Greetings from «Ukrzaliznytsia»: hackers hacked Moscow metro online services and added a plug in Ukrainian
As reported by dev.uawith links to Russian websites, since 6 am the online systems of the Moscow metro have been down, and interestingly enough, they have been issuing messages about a technical failure on behalf of «Ukrzaliznytsia».
Secrets of the North Korea hacker army: how cryptocurrency geniuses are trained
Recently, North Korean hackers have been in the news more and more often. Their latest high-profile media appearance is the largest hack in history, when criminals managed to steal $1.5 billion worth of digital assets from the Bybit cryptocurrency exchange. Next OKX exchange could become a victimHowever, the company’s team noticed potential…
Hackers who stole $1.5 billion from Bybit attack OKX crypto exchange
The leading cryptocurrency exchange OKX was attacked by North Korean hackers Lazarus. The same ones as last month stole $1.5 billion from Bybit. Cybercriminals targeted the DEX aggregator service. For this reason, OKX decided to suspend the platform.
Hackers infected thousands of TP-Link routers with the Ballista — botnet due to a vulnerability in one particular model
У report The Cato CTRL team notes that hackers have launched a new botnet campaign targeting TP-Link routers — more than 6,000 devices are currently infected.
THORChain protocol earned $3M on Bybit hackers money laundering
The US Federal Bureau of Investigation (FBI) has officially stated that Bybit hack for $1.5 billion linked to the North Korean hacker group Lazarus (also known as TraderTraitor) and identified the incident as a state-sponsored cyberattack aimed at laundering assets across multiple blockchains. The FBI called for blocking the hackers’…
Anatomy of the largest crypto theft in history: analyzing the $1.5 billion Bybit hack
On February 21, an unprecedented event took place: a sophisticated cyberattack on the Bybit exchange led to the theft of approximately $1.46 billion in Ethereum (ETH) and related tokens. This incident was the largest digital heist in history. It also exposed the vulnerabilities of even the most reputable platforms and caused turmoil in the crypto…
Bybit Exchange Manages to Recover from the Largest Theft in Cryptocurrency History
Bybit has successfully eliminated the Ethereum (ETH) shortage after the largest theft in the history of cryptocurrencies CEO of Bybit Ben Zhou wroteThe ETH reserve gap is now fully closed. In the near future, a new Proof of Reserves (POR) report will be published, which will demonstrate that customer assets are once again backed by a 1:1 ratio…
Phishing on behalf of PayPal — hackers use real company emails
It seems that using real company servers is becoming a trend among hackers. Recently ITC.ua wrote about Google, now «in the sights of» PayPal users.
Hackers release TSforge exploit that «forever» activates Windows and Office
A group of hackers has unveiled a major breakthrough in Windows and Office piracy. The new method permanently activates most Microsoft products, completely bypassing the digital rights management (DRM) system. But the company doesn’t seem to be too concerned about it.
Russian hackers attack Ukrainians with Windows KMS activator and fake updates
The Sandworm cyber espionage group from Russia targeted at Ukrainian users Windows. It spreads trojans in KMS activators and fake updates
Fraudsters used a real phone and Google subdomains in an attempt to steal data
Programmer and founder of the Hack Club community Zach Latta reported an attempt to hijack an account from using real data Google.
Your crypto is in danger: AdsPower browser users should urgently check their wallets
The team of the anti-detect browser AdsPower reported a massive cyber attack. On January 24, during a security system check, it was discovered that hackers had altered some extensions (for example, MetaMask) into phishing versions. The developers immediately took measures and started an investigation, which is still ongoing.
More than 18 thousand unskilled hackers hit by XWorm RAT — infected malware constructor
An unknown attacker targeted inexperienced hackers, known as script kiddies. With XWorm RAT, they received a backdoor capable of stealing data and controlling the infected computer.
«Russia is a deathmatch territory. This means kill everyone» — Nikita Knysh. How Ukrainian hackers destroy the enemy on the information front
HackYourMom — is a Ukrainian hacker activist project and a group of cyber volunteers who, from the first days of the full-scale invasion, began doing everything they could to inflict maximum cyber damage on the enemy. ITC’s editorial team talked to Mykyta Knysh, an information security specialist, certified ethical hacker, and founder of…
Artificial intelligence model can be stolen without any hacking, — scientists
It takes a ton of cash, effort, and time to train an artificial intelligence model. And relatively little effort to steal it. No need for data theft or leaks.
Miscalculated, but where? A hacker hacked into companies without hiding his data and offered to hire him
In the USA, a man frequented businesses, including a gym where he worked out, hacked computers, and then offered to be hired. The outcome was somewhat predictable.
Hellcat hackers demand $125,000 in French baguettes from the company — half that if it admits to the hack
Very hungry hackers stole data from a French company Schneider Electric and want a huge amount of bread in return. They promise a 50% discount for honesty.
A young «IT specialist» from Kryvyi Rih created a program to hack AUTO.RIA, which he tried to sell online for 2600 UAH
The 16-year-old boy was an active participant in the hacker forum «zelenka.guru», where he offered his services in creating malware.
Robot uprising: hacked Ecovacs vacuum cleaners swear, chase animals and spy on owners
Owners of Ecovacs robotic vacuum cleaners in US cities have reported a hack. The hackers gained access to the cameras and controls, cursed obscenely through the speaker, and chased animals.
BingX crypto exchange hacked and stole $43 million — withdrawals blocked
At night on September 20, the hot wallet of the BingX crypto exchange was attacked by hackers. According to official data, the attackers managed to withdraw a small part of the funds. And the affected users were promised compensation for any losses.
RAMBO steals secrets: RAM radiation can transmit data to attackers
Governments and other institutions often use systems without network access. But the RAMBO method allows you to send data from RAM to the outside.
Hackers attacked smartphones of Ukrainian Armed Forces soldiers through Signal – trying to determine GPS coordinates of devices
Ukrainian experts from CERT-UA and MILCERT have detected and analyzed two cyberattacks on Ukrainian military mobile devices. The hackers tried not only to steal information from the devices but also to gain access to the GPS coordinates of the Ukrainian Armed Forces.
Google advertised a fake Google Authenticator website with phishing
Google has faced a serious security problem with its advertising platform. Attackers are creating fake Google Authenticator ads that actually distribute DeerStealer malware that can steal users’ confidential information.
Hackers can see the text on the screen via HDMI emissions — the method is already in use
Researchers have demonstrated access to the image on the screen using HDMI electromagnetic radiation. Hackers are already using this.
Hackers massively spoof UKR.NET and other services for phishing purposes — how to avoid data theft
In July, cybercrime in Ukraine intensified significantly. Hackers are hunting for personal data of citizens — for this purpose, in particular, they have faked the website UKR.NET
Largest database of stolen passwords in history with 10 billion records appears on a hacker forum
The largest database of stolen passwords with almost 10 billion unique records has been leaked on a popular hacker forum. The Cybernews research group believes that the leak poses a serious danger to users who tend to reuse passwords.
OpenAI «hacked» by a hacker, the company did not report it — insiders
It became known that in early 2023, a hacker gained access to OpenAI’s internal messaging systems and stole information about artificial intelligence technologies The New York Times claims that OpenAI reported the incident to employees, but not to the public or law enforcement.
Attack «evil twin»: attacker simulates airplane Wi-Fi and steals passenger data
The Australian Federal Police (AFP) has accused a suspect of launching a fake Wi-Fi network on an airplane and using it to harvest passenger email and social media credentials – the so-called «evil twin attack». Suspicion fell on the man after the airline reported a suspicious Wi-Fi network that its employees discovered during the flight.
Destroyed 180 servers with scripts from Google — fired employee caused $600,000 in losses
Kandula Nagaraju, a 39-year-old Indian citizen who worked for NCS (National Computer Systems) in Singapore, was sentenced to two years and eight months in prison after a court found him guilty of unauthorized access to computers. As reported by CNAKandula accessed his former employer’s systems for several months after he was fired. He…
Cyber police catch hacker in Kyiv who helped Russians attack European companies
Cyberpolice detained a hacker in Kyiv who created crypto-currencies for Russian money — special software for disguising computer viruses as safe files.
Hackers are attacking GitHub users again — this is OAuth phishing
A new type of phishing attack has spread among developers — attackers pretend to be recruiters and the GitHub security team and ask to follow a link.
270 GB of The New York Times source code stolen via GitHub token surfaces on 4chan
Unknown hackers have uploaded 270 GB of source code for one of the world’s most popular publications, The New York Times, to the 4chan image board.
The GRU conducts a large-scale DDoS attack on Russian government agencies and companies. The work of ministries and public services is paralyzed
The Main Intelligence Directorate (GUR) of the Ministry of Defense of Ukraine is conducting a large-scale DDoS attack on government agencies and large companies of the Russian Federation.
Ukrainian hacker from the REvil ransomware team is sentenced to 13 years in prison and a $16 million fine
On October 8, 2021, Ukrainian Yaroslav Vasinsky was arrested on the border of Poland and Ukraine, accused of hacking into business software provider Kaseya in Florida. In March 2022, Vasynsky was extradited to Dallas, Texas.
Russian hackers intensify attacks on Ukrainian military computers
The State Service for Special Communications and Information Protection of Ukraine has warned of increased activity of the hacker group UAC-0184, which is trying to gain access to military computers.
Up to a month to restore: Ukrainian hackers BLACKJACK hacked Moscow sewage system
Hackers from the BLACKJACK group, close to the cyber department of the Security Service of Ukraine, destroyed the IT infrastructure of «Moscollector».
Ukraine sends thanks to American hackers for attacks on Russia. Western experts are concerned
The command of the airborne assault troops sent letters of appreciation to the American hackers who systematically attacked the IT infrastructure of the Russian Federation.
SBU finds Russian hackers who attacked «Kyivstar»: data will be transferred to The Hague
Cyber specialists and investigators of the Security Service of Ukraine have found Russian hackers who attacked the mobile operator «Kyivstar».
AI models can be easily distorted by buying $60 domains or editing Wikipedia — research
A group of artificial intelligence researchers recently discovered that for as little as $60, an attacker can tamper with the datasets generated by AI tools like ChatGPT.
Khmelnytsky programmer retrained as a hacker and hacked 7327 computers through cheats on GTA San Andreas
A programmer from Khmelnytskyi decided to become a hacker and after a while on special forums started distributing malware. He did this through infected files in GTA San Andreas mods, which he posted on YouTube.
Millions of accounts for IPSO sold: cyber police expose group of hackers
Kharkiv cyberpolice identified three criminals aged 20 to 40 who stole email accounts and Instagram accounts of Internet users. In particular, the stolen accounts were used to conduct IPSO in the interests of Russia.
SBU prevents supply of thousands of components «Shahedin» and cruise missiles to Russia — Head of Department
SBU digital technology specialists are constantly working to block the supply of weapons components to Russia and have already blocked the supply of components for the production of cruise missiles and drones «Shahed». This was announced during a telethon by Ilya Vitiuk, Head of the SBU Cyber Security Department.
Hackers exploit Popup Builder WordPress plugin vulnerability to infect 3300 websites
Hackers have been hacking WordPress sites by exploiting a vulnerability in outdated versions of the Popup Builder plugin, infecting more than 3,300 sites with malicious code.
Hackers hacked into one of the divisions of the «Kalashnikov» concern and published data on missiles
Hackers from the Head Mare group got into the servers of the Russian military company NGO @High Precision Systems and Technologies”, part of the “Kalashnikov” concern, and posted a lot of documentation online. In particular, it includes descriptions of two types of missiles.
Ukrainian hacker pleads guilty to Zeus and IcedID attacks — faces up to 40 years in prison
Vyacheslav Penchukov (also known as «tank» and «father»), one of the leaders of the well-known cybercrime group JabberZeus, a citizen of Ukraine, was arrested in 2022 — while traveling with his wife to Geneva, Switzerland — and extradited to the United States in 2023.
Spelling error report
The following text will be sent to our editors: