BleepingComputer.com

"Court charges dev with hacking after cybersecurity issue disclosure."

Views expressed in this cybersecurity, cybercrime update are those of the reporters and correspondents.  Accessed on 20 January 2024, 2217 UTC.

Content and Source:   https://www.bleepingcomputer.com/ ("BleepingComputer.com").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Court charges dev with hacking after cybersecurity issue disclosure

  • A German court has charged a programmer investigating an IT problem with hacking and fined them €3,000 ($3,265) for what it deemed was unauthorized access to external computer systems and spying on data.

  • 3AM Three AM Clock Time
     

Researchers link 3AM ransomware to Conti, Royal cybercrime gangs

  • Security researchers analyzing the activity of the recently emerged 3AM ransomware operation uncovered close connections with infamous groups, such as the Conti syndicate and the Royal ransomware gang.

  • CompTIA
     

Get certified in IT with $230 off these CompTIA study gudies

  • Getting back in the test-taking mindset can be difficult without help. This set of 10 IT exam study guides gets you ready for your professional exams for $29.99, $230 off the $259 MSRP.

    • BLEEPINGCOMPUTER DEALS
    •  
    • JANUARY 20, 2024
    •  
    • 08:14 AM
    •  
    • Comment Count 0
  • Instagram
     

Meta won't remove fake Instagram profiles that are clearly catfishing

  • Meta seems to be falling short of effectively tackling fake Instagram profiles even when there are sufficient signs to indicate that a profile is misusing someone else's photos and identity.

  • Microsoft
     

Russian hackers stole Microsoft corporate emails in month-long breach

  • Microsoft warned Friday night that some of its corporate email accounts were breached and data stolen by a Russian state-sponsored hacking group known as Midnight Blizzard. 

  • Court gavel
     

BreachForums hacking forum admin sentenced to 20 years supervised release

  • Conor Brian Fitzpatrick was sentenced to 20 years of supervised release today in the Eastern District of Virginia for operating the notorious BreachForums hacking forum, known for the sale and leaking of personal data for hundreds of millions of people worldwide.

  • Payoneer
     

Payoneer accounts in Argentina hacked in 2FA bypass attacks

  • Numerous Payoneer users in Argentina report waking up to find that their 2FA-protected accounts were hacked and funds stolen after receiving SMS OTP codes while they were sleeping.

  • CISA
     

CISA emergency directive: Mitigate Ivanti zero-days immediately

  • CISA issued this year's first emergency directive ordering Federal Civilian Executive Branch (FCEB) agencies to immediately mitigate two Ivanti Connect Secure and Ivanti Policy Secure zero-day flaws in response to widespread and active exploitation by multiple threat actors.

  • Location
     

FTC bans one more data broker from selling your location info

  • The U.S. Federal Trade Commission (FTC) continues to target data brokers, this time in a settlement with InMarket Media, which bans the company from selling Americans' precise location data.

  • VMware
     

Chinese hackers exploit VMware bug as zero-day for two years

  • A Chinese hacking group has been exploiting a critical vCenter Server vulnerability (CVE-2023-34048) as a zero-day since at least late 2021.

  • VF Corp
     

Vans, North Face owner says ransomware breach affects 35 million people

  • VF Corporation, the company behind brands like Vans, Timberland, The North Face, Dickies, and Supreme, said that more than 35 million customers had their personal information stolen in a December ransomware attack.

  • VMware
     

VMware confirms critical vCenter flaw now exploited in attacks

  • VMware has confirmed that a critical vCenter Server remote code execution vulnerability patched in October is now under active exploitation.

  • Cisco
     

Save $63 on this Cisco network engineer certification training bundle

  • Network engineering is key to every IT department's function, and knowing how it works can be a boost to your career. These seven network engineering certification courses help you master the discipline for $34.99, $63 off the $98 MSRP.

    • BLEEPINGCOMPUTER DEALS
    •  
    • JANUARY 19, 2024
    •  
    • 07:12 AM
    •  
    • Comment Count 0
  • TeamViewer
     

TeamViewer abused to breach networks in new ransomware attacks

  • Ransomware actors are again using TeamViewer to gain initial access to organization endpoints and attempt to deploy encryptors based on the leaked LockBit ransomware builder.

  • Ivanti
     

CISA: Critical Ivanti auth bypass bug now actively exploited

  • CISA warns that a critical authentication bypass vulnerability in Ivanti's Endpoint Manager Mobile (EPMM) and MobileIron Core device management software (patched in August 2023) is now under active exploitation.

  • Windows 11
     

Microsoft tests instant access to Android photos in Windows 11

  • Microsoft plans to provide Windows 11 users with almost instant access to photos and screenshots they've taken on their Android smartphones.

  • Hacker cybersecurity
     

Get certified in the new year with $90 off over 65 IT trainings

  • Cybersecurity is about constant learning and improvement. This library of over 65 cybersecurity training courses helps you meet your career goals for $29.99, $90 off the $120 MSRP.

    • BLEEPINGCOMPUTER DEALS
    •  
    • JANUARY 18, 2024
    •  
    • 02:02 PM
    •  
    • Comment Count 0
  • Kansas State University
     

Kansas State University cyberattack disrupts IT network and services

  • Kansas State University (K-State) announced it is managing a cybersecurity incident that has disrupted certain network systems, including VPN, K-State Today emails, and video services on Canvas and Mediasite.

  • Haier
     

Haier hits Home Assistant plugin dev with takedown notice

  • Appliances giant Haier reportedly issued a takedown notice to a software developer for creating Home Assistant integration plugins for the company's home appliances and releasing them on GitHub.

  • Department of Justice DOJ
     

US govt wants BreachForums admin sentenced to 15 years in prison

  • The United States government has recommended that Conor Brian Fitzpatrick, the creator and lead administrator of the now-defunct BreachForums hacking forums, receive a sentence of 15 years in prison.

VIEW MORE

Comments

Popular posts from this blog

SecurityWeek Briefing.

Cyber War Newswire

SecurityWeek Briefing.