2011 - Information Management Today

XDSpy APT remained undetected since at least 2011

Security Affairs

OCTOBER 2, 2020

Researchers from ESET uncovered the activity of a new APT group, tracked as XDSpy, that has been active since at least 2011. XDSpy is the name used by ESET researchers to track a nation-state actor that has been active since at least 2011. The post XDSpy APT remained undetected since at least 2011 appeared first on Security Affairs.

Military

Military Phishing Passwords Government

County 911 Service Notifying 180,000 About Breach in July

Data Breach Today

OCTOBER 9, 2024

Compromised Patient Info Dates Back to 2011 at Muskogee City County 911 Service An Oklahoma county provider of medical, fire, police and other 911 emergency services is notifying 180,000 individuals that their health information may have been compromised in a recent ransomware attack.

Ransomware

Fake Used-Car Flyer for 2011 BMW Phishes Diplomats in Kyiv

Data Breach Today

JULY 12, 2023

Campaign Targets 22 Embassies; Unit 42 Ties It to Russian Foreign Intelligence Diplomats in Ukraine shopping for used cars have been targeted with a listing for a "very good condition, low-fuel consumption" 2011 BMW 5 Series.

Phishing

Phishing Security IT

US Indicts 4 Chinese Nationals for Lengthy Hacking Campaign

Data Breach Today

JULY 19, 2021

has indicted four Chinese nationals working with the nation's Ministry of State Security in connection with an alleged hacking campaign conducted from 2011 to 2018 that targeted universities and government entities to obtain trade secrets, medical research and other intellectual property.

Government

Government Security

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

Security Affairs

APRIL 30, 2019

Bloomberg obtained Vodafone’s security briefing documents from 2009 and 2011 and spoke with people involved in the situation. Bloomberg revealed that once discovered the backdoors in home routers in 2011, Vodafone asked Huawei to address them. But it was 2011. ” reported the AFP. ” continues bloomberg.

IT

IT Access Government Security

SolarWinds Breach: 'The Scale, the Scope, the Subtlety'

Data Breach Today

DECEMBER 15, 2020

Cybereason's Sam Curry Shares Insights on the Attack and Response In 2011, Sam Curry headed the response team for RSA's then-landmark breach. Today, as CSO at Cybereason, he looks at the SolarWinds supply chain attack and sees similarities - but also is struck by "the scale, the scope, the subtlety" of the incident.

Intel's 'ZombieLoad' Fixes May Slow Processors by 9 Percent

Data Breach Today

MAY 15, 2019

CPUs Shipped From 2011 Onward Have Flaws of the Meltdown and Spectre Variety Newly discovered microarchitectural data sampling flaws in Intel processors - collectively dubbed "ZombieLoad" - could be exploited to steal private data from PCs and servers, including shared cloud environments.

Cloud

CVE-2018-15919 username enumeration flaw affects OpenSSH Versions Since 2011

Security Affairs

AUGUST 29, 2018

Qualys experts discovered that OpenSSH is still vulnerable to Oracle attack, it is affected by the CVE-2018-15919 flaw at least since September 2011. Security experts from Qualys discovered that OpenSSH is still vulnerable to Oracle attack, it is affected by the CVE-2018-15919 flaw at least since September 2011. Pierluigi Paganini.

Authentication

Authentication Passwords Libraries Security

COVID-19 Response: How to Secure a 100% Remote Workforce

Data Breach Today

MARCH 20, 2020

Cybereason CSO Sam Curry on Business Continuity and Reducing Risk Cybereason CSO Sam Curry is no stranger to crisis - he was on the team that responded to the RSA breach in 2011. But the COVID-19 pandemic brings an unprecedented challenge: How do you manage business continuity and reduce risk with a 100 percent remote workforce?

Risk

Risk Security

The Story of the 2011 RSA Hack

Schneier on Security

MAY 27, 2021

Really good long article about the Chinese hacking of RSA, Inc. They were able to get copies of the seed values to the SecurID authentication token, a harbinger of supply-chain attacks to come.

Authentication

Authentication Cybersecurity

Why is ‘Juice Jacking’ Suddenly Back in the News?

Krebs on Security

APRIL 14, 2023

KrebsOnSecurity received a nice bump in traffic this week thanks to tweets from the Federal Bureau of Investigation (FBI) and the Federal Communications Commission (FCC) about “ juice jacking ,” a term first coined here in 2011 to describe a potential threat of data theft when one plugs their mobile device into a public charging kiosk.

Communications

Communications Access Risk Education

The Link Between AWM Proxy & the Glupteba Botnet

Krebs on Security

JUNE 28, 2022

AWMproxy, the storefront for renting access to infected PCs, circa 2011. In 2011, researchers at Kaspersky Lab showed that virtually all of the hacked systems for rent at AWM Proxy had been compromised by TDSS (a.k.a An example of a cracked software download site distributing Glupteba. Image: Google.com.

Passwords

Passwords Analytics Manufacturing Access

LiveJournal Blog Platform Credential Leak: What Happened?

Data Breach Today

MAY 28, 2020

Millions of Older Credentials Apparently Used in Credential-Stuffing Attacks The Russian blogging platform LiveJournal confirmed this week that it suffered several brute-force attacks in 2011 and 2012. But it insists that the 26 million usernames and passwords that are now available for sale on darknet forums came from other sources.

Sales

Sales Passwords IT

CEO to CEO: Breach Response Advice for Capital One

Data Breach Today

JULY 30, 2019

Art Coviello, former chair of RSA, which was breached in 2011, shares first-hand insight on steps the breached institution and its CEO should be taking now. The Capital One data breach is in early stages of remediation.

Data breaches

Data breaches IT

The Full Story of the Stunning RSA Hack Can Finally Be Told

WIRED Threat Level

MAY 20, 2021

In 2011, Chinese spies stole the crown jewels of cybersecurity—stripping protections from firms and government agencies worldwide. Here’s how it happened.

Cybersecurity

Cybersecurity Government IT Security

Report: Missouri Governor’s Office Responsible for Teacher Data Leak

Krebs on Security

FEBRUARY 22, 2022

But Missouri prosecutors now say they will not pursue charges following revelations that the data had been exposed since 2011 — two years after responsibility for securing the state’s IT systems was centralized within Parson’s own Office of Administration. Missouri Gov. Mike Parson (R), vowing to prosecute the St.

Education

Education Access Security Communications

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

NEROWOLFE A search on the ICQ number 669316 at Intel 471 shows that in April 2011, a user by the name NeroWolfe joined the Russian cybercrime forum Zloy using the email address d.horoshev@gmail.com , and from an Internet address in Voronezh, RU. 2011 said he was a system administrator and C++ coder.

Ransomware

Ransomware Encryption Systems administration Government

Who Is the Network Access Broker ‘Babam’?

Krebs on Security

DECEMBER 3, 2021

com back in 2011, and sanjulianhotels[.]com ” A report on Palvisa (PDF) purchased from Rekvizitai.vz — an official online directory of Lithuanian companies — says Palvisa was established in 2011 by a Vytautaus Mockus, using the phone number 86.7273687 , and the email address bo3dom@gmail.com. com (2017).

Access

Access Ransomware Passwords Sales

A man faces up to 25 years in prison for his role in operating unlicensed crypto exchange BTC-e

Security Affairs

FEBRUARY 6, 2024

“According to the indictment, between 2011 and July 2017, Aliaksandr Klimenka, 42, allegedly controlled BTC-e, a digital currency exchange, with Alexander Vinnik and others.” The authorities reported that since 2011, 7 million Bitcoin had gone into the BTC-e exchange and 5.5 ” reads the press release published by DoJ.

IT

IT Information Security Security

Unfixable iOS Device Exploit Is the Latest Apple Security Upheaval

WIRED Threat Level

SEPTEMBER 27, 2019

Any iPhone device from 2011 to 2017 could soon be jailbroken, thanks to an underlying flaw that there's no way to patch.

Security

ENISA published “Proactive detection – Measures and information sources” report

Security Affairs

MAY 31, 2020

This report identifies and analyzes how proactive detection in the EU is evolved between 2011 and 2019. Survey among incident response teams in Europe; Comparison with the 2011 survey. Among the goals of the project there is the exploration of new areas that could help to improve operational cooperation and information sharing.

Cybersecurity

Cybersecurity Security IT Information Security

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

O’Neill said he opened the investigation into Ngo’s identity theft business after reading about it in a 2011 KrebsOnSecurity story, “ How Much is Your Identity Worth? As I wrote of Ngo’s service back in November 2011: “Superget lets users search for specific individuals by name, city, and state.

Computer and Electronics

Computer and Electronics Access IT Data collection

Why Malware Crypting Services Deserve More Scrutiny

Krebs on Security

JUNE 21, 2023

has been associated with the user Kerens on the Russian hacking forum Exploit from 2011 to the present day. The very first post by Kerens on Exploit in 2011 was a negative review of a popular crypting service that predated Cryptor[.]biz .” Meanwhile, the Jabber address masscrypt@exploit.im

e-Delivery

e-Delivery Passwords Cybersecurity Sales

Fintech Giant Fiserv Used Unclaimed Domain

Krebs on Security

MARCH 17, 2021

Many other emails poured in, including numerous “bounced” messages delivered in reply to missives from Cashedge.com , a money transfer service that Fiserv acquired in 2011. Emails get bounced — or returned to the sender — when they are sent to an address that doesn’t exist or that is no longer active.

e-Discovery

e-Discovery Phishing Communications IT

GUEST ESSAY: Here’s why penetration testing has become a ‘must-have’ security practice

The Last Watchdog

FEBRUARY 24, 2022

Yes, and that is what Sony exactly lost when they were hacked and the personal info of every one of its customers leaked in 2011. Huge sum, right? Related: Supply-chain hacks prove worrisome. This came to the news because Sony is one of the biggest names on the planet.

Security

Security Compliance Retail Risk

Spam Kingpin Peter Levashov Gets Time Served

Krebs on Security

JULY 20, 2021

In 2011, KrebsOnSecurity dissected “SevAntivir” — Severa’s eponymous fake antivirus affiliate program — showing it was used to deploy new copies of the Kelihos spam botnet. Severa ran several affiliate programs that paid cybercriminals to trick people into installing fake antivirus software.

Government

Government Phishing Communications IT

Email accounts of the International Monetary Fund compromised

Security Affairs

MARCH 18, 2024

This isn’t the first incident suffered by IMF, the agency suffered a major security breach in 2011. Bleeping computer contacted IMF, which confirmed that that despite it uses the Microsoft 365, the incident does not appear to be part of Microsoft targeting recently disclosed.

Cybersecurity

Cybersecurity Security IT Data breaches

Real-life examples of social engineering ? part 2

IT Governance

JUNE 18, 2018

Back in 2011, RSA employees received two phishing emails, which would ultimately lead to SecurID’s two-factor authentication system being compromised – costing RSA $66 million. The email subject line read ‘2011 Recruitment Plan.’. It was a spreadsheet titled ‘2011 Recruitment plan.xls.’. RSA SecurID breach.

Phishing

Phishing Authentication Marketing Access

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Security Affairs

JUNE 9, 2023

Gox in 2011 and money laundering. Gox in 2011 and the operation of the illicit cryptocurrency exchange BTC-e. Bilyuchenko is also charged with conspiring with Alexander Vinnik to run the virtual currency exchange BTC-e from 2011 to 2017. Two Russian nationals have been charged with the hack of the cryptocurrency exchange Mt.

Access

Access Security IT Information Security

OCR Plans Do-Over for 'Accounting of Disclosures' Proposal

Data Breach Today

MAY 15, 2018

Updating that rule was mandated under the HITECH Act, but the modification has been in limbo since 2011. Agency Will Ditch Previous HIPAA Privacy Rule Revamp Plan, Seek New Ideas Federal regulators plan to craft a new proposal for revamping a HIPAA Privacy Rule provision for "accounting of disclosures" of electronic patient records.

Privacy

Twitter to Pay $150 Million to Settle Allegations of Data Misuse

Hunton Privacy

MAY 31, 2022

In a complaint filed in federal court, the government alleged that Twitter violated both the FTC Act and a 2011 FTC Order by misrepresenting the extent to which the company maintained and protected users’ nonpublic contact information.

Privacy

Privacy Information Security Data Privacy Compliance

'Utterly horrifying': ex-Facebook insider says covert data harvesting was routine

The Guardian Data Protection

MARCH 20, 2018

Sandy Parakilas, the platform operations manager at Facebook responsible for policing data breaches by third-party software developers between 2011 and 2012, told the Guardian he warned senior executives at the company that its lax approach to data protection risked a major breach. Related: Where's Zuck?

Data breaches

Data breaches Privacy Risk IT

CISA adds 12 new flaws to its Known Exploited Vulnerabilities Catalog

Security Affairs

SEPTEMBER 9, 2022

Last week, Google rolled out emergency fixes to address a vulnerability, tracked as CVE-2022-3075 , in the Chrome web browser that is being actively exploited in the wild.

IT

IT Passwords Ransomware Cybersecurity

Facebook admits tracking users and non-users off-site

The Guardian Data Protection

APRIL 17, 2018

Statement comes as company faces US lawsuit over facial recognition feature launched in 2011 and planned to expand to EU Facebook has released more information on the social media platform’s tracking of users off-site, after its CEO, Mark Zuckerberg, failed to answer questions about the process from US politicians and as the company prepares to fight (..)

Security

Security IT Privacy

Teach a Man to Phish and He’s Set for Life

Krebs on Security

AUGUST 4, 2023

” Indeed, KrebsOnSecurity first covered RLO-based phishing attacks back in 2011 , and even then it wasn’t a new trick. . “When the same email is sent through Mimecast, Mimecast is smart enough to detect the encoding and it renames the attachment to ‘ fdp.eml.’

Phishing

Phishing Computer and Electronics Marketing IT

Happy birthday, Security Affairs celebrates its ninth Anniversary today

Security Affairs

NOVEMBER 17, 2020

I launched Security Affairs for passion in November 2011 and since then the blog read by millions of readers. Happy BirthDay Security Affairs! Nine years together!

Security

Security IT Cybersecurity Risk

Black Hat Flashback: The Deadly Consequences of Weak Medical Device Security

Dark Reading

JANUARY 10, 2023

Rashid reflects on the monumental Black Hat 2011 moment when Jay Radcliffe showed how to hack his insulin pump. Hacking to kill: Dark Reading's Fahmida Y.

Security

Mariposa Botnet Author, Darkcode Crime Forum Admin Arrested in Germany

Krebs on Security

OCTOBER 1, 2019

Škorjanc and his hacker handle Iserdo were initially named in a Justice Department indictment from 2011 (PDF) along with two other men who allegedly wrote and sold the Mariposa botnet code. An advertisement for the ButterFly Bot.

Mining

Mining Marketing IT

Happy 10th Birthday, Security Affairs

Security Affairs

NOVEMBER 15, 2021

I launched Security Affairs for passion in 2011 and millions of readers walked with me. Ten years together! I’m very excited. Ten years ago I launched Security Affairs, the blog over the past decade obtained important successes in the cyber security community, but the greatest one is your immense affection.

Security

Security Cybersecurity IT Data breaches

MVP Award 12

Troy Hunt

JULY 6, 2022

11 years now, wow 😲 It's actually 11 and a bit because it was April Fool's Day in 2011 that my first MVP award came through. At the time, I referred to myself as "The Accidental MVP" as I'd no expectation of an award, it just came from me being me.

Passwords

Passwords IT

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

i-SOON CEO Wu Haibo, in 2011. Indeed, among the documents apparently leaked from i-SOON is a sales pitch slide boldly highlighting the hacking prowess of the company’s “APT research team” (see screenshot above). Image: nattothoughts.substack.com.

Government

Government Cybersecurity Sales Blockchain

I've Joined the 1Password Board of Advisers

Troy Hunt

OCTOBER 29, 2020

Since that date in 2011, I doubt there's been a single day I haven't used 1Password to log into a website, fill in my credit card details or refer to other notes stored securely within the product.

Passwords

Passwords Security IT

Identifying the Person Behind Bitcoin Fog

Schneier on Security

MAY 3, 2021

The complaint outlines how Sterlingov allegedly paid for the server hosting of Bitcoin Fog at one point in 2011 using the now-defunct digital currency Liberty Reserve.

Blockchain

Blockchain IT

US Treasury FinCEN linked $5.2 billion in BTC transactions to ransomware payments

Security Affairs

OCTOBER 16, 2021

FinCEN analyzed a data set composed of 2,184 SARs filed between 1 January 2011 and 30 June 2021 and identified 177 CVC (convertible virtual currency) wallets addresses that were used in ransomware operations associated with the above ransomware variants.

Ransomware

Ransomware Security Information Security IT

XDSpy APT remained undetected since at least 2011

County 911 Service Notifying 180,000 About Breach in July

Trending Sources

Fake Used-Car Flyer for 2011 BMW Phishes Diplomats in Kyiv

US Indicts 4 Chinese Nationals for Lengthy Hacking Campaign

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

SolarWinds Breach: 'The Scale, the Scope, the Subtlety'

Intel's 'ZombieLoad' Fixes May Slow Processors by 9 Percent

CVE-2018-15919 username enumeration flaw affects OpenSSH Versions Since 2011

COVID-19 Response: How to Secure a 100% Remote Workforce

The Story of the 2011 RSA Hack

Why is ‘Juice Jacking’ Suddenly Back in the News?

The Link Between AWM Proxy & the Glupteba Botnet

LiveJournal Blog Platform Credential Leak: What Happened?

CEO to CEO: Breach Response Advice for Capital One

The Full Story of the Stunning RSA Hack Can Finally Be Told

Report: Missouri Governor’s Office Responsible for Teacher Data Leak

How Did Authorities Identify the Alleged Lockbit Boss?

Who Is the Network Access Broker ‘Babam’?

A man faces up to 25 years in prison for his role in operating unlicensed crypto exchange BTC-e

Unfixable iOS Device Exploit Is the Latest Apple Security Upheaval

ENISA published “Proactive detection – Measures and information sources” report

Confessions of an ID Theft Kingpin, Part I

Why Malware Crypting Services Deserve More Scrutiny

Fintech Giant Fiserv Used Unclaimed Domain

GUEST ESSAY: Here’s why penetration testing has become a ‘must-have’ security practice

Spam Kingpin Peter Levashov Gets Time Served

Email accounts of the International Monetary Fund compromised

Real-life examples of social engineering ? part 2

Russians charged with hacking Mt. Gox exchange and operating BTC-e

OCR Plans Do-Over for 'Accounting of Disclosures' Proposal

Twitter to Pay $150 Million to Settle Allegations of Data Misuse

'Utterly horrifying': ex-Facebook insider says covert data harvesting was routine

CISA adds 12 new flaws to its Known Exploited Vulnerabilities Catalog

Facebook admits tracking users and non-users off-site

Teach a Man to Phish and He’s Set for Life

Happy birthday, Security Affairs celebrates its ninth Anniversary today

Black Hat Flashback: The Deadly Consequences of Weak Medical Device Security

Mariposa Botnet Author, Darkcode Crime Forum Admin Arrested in Germany

Happy 10th Birthday, Security Affairs

MVP Award 12

New Leak Shows Business Side of China’s APT Menace

I've Joined the 1Password Board of Advisers

Identifying the Person Behind Bitcoin Fog

US Treasury FinCEN linked $5.2 billion in BTC transactions to ransomware payments

Stay Connected