ZDNet: Source code of Iranian cyber-espionage tools leaked on Telegram. “In an incident reminiscent of the Shadow Brokers leak that exposed the NSA’s hacking tools, someone has now published similar hacking tools belonging to one of Iran’s elite cyber-espionage units, known as APT34, Oilrig, or HelixKitten. The hacking tools are nowhere near as sophisticated as the NSA tools leaked in 2017, but they are dangerous nevertheless.”
Splunk: Black Hats & White Collars: SEC EDGAR Database Hackers Revealed. “Over the past year, I’ve been presenting research at security conferences regarding the increasingly cozy relationship between black hat hackers and white collar criminals. One of the cases I researched was a group of hackers targeting PR firms for non-public insider information that could be monetized by trading stock based on the results of a company’s earnings and other factors. This past week it was revealed that this same group of criminal hackers and traders had become much more brazen and were also involved in the hacking of SEC’s EDGAR system targeting similar information.”
TechCrunch: Hackers are using leaked NSA hacking tools to quietly hijack thousands of computers . “More than a year after patches were released to thwart powerful NSA exploits that leaked online, hundreds of thousands of computers are unpatched and vulnerable. First they were used to spread ransomware. Then it was cryptocurrency mining attacks. Now, researchers say that hackers are using the leaked tools to create an even bigger malicious proxy network.”
AP News: State-backed hackers target Gmail of US senators, aides. “State-backed hackers are still trying to break into the personal email accounts of U.S. senators and their aides — and a lawmaker focused on cybersecurity says the Senate’s security office should stop refusing to help defend them.”
ZDNet: Bill that would have the White House create a database of APT groups passes House vote. “The US House of Representatives passed a bill this week that would have the White House create and maintain a database containing all the names of individuals and cyber-threat groups associated with foreign cyber-espionage operations active against the US.” I think in this case APT stands for Advanced Persistent Threat.
Ars Technica: Hackers find new ways to print digital money for free. “The sky-high valuations of cryptocurrencies isn’t lost on hackers, who are responding with increasingly sophisticated attacks that covertly harness the computers and electricity of unwitting people to generate digital coins worth large sums of money. One example is a recently uncovered mass hack of servers that has mined about $6,000 worth of the cryptocurrency known as AEON in the past 23 days. ”
CBR Online: Black Friday cyberattacks to break records as hackers enlist bots. “We are in the midst of a week predicted to be record breaking in terms of cyberattack volumes, with malicious activity set to spike aggressively on Black Friday and Cyber Monday. A colossal 50 million attacks globally are expected to hit throughout the prime shopping period, meaning that potentially billions of pounds are hanging in the balance in the UK alone. In the run up to what may prove to be the worst week of cyberattacks on record, it is also important to note that 171 million attacks have been logged in just the last quarter. This tremendous figure is a 100 per cent increase compared to the same time span in 2015.”