Cyber Bites

A threat actor used a vulnerability to build a database of phone numbers and email addresses belonging to 5.4 million Twitter accounts. The data from the breach is now up for sale on a hacker forum for $30,000. A threat actor known as 'devil' said on a stolen data market that the database contains information about various accounts, including celebrities. The threat actor's post reads, "hello, today I present you data collected on multiple users...

Last Thursday, Ukraine radio operator TAVR Media became the latest victim of a cyberattack, resulting in the broadcast of a fake message that President Zelenskyy was seriously ill. The State Service of Special Communications and Information Protection of Ukraine (SSSCIP) said in an update: "Cybercriminals spread information that the President of Ukraine, Volodymyr Zelenskyy, is allegedly in intensive care, and his duties are performed by the Chairman of the Verkhovna Rada, Ruslan Stefanchuk." The Kyiv-based holding...

As reported last week, over 69 million users of the site Neopets, a popular virtual pet website, may have had their data compromised in the first known US mega breach of the year. The company took to Twitter to confirm the news. Neopets is owned by Viacom. The Tweet said: “Neopets recently became aware that customer data may have been stolen. We immediately launched an investigation assisted by a leading forensics firm. We are also...

The former Coinbase manager and two co-conspirators have been charged by the U.S. Department of Justice with wire fraud conspiracy and scheme to commit insider trading in cryptocurrency assets. This is the first case of its kind in history and a signal that those involved in cryptocurrency and NFT fraud will be targeted by law enforcement. Coinbase, an American cryptocurrency exchange platform, has almost 90 million registered users and a revenue of $7.84 billion (2021)....

China has fined Didi Global, a global mobility technology, around $1.2 billion (8.026 billion yuan) for violating the country's network security law, personal information protection law, and data security law. The country's cybersecurity regulator, the Cyberspace Administration of China (CAC), also fined two Didi executives 1 million yuan each for the infringements. The ride-hailing service had its app removed from the web by the Chinese authorities last year, prompting an investigation to start. The CAC...

Russian adversaries are taking advantage of trusted cloud services, like Google Drive and DropBox, to deliver malware to businesses and governments, according to new research. Researchers at Palo Alto Networks Unit 42 wrote that the threat actor Cloaked Ursula - AKA the Russian government-linked APT29 or Cozy Bear - is increasingly using online storage services because it makes attacks difficult to detect and prevent. They are believed to have targeted several Western diplomatic missions and...

Virtual pet website Neopets has suffered from a data breach leading to the theft of a database and source codes containing the sensitive information of over 69 million members. The Neopets website allows members to own, raise, and play games with their virtual pets. The popular website recently launched NFTs that will be used as part of an online Metaverse game. Earlier this week, a hacker using the name 'TarTarX' began selling the source code...

The U.S Department of Justice announced that over $500,000 worth of Bitcoin was seized by the FBI from hackers based out of North Korea. "The seized funds include ransoms paid by healthcare providers in Kansas and Colorado," the DoJ said in a press release issued Tuesday. The healthcare providers paid ransoms of up to $100,000 and $120,000 which were ran through two cryptocurrency accounts. These accounts were then seized by the FBI. The initial attacks were carried...

Researchers have discovered what they believe is the first recorded instance of Android malware distribution by prolific state-sponsored Russian hacking group Turla (aka Venomous Bear, amongst other names). The active persistent threat (APT) group is linked to Russia's Federal Security Service (FSB), a successor to the KGB. It is currently involved in operations in operations targeting pro-Ukrainian activists and Ukrainian forces, many of whom have been encouraged to enlist in a volunteer "IT army" to...

The Minister of Foreign Affairs for Beligum announced on Monday that Belgium's defense and interior ministries were targeted by Chinese-government hacking groups. The cyber-espionage groups named in the Belgian Government statement are APT27, APT30, APT31, and a fourth threat group tracked under multiple names, including Gallium, Softcell, and UNSC 2814. The Chinese Embassy in Belgium denied the allegations that China had endorsed these attacks and pointed to a lack of evidence from the Belgium government. "It is extremely...