Sign in

ilustration images

Joker’s Stash, the largest dark web marketplace notorious for selling compromised payment card data, has announced plans to shut down its operations on February 15, 2021.

In a message board post on a Russian-language underground cybercrime forum, the operator of the site — who goes by the name “JokerStash” — said “it’s time for us to leave forever” and that “we will never ever open again,” according to twin reports from cybersecurity firms Gemini Advisory and Intel471.

“Joker goes on a well-deserved retirement. Joker’s Stash is closing,” the post read. “When we opened years ago, nobody knew us. …


Cybersecurity researchers took the wrapper from an ongoing surveillance campaign directed against Colombian government institutions and private companies in the energy and metallurgical industries.

In a report published by ESET on Tuesday, the Slovak internet security firm said the attack — dubbed “Operation Spalax” — began in 2020, with the modus operandi sharing some similarities with the APT group targeting the country since at least April 2018, but also different from another way.

The overlap comes in the form of a phishing email, which is of a similar topic and pretends to be from some of the same entities used…


An institutional investor and fund management company, Grayscale Investments, is reported to have started selling all ownership of XRP. This sale is also along with the termination of XRP fund management services through its XRP mutual fund instrument.

illustration image

Grayscale Sells All XRP
The sale that has just been made is a response to the Securities and Exchange Commission’s demands against Ripple in December 2020. Although it seems too late, Grayscale has just sold its entire ownership together to liquidate its XRP mutual fund.

According to a publication issued yesterday, Grayscale has also officially liquidated the XRP trust or mutual fund…


illustration images

Russian cybersecurity company Kaspersky predicts theft of bitcoin and e-commerce data will still be rampant in the next year, while the spread of malicious software such as ransomware is predicted to become more widespread.
This year, the Twitter accounts of Barack Obama, Bill Gates, Elon Musk to Kim Kardashian were hacked and uploaded a tweet asking (followers) to send bitcoins. Hackers (hackers) reportedly made US $ 280 thousand from fraud with this scheme.

Kaspersky security researcher Dmitry Bestuzhev predicts that such cybercrime will continue in the next year. In addition, direct breaches of bitcoin accounts are predicted to be rampant…


Penemuan itu dilakukan setelah pelanggaran itu diberitahukan oleh Microsoft, kata perusahaan yang..

Mimecast mengatakan pada hari Selasa bahwa “aktor ancaman canggih” telah membahayakan sertifikat digital yang diberikannya kepada pelanggan tertentu untuk menghubungkan produknya dengan aman ke Microsoft 365 (M365) Exchange.

Penemuan itu dilakukan setelah pelanggaran itu diberitahukan oleh Microsoft, kata perusahaan yang berbasis di London itu dalam peringatan yang diposting di situs webnya, menambahkan pihaknya telah menjangkau organisasi yang terkena dampak untuk memperbaiki masalah tersebut.

Perusahaan tidak merinci jenis sertifikat yang disusupi, tetapi Mimecast menawarkan tujuh sertifikat digital berbeda berdasarkan lokasi geografis yang harus diunggah ke M365 untuk membuat Koneksi…


Mimecast said on Tuesday that “a sophisticated threat actor” had compromised a digital certificate it provided to certain customers to securely connect its products to Microsoft 365 (M365) Exchange.

The discovery was made after the breach was notified by Microsoft, the London-based company said in an alert posted on its website, adding it’s reached out to the impacted organizations to remediate the issue.

The company didn’t elaborate on what type of certificate was compromised, but Mimecast offers seven different digital certificates based on the geographical location that must be uploaded to M365 to create a server Connection in Mimecast.
“Approximately 10…


Kunci keamanan hardware — seperti dari Google dan Yubico — dianggap sebagai cara paling aman untuk melindungi akun dari serangan dan pengambilalihan phishing.
Tetapi sebuah studi baru yang diterbitkan pada hari Kamis menunjukkan bagaimana Peretas dengan perangkat otentikasi dua faktor (2FA) seperti itu dapat mengkloningnya dengan mengeksploitasi saluran samping elektromagnetik dalam chip yang disematkan.
Kerentanan (dilacak sebagai CVE-2021–3011) memungkinkan penjahat mengekstrak kunci enkripsi ECDSA atau kunci pribadi yang ditautkan ke akun korban dari perangkat FIDO Universal 2nd Factor (U2F) seperti Google Titan Key atau YubiKey, yang secara serius merusak perlindungan 2FA.
“Peretas dapat masuk ke akun aplikasi korban tanpa perangkat U2F, dan tanpa…


Cybersecurity researchers have uncovered the operation of an Android malware vendor that collaborates with a second threat actor to market and sell a remote access Trojan (RAT) capable of taking over and extracting photos, locations, contacts and messages from popular apps such as Facebook, Instagram, WhatsApp , Skype, Telegram, Kik, Line, and Google Messages.

The vendor, who goes by the name “Triangulum” on a number of darknet forums, is thought to be a 25-year-old man from India, with the individual who opened a shop to sell malware three years ago on June 10. …


FILE — In this May 8, 2019, file photo, New Zealand’s Reserve Bank Governor Adrian Orr speaks to the media in Wellington, New Zealand. New Zealand’s central bank said, Sunday Jan. 10, 2021, that one of its data systems has been breached by an unidentified hacker who has potentially accessed commercially and personally sensitive information. (AP Photo/Nick Perry, File

WELLINGTON, New Zealand (AP) — New Zealand’s central bank said Sunday that one of its data systems has been breached by an unidentified hacker who potentially accessed commercially and personally sensitive information.

A third party file sharing service used by the Reserve Bank of New Zealand to share and store sensitive information had been illegally accessed, the Wellington-based bank said in a statement.

Governor Adrian Orr said the breach has been contained. The bank’s core functions “remain sound and operational,” he said.

“We are working closely with domestic and international cybersecurity experts and other relevant authorities as part of our…


FILE — Dalam file foto 8 Mei 2019 ini, Gubernur Bank Sentral Selandia Baru Adrian Orr berbicara kepada media di Wellington, Selandia Baru. Bank sentral Selandia Baru mengatakan, Minggu 10 Januari 2021, bahwa salah satu sistem datanya telah dilanggar oleh peretas tak dikenal yang berpotensi mengakses informasi sensitif secara komersial dan pribadi. (Foto AP / Nick Perry, File

WELLINGTON, Selandia Baru (AP) — Bank sentral Selandia Baru mengatakan pada Minggu bahwa salah satu sistem datanya telah dilanggar oleh peretas tak dikenal yang berpotensi mengakses informasi sensitif secara komersial dan pribadi.

Layanan berbagi file pihak ketiga yang digunakan oleh Reserve Bank of New Zealand untuk berbagi dan menyimpan informasi sensitif telah diakses secara ilegal, kata bank yang berbasis di Wellington itu dalam sebuah pernyataan.

Gubernur Adrian Orr mengatakan pelanggaran telah diatasi. Fungsi inti bank “tetap sehat dan operasional,” katanya.

“Kami bekerja sama dengan ahli keamanan siber domestik dan internasional serta otoritas terkait lainnya sebagai bagian dari penyelidikan dan tanggapan…

Artnote

#crypto #like #blockchain #info #Arthur #Notes

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store