Ukrainian Imprisoned for Stealing Thousands of Login Credentials Per Week & Selling
On Thursday, a Ukrainian man (a 28-year-old) was sentenced to four years in federal prison for selling decrypted usernames and passwords …
Credentials
US Jails Ukrainian For Hacking 6,000 Servers and Selling Access To Them
The US is punishing a Ukrainian man with four years in prison for cracking the passwords to over 6,000 servers, and then selling access to …
Ukrainian Gets Four Years for Brute Forcing Thousands of Credentials
A Ukrainian man has been handed a four-year jail term for stealing thousands of server logins and putting them up for sale on the dark web. …
Unused Credentials Key Culprits in Cloud Attacks, Study Says
It’s an eye-popping statistic: Nearly 99% of identity and access management (IAM) policies are overly permissive, according to a new …
Heroku: Cyberattacker Used Stolen OAuth Tokens to Steal Customer Account Credentials
The same attack that allowed a threat actor to steal data from private Heroku GitHub repositories also resulted in the compromise of …
Hackers Sending Poisoned Resumes to steal Credentials and Bank Details
More_eggs is malware that is specially designed to steal valuable credentials like usernames and passwords for corporate bank accounts, …
Attack on Ukraine Telecoms Provider Caused by Compromised Employee Credentials
Russian hackers used compromised employee credentials to launch the cyber-attack that severely disrupted internet services in Ukraine last …
A New Spyware Campaign Attack Industrial Enterprises To Steal Corporate Credentials
Several spyware campaigns have been discovered recently by the security researchers at Kaspersky Labs in which the industrial enterprises …
Adobe Cloud Abused to Steal Office 365, Gmail Credentials
Threat actors are creating accounts within the Adobe Cloud suite and sending images and PDFs that appear legitimate to target Office 365 …
Raising the Bar on Security by Purging Credentials From the Cloud
The Cloud is ubiquitous: any company looking to ramp up quickly will provision its compute, networking, and storage with its preferred …
Telegram Abused to Steal Crypto-Wallet Credentials
Attackers use the Telegram handle “Smokes Night” to spread the malicious Echelon infostealer, which steals credentials for …
Half-Billion Compromised Credentials Lurking on Open Cloud Server
According to the National Crime Agency’s National Cyber Crime Unit in the U.K., nearly 586 million sets of credentials had been collected …
Hackers Using Weaponized IIS Module to Stealing Credentials & Enabling RCE
Kaspersky security lab has recently identified a digital threat that installs malicious webserver IIS modules that work with Microsoft …
Owowa, a malicious IIS Server module used to steal Microsoft Exchange credentials
Threat actors are using a malicious Internet Information Services (IIS) Server module, dubbed Owowa, to steal Microsoft Exchange …