Security

OODA Loop – Researchers Attribute SITA Cyberattack to Chinese Hackers

ByPR 24 June 15, 2021

A cyberattack on SITA that impacted multiple airlines across the globe was likely the work of a Chinese nation-state threat actor known as APT41, according to new research from security experts at Group-IB. The attack was disclosed in March and affected airlines such as Air India, Air New Zealand, Singapore Airlines, Finnair, and more. SITA boasts roughly 2,500 customers and offers services across 1,000 different airports.

The investigation conducted by Group-IB revealed that the first system within Air India’s network that was communicating with the attackers’ infrastructure hosted the Cobalt Strike implant for more than two months before the attack. The system was also named SITASERVER4. The attackers used their undetected presence on the network to collect credentials, compromising at least 20 devices within Air India’s network. The attack lasted roughly 2 months and 26 days, according to Group-IB.

Security

$38 million worth of gift cards stolen and sold on dark web

ByPR 24 April 8, 2021

Easy to redeem and hard to trace, gift cards remain a hot commodity in the criminal underground A cybercriminal has sold almost 900,000 gift cards and over 300,000 payment cards on a top-tier cybercrime forum on the dark web. The total value of the cards was claimed to be some US$38 million. The hacker probably…

Security

Cyberpunk 2077’s next big patch delayed to second half of March after studio hack

ByPR 24 February 24, 2021

Cyberpunk 2077’s next big patch has been delayed following developer CD Projekt Red’s disclosure that it fell victim to a ransomware attack earlier this month. The next big patch, 1.2, is now scheduled for a release sometime in the second half of March. “While we dearly wanted to deliver Patch 1.2 for Cyberpunk 2077 in…

Security

Microsoft and Google openly feuding amid hacks, competition inquiries, IT News, ET CIO

ByPR 24 March 14, 2021

WASHINGTON: Google and Microsoft are at knives drawn. Driven in part by pressure from lawmakers and regulators over the extraordinary power the two technology companies wield over American life, the California-based search engine giant and Washington-based software firm are wrestling to throw each other under the bus. Tensions between Microsoft Corp and Alphabet-owned Google have…

Security

Facefish Backdoor Steals Login Credentials & Execute Arbitrary Commands on Linux Systems

ByPR 24 May 31, 2021

Facefish Backdoor Steals Login Credentials & Execute Arbitrary Commands on Linux Systems | IT Security News Android App Android App with push notifications Sponsors Endpoint Cybersecurity www.endpoint-cybersecurity.com – Consulting in building your security products– Employee awareness training– Security tests for applications and pentesting… and more. Daily Summary Categories CategoriesSelect Category(ISC)2 Blog (323)(ISC)2 Blog infosec (13)(ISC)² Blog (364)2020-12-08 –…

Security

Hackers Hack Hackers as Underground Carding Site is Breached

ByPR 24 April 9, 2021

Thousands of cyber-criminals have had their personal data leaked online after a popular carding forum was hacked, according to Group-IB. The Singapore-based security firm said it discovered that data belonging to users of the Swarmshop site was leaked to another underground forum on March 17. “The database was posted on a different underground forum and…

Security

New iPhone vulnerability exploited by cyber arms dealers: researchers – Security – Mobility

ByPR 24 September 14, 2021

A cyber surveillance company based in Israel has developed a tool that can break into Apple iPhones with a never-before-seen technique used at least since February, internet security watchdog group Citizen Lab said on Monday. The discovery is important because of the critical nature of the vulnerability, which affects all versions of Apple’s iOS, OSX,…

Similar Posts