All articles tagged with #infostealer malware
The reported 16 billion credential breach is likely exaggerated and based on recycled, outdated data rather than a single, recent event, highlighting the dangers of misinformation in cybersecurity and the importance of focusing on proven threats like infostealer malware and online hygiene.
A massive data breach exposed over 184 million user credentials from popular services like Google, Facebook, and Apple, stored in an unencrypted database likely captured by malware. The incident highlights the importance of strong, unique passwords, multi-factor authentication, and vigilant account monitoring to protect against cyber threats such as credential stuffing, account takeovers, and corporate espionage.
A massive data breach exposed over 184 million account credentials from major companies like Google, Facebook, and Microsoft, stored in an unencrypted file likely captured by malware. The breach highlights risks such as credential stuffing, account takeovers, and targeted attacks on individuals and organizations. Experts recommend changing passwords regularly, using strong and unique passwords, enabling multi-factor authentication, and monitoring account activity to enhance security.
A recent report clarifies that the so-called $16 billion credentials leak is not a new breach but a compilation of previously stolen credentials from infostealers, data breaches, and credential stuffing attacks. The article emphasizes the ongoing threat of infostealer malware, advises on cybersecurity best practices like using strong, unique passwords, enabling two-factor authentication, and checking if your credentials have been compromised using services like Have I Been Pwned. It highlights the importance of good cybersecurity habits to mitigate risks from such leaks.
A massive leak exposed over 184 million passwords from popular websites and apps, likely stolen via infostealer malware, raising significant security and privacy concerns, though some companies like Snapchat have not found evidence of breaches on their platforms.
A significant data breach involving cloud storage company Snowflake may be one of the largest ever, with cybercriminals accessing customer accounts using stolen login details. The breach has affected major firms like Ticketmaster and Santander, with hackers claiming to sell data from other companies such as Advance Auto Parts and LendingTree. The incident underscores the importance of multifactor authentication and highlights the growing use of infostealer malware. Snowflake, along with cybersecurity firms, is investigating the breach, which has led to widespread concern and official alerts from cybersecurity agencies.
A fake ChatGPT browser extension available for Chrome has been found to contain infostealer malware that collects users' personal data, including passwords and credit card information. The malware has compromised at least 40,000 Facebook accounts, with threat actors changing passwords and account names to those of Lily Collins, star of Netflix's "Emily in Paris." The database also included login credentials for at least 6,000 corporate accounts and 7,000 virtual private network accounts. The Chrome extension has been removed from the Play Store, but the database has been wiped and held for ransom by another threat actor.
Genesis Market, one of the largest online criminal platforms, has been seized by the FBI in an international operation. The platform sold stolen credentials and tools to weaponize data, and was linked to millions of financially motivated cyber incidents globally. Genesis Market provided criminals access to "bots" or "browser fingerprints" that allowed them to impersonate victims' web browsers, including IP addresses, session cookies, operating system information, and plugins. The platform was unique among credential marketplaces and had a low barrier to access. A large number of arrests are being carried out globally.
Security researchers have discovered a supply chain attack targeting downstream customers of 3CX's voice and video-calling client, which is used by over 600,000 organizations worldwide. The trojanized version of the software is capable of stealing data and stored credentials from Google Chrome, Microsoft Edge, Brave, and Firefox user profiles. The attack appears to be a targeted Advanced Persistent Threat, possibly state-sponsored, and North Korean threat actor Labyrinth Chollima is suspected to be behind it. 3CX is urging its customers to uninstall the app and install it again or use its PWA client as a workaround.