Weekly Summary

SPOTLIGHT, VULNERABILITY CHAT & PRIVACY HEADLINES
Share this analysis
FBI Breach Exposure Monitoring

USDoD says that they're bringing Breach Forums back!

20 May 2024
BREACHAWARE HQ

A total of 25 breaches were found and analysed resulting in 61,491,599 leaked accounts containing a total of 25 different data types. The breaches found publicly and freely available included The Post Millennial, Share This, Book 24, Stealer Log 0457 and Stealer Log 0459. Sign in to view the full BreachAware Breach Index which includes, where available, reference articles relating to each breach.

SPOTLIGHT

Last week, law enforcement successfully took control of the notorious Dark Web site Breach Forums. The FBI now controls the site's Clear-Net domain, the onion domain, and one of the administrator's Telegram channels. The website currently displays the classic seizure banner, featuring the avatars of the site's two administrators, with bars superimposed on their images. One of the admins, Baphomet, has been confirmed arrested.

The coordinated law enforcement action, which included the takeover of Baphomet's Telegram channel, suggests that a raid occurred while Baphomet's devices were actively logged in. In an unexpected twist, Shiny Hunters managed to regain control of the Clear-Net site from the FBI and altered the seizure banner to direct users to a new Telegram channel for regrouping.

Adding to the developments, well-known threat actor USDoD, infamous for significant data breaches involving entities like the US Army, announced on Twitter (now X) plans to revive Breach Forums. USDoD stated, "I come to say in advance that I am working behind the curtain to reopen our community. This is not the end; it is an opportunity for a new beginning." The new forum, to be called Breach Nation, is set to launch on July 4th. It will operate on two separate servers: one managing the Content Delivery Network (CDN) and the other hosting the forum, ensuring optimal performance through independent operations.

In other news, the administrator of Doxbin has allegedly been beaten and kidnapped, according to a video circulating on Telegram the same day Breach Forums was seized. However, the underground community remains skeptical, with many suspecting an exit scam or a diversion tactic. The Doxbin owner, widely disliked within the community, has a contentious history that fuels these doubts.

VULNERABILITY CHAT

Google has issued an emergency security update for its Chrome browser following the discovery of a new zero-day vulnerability actively being exploited. This update also addresses eight other security vulnerabilities, highlighting the importance of keeping the browser up to date.

The UK's NHS has issued a warning regarding potential exploitation of vulnerabilities in Arcserve Unified Data Protection (UDP) software. These vulnerabilities were first disclosed in March, with proof of concept (PoC) exploit code released by Tenable the day after disclosure. Although the NHS hasn't provided specifics about the data indicating exploitation, they strongly urge organisations to apply the patches as detailed in Arcserve's advisory.

Apple has released iOS 17.5, urging users to update their iPhones immediately. This update addresses 15 security vulnerabilities, some of which are considered serious. To maximise the number of users upgrading before attackers exploit these vulnerabilities, Apple has not disclosed detailed information about the fixes.

Microsoft has rolled out patches for 61 newly discovered security vulnerabilities as part of its Patch Tuesday updates. This package includes fixes for two zero-day exploits. Among the remaining vulnerabilities, 59 are rated as 'Important,' with one each rated as 'Critical' and 'Moderate.' This follows previous updates addressing 30 vulnerabilities in Microsoft’s Edge browser over the past month.

Additionally, new versions of Git have been released, addressing five vulnerabilities. The most critical of these could allow attackers to execute remote code during a “clone” operation, underscoring the necessity for developers to update their Git installations promptly.

6 Common Vulnerabilities and Exposure (CVEs) were added to the CyberSecurity & Infrastructure Security Agency's (CISA) 'Known Exploited Vulnerabilities Catalog' last week including Microsoft (Windows). See the full catalog here: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

NIST's National Vulnerability Database (NVD), the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP), has published 1,681 vulnerabilities last week, making the 2024 total 15,908. For more information visit https://nvd.nist.gov/vuln/search/

INFORMATION PRIVACY HEADLINES

Google is set to offer schools access to its Gemini AI for educators and students over 18 years old. The company has assured that it will not use their data for AI model training nor share it with third parties, prioritising data privacy for educational users.

Vermont legislators have passed the Vermont Data Privacy Act, which is being recognized as one of the strongest data privacy laws in the United States. This legislation regulates how companies can use personal data available online and empowers consumers to file civil lawsuits against companies that violate data privacy laws.

In the wake of the Supreme Court's decision to overturn Roe v. Wade, new research has highlighted that while Americans are concerned about the privacy of menstrual data collected by period-tracking apps, few users have taken steps to protect their information. Fears emerged that law enforcement could request menstrual data from these apps during abortion investigations or that the data could be subject to surveillance. However, only 9% of the nearly 200 people surveyed by Duke University researchers reported taking actions such as deleting the app to mitigate their concerns.

A former Management Trainee at Enterprise Rent-A-Car UK has been fined after admitting to illegally obtaining customer data between March 18, 2019, and April 1, 2019. This case underscores the ongoing challenges companies face in safeguarding customer data against internal threats.

Breach Exposure Monitoring | Dark Web Monitoring + Surface Web Monitoring
Scan Any Domain for Free https://breachaware.com/scan

DATA CATEGORIES DISCOVERED

Contact Data, Socia-Demographic Data, Technical Data, Financial Data, Usage Data, Documentary Data, Transactional Data, Social Relationships Data, Locational Data, Communications Data.

  • Key Statistics
  • Breaches Discovered
    0
  • ACCOUNTS DISCOVERED
    0
  • DATA TYPES DISCOVERED
    0