Tag Archive for: OFFER

Hackers Used Fake Job Offer to Hack and Steal $540 Million from Axie Infinity

/in


The $540 million hack of Axie Infinity’s Ronin Bridge in late March 2022 was the consequence of one of its former employees getting tricked by a fraudulent job offer on LinkedIn, it has emerged.

According to a report from The Block published last week citing two people familiar with the matter, a senior engineer at the company was duped into applying for a job at a non-existent company, causing the individual to download a fake offer document disguised as a PDF.

“After what one source described as multiple rounds of interviews, a Sky Mavis engineer was offered a job with an extremely generous compensation package,” the Block reported.

The offer document subsequently acted as a conduit to deploy malware designed to breach Ronin’s network, ultimately facilitating one of the crypto sector’s biggest hacks to date.

“Sky Mavis employees are under constant advanced spear-phishing attacks on various social channels and one employee was compromised,” the company said in a post-mortem analysis in April.

“This employee no longer works at Sky Mavis. The attacker managed to leverage that access to penetrate Sky Mavis IT infrastructure and gain access to the validator nodes.”

In April 2022, the U.S. Treasury Department implicated the North Korea-backed Lazarus Group in the incident, calling out the adversarial collective’s history of attacks targeting the cryptocurrency sector to gather funds for the hermit kingdom.

Bogus job offers have been long employed by the advanced persistent threat as a social engineering lure, dating back as early as August 2020 to a campaign dubbed by Israeli cybersecurity firm ClearSky as “Operation Dream Job.”

CyberSecurity

In its T1 Threat Report for 2022, ESET noted how actors operating under the Lazarus umbrella have employed fake job offers through social media like LinkedIn as its strategy for striking defense contractors and aerospace companies.

While Ronin’s Ethereum bridge was relaunched in June, three months after the hack, the Lazarus Group is also suspected to be behind the recent $100 million altcoin theft from Harmony Horizon Bridge.

The findings also come as blockchain projects centered around Web 3.0 have lost more than $2 billion to hacks and exploits in the…

Source…

Hackers offer Novartis stolen data on darknet market place

/in


The transition to digital has created new cybersecurity concerns for pharmaceutical companies. © Keystone / Georgios Kefalas

Swiss pharmaceutical giant Novartis has been targeted by hackers, according to media reports. The Basel-based company says no sensitive data has been stolen.

This content was published on June 5, 2022 – 13:35

swissinfo.ch/ds

Novartis confirmed to Swiss media on Sunday that it had been the victim of a hacking attack, first reported by the specialised IT website Bleeping ComputerExternal link.

The company told Keystone-SDA news agency the case had been thoroughly investigated and that theft of sensitive data could be ruled out.

“We take data protection and data security very seriously and have taken industry-standard measures in response to this type of threat to ensure data security,” Novartis added.

According to the website Bleeping Computer, the hacker group Industrial Spy offered to sell stolen Novartis data on the darknet for $500,000, payable in Bitcoins.

The hacker group claims it stole the data directly from the laboratories of a Novartis factory. The information relates to RNA and DNA-based drug technology and tests.

Switzerland ranks third among the most targeted European countries, behind Germany and the UK, for advanced and targeted cyber-attacks (APT), according to insurance company Swiss Risk & Care.

In compliance with the JTI standards

In compliance with the JTI standards

More: SWI swissinfo.ch certified by the Journalism Trust Initiative

Source…

Reward Offer for Russian Hacker

/in


The U.S. Department of State’s Rewards for Justice program is offering a reward for information on Russia-based hacker Evgeny Viktorovich Gladkikh.
This is the first time that Rewards for Justice, or RFJ, has listed a specific cyber actor under its critical infrastructure reward offer.

RFJ, which is administered by the Diplomatic Security Service, is offering a reward of up to $10 million for information leading to the identification or location of Gladkikh or any other person who, while acting at the direction or under the control of a foreign government, aids or abets a violation of the Computer Fraud and Abuse Act. This may include participation in malicious cyber activities against U.S. critical infrastructure.

Between May and September 2017, Gladkikh, a computer programmer employed by a leading research organization of the Russian Ministry of Defense, and co-conspirators hacked the systems of a refinery located outside the United States and installed malware designed to prevent the refinery’s safety systems from functioning. Between February and July 2018, the conspirators researched similar refineries in the United States, which were owned by a U.S. company, and unsuccessfully attempted to hack the U.S. company’s computer systems.

Gladkikh conducted these malicious offensive cyber operations as an employee of the Russian Ministry of Defense’s Central Scientific Research Institute of Chemistry and Mechanics, in its Applied Development Center, with other co-conspirators.

For more information about this reward offer please visit the Rewards for Justice website at https://rewardsforjustice.net.

We also encourage anyone with information on Evgeny Viktorovich Gladkikh’s malicious cyberactivity to contact Rewards for Justice via the Tor-based tips-reporting channel at: he5dybnt7sr6cm32xt77pazmtm65flqy6irivtflruqfc5ep7eiodiad.onion.

Further information can be found here: https://rewardsforjustice.net/tor-best-practices/

Since RFJ’s inception in 1984, the program has paid in excess of $200 million to more than 100 people across the globe who provided actionable information that helped prevent terrorism, bring terrorist leaders to justice, and resolve threats to U.S….

Source…

Black Experience on Xfinity to Offer $1 Million in Grants to Emerging Black Filmmakers in Celebration of Its One-Year Anniversary

/in


PHILADELPHIA–()–Comcast NBCUniversal celebrates the one-year anniversary of Black Experience on Xfinity by announcing plans to offer $1M in the form of ten $100K grants to emerging Black filmmakers. Home to the largest curated collection of independent Black film collection on demand, Black Experience on Xfinity features high-quality content from many of Xfinity’s existing network partners, while investing millions of dollars in emerging talent from the top Black film festivals. Curated by industry leaders, the channel is the only one of its kind endorsed by African American Film Critics Association (AAFCA), the world’s largest group of Black film critics that gives annual awards for excellence in film and television.

Black Experience on Xfinity offers one-stop access to a collection of content that showcases the breadth of Black culture. Available at home on Xfinity X1 and Flex, and on-the-go with the Xfinity Stream app, the Black Experience on Xfinity will entertain, educate, and uplift, featuring Black actors, writers, producers, and directors. At home, Xfinity subscribers can visit channel 1622 or simply say “Black Experience” into the Voice Remote. And for the first time, consumers nationwide will be able to enjoy the ultimate in Black storytelling with the availability of the Black Experience collection on Comcast’s new XClass TV, easily accessible through the platform’s home screen and voice remote.

Click here to view the anniversary video from Comcast and their Black Experience on Xfinity partners

“The launch of Black Experience on Xfinity has been a major investment in the Black creative community and one of the many ways we are leveraging the scale and reach of our platforms to amplify voices that need to be heard,” said Keesha Boyd, Executive Director, Multicultural Video & Entertainment, Xfinity Consumer Services. “In recent years, we have expanded our offering of Black programming to millions of additional Xfinity customers. The Black Experience Channel on Xfinity allows us to shine a spotlight on our existing content partners, while also investing in and distributing original programming from emerging Black content…

Source…