Coronavirus: North Korea and Russia hackers ‘targeting vaccine’ (BBC)

BBC: Coronavirus: North Korea and Russia hackers ‘targeting vaccine’. “State-backed hackers from North Korea and Russia have been targeting organisations working on a coronavirus vaccine, Microsoft has said. It said a Russian group nicknamed ‘Fancy Bear’ and North Korean groups dubbed ‘Zinc’ and ‘Cerium’ were implicated in recent cyber-attacks.”

ABC News: DOJ announces charges against 6 Russian military officers allegedly involved in hacking, malware operations

ABC News: DOJ announces charges against 6 Russian military officers allegedly involved in hacking, malware operations. “The indictment specifically accuses the six alleged hackers of engaging in computer intrusions ‘intended to support Russian government efforts to undermine, retaliate against or otherwise destabilize’ Ukraine, Georgia, elections in France, the 2018 PyeongChang Olympic Games and international efforts to hold Russia accountable for its use of the nerve agent Novichok on foreign soil.”

CNBC: Hackers look to buy brokerage log-ins on the dark web with Robinhood fetching highest prices

CNBC: Hackers look to buy brokerage log-ins on the dark web with Robinhood fetching highest prices. “As a new generation of investors flock to the stock market, criminals are looking for ways to exploit them. Hackers have turned to the dark web, where log-ins for accounts at major brokerage firms are listed for sale, according to security analysts and listings seen by CNBC.”

CNN: Microsoft takes down massive hacking operation that could have affected the election

CNN: Microsoft takes down massive hacking operation that could have affected the election. “Microsoft has disrupted a massive hacking operation that it said could have indirectly affected election infrastructure if allowed to continue. The company said Monday it took down the servers behind Trickbot, an enormous malware network that criminals were using to launch other cyberattacks, including a strain of highly potent ransomware.”

Motherboard: NSO Group Impersonated Facebook to Help Clients Hack Targets

Motherboard: NSO Group Impersonated Facebook to Help Clients Hack Targets. “Infamous Israeli surveillance firm NSO Group created a web domain that looked as if it belonged to Facebook’s security team to entice targets to click on links that would install the company’s powerful cell phone hacking technology, according to data analyzed by Motherboard.”

Exclusive: Hackers linked to Iran target WHO staff emails during coronavirus – sources (Reuters)

Reuters: Exclusive: Hackers linked to Iran target WHO staff emails during coronavirus – sources. “Hackers working in the interests of the Iranian government have attempted to break into the personal email accounts of staff at the World Health Organization during the coronavirus outbreak, four people with knowledge of the matter told Reuters.”

Exclusive: Elite hackers target WHO as coronavirus cyberattacks spike (Reuters)

Reuters: Exclusive: Elite hackers target WHO as coronavirus cyberattacks spike. “Elite hackers tried to break into the World Health Organization earlier this month, sources told Reuters, part of what a senior agency official said was a more than two-fold increase in cyberattacks.”

ZDNet: FBI seizes WeLeakInfo, a website that sold access to breached data

ZDNet: FBI seizes WeLeakInfo, a website that sold access to breached data. “US authorities have seized this week the domain of WeLeakInfo.com, an online service that for the past three years has been selling access to data hacked from other websites. The website provided access to people’s cleartext passwords, allowing hackers to purchase a subscription on the site and gain access to billions of user credentials.”

Web Informant: A field guide to Iran’s hacking groups

Web Informant: A field guide to Iran’s hacking groups. “Iran has been in the news alot lately. And there have been some excellent analyses of the various hacking groups that are sponsored by the Iranian state government. Most of us know that Iran has hacked numerous businesses over the years, including numerous banks, the Bowman Dam in New York in 2013, the Las Vegas Sands hotel in 2014, various universities and government agencies and even UNICEF. When you review all the data, you begin to see the extent of its activities.”

Georgia State University: Politically Motivated Hackers Deface Websites Under Conditions that Deter Recreational Hackers

Georgia State University: Politically Motivated Hackers Deface Websites Under Conditions that Deter Recreational Hackers. “Hackers commonly deface websites to protest social and political injustice around the globe, spreading their message to a wider audience. However, recreational hackers are less likely to deface websites in countries with a ‘capable guardian,’ a term researchers use to describe a strong military presence that uses computer emergency response teams as first responders to cyberattacks. The presence of suitable targets also led to increases in the frequency of website defacements across countries.”

EXCLUSIVE: Free resource launched to teach infosec researchers a thing or two from the past (SC Magazine UK)

SC Magazine UK: EXCLUSIVE: Free resource launched to teach infosec researchers a thing or two from the past. “The Octopi Hacking Archive is a totally free to access online resource aimed at security researchers and members of the broader infosec community. This truly massive chunk of computer history is being put online to bring the collected works of some of the earliest hacking groups into one archive.”

New York Times: China Sharpens Hacking to Hound Its Minorities, Far and Wide

New York Times: China Sharpens Hacking to Hound Its Minorities, Far and Wide. “China’s state-sponsored hackers have drastically changed how they operate over the last three years, substituting selectivity for what had been a scattershot approach to their targets and showing a new determination by Beijing to push its surveillance state beyond its borders.”

MakeUseOf: 5 Websites That Teach You How to Hack Legally

MakeUseOf: 5 Websites That Teach You How to Hack Legally. “If you’re an ethical hacker, it can be hard to put your skills to the test without harming anyone. Fortunately, there are resources that give you a sandbox to hack in, giving you a place to learn while also keeping it legal. Here are some websites to test your mettle against without getting into trouble.”

TechCrunch: A newly discovered hacking group is targeting energy and telecoms companies

TechCrunch: A newly discovered hacking group is targeting energy and telecoms companies. “There’s a new hacking group on the radar targeting telecommunications and oil and gas companies across Africa and the Middle East. Industrial security company Dragos, which discovered the group, calls it ‘Hexane,’ but remains largely tight-lipped on its activities.”