US Department of Justice: Malware Author Pleads Guilty for Role in Transnational Cybercrime Organization Responsible for more than $568 Million in Losses

US Department of Justice: Malware Author Pleads Guilty for Role in Transnational Cybercrime Organization Responsible for more than $568 Million in Losses. “Valerian Chiochiu, aka ‘Onassis,’ ‘Flagler,’ ‘Socrate,’ and ‘Eclessiastes,’ 30, pleaded guilty before U.S. District Court Judge James C. Mahan in the District of Nevada. Chiochiu is a national of the Republic of Moldova, but resided in the United States during the period of the conspiracy. His plea came just over a month after the co-founder and administrator of Infraud, Sergey Medvedev of Russia, separately pleaded guilty on June 26. Sentencing for Chiochiu has been scheduled for Dec. 11.”

TechCrunch: Garmin global outage caused by ransomware attack, sources say

TechCrunch: Garmin global outage caused by ransomware attack, sources say. “An ongoing global outage at sport and fitness tech giant Garmin was caused by a ransomware attack, according to two sources with direct knowledge of the incident. The incident began late Wednesday and continued through the weekend, causing disruption to the company’s online services for millions of users, including Garmin Connect, which syncs user activity and data to the cloud and other devices.”

Ars Technica: There’s a reason your inbox has more malicious spam—Emotet is back

Ars Technica: There’s a reason your inbox has more malicious spam—Emotet is back. “Emotet, the world’s most costly and destructive botnet, returned from a five-month hiatus on Friday with a blast of malicious spam aimed at spreading a backdoor that installs ransomware, bank-fraud trojans, and other nasty malware.”

Wired: How to Check Your Devices for Stalkerware

Wired: How to Check Your Devices for Stalkerware . “WHETHER IT’S A prying boss or a paranoid partner, no one should snoop on your phone or laptop. But that’s exactly what can happen if stalkerware somehow gets installed on your devices. These software tools are designed to be hidden and difficult to detect, but you can find them if you know how.”

Coronavirus: Russian hackers target Covid-19 vaccine research (BBC)

BBC: Coronavirus: Russian hackers target Covid-19 vaccine research. “The UK’s National Cyber Security Centre (NCSC) said the hackers ‘almost certainly’ operated as ‘part of Russian intelligence services’. It said the group used malware to try and steal information relating to Covid-19 vaccine development.”

Mashable: Google bans ads for products that people use to stalk partners

Mashable: Google bans ads for products that people use to stalk partners . “In its latest advertising policy update, Google announced that “stalkerware” apps will not be able to advertise through Google anymore starting Aug. 11. In case you aren’t aware, that’s a particularly odious class of software that is largely associated with abusive partners who want to stalk the movements and activities of their significant others.”

The Register: Hundreds of forgotten corners of mega-corp websites fall into the hands of spammers and malware slingers

The Register: Hundreds of forgotten corners of mega-corp websites fall into the hands of spammers and malware slingers . “More than 240 website subdomains belonging to organizations large and small, including household names, were hijacked to redirect netizens to malware, X-rated material, online gambling, and other unexpected content.”

ZDNet: Hacker ransoms 23k MongoDB databases and threatens to contact GDPR authorities

ZDNet: Hacker ransoms 23k MongoDB databases and threatens to contact GDPR authorities. “A hacker has uploaded ransom notes on 22,900 MongoDB databases left exposed online without a password, a number that accounts for roughly 47% of all MongoDB databases accessible online, ZDNet has learned today. The hacker is using an automated script to scan for misconfigured MongoDB databases, wiping their content, and leaving a ransom note behind asking for a 0.015 bitcoin (~$140) payment.”

BBC: How hackers extorted $1.14m from University of California, San Francisco

BBC: How hackers extorted $1.14m from University of California, San Francisco. “A leading medical-research institution working on a cure for Covid-19 has admitted it paid hackers a $1.14m (£910,000) ransom after a covert negotiation witnessed by BBC News.”

NBC News: Spyware hidden in Chinese tax software was probably planted by a nation-state, say experts

NBC News: Spyware hidden in Chinese tax software was probably planted by a nation-state, say experts. “Earlier this year, a multinational technology vendor doing business in China was instructed by its Chinese bank to install software to pay local taxes. The tax software was legitimate, but embedded inside it was a nasty surprise, according to a new report by a private security firm: A sophisticated piece of malware that gave attackers complete access to the company’s network.”

ZDNet: New ransomware masquerades as COVID-19 contact-tracing app on your Android device

ZDNet: New ransomware masquerades as COVID-19 contact-tracing app on your Android device. “Researchers from ESET said this week that the ransomware emerged only a few days after Health Canada announced the release of COVID Alert, which will first be tested in Ontario before rolling out nationwide.”

The Register: Kinda goes without saying, but shore up your admin passwords or be borged by this brute-forcing botnet

The Register: Kinda goes without saying, but shore up your admin passwords or be borged by this brute-forcing botnet . “Servers are being targeted with a malware attack that uses its infected hosts to brute-force other machines. Known to Akamai researchers as Stealthworker, the infection preys on weak passwords then uses a massive arsenal of malware to overtake Windows and Linux servers running popular CMS, publishing, and hosting tools.”

Exclusive: Massive spying on users of Google’s Chrome shows new security weakness (Reuters)

Reuters: Exclusive: Massive spying on users of Google’s Chrome shows new security weakness. “A newly discovered spyware effort attacked users through 32 million downloads of extensions to Google’s market-leading Chrome web browser, researchers at Awake Security told Reuters, highlighting the tech industry’s failure to protect browsers as they are used more for email, payroll and other sensitive functions.”

Bleeping Computer: Extortionists threaten to destroy sites in fake ransom attacks

Bleeping Computer: Extortionists threaten to destroy sites in fake ransom attacks. “Scammers are targeting website owners with blackmail messages asking them to pay ransoms between $1,500 and $3,000 in bitcoins to avoid having their sites’ databases leaked and their reputation destroyed. As the fraudsters falsely claim, they exfiltrate the databases to attacker-controlled servers using credentials harvested after exploiting a vulnerability found within the sites’ software.”

OneZero: Google Purged Almost 1,000 Abusive ‘Creeperware’ Apps. Now Some Are Coming Back.

OneZero: Google Purged Almost 1,000 Abusive ‘Creeperware’ Apps. Now Some Are Coming Back.. “In June 2019, a group of cybersecurity researchers notified Google of more than 1,000 potentially malicious apps on the company’s Play Store that can be used to surveil, monitor, and harass users. Their findings, which have not previously been reported, eventually led to one of the largest ever mass removals of Android apps. Less than a year later, there are signs that the ‘creeperware,’ as the researchers called it, is returning.”