Endless cyber criminals The cat and rat game continues this week with a collaborative international Operation Dark Hunter,. As a result, 150 so-called dark web vendors were arrested and 31.6 million in cash and cryptocurrencies and 230 kilograms of drugs were seized. The action focused on vendors who hacked their belongings into the dark web marketplace Darkmarket, which German police shut down in January. Meanwhile, ransomware gangs have continued their harassment. The Russian group is sadly, a front for the seemingly sanctioned Ransomware Gang Evil CorporationClaimed to have The National Rifle Association hit this week. The apparent incident is the latest in a string of attacks where victims have to consider the potential impact of a violation of the ban if they want to pay their way.
British digital identity company Yoti says it can use machine learning-based image analysis tools Man’s age prediction Between 6 and 60. The tool can be used to apply a minimum age to the platform and keep kids safe online, but it raises questions about how much more digital surveillance. Blind and visually impaired people again won a DMCA discount that allowed them Break digital rights management protection in ebooks And create accessible versions. But the exemption is still temporary, and lawyers will have to fight to win it again within three years. They say the measurement should be permanent.
Google’s Pixel 6 and 6 Pro have some Improved security features, Thanks to their Tensor processor, the first Pixel system-on-a-chip custom-built by Google. If you need some security tips for Windows instead, we’ve rounded up 11 most important settings To focus. Also, if you are, we have received update recommendations Looking for a trusted VPN.
And there’s more! Every week we collect all the security news that Wired has not covered deeply. Click on the title to read the full story, and stay safe there.
The Russian SVR foreign intelligence service hacking group, known as Nobleium and Cozy Bear, is targeting a new wave of international IT companies embedded in the global supply chain, according to a Microsoft warning this week. As notoriously with network management services firm SolarWinds in 2020, the group aims to compromise key but ভাবে but often relatively obscure সং technology companies as a vague springboard to attack the company’s own customers. This time around, Tom Burt, Microsoft’s vice president of consumer protection and trust, says Nobleium is pursuing cloud service providers and technology resellers. Bert says that Nobleium has been fruitful all summer. Between July 1 and October 19, the company informed 609 customers that they had been attacked 22,868 times by the group – almost the same number of attacks that Microsoft had seen from Cozy Bear in the previous three years. Bert added, though, that these recent targets had a “low single digit success rate.”
“This recent activity is another indicator that Russia is seeking long-term, systematic access to various points in the technology supply chain and is trying to establish a system for monitoring – now or in the future – the interests of the Russian government,” Bert wrote. The spies will spy.
A hack targeting Iran’s gas stations on Tuesday knocked out virtually every subsidized payment terminal at pumps for several days, causing long lines and instability. Iran’s President Ibrahim Raisi has said that “there should be serious preparations for cyber warfare and the concerned agencies should not allow the enemies to pursue their evil goals.” No one has claimed responsibility for the attack, and Rice has not claimed responsibility for it, but she did say she believed there was an anti-Iranian actor behind the attack. At the time of the attack, payment terminals read “Cybertac 64411”, a reference to a religious hotline run by the office of Supreme Leader Ayatollah Ali Khamenei. The number “64411” was also seen in an attack on Iran’s national railway in July.
Europol on Friday announced the arrest of 12 people accused of involvement in ransomware attacks on corporations and critical infrastructure, apparently affecting more than 1,800 people in 71 countries. Law enforcement in eight countries have cooperated in the move and seized more than $ 52,000 in cash, five luxury vehicles and several electronic devices. The attacks used an array of ransomware, including Lockergoga, Megacortex and Religion.
A bug in the Medical Records app docket has revealed data from New Jersey and Utah residents vaccinated against Covid-19. The two states specifically supported the app, which allows people to download a digitally signed version of their paper vaccine card. Like other “vaccine passports,” Docket allows users to access their immunization records as a visible card or a scannable QR code. The vulnerability allows other users to access the QR code and related personal data. This includes vaccination information such as name, date of birth, and date of vaccination and the brand used. TechCrunch discovered the bug on Tuesday and notified the company that day. Docket said within hours that it had fixed the bug by changing server-level. The company is in the process of reviewing its logs to see if anyone apparently abused the error before it was published.
More great cable story