U.S. Voter Databases Offered for Free on Dark Web, Report
Some underground forum users said they're monetizing the information through the State Department's anti-influence-campaign effort.
Source: Threadpost
Magecart Credit-Card Skimmer Adds Telegram as C2 Channel
In a rare move, the encrypted messaging service is being used to send stolen payment-card data from websites back to cybercriminals.
Source: Threadpost
FBI: Ring Smart Doorbells Could Sabotage Cops
While privacy advocates have warned against Ring's partnerships with police, newly unearthed documents reveal FBI concerns about 'new challenges' smart doorbell footage could create for cops.
Source: Threadpost
Pioneer Kitten APT Sells Corporate Network Access
The Iran-based APT has infiltrated multiple VPNs using open-source tools and known exploits.
Source: Threadpost
Apple Accidentally Notarizes Shlayer Malware Used in Adware Campaign
The notarized malware payloads were discovered in a recent MacOS adware campaign, disguised as Adobe Flash Player updates.
Source: Threadpost
Charming Kitten Returns with WhatsApp, LinkedIn Effort
The Iran-linked APT is targeting Israeli scholars and U.S. government employees in a credential-stealing effort.
Source: Threadpost
Stolen Fortnite Accounts Earn Hackers Millions Per Year
More than 2 billion breached Fortnite accounts have gone up for sale in underground forums so far in 2020 alone.
Source: Threadpost
Critical Slack Bug Allows Access to Private Channels, Conversations
The RCE bug affects versions below 4.4 of the Slack desktop app.
Source: Threadpost
Instagram ‘Help Center’ Phishing Scam Pilfers Credentials
Researchers warn that a phishing scam is targeting Instagram users via direct messages on the app.
Source: Threadpost
Elon Musk Confirms, Tesla Factory a Target of Foiled Cyberattack
A Tesla employee was reportedly approached by a Russian national and asked to install malware on the company's systems.
Source: Threadpost