent Krebs Security

Conti’s Ransomware Toll on the Healthcare Industry

April 18, 2022 0 Comments A Little Sunshine, conti, emotet, emsisoft, errol weiss, FBI, h-isac, health information sharing & analysis center, healthcare information and management systems society, Microsoft, Ne'er-Do-Well News, proofpoint, Ransomware, ryuk, sophos, u.s. cybersecurity & infrastructure security agency, zloader

Credit to Author: BrianKrebs| Date: Mon, 18 Apr 2022 20:41:08 +0000

Conti — one of the most ruthless and successful Russian ransomware groups — publicly declared during the height of the COVID-19 pandemic that it would refrain from targeting healthcare providers. But new information confirms this pledge was always a lie, and that Conti has launched more than 200 attacks against hospitals and other healthcare facilities since first surfacing in 2018 under the name “Ryuk.”

Independent Krebs Security

RaidForums Gets Raided, Alleged Admin Arrested

April 12, 2022 0 Comments A Little Sunshine, diogo santos coelho, europol, FBI, national crime agency, Ne'er-Do-Well News, omnipotent, operation tourniquet, raidforums seizure, subvirt, t-mobile breach, u.s. department of justice, unrivaled@pm.me, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 12 Apr 2022 17:29:33 +0000

The U.S. Department of Justice (DOJ) said today it seized the website and user database for RaidForums, an extremely popular English-language cybercrime forum that sold access to more than 10 billion consumer records stolen in some of the world’s largest data breaches since 2015. The DOJ also charged the alleged administrator of RaidForums — 21-year-old Diogo Santos Coelho, of Portugal — with six criminal counts, including conspiracy, access device fraud and aggravated identity theft.

Independent Krebs Security

Actions Target Russian Govt. Botnet, Hydra Dark Market

April 7, 2022 0 Comments ars technica, asus, beserk bear, cyclops blink, dan goodin, dragonfly 2.0, FBI, federal security service, garantex, german federal criminal police office, gru, hydra market, main intelligence directorate, Ne'er-Do-Well News, notpetya, Ransomware, russian fsb, sandworm, trisis, triton, u.s. department of justice, u.s. department of treasury, voodoo bear, vpnfilter, watchguard, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 07 Apr 2022 22:03:45 +0000

The U.S. Federal Bureau of Investigation (FBI) says it has disrupted a giant botnet built and operated by a Russian government intelligence unit known for launching destructive cyberattacks against energy infrastructure in the United States and Ukraine. Separately, law enforcement agencies in the U.S. and Germany moved to decapitate “Hydra,” a billion-dollar Russian darknet drug bazaar that also helped to launder the profits of multiple Russian ransomware groups.

Independent Krebs Security

The Original APT: Advanced Persistent Teenagers

April 6, 2022 0 Comments A Little Sunshine, advanced persistent teenagers, amit yoran, APT, cisa, FBI, lapsus, Microsoft, Ne'er-Do-Well News, NVIDIA, okta, Samsung, tenable, The Coming Storm, twitter hack, vishing, voice phishing, wired

Credit to Author: BrianKrebs| Date: Wed, 06 Apr 2022 17:55:38 +0000

Many organizations are already struggling to combat cybersecurity threats from ransomware purveyors and state-sponsored hacking groups, both of which tend to take days or weeks to pivot from an opportunistic malware infection to a full blown data breach. But few organizations have a playbook for responding to the kinds of virtual “smash and grab” attacks we’ve seen recently from LAPSUS$, a juvenile data extortion group whose short-lived, low-tech and remarkably effective tactics are putting some of the world’s biggest corporations on edge.

Independent Krebs Security

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

March 31, 2022 0 Comments A Little Sunshine, Apple, bloomberg, Bug, discord, facebook, Instagram, lapsus, meta, Ne'er-Do-Well News, sen. ron wyden, snapchat, twitter, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 31 Mar 2022 22:54:45 +0000

On Tuesday, KrebsOnSecurity warned that hackers increasingly are using compromised government and police department email accounts to obtain sensitive customer data from mobile providers, ISPs and social media companies. Today, one of the U.S. Senate’s most tech-savvy lawmakers said he was troubled by the report and is now asking technology companies and federal agencies for information about the frequency of such schemes.

Independent Krebs Security

Hackers Gaining Power of Subpoena Via Fake “Emergency Data Requests”

March 29, 2022 0 Comments anitsu, data extortion, discord, doxbin, emergency data request, everlynn, fake edr, FBI, kt, lapsus, mark rasch, Microsoft, miku, Ne'er-Do-Well News, oklaqq, palo alto networks, pompompurin, recursion team, The Coming Storm, unit 221b, Web Fraud 2.0, white, whitedoxbin

Credit to Author: BrianKrebs| Date: Tue, 29 Mar 2022 14:07:27 +0000

There is a terrifying and highly effective “method” that criminal hackers are now using to harvest sensitive customer data from Internet service providers, phone companies and social media firms. It involves compromising email accounts and websites tied to police departments and government agencies, and then sending unauthorized demands for subscriber data while claiming the information being requested can’t wait for a court order because it relates to an urgent matter of life and death.