ZDNet: FBI seizes WeLeakInfo, a website that sold access to breached data. “US authorities have seized this week the domain of WeLeakInfo.com, an online service that for the past three years has been selling access to data hacked from other websites. The website provided access to people’s cleartext passwords, allowing hackers to purchase a subscription on the site and gain access to billions of user credentials.”
CNN: Hacking attempts originating in Iran nearly triple following Soleimani strike, researchers say. “Hackers looking to breach US computer networks sharply intensified their efforts following the death of Iranian military leader Qasem Soleimani, but have had limited success, according to internet security researchers and state government officials. Soon after the strike that killed Soleimani, Iran-based attempts to hack federal, state and local government websites jumped 50% — and then continued to accelerate, said network security company Cloudflare.”
Georgia State University: Politically Motivated Hackers Deface Websites Under Conditions that Deter Recreational Hackers. “Hackers commonly deface websites to protest social and political injustice around the globe, spreading their message to a wider audience. However, recreational hackers are less likely to deface websites in countries with a ‘capable guardian,’ a term researchers use to describe a strong military presence that uses computer emergency response teams as first responders to cyberattacks. The presence of suitable targets also led to increases in the frequency of website defacements across countries.”
ZDNet: Search engine for Japanese sex hotels announces security breach. “HappyHotel, a Japanese search engine for finding and booking rooms in ‘love hotels,’ disclosed a security breach at the end of last year. Love hotels are hotels built and operated primarily for allowing guests privacy for sexual activities.”
BBC: ‘Serious cyber-attack’ on Austria’s foreign ministry. “Austria’s foreign ministry has been targeted by a cyber-attack that is suspected to have been conducted by another country. The ministry said the seriousness of the attack suggested it might have been carried out by a ‘state actor’.”
Ars Technica: Unpatched US government website gets pwned by pro-Iran script kiddie. “The FDLP website is no stranger to defacement attacks. As a brief analysis of the attack by a security researcher with the Twitter username @sshell_ noted, the site has been defaced twice in the last 10 years—most recently in 2014, when it was replaced with an electronic dance music video featuring a dancing cat. Based on a fingerprint of the site’s files, the site—based on the Joomla content management system—had not had its code updated since 2012.” 2012???!!!
CNN: Microsoft takes away 50 websites from a North Korean hacking group. “Microsoft has been granted a court order to take over 50 websites it alleges were used by a North Korean hacking group to steal “highly sensitive information” from computers in the United States.”