The attackers allegedly intended to mislead the investigation.
A team of cybersecurity researchers from eSentire told details about a mysterious cyberattack that used sophisticated installation methods for a relatively simple ransomware.
The malicious campaign was discovered when cybercriminals attempted a ransomware attack on an unnamed product security testing organization. The attack was detected and stopped before it was successful, but provided eSentire researchers with enough information to analyze the tactics, methods and procedures used.
The methods used in this ransomware campaign were similar to those of the Chinese cybercriminal group APT27 (also known as Emissary Panda). According to experts, cybercriminals could have loaded simple Hello ransomware into the victim’s IT environment and thus distract information security experts from their true motives – cyber espionage.
The hackers exploited vulnerabilities in Microsoft SharePoint and the China Chopper remote access tool, which acts as a backdoor on compromised systems. The China Chopper web shell is often used by Chinese APT groups and attackers.
Criminals also used Mimikatz to steal passwords, escalate privileges, try to disable security solutions, and execute PowerShell commands using masquerading techniques, disguising themselves as a legitimate Kaspersky Anti-Virus solution.
Using the tactics of cybercriminal groups, the attackers allegedly intended to mislead the investigation.
Hello ransomware encrypts files with the .hello extension and leaves a ransom note. Hello ransomware is fairly simple by the standards of the most famous ransomware in 2021, as the group does not threaten victims with data breaches and does not have a data breach site to publish stolen information. In addition, the ransomware-as-a-service business model does not operate like many of the most prevalent ransomware variants today.
17-year-old hacker who allegedly leaked GTA 6 gameplay videos online arrested in UK
London police today announced the capture of a 17-year-old teenager suspected of cybercrime in Oxfordshire. At the moment, it is only reported that the arrested person is in custody.
The police declined to say what caused the arrest, but a number of facts indicate that this particular teenager, associated with the Lapsus$ hacker group, previously hacked into Uber, and recently posted screenshots and videos of GTA 6 gameplay on the Web.
In March, Bloomberg wrote that the person believed to be behind several major network hacks was a 16-year-old teenager whose home is in Oxfordshire. Uber wrote on its blog after the hack: “We believe this attacker (or attackers) is associated with a hacker group called Lapsus$, which is becoming more and more active.” A hacker who posted a GTA 6 video online claimed responsibility for the attack on Uber in forum posts.
Recall, yesterday it became known that the FBI joined the investigation into the hacking of Uber and the publication of GTA 6 materials online.
The security specialist was able to “hack” the PS5 through the same vulnerability that he used to jailbreak the PS4
Security specialist Andy Nguyen was able to bypass the protection of the PS5 game console and “hack” it using an old vulnerability that he also used on the PS4. It concerns the features of the exFAT file system in Sony’s implementation. In 2020, Nguyen managed to jailbreak his PS4 using the same vulnerability. As a result, the specialist received full access to the system core.
The researcher suggested that during the transition from FreeBSD9 to FreeBSD11, the patch that closed the vulnerability somehow stopped working or was removed during the upgrade. The specialist has already reported the vulnerability to the company, which paid him $10,000. The same amount Nguyen received for the same vulnerability on PS4.
The PlayStation hack allows the user to install emulators of other consoles, play pirated versions of games, and also unlock some features that are not normally available to users.
At the same time, Nguyen explained that the error he discovered was just one of a chain of errors required for a full PlayStation 5 jailbreak. To date, the newest console has not been hacked.
Only pin code, only hardcore. Locking a smartphone with a fingerprint reduces its security, says Group-IB digital forensics specialist
Group-IB digital forensics specialist Igor Mikhailov told the Prime agency why you should not use a fingerprint on your phone.
According to him, locking a smartphone with a fingerprint reduces its security, as the fingerprint can be copied. In addition, it is possible to unlock the gadget with someone else’s fingerprints, especially on devices with an old sensor.
The most secure way to unlock a smartphone, according to Mikhailov, is to use complex passwords. He advised to turn off the fingerprint login and leave only the pin code.
As for unlocking a smartphone by face, Apple’s Face ID system is the most reliable, but even its enthusiasts managed to deceive with photos and masks of the owners.
In the United States created a refrigerator for third world countries that does not require food
Engineers have created a cooling device that does not require electricity to operate. An article about this was published in...
Xiaomi’s first 200 megapixels. Xiaomi 12T and Xiaomi 12T Pro pose in quality renders from a reliable source
Soon Xiaomi will introduce new flagships for the global market – Xiaomi 12T and Xiaomi 12T Pro. When exactly the...
Scientists set a record by cooling matter to 220 microkelvins
Physicists set a record by cooling matter to the lowest temperature in history. An article about this was published in...
1.78″ AMOLED screen, 105 training modes, up to 10 days of autonomy. OnePlus Nord Watch details and renderings
OnePlus is rumored to be launching the low-cost OnePlus Nord Watch smartwatch as early as next week. Like it or...
Gaming5 days ago
Sony to help developers port games to PlayStation VR2
Electric Cars5 days ago
Xiaomi Smart and Cheap Electric Oven Presented
Software5 days ago
12-inch 2.5K screen, stylus, LTE, Windows 11, and up to 14 hours of battery life for $605. Started sales of the tablet Huawei MateBook E Go
Components6 days ago
16-core Core i7-13700K for $320, 24-core Core i9-13900K for $730. An insider named the cost of 13th generation Intel Core processors (Raptor Lake)