Threat Intelligence Cybersecurity Hacking News May 03, 2022
Multiple technology and manufacturing companies apparently failed to secure their intellectual data at the hands of a state-backed group. In separate news, four new ransomware samples were discovered at their nascent stage. Watch out! There’s a deluge of NFT scammers. Blue tick users are also under heavy targeting by phishers in a different campaign. Continue reading for moreimportant cyber stories from the past 24 hours.
The China-linked Winnti group was found involved in a massive intellectual property and sensitive data-theft operation against technology and manufacturing firms primarily situated in North America, East Asia, and Western Europe.
The Anonymous collective leaked 82 GB worth of email data apparently belonging to the Nauru Police Force allegedly in protest of the ill-treatment of asylum seekers and refugees by the Australian government.
NFT scammers have been impersonating the Cyberpunk Ape Executives to roll out job offers to potential victims. Researchers warned against downloading the attached RAR files containing the apes.
Hackers portrayed Twitter Verified in phishing emails to target verified Twitter accounts and harvest user credentials. Malicious emails prompt users to address an issue with their verified account.
While studying the source code of the VHD ransomware, researchers uncovered four more ransomware strains - BEAF, PXJ, ZZZZ, and CHiCHi. All were linked to the North Korea-backed APT38 group.
GitHub announced mandating 2FA for all coders and contributors on its platform by the end of 2023. About 16.5% of users currently use 2FA. The new development will impact nearly 83 million users.
CertiK revealed that scammers stole over $370 million in crypto—only in April—in at least 31 incidents pertaining to crypto and web3 projects. Roughly $100 million was swindled over the last weekend.
The U.K NHS disclosed a large phishing operation wherein hackers overtook some email accounts to send malicious emails to third parties. The scope of the attack is yet to be determined.
Canada-based zero-configuration VPN provider Tailscale raised $100 million in Series B funding led by CRV and Insight Partners, with Accel, Heavybit, and Uncork Capital also participating.
Cybersecurity and API platform Traceable AI raised $60 million in Series B round led by Institutional Venture Partners, with participation from Tiger Global Management and existing investors Unusual Ventures and BIG Labs.