Tag: 2022
-
Nikkei’s Asian headquarter hit by ransomware
Media giant Nikkei disclosed that the group’s headquarters in Singapore was hit by a ransomware attack on May 13, 2022. “Unauthorized access to the server was first detected on May 13, prompting an internal probe,” the company revealed in a press release published on Thursday. “Nikkei Group Asia immediately shut down the affected server and…
-
21M SuperVPN, GeckoVPN users data leaked on Telegram
Earlier this month we have detected several Telegram channels that share with their followers various data breaches. This time database of 10GB worth of data from companies like SuperVPN, GeckoVPN, and ChatVPN has been shared online and is now available to anyone for download. On May 4th, 2022, a database containing the personal details and…
-
Heroku confirms its data breach
On May 5, Heroku, a platform as a service (PaaS) that enables developers to build, run, and operate applications entirely in the cloud, confirmed its data breach. Heroku revealed that hackers used stolen GitHub integration OAuth tokens in order to exfiltrate customers’ hashed and salted passwords from internal customer database. This week, Heroku started performing forced password resets…
-
Popular ransomware bugs allow blocking encryption
Hackers are known to exploit vulnerabilities to gain access to databases and companies’ files. This time though, a researcher has found a bug in ransomware that allows to prevent encryption. The “popular” ransomware, like Conti, the revived REvil, the newcomer Black Basta, the highly active LockBit, or AvosLocker, all came with security issues that could be…
-
REvil ransomware is back?
Back in January 2022 we were writing that REvil ransomware servers were seized by FBI and some of cyber criminals behind it have been arrested. However, less than four months later ransomware’s Tor page, “Happy blog”, came back to life. More surprisingly, REvil posted information about new victims: Visotec Group and Oil-india.com. It’s unclear whether…
-
BlackCat ransomware hits 60 entities worldwide
Relatively new ransomware, called Black Cat, has reportedly breached 60 different companies around the globe. The Federal Bureau of Investigation (FBI) has released a white flash report concerning BlackCat, also known as ALPHV. It is known that ransomware gang has been attacking organisations between November 2021 and March 2022. The flash alert is part of…
-
TikTok data leaked online
On April 17, 2022 a data leak allegedly belonging to a video-focused social networking service TikTok started spreading on underground hacking platforms. It consisted of JSON and SQL files totalling 26GB. Kaduu Team has analysed files in this “leak”. The dataset is just metadata for 32,489,068 TikTok videos, scraped between 2020-07-22 and 2020-10-13, meaning, it…
-
GitHub to secure developers: auto-block commits containing API keys, auth tokens
GitHub has announced on Monday 4, 2022 that company has expanded its platform’s secrets scanning capabilities for GitHub Advanced Security customers to block secret leaks automatically. Secret scanning is an advanced security option that organizations using GitHub Enterprise Cloud with a GitHub Advanced Security license can enable for additional repository scanning. This feature, unfortunately, does…
-
World’s largest darknet market “Hydra” is taken down
On April 5, 2022 German authorities have announced seizure of Hydra servers, as well as crypto-funds identified during special operation. The police were also able to seize 543 bitcoins from the profits of Hydra, which are currently worth a little over $25 million. It’s remarkable, that Hydra has processed more than $3.2B since its launch…