Tag Archive for: Service

Resumption of all Kyivstar services in compliance with security protocols takes time – security service

/in


Resumption of all Kyivstar services in compliance with security protocols takes time – security service

It is planned to resume the Kyivstar fixed-line Internet for households and begin the launch of mobile communications and the Internet on Wednesday, December 13, while the resumption of all services of the mobile operator in compliance with the necessary security protocols will take time, the Security Service of Ukraine has reported.

On Wednesday, Security Service of Ukraine said on its Telegram channel that its cyber specialists and Kyivstar experts, in collaboration with other government agencies, continue to work on restoring the network after the cyber attack.

“According to preliminary estimates, on December 13 it is planned to resume fixed-line Internet for households, and begin the launch of mobile communications and the Internet,” the security service said.

At the same time, the Security Service of Ukraine emphasizes that critical damage was inflicted on Kyivstar’s digital infrastructure, and therefore “the restoration of all services in compliance with the necessary security protocols will take time.”

“The responsibility for the attack has already been claimed by one of the Russian pseudo-hacking groups. It is a hacker unit of the main intelligence directorate of the General Staff of the Russian Armed Forces (more commonly known as GRU), which thus publicly legitimizes the results of its criminal activities in this way,” the Security Service of Ukraine said.

The Ukrainian service continues to document the Russian cyber attack on Ukraine’s civil infrastructure as another war crime committed by the occupiers.

Source…

GoNetspeed fiber-optic internet service coming to Lisbon

/in


Contractors for GoNetspeed work Jan. 19 in Auburn. The company is preparing to bring fiber-optic internet service to the Lisbon area in early 2024. Steve Collins/Sun Journal file

GoNetspeed Tuesday announced that construction is underway to bring high-speed fiber-optic internet service to Lisbon. More than 2,200 residents and businesses will have access to equal upload and download speeds through the service, ranging from 300 megabits per second to 1 gigabit.

Residents are expected to have access to service by the beginning of 2024 with construction expected to be completed by the end of this winter.

Fiber-optic internet service is considered superior to internet delivered via cable or digital subscriber lines (telephone lines). It is connected with a dedicated service to each home, not a shared service like cable. Fiber-optic delivers a superfast connection using light signals, which don’t degrade over distance. Security is also enhanced by fiber-optic, which does not radiate its signal the way copper does, making it much more difficult to tap or hack.

GoNetspeed serves residential and business customers in Maine, Alabama, Connecticut, Massachusetts, Missouri, New York, Pennsylvania, Vermont and West Virginia. The company claims to be one of the largest independent internet providers in the East.

For more information about GoNetspeed, or to inquire about service in your area, visit gonetspeed.com.

The Buzz offers quick hits about trending area business happenings. Have a Buzzable tip? Contact business writer Christopher Wheelock at 689-2817 or [email protected]

Source…

ID Theft Service Resold Access to USInfoSearch Data – Krebs on Security

/in


One of the cybercrime underground’s more active sellers of Social Security numbers, background and credit reports has been pulling data from hacked accounts at the U.S. consumer data broker USinfoSearch, KrebsOnSecurity has learned.

Since at least February 2023, a service advertised on Telegram called USiSLookups has operated an automated bot that allows anyone to look up the SSN or background report on virtually any American. For prices ranging from $8 to $40 and payable via virtual currency, the bot will return detailed consumer background reports automatically in just a few moments.

USiSLookups is the project of a cybercriminal who uses the nicknames JackieChan/USInfoSearch, and the Telegram channel for this service features a small number of sample background reports, including that of President Joe Biden, and podcaster Joe Rogan. The data in those reports includes the subject’s date of birth, address, previous addresses, previous phone numbers and employers, known relatives and associates, and driver’s license information.

JackieChan’s service abuses the name and trademarks of Columbus, OH based data broker USinfoSearch, whose website says it provides “identity and background information to assist with risk management, fraud prevention, identity and age verification, skip tracing, and more.”

“We specialize in non-FCRA data from numerous proprietary sources to deliver the information you need, when you need it,” the company’s website explains. “Our services include API-based access for those integrating data into their product or application, as well as bulk and batch processing of records to suit every client.”

As luck would have it, my report was also listed in the Telegram channel for this identity fraud service, presumably as a teaser for would-be customers. On October 19, 2023, KrebsOnSecurity shared a copy of this file with the real USinfoSearch, along with a request for information about the provenance of the data.

USinfoSearch said it would investigate the report, which appears to have been obtained on or before June 30, 2023. On Nov. 9, 2023, Scott Hostettler, general manager of USinfoSearch parent Martin Data LLC shared a written…

Source…

Play Ransomware Goes Commercial – Now Offered as a Service to Cybercriminals

/in


Nov 21, 2023NewsroomRansomware-as-a-service

The ransomware strain known as Play is now being offered to other threat actors “as a service,” new evidence unearthed by Adlumin has revealed.

“The unusual lack of even small variations between attacks suggests that they are being carried out by affiliates who have purchased the ransomware-as-a-service (RaaS) and are following step-by-step instructions from playbooks delivered with it,” the cybersecurity company said in a report shared with The Hacker News.

The findings are based on various Play ransomware attacks tracked by Adlumin spanning different sectors that incorporated almost identical tactics and in the same sequence.

This includes the use of the public music folder (C:\…\public\music) to hide the malicious file, the same password to create high-privilege accounts, and both attacks, and the same commands.

Play, also called Balloonfly and PlayCrypt, first came to light in June 2022, leveraging security flaws in Microsoft Exchange Server – i.e., ProxyNotShell and OWASSRF – to infiltrate networks and drop remote administration tools like AnyDesk and ultimately drop the ransomware.

Cybersecurity

Besides using custom data gathering tools like Grixba for double extortion, a notable aspect that set Play apart from other ransomware groups was the fact that the operators in charge of developing the malware also carried out the attacks.

The new development, therefore, marks a shift and completes its transformation into a RaaS operation, making it a lucrative option for cybercriminals.

“When RaaS operators advertise ransomware kits that come with everything a hacker will need, including documentation, forums, technical support, and ransom negotiation support, script kiddies will be tempted to try their luck and put their skills to use,” Adlumin said.

“And since there are probably more script kiddies than “real hackers” today, businesses and authorities should take note and prepare for a growing wave of incidents.”

Found this article interesting? Follow us on Twitter and LinkedIn to read more exclusive content we post.

Source…