Tag Archive for: spree

Chinese Hacking Spree Hit an ‘Astronomical’ Number of Victims

/in


When news hit earlier this week that Chinese hackers were actively targeting Microsoft Exchange servers, the cybersecurity community warned that the zero-day vulnerabilities they were exploiting might have allowed them to hit countless organizations around the world. Now it’s becoming clear just many email servers they hacked. By all appearances, the group known as Hafnium breached as many victims they could find across the global internet, leaving behind backdoors to return to later.

Hafnium has now exploited zero-day vulnerabilities in Microsoft’s Exchange servers’ Outlook Web Access to indiscriminately compromise no fewer than tens of thousands of email servers, according to sources with knowledge of the investigation into the hacking campaign who spoke to WIRED. The intrusions, first spotted by security firm Volexity, began as early as January 6, with a noticeable uptick starting last Friday and spiking early this week. The hackers appear to have responded to Microsoft’s patch, released Tuesday, by ramping up and automating their hacking campaign. One security researcher involved in the investigation who spoke to WIRED on the condition of anonymity put the number of hacked Exchange servers at more than 30,000 in the US alone, and hundreds of thousands worldwide, all apparently by the same group. Independent cybersecurity journalist Brian Krebs first reported that 30,000 figure Friday, citing sources who had briefed national security officials.

“It’s massive. Absolutely massive,” one former national security official with knowledge of the investigation told WIRED. “We’re talking thousands of servers compromised per hour, globally.”

In a press conference Friday afternoon, White House press secretary Jen Psaki warned anyone running the affected Exchange servers to implement Microsoft’s patch for the vulnerabilities immediately. “We are concerned that there are a large number of victims and are working with our partners to understand the scope of this,” Psaki said in a rare instance of a White House press secretary commenting on specific cybersecurity vulnerabilities. “Network owners also need to consider whether they have…

Source…

Russian cyber-attack spree shows what unrestrained internet warfare looks like – The Guardian

/in

Russian cyber-attack spree shows what unrestrained internet warfare looks like  The Guardian
“cyber warfare news” – read more

Mass hijacking spree takes over subreddits to promote Donald Trump

/in
Mass hijacking spree takes over subreddits to promote Donald Trump

Enlarge

Dozens of discussion groups on Reddit—including those dedicated to the National Football League, the San Francisco 49ers, and the Gorillaz—were hit in a Friday morning mass takeover spree that used the subreddits to spread messages promoting President Trump.

The hijacked accounts had tens of millions of combined members. The 148,000-member subreddit Supernatural, dedicated to the TV show by the same name, was emblazoned with pro-Trump images and slogans. Reddit personnel have since restored the moderator account to its rightful owner. The image above is how the subreddit appeared when the takeover was still active. The takeovers came five weeks after Reddit banned /r/The_Donald, a leading forum for fans of the president, and hundreds of other unrelated subreddits for violating recently rewritten content rules.

Reddit personnel published this post captioned, “Ongoing incident with compromised mod accounts.” Reddit personnel then warned that moderator accounts were being compromised and used to vandalize subreddits. It asked moderators of affected subreddits to report them in responses. At the time this post when live, the list of reported subreddits included:

Read 7 remaining paragraphs | Comments

Biz & IT – Ars Technica

Chinese Hackers Charged in Decade-Long Crime and Spying Spree – WIRED

/in
  1. Chinese Hackers Charged in Decade-Long Crime and Spying Spree  WIRED
  2. Two Chinese Hackers Charged in Global Computer Intrusion Campaign | Federal Bureau of Investigation  Federal Bureau of Investigation
  3. US charges Chinese hackers for wide-ranging activities, including Covid research intrusions  CNN
  4. DOJ Charges 2 Suspected Chinese Hackers Who Allegedly Targeted COVID-19 Research  NPR
  5. U.S. Accuses Two Hackers of Stealing Secrets From American Firms for China  The Wall Street Journal
  6. View Full Coverage on read more

“chinese hackers” – read more