Cybersecurity

U.S., U.K., Australia Sanction Russian REvil Hacker Behind Medibank Breach

Jan 24, 2024NewsroomCryptocurrency / Cybercrime Governments from Australia, the U.K., and the U.S. have imposed financial sanctions on a Russian national for his alleged role in the 2022 ransomware attack against health insurance provider Medibank. Alexander Ermakov (aka blade_runner, GistaveDore, GustaveDore, or JimJones), 33, has been tied to the breach of the Medibank network as […]

Cybersecurity

Threat Assessment: BianLian

This post is also available in: 日本語 (Japanese) Executive Summary Unit 42 researchers have been tracking the BianLian ransomware group, which has been in the top 10 of the most active groups based on leak site data we’ve gathered. From that leak site data, we’ve primarily observed activity affecting the healthcare and manufacturing sectors and […]

DJing

Nuam Gabo on forthcoming DFA album – “sound is affecting us all the time” | Juno Daily

Famed US label picks up on veteran Glasgow duo Naum Gabo have been discuseesing the first release by the Glasgow duo on the legendary DFA label, a dark ambient album called F.Lux. Naum Gabo are Glasgow’s Jonnie Wilkes (one-half of venerated DJ/producer/party promoter/record label duo Optimo) and James Savage ,a prolific mastering engineer who works […]

Cybersecurity

LoanDepot says 16.6M customers had ‘sensitive personal’ information stolen in cyberattack | TechCrunch

About 16.6 million LoanDepot customers had their “sensitive personal” information” stolen in a cyberattack earlier this month, which the loan and mortgage giant has described as a ransomware attack. The loan company said in a filing with federal regulators on Monday that it would notify the affected customers of the data breach. LoanDepot did not […]

Cybersecurity

VexTrio: The Uber of Cybercrime – Brokering Malware for 60+ Affiliates

The threat actors behind ClearFake, SocGholish, and dozens of other actors have established partnerships with another entity known as VexTrio as part of a massive “criminal affiliate program,” new findings from Infoblox reveal. The latest development demonstrates the “breadth of their activities and depth of their connections within the cybercrime industry,” the company said, describing […]

Cybersecurity

Malicious NPM Packages Exfiltrate Hundreds of Developer SSH Keys via GitHub

Jan 23, 2024NewsroomSoftware Security / Supply Chain Two malicious packages discovered on the npm package registry have been found to leverage GitHub to store Base64-encrypted SSH keys stolen from developer systems on which they were installed. The modules named warbeast2000 and kodiak2k were published at the start of the month, attracting 412 and 1,281 downloads […]