Threat intelligence analyst, deep & dark web. Research lead @ Cybersixgill. All expressed opinions are my own until I change my mind.
https://news.cybersixgill.com/author/dov/
In a case study looking into underground exposure of patient data, we discovered access to 1,241 patient glucose monitors accounts for sale on underground log and bot markets over the last year.
To stress, this does not show that these accounts or their underlying software were “hacked,” nor does it reveal any vulnerabilities in the devices or account software. Rather, it highlights the complex attack surface of PHI. #HIPAA #PHI #threatintel
#Ukrainian civilians learning about where to find humanitarian assistance and consuming vital updates about the #war and fighting? #Telegram.
#Russian #soldiers seeking info about border crossings so they can flee mobilization? Telegram.
Nationalistic #hacking groups on both sides rallying supporters and sharing target lists and successes? Telegram.
As we are about to mark one year since Russia invaded Ukraine, it's vital to understand how central this app has been for people on both sides of the conflict.
https://news.cybersixgill.com/telegram-russia-ukraine-cyberwar/
A lot of people are worried that #artificialintelligence such as #chatgpt will take their jobs. Should #hackers also fear being replaced by a machine? And should the rest of us be concerned about #autonomous #AI launching devastating #cyberattacks?
Putting aside the hype, if we really understand AI's capabilities and limitations, we can analyze the risks. For several reasons, I don't think that AI can carry out fully autonomous attacks. It will not give a script kiddie #APT-level capabilities. Instead, those with the greatest understanding of systems, processes, and networks will be able to direct and wield AI to the greatest effect.
Specifically, threat actors can use AI to produce better reconnaissance, more convincing social engineering attempts, and tailored #malware, enabling attacks to be better targeted and more effective. And if AI can successfully discover #vulnerabilities better than a human researcher, we might experience a torrent of critical #zerodays, destabilizing systems worldwide.
We must follow technological developments and understand to what extent AI becomes a part of the threat actor toolbox of tactics, techniques, and procedures. We must continuously assess the risks and prepare our defenses accordingly.
https://news.cybersixgill.com/artificial-intelligence-creating-new-hacking-tools/
As President #Zelensky's visit with President #Biden concludes, and the issue of how the #US can strengthen #Ukraine is once more in the public's focus, I hope that the West can examine how to tighten the existing #sanctions on #Russia in order to starve #Putin's regime of the materials that it needs to fight.
Several months ago, I wrote about how #Russians are circumventing the sanctions via the dark web. This needs to be addressed.
Russian dark web actors use underground markets to move money and purchase illicit goods, despite the Western embargo. When a banned product is in high demand, there is opportunity for a black market to thrive. Considering the extent of Western governmental and private sector sanctions against Russia in response to
As people rush to finish #holidayshopping, they ought to be aware that a good history of transactions and feedback does not confirm that an #ecommerce seller account is legit.
There is a large #underground market on the deep and #darkweb for "aged accounts"--opened and cultivated by one actor, and then sold to another for use in #scamming and #fraud. We discovered that this activity is on the rise: there has been a nearly 240% increase in the monthly average of underground posts mentioning aged #Amazon accounts.
#cybercrime #cybersecurity #hanukkah #christmas #holidayseason
Threat actors use "aged" #ecommerce accounts to enable fraudulent buying and selling while evading #fraud detection.
Our analysis discovered that transactions of aged accounts on the underground are trending upwards: there has been a nearly 240% increase in the monthly average of underground posts mentioning aged Amazon accounts.
