Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

Infosec News Feed

An aggregated list of cybersecurity publications
2021-12-08 23:27:00 UTC
Krebs on Security
Krebs on Security
Canada Charges Its “Most Prolific Cybercriminal”

A 31-year-old Canadian man has been arrested and charged with fraud in connection with numerous ransomware attacks against businesses, government agencies and private citizens throughout Canada and the United States. Canadian authorities describe him as "the most prolific cybercriminal we've identified in Canada," but so far they've released few other details about the investigation or the defendant. Helpfully, an email address and nickname apparently connected to the accused offer some additional clues.

A Little Sunshine Ne'er-Do-Well News Ransomware Darkcloudowner Darkode DCReavers2 Fbi Fubar Iserdo Matt Watson Matthew Philbert Ontario Provincial Police Project CODA
2021-12-08 22:55:00 UTC
Dark Reading
Dark Reading
How to Stop Hackers From Turning Your Systems Against You

Cybercriminals are increasingly adopting "living-off-the-land’ techniques, leveraging commonly used tools to fly under the radar of conventional detection tools. But with AI, thousands of organizations have regained the upper hand.

2021-12-08 22:30:00 UTC
ThreatPost
ThreatPost
Malicious npm Code Packages Built for Hijacking Discord Servers

The lurking code-bombs lift Discord tokens from users of any applications that pulled the packages into their code bases.

Malware Web Security
2021-12-08 22:04:00 UTC
Dark Reading
Dark Reading
Claroty Raises $400M More, Acquires Healthcare IoT Security Firm Medigate

Industrial control systems security firm reaches $635M in funding with this Series E round.

2021-12-08 21:48:00 UTC
Dark Reading
Dark Reading
Newly Found Authentication Flaws Highlight Dangers of Coding From Scratch

Two vulnerabilities in a call-center software suite could allow an attacker to take over the application server, researchers found.

2021-12-08 20:13:00 UTC
ThreatPost
ThreatPost
Moobot Botnet Chews Up Hikvision Surveillance Systems

Attackers are milking unpatched Hikvision video systems to drop a DDoS botnet, researchers warned.

IoT Malware Vulnerabilities Web Security
2021-12-08 19:59:00 UTC
The Daily Swig
The Daily Swig
GOautodial vulnerabilities put call center network security on the line

Now-patched bugs were easy to exploit, but required prior authentication/network access

2021-12-08 19:50:00 UTC
HackRead
HackRead
Google discrupts Glupteba blockchain botnet that infected 1mn PCs

By Waqas

Google has also filed a lawsuit against the alleged Russian threat actors and operators of Glupteba Botnet.

This is a post from HackRead.com Read the original post: Google discrupts Glupteba blockchain botnet that infected 1mn PCs

Cyber Crime Malware Security Botnet Glupteba Google Russia Security
2021-12-08 19:28:00 UTC
ThreatPost
ThreatPost
Not with a Bang but a Whisper: The Shift to Stealthy C2

DoH! Nate Warfield, CTO of Prevailion, discusses new stealth tactics threat actors are using for C2, including Malleable C2 from Cobalt Strike's arsenal.

InfoSec Insider Vulnerabilities Web Security
2021-12-08 19:16:00 UTC
ThreatPost
ThreatPost
Critical SonicWall VPN Bugs Allow Complete Appliance Takeover

Unauthenticated, remote attackers can achieve root-level RCE on SMA 100-series appliances.

Cloud Security Vulnerabilities Web Security

Realtime Feed

Realtime data discovered by the BreachAware platform in the last 5 minutes

Autodiscovered Credentials

Data discovered by the BreachAware platform in the last week

Scan Activity

Scan audit log

Login to view activity

Account Activity

Account Audit Log

Login to view activity