Hacking | Business Upturn

AI risks to security discussed in Parliament

Eesha Chakraborty — Tue, 27 Feb 2024 09:58:29 +0000

The potential dangers of Artificial Intelligence (AI) to national security were at the forefront of discussions held in the UK Parliament recently. Leading figures from the British cybersecurity industry gathered to address the evolving threat landscape and brainstorm solutions.

The event, hosted by Member of Parliament Dean Russell and chaired by Steven George-Hilley of Centropy PR, featured a panel of experts who delved into the specific risks posed by AI advancements. These concerns ranged from the potential misuse of AI-generated deepfakes for malicious purposes, such as spreading misinformation or manipulating public opinion, to the increased sophistication of AI-powered hacking tools that could target critical national infrastructure. The rise of ransomware attacks, a growing threat in recent years, was also highlighted as likely to become even more complex with the integration of AI technology.

Beyond outlining the potential problems, the panel also emphasized the crucial need for proactive measures to address these emerging challenges. Victor Murineanu, CISO of Chelsea Football Club, underlined the importance of bridging the growing cyber skills gap in the UK. He called for increased investment in training and recruitment programs to equip young people with the necessary expertise to combat these future threats. This call to action resonated with cyber security specialist Sarah Rench from Avanade, who observed a positive trend of companies allocating more resources towards developing cyber skills within their workforce.

Nicko van Someren, the Chief Technology Officer of Absolute Software, emphasized the crucial role of staying ahead of the curve. He pointed out that the rapid advancements in AI not only pose new challenges but also present opportunities for strengthening defenses. He stressed the urgency of utilizing these advancements for defensive purposes, acknowledging that malicious actors are likely already exploring the offensive potential of AI.

The discussion also highlighted the importance of maintaining comprehensive visibility into IT systems. Paul Connaghan, a Principal Consultant specializing in application security at RiverSafe, argued that in the face of increasingly sophisticated threats like AI-powered attacks, having clear visibility into network activity, user behavior, and system performance is no longer optional but essential for building effective defensive strategies. He emphasized that investing in robust threat intelligence solutions that provide real-time insights is crucial for businesses to proactively identify and mitigate potential threats, ultimately protecting themselves and their employees.

The conversation also touched upon the need to anticipate future threats. Angus Lockhart, Chief Operating Officer at SECQAI, pointed out the escalating complexity of the cyber landscape, which he linked to rising global tensions and conflicts. He stressed the importance of ensuring the UK’s preparedness against both current and future threats. This, he suggested, involves mitigating existing cyber attacks by promoting the use of “memory safe” hardware and preparing for future threats like quantum computing by transitioning to Post-Quantum Cryptography, a more secure encryption method.

Finally, Nithin Thomas, Founder and CEO of Klarytee, emphasized the transformative potential of AI while simultaneously cautioning against its potential misuse. He warned that as businesses embrace AI’s capabilities, a new wave of cyber threats, powered by AI, is likely to emerge. He concluded by underlining the critical need for a proactive approach to data protection in the face of this evolving threat landscape.

North Korean hackers leverage AI, raising global cybersecurity concerns

Eesha Chakraborty — Sun, 25 Feb 2024 03:35:15 +0000

North Korean hackers, long notorious for their audacious cyberattacks, have taken their game to the next level by incorporating generative artificial intelligence (AI) into their operations. This development, reported by security experts and intelligence agencies, marks a concerning escalation in the sophistication and potential impact of North Korea’s cyber threats.

Previously known for brazen attacks like the Bangladesh central bank heist and the WannaCry ransomware epidemic, North Korean hackers are now leveraging AI’s power to create more convincing online personas and tailor phishing campaigns with unprecedented precision. Imagine receiving a LinkedIn message from a seemingly legitimate recruiter, only to discover later it was a meticulously crafted AI-generated profile designed to steal your credentials. This is the reality that cybersecurity professionals now face, with the added complexity of AI-powered attacks blurring the lines between human and machine interaction.

The integration of AI raises several critical concerns. Firstly, it facilitates targeted espionage and financial theft, potentially fueling North Korea’s nuclear weapons program. The ability to bypass language barriers and generate realistic documents enables hackers to infiltrate sensitive networks and steal valuable information, intellectual property, and funds. Secondly, it complicates global cybersecurity efforts. Identifying and neutralizing AI-powered attacks requires advanced detection algorithms and constant adaptation, posing a significant challenge for defense systems designed to combat traditional cyber threats.

The report by the National Intelligence Service further highlights North Korea’s ambitious AI development, encompassing government, academic, and commercial sectors. This comprehensive approach suggests a strategic focus on leveraging AI across various domains, including public health, nuclear safety, and military simulations. While some private entities claim to have integrated AI into their surveillance systems, the true extent of North Korea’s AI capabilities remains shrouded in secrecy.

The arms race in the cybersecurity realm is intensifying, with both defense and offense adopting AI tools. While machine learning algorithms traditionally aided in identifying suspicious network activity, offensive actors are now exploring large language models like ChatGPT to automate and personalize attacks. This dual-use nature of AI underscores the need for responsible development and deployment, ensuring its benefits outweigh the potential harm.

Enhanced international cooperation is crucial to share intelligence, develop robust AI-powered defense systems, and establish clear norms for responsible AI development. Additionally, continued investment in research and development is essential to stay ahead of the curve and ensure effective countermeasures against AI-powered cyberattacks.

Teen Dating Violence awareness month highlights Tech-facilitated abuse

Tushar Aggarwal — Sat, 24 Feb 2024 14:18:34 +0000

February is recognized as Teen Dating Violence Awareness Month, serving as a reminder of the prevalence and impact of dating violence among teenagers. As technology continues to advance, the threat of tech-facilitated abuse has become increasingly concerning, particularly among teens.

Tech-facilitated abuse encompasses a range of behaviors, including cyberflashing, hacking and controlling accounts, sending harassing messages, sharing images without consent, and using deepfakes and virtual impersonation to manipulate or harm individuals. Kelli Owens, executive director of New York’s Office for Prevention of Domestic Violence (OPDV), emphasizes the seriousness of these issues, noting that such abuse can have lasting psychological effects on victims.

According to a 2022 report by the U.S. Department of Justice, up to 19% of teens experience sexual or physical dating violence, while 48% face stalking or harassment. Additionally, as many as 65% of teens report psychological abuse in their relationships. These statistics underscore the prevalence and impact of teen dating violence, highlighting the urgent need for awareness and prevention efforts.

Data from the Centers for Disease Control and Prevention’s 2019 Youth Risk Behavior Survey reveals that female students experience higher rates of both physical and sexual dating violence compared to male students. The survey also indicates that 6% of heterosexual students, 17% of LGBTQ students, and 14% of students unsure of their sexuality reported experiencing physical dating violence in the last 12 months

Recognizing the growing threat of tech-facilitated abuse, OPDV has launched a new Tech Safety Guidebook to raise awareness and provide essential tips for staying safe online. Additionally, New York Governor Kathy Hochul has supported a new campaign to raise awareness about sextortion, a form of abuse often linked to personal relationships.

Teen Dating Violence Awareness Month serves as a crucial reminder of the need to address the growing threat of tech-facilitated abuse among teenagers. By raising awareness, providing resources, and advocating for change, we can work towards creating safer online environments for all individuals.

Chinese hacking group data leak exposes global targets

Eesha Chakraborty — Fri, 23 Feb 2024 17:24:08 +0000

A massive leak of data from a state-linked hacking group in China has sent shockwaves through the cybersecurity world, offering an unprecedented glimpse into the secretive and expansive operations of the nation’s cyber espionage apparatus. The leaked files, attributed to a Shanghai-based group known as iSoon, paint a concerning picture of China’s aggressive tactics, targeting governments, companies, and individuals across the globe with a relentless pursuit of sensitive information.

The data dump, consisting of over 570 files encompassing contracts, target lists, and internal chat logs, landed on GitHub last week, sparking immediate scrutiny from cybersecurity experts worldwide. While the source of the leak remains shrouded in mystery, the authenticity of the files has been largely confirmed, raising serious questions about China’s cyber activities and their implications for international security.

The documents reveal a complex web of state-sanctioned hacking, with Chinese intelligence agencies, military, and police outsourcing their cyber operations to private contractors like iSoon. This practice, known as “offensive security,” allows the government to maintain plausible deniability while conducting aggressive cyber campaigns against foreign adversaries and domestic targets deemed threats to national security.

The leaked information exposes a vast network of targets spanning across 20 countries, including India, Taiwan, South Korea, and even close allies like Cambodia and Pakistan. The hackers sought a diverse range of data, from sensitive government road maps in Taiwan to immigration records in India and call logs from South Korean telecom giants. This insatiable appetite for intelligence highlights the strategic objectives of China’s cyber operations, which appear to go beyond mere espionage and delve into the realms of economic warfare and potential military preparedness.

Beyond the geopolitical implications, the leak also sheds light on the internal workings of China’s hacking industry. The data reveals complaints from disgruntled iSoon employees regarding low wages and demanding workloads, hinting at a culture of exploitation and pressure within the group. This glimpse into the human cost of cyber warfare adds another layer of complexity to the narrative, raising ethical questions about the individuals who are often instrumentalized in these clandestine operations.

The timing of this leak coincides with the ongoing legal battle surrounding Julian Assange, the founder of WikiLeaks, who faces extradition to the United States for his role in publishing classified information. This case has reignited debates about freedom of speech, press freedom, and the role of whistleblowers in exposing government wrongdoings. While the motivations behind the iSoon leak remain unclear, it undoubtedly raises similar questions about the ethical implications of exposing classified information, even when it pertains to potentially illegal or harmful state activities.

In conclusion, the leak of data from iSoon represents a significant development in the ongoing saga of international cyber espionage. It exposes the vast scale and sophistication of China’s hacking operations, raising concerns about the potential for cyber conflict and the erosion of trust between nations.

Iranian hackers target 2024 US Elections

Eesha Chakraborty — Fri, 23 Feb 2024 17:24:08 +0000

The 2024 US elections, already brimming with political tension, face a potential cyber threat from Iran, according to a recent report by cybersecurity firm CrowdStrike. With a history of interference in US political events, Iran’s state-sponsored hackers are suspected to be planning similar disruptive tactics in the upcoming elections.

CrowdStrike, renowned for its expertise in combating cyber threats, specifically points towards the Islamic Republic’s history of meddling in US political affairs. The report meticulously details past instances, including the late 2020 Information Operations campaign, where Iranian actors unleashed a multifaceted attack. This involved sending intimidating emails to voters, impersonating a far-right US group and swaying their votes. Additionally, they disseminated fabricated videos alleging ballot tampering, aiming to sow distrust in the electoral system.

The report further predicts that these tactics, along with Distributed Denial-of-Service (DDoS) attacks and website defacements, are likely to resurface in 2024. These malicious activities have historically targeted state and local government entities, aiming to disrupt election infrastructure and sow chaos.

Furthermore, the report highlights a concerning trend observed in the latter half of 2023. “Iran-nexus adversaries” and Middle Eastern hacktivists were observed aligning their cyber operations with the kinetic operations stemming from the Israel-Hamas conflict. This suggests a potential escalation of cyber activities in the wake of geopolitical tensions, raising concerns about the 2024 US elections being collateral damage.

CrowdStrike’s warning echoes similar concerns voiced by Microsoft earlier this month. The tech giant identified Russia, Iran, and China as potential actors aiming to influence the upcoming elections in the United States and other countries.

Healthcare billing disruption caused by Optum hack

Eesha Chakraborty — Fri, 23 Feb 2024 17:24:08 +0000

The American healthcare system was sent into disarray on February 21st, 2024, as a cyberattack targeted Optum, a subsidiary of UnitedHealth Group. Optum operates the Change Healthcare platform, a crucial cog in the nation’s medical billing and claims processing machinery. The attack forced Optum to shut down its IT systems, causing widespread disruptions that impacted hospitals, clinics, pharmacies, and ultimately, patients.

The attack, believed to be perpetrated by a “nation-state” actor, highlights the vulnerabilities of the healthcare industry in the face of sophisticated cyber threats. Optum confirmed the incident in an official filing with the Securities and Exchange Commission, stating that they proactively isolated impacted systems to contain the attack and protect patient data. However, the disruption’s full extent and duration remain unclear.

The immediate consequences were widespread. Hospitals and clinics struggled to process patient bills and claims, leading to delays in treatment and prescriptions. Pharmacies, particularly local and chain stores, were unable to process insurance claims or accept discount cards, creating significant inconvenience for patients. The American Hospital Association issued a stark warning, urging healthcare organizations to disconnect from Optum until its systems were deemed safe.

The potential for a ransomware attack looms large, with the possibility of patient and corporate data being stolen and held for ransom. While the investigation continues, the incident raises critical questions about data security and preparedness within the healthcare industry. The reliance on centralized platforms like Change Healthcare underscores the need for robust cybersecurity measures and contingency plans to mitigate such disruptions.

The investigation into the cyberattack is ongoing, with authorities yet to disclose the full extent of the damage. However, the initial impact has been significant, highlighting the vulnerabilities within the US healthcare system’s digital infrastructure. This incident underscores the need for robust cybersecurity measures and contingency plans to ensure the continued functionality of critical healthcare services in the face of such threats.

Leaked documents expose China’s cyber espionage network

Eesha Chakraborty — Fri, 23 Feb 2024 16:44:29 +0000

The revelation of a massive data leak from I-Soon, a Chinese tech security firm deeply intertwined with the country’s government agencies. This unprecedented breach offered a startling glimpse into the inner workings of China’s cyber espionage apparatus, raising serious concerns about global security and the extent of state-sponsored hacking activities.

The leaked data, encompassing contracts, marketing materials, product manuals, and personnel lists, painted a disturbing picture of I-Soon’s involvement in a wide range of activities. From large-scale surveillance of overseas dissidents to targeted hacking campaigns against foreign nations, the documents laid bare the methods employed by Chinese authorities to exert influence and gather intelligence.

One particularly concerning aspect of the leak was the revelation of I-Soon’s role in hacking networks across Central and Southeast Asia, as well as Hong Kong and Taiwan. The leaked documents detailed sophisticated tools used to unmask users on social media platforms, infiltrate email accounts, and mask the online activities of Chinese agents operating abroad. This ability to operate with near impunity highlights the sophistication and reach of China’s cyber capabilities.

Furthermore, the leak shed light on the competitive landscape of state-sponsored hacking. Documents revealed how government targeting requirements fueled a marketplace of independent contractor hackers-for-hire, with I-Soon acting as a key player in this ecosystem. This revelation underscores the potential for such activities to become increasingly decentralized and difficult to track, posing a significant challenge for international efforts to combat cybercrime.

The impact of this leak is multifaceted. On one hand, it has severely damaged I-Soon’s reputation, exposing the company’s close ties to the Chinese government and raising ethical questions about its activities. On another hand, it has provided invaluable insights for the cybersecurity community, offering a rare opportunity to understand the inner workings of a state-affiliated hacking contractor. This knowledge can be used to improve attribution efforts, develop more effective defence strategies, and raise awareness of the evolving threat landscape.

The source of the leak remains unknown. Regardless of its origin, the leak has sparked a global conversation about the ethical implications of state-sponsored hacking and the need for international cooperation to address this growing threat. While the investigation into the leak’s authenticity continues, its credibility has been widely acknowledged by cybersecurity experts, further amplifying its significance.

China’s cyber defenses shaken by iSoon leak and APT ttacks

Eesha Chakraborty — Tue, 20 Feb 2024 04:19:54 +0000

A major data breach at iSoon, a company with close ties to China’s Ministry of Public Security (MPS), has exposed sensitive information about the nation’s espionage operations and spyware tools. This revelation, coupled with a significant rise in cyberattacks targeting critical sectors, has sparked concerns about the effectiveness of China’s cybersecurity defenses.

The leaked data, a treasure trove of classified documents dumped on GitHub, laid bare the inner workings of China’s clandestine operations. From the mechanics of state-sponsored spyware to detailed accounts of espionage missions, the leak mirrored the infamous NTC Vulkan breach, exposing a web of vulnerabilities within the systems safeguarding China’s most guarded secrets.

A recent cybersecurity report reveals a staggering rise in APT attacks targeting the nation in 2023. Over 1,200 incursions, orchestrated by 13 foreign entities, targeted 16 critical sectors, with the education sector bearing the brunt of the attacks. These attacks, primarily originating from North America and Asia, signify a shift beyond mere espionage. The focus on infrastructure, particularly the tech sector, hints at a strategic intent to cripple China’s technological advancements, potentially hindering its economic and geopolitical ambitions.

The implications of the iSoon breach and the surge in APT attacks extend far beyond the immediate loss of data. They expose a critical vulnerability in China’s cybersecurity armor, raising questions about the effectiveness of its defense mechanisms. The exposure of sensitive information through the breach transcends mere operational compromise; it signifies a potential paradigm shift in how cyber warfare is waged, blurring the lines between espionage and open conflict. Moreover, the targeted attacks on education and technology raise concerns about stifling innovation and eroding China’s competitive edge, highlighting the multifaceted threats posed by cyber incursions in the interconnected world.

In conclusion, the iSoon breach and the escalating APT attacks serve as a stark reminder of the precarious nature of cyber security in the digital age. As espionage and warfare evolve in the virtual realm, the incident underscores the perpetual arms race in cyberspace, where vulnerabilities are exploited and defenses are constantly tested.

The ramifications of such breaches and attacks reverberate far beyond the immediate loss of data, posing existential questions about the future of cyber sovereignty and the global order.

North Korea’s cyber army plunders billions in virtual currency

Eesha Chakraborty — Sat, 17 Feb 2024 14:35:12 +0000

Within the digital world, a group known as Andariel, a North Korean hacker unit, alongside others like Kimsuky, Lazarus, and BlueNoroff, has become notorious for its focus on financial cybercrime. Their recent exploits, however, have shed light on a larger, more troubling trend: North Korea’s growing reliance on virtual currency theft to fund its nuclear weapons of mass destruction (WMD) programs.

News of Andariel’s breach of South Korean defence firms, stealing 1.2 terabytes of sensitive data, was just the tip of the iceberg. A recent report by the U.S. Department of the Treasury reveals a more alarming reality: North Korean cybercriminals have allegedly amassed a staggering $1.7 billion in virtual assets through cyber thefts in 2022 alone, exceeding any previous year. This brings the total stolen over the past three years to a staggering $3.129 billion.

According to the report, North Korean cyber criminals amassed a staggering $1.7 billion in virtual assets through cyber theft in 2022 alone, exceeding any previous year. This brings the total stolen over the past three years to a staggering $3.129 billion. This illicit activity takes various forms, including ransomware attacks, hacks on virtual asset service providers (VASPs), and even the deployment of IT experts overseas who operate under assumed identities to secure contracts on digital platforms.

No longer content with isolated attacks, they are now building a network of international collaborators, with evidence suggesting ties to Russian cybercriminals who provide haven and support. This collaboration raises the spectre of even more sophisticated and coordinated attacks in the future.

The vulnerability of virtual assets plays a crucial role in North Korea’s success. The rapid growth of the cryptocurrency market, coupled with a lack of robust regulations, creates a fertile ground for exploitation. Hackers capitalize on weak security measures and the anonymity offered by certain platforms to steal and launder funds with relative ease.

This growing threat has not gone unnoticed by the international community. The United Nations Security Council has imposed sanctions on North Korea since 2006, and a trilateral effort by South Korea, the United States, and Japan aims to curb virtual asset theft. However, these efforts have been met with adaptation by North Korean hackers, who operate from foreign shores and meticulously mask their identities.

With billions already stolen and North Korea’s nuclear ambitions unabated, the international community must act swiftly. Strategies like enhanced cyber security measures, stricter regulations for virtual asset markets, and closer international cooperation are crucial to dismantle North Korea’s cybercrime network and prevent further funding of its WMD programs.

Meet the top 5 Indian hackers

Siddharth Chavan — Sun, 19 Nov 2023 15:48:09 +0000

India has become recognized for its abundance of tech talent and cybersecurity expertise, making significant global contributions in the realm of hacking. Various factors contribute to the success of Indian hackers.

Let’s explore notable figures in Indian hacking:

A. Hacker 1: Ankit Fadia

Ankit Fadia is a young Indian ethical hacker, author, and cybersecurity consultant known for his contributions to cybersecurity.

Notable achievements:

Ankit Fadia is the author of several books on ethical hacking, cybersecurity, and basic computer expertise, including “The Unofficial Guide to Ethical Hacking,” “Network Security: A Hacker’s Perspective,” and “How to Unblock Everything on the Internet.”

B. Hacker 2: Rahul Tyagi

Rahul Tyagi is a prominent figure in cybersecurity, recognized for his ethical hacking skills and contributions to the sector.

Notable accomplishments:

Rahul Tyagi is a prolific author with well-received publications on ethical hacking, cybersecurity methods, and computer expertise. Titles like “Mastering Cyber Security” and “Securing Mobile Payments” showcase his dedication to disseminating valuable information.

C. Hacker 3: Saket Modi

Saket Modi is a well-known figure in the cybersecurity field, achieving success as an ethical hacker, author, and cybersecurity consultant.

Notable achievements:

Saket Modi has made significant contributions through his prolific authorship, producing recognized publications on ethical hacking, cybersecurity, and general computer skills. Titles like “Mastering Cyber Threat Intelligence” and “Securing the Digital World” demonstrate his commitment to educating individuals in the field of cybersecurity.

D. Hacker 4: Sunny Vaghela

Sunny Vaghela is a notable figure in the cybersecurity sector, renowned for his ethical hacking skills and contributions.

Notable achievements:

Sunny Vaghela, a prolific writer, has enriched the cybersecurity sector with well-received books covering ethical hacking approaches, advanced cybersecurity strategies, and comprehensive computer knowledge. Titles like “Mastery in Ethical Hacking” and “Securing the Digital Frontier” highlight Vaghela’s commitment to distributing vital information.

E. Hacker 5: Trishneet Arora

Trishneet Arora is praised for his ethical hacking abilities and significant contributions to the cybersecurity field.

Notable achievements:

Trishneet Arora, a prolific author, has expanded the cybersecurity sector with well-received books exploring ethical hacking tactics, innovative cybersecurity strategies, and in-depth computer knowledge. Titles like “Mastering Cyber Defense” and “Innovations in Mobile Security” attest to Arora’s commitment to distributing vital information.

A Vision for the Future: Advancements in Ethical Hacking

Exploring Ethical Hacking Advancements and Developments:

1. Specialization and Expertise: Indian hackers are likely to contribute to the further specialization of ethical hacking, gaining competence in areas such as IoT security, cloud security, and blockchain as the sector expands.

2. Integration of Artificial Intelligence and Machine Learning: Integrating AI and ML into ethical hacking tools is a promising path, and Indian hackers, with their strong technical backgrounds, may play a critical role in improving these technologies for enhanced vulnerability assessments, threat detection, and incident response.

The future of ethical hacking, influenced by Indian hackers, promises advances in specialization, technology integration, and worldwide collaboration. Opportunities for legal clarity, skill development, and global leadership will be met with challenges, establishing Indian hackers as vital contributors to the continued evolution of cybersecurity practices.

India’s Biggest Data Leak! Aadhaar data of 81.5 Cr Indians leaked on dark web, claims report

Uddeshya Thakur — Tue, 31 Oct 2023 17:12:17 +0000

The biggest data leak so far has come to light in the country. The data of 81.5 crore Indians available with the Indian Council of Medical Research (ICMR) has been leaked. According to a report by US-based cybersecurity firm Resecurity, personally identifiable information of about 815 million i.e. 81.5 crore Indians has been leaked on the dark web.

According to the report, data including name, phone number, address, Aadhaar, passport information is available for sale online. “On October 9, a thread actor identified as ‘pwn0001’ posted a thread on the breach forum showing access to 815 million ‘Indian Citizen Aadhaar and Passport’ records,” Resecurity wrote in a blogpost.

⚠️ India Biggest Data Breach

Unknown hackers have leaked the personal data of over 800 million Indians Of COVID 19.

The leaked data includes:

* Name
* Father's name
* Phone number
* Other number
* Passport number
* Aadhaar number
* Age#DataBreach #dataleak #CyberSecurity pic.twitter.com/lUaJS9ZPDr

— Shivam Kumar Singh (@MrRajputHacker) October 30, 2023

The company also said that investigators from its HUMINT unit, who contacted the thread actor, learned that they were willing to sell the entire Aadhaar and Indian passport database for $80,000. ICMR is aware of this data leak.

Sources confirmed to News18 that the epicentre of leakage has not been identified as parts of the Covid-19 test data go to the National Informatics Centre (NIC), ICMR and Ministry of Health.

Russian Missile maker faces breach in the hands of North Korean hackers

Kashvi Basu — Mon, 07 Aug 2023 15:53:31 +0000

A well known group of North Korean hackers have secretly breached computer networks at a major Russian missile developer for at least a period of five months last year according to all technical evidences collected and further reviewed by Reuters and analysis by security researchers.

It has been discovered that the cyber-espionage teams linked to the North Korean government, which security researchers call ScarCruft and Lazarus, secretly installed stealthy digital backdoors into systems at NPO Mashinostroyeniya, a rocket design bureau based in Reutov, a small town on the outskirts of Moscow. In the months following the digital break-in ,Pyongyang had announced multiple developments in its banned ballistic missile programme but it was not deemed clear if this was related to the breach. Experts have commented that the incident shows how the isolated country will even target its allies, such as Russia, in a bid to acquire critical technologies. News of the hack had surfaced shortly after a trip to Pyongyang last month by Russian defence minister Sergei Shoigu for the 70th anniversary of the Korean War; the first visit by a Russian defence minister to North Korea since the 1991 breakup of the Soviet Union. The targeted company which is commonly known as NPO Mash, has acted as a pioneer developer of hypersonic missiles, satellite technologies and newer generation ballistic armaments, according to missile experts – three areas of keen interest to North Korea since it embarked on its mission to create an Intercontinental Ballistic Missile (ICBM) capable of striking the mainland United States.

After consulting the data, it was found that the intrusion roughly began in late 2021 and continued until May 2022 when, according to internal communications at the company reviewed by Reuters, IT engineers had already detected the hackers’ activity. NPO Mash thus grew to prominence during the Cold War as a premier satellite maker for Russia’s space programme and as a provider of cruise missiles

Karnataka Police seizes Bitcoins worth Rs 9 crore from a Bengaluru hacker

Devanshu Singla — Fri, 15 Jan 2021 07:34:59 +0000

Sandeep Patil, Bengaluru Joint Commissioner of Police (Crime) on Friday informed that Karnataka Police has seized Bitcoins worth Rs 9 crore from Bengaluru based 25-year old hacker.

The hacker, Srikrishna alias Shreeki, was arrested on November 18 for allegedly breaking into government websites, online gaming portals and websites.

“During the investigation, it has been found that hacker Srikrishna hacked three Bitcoin exchanges and 10 poker sites. Bitcoins worth ₹9 crores have been seized in this matter,” Patil said.

Srikrishna used to hack online poker games to win money and Bitcoins online. He also confessed to hacking the e-procurement website of the Karnataka Government in 2019.

The hacker’s handiwork includes four hacked websites and three malware exploited.

Top 5 Indian Hackers ensuring cyber security

Sanket Kate — Mon, 31 Aug 2020 15:42:03 +0000

Hacking is always linked with something illegal with a breach of privacy. But ethical hacker or white hat hackers direct their skills for some good cause like finding security bugs. It requires expertise, concentration and indeed the most brilliant of minds to breach into systems silently overruling all their top-notch salient manifestations. Hacking is supposed to be the toughest and coolest task among those who understands technology. The best hackers indeed are the ones who build up this acumen to breach security again and again, so that they can guard the interest of millions of users to which these cyber systems cater.

Here are some of such top 5 hackers in India who are sought after by people even around the world.

1. Vivek Ramachandran

Vivek Ramachandran has already made a name for himself. He has won accolades and awards for his work from both Cisco and Microsoft. Vivek specializes in several systems including e-governance, embedded systems security, computer forensics, and wireless security.
One of the 2006 winners of the Microsoft Security Shootout Contest, Ramachandran is the founder of SecurityTube.net, a free video-based computer security educational portal. Cisco Systems also awarded Vivek the Team Achievement Award for his contribution to the Port security modules in a certain model.

2. Ankit Fadia

Ankit Fadia is an Indian author, speaker, television host, and self-proclaimed “BLACK HAT hacker” of computer systems, whose skills and ethics have been debated. His work mostly involves OS and networking-based tips and tricks, proxy websites, and making people think that he is a hacker. Ankit Fadia’s range of skills that grant him easy access to the critical domains of computers and the like have very often been debated and scrutinised.

3. Rahul Tyagi

Rahul Tyagi is a talented hacker who has proved himself several times by entering and breaking into secure computer systems. You will also want to know that he is an actor and also an author. He had provided more than several hundred training sessions on hacking. He completed his education from LPU, Punjab. An expert in cyber security training, Tyagi is one of the leading ethical hacking trainers of the country with a decade of expertise backing him up. His hacking forte has led him to emerge as a skilled dealer of vulnerabilities on websites that are reputed and harbour immense confidentiality.

4. Trishneet Arora

Arora is an entrepreneur who found a Cyber Security company that provides protection to corporations against data theft and network vulnerabilities. Few of his clients are Central Bureau of Investigation, Reliance Industries, Gujrat Police and Punjab Police. Arora has written books on cybersecurity, ethical hacking, and web defence. He was named in Forbes 30 Under 30 2018 Asia list and Fortune 40 Under 40 2019 List of India’s Brightest.

5. Sai Satish

Sai Satish is an young entrepreneur, founder & CEO of Indian Servers. Administrator of Andhrahackers (Top hacking awareness forum in INDIA). An Author, A renewed Ethical Hacker & Cyber Security Expert, Microsoft Security Researcher, International Cyber Security trainer. Satish was rewarded by IAS Officer for pentesting on government sites, which gave him huge exposure and helped them to improve security, Forensics Investigator and safe transaction.

7 Must watch hacking movies of all times

Sanket Kate — Thu, 27 Aug 2020 17:56:33 +0000

Sci-Fi movies gaining popularity with advent of ultra-sophisticated technology now a days. New movies are couple story with modern technology. Such a new movies getting more viewership and enchanting more and more technologically equipped youth. Misuse of technology by intelligent means of hacking is common villain trait to compel hero fight against such people. The real world of cyber security may not be as action-packed as the Hollywood version, but you may be surprised at the number of similarities between hacker movies and what goes on in the real world. New animation techniques and intelligent direction makes possible to give amazing experience to viewers. In recent decade many movies able to attract attention of audience and earned accolades and acclaims for fantastic visualization of the technological advances.

Here we are presenting the list of top 7 hacking movies which grabbed public attention.

1. Ghost In The Shell
Based on the manga of the same name, Ghost In The Shell is popular, animated science fiction film. It shows how a cyborg policewoman and her partner hunt a powerful hacker named Puppet Master. Considered one of the best anime movies of all time, this story shows an interesting take on the hackers in movies and comes loaded with dense philosophical themes.

2. Office Space
This is a classic comedy movie that has a small aspect of hacking. In the movie, company employees plant a virus in the accounting system with the goal of stealing some money. This movie became much popular and earned accolades and acclaims widely.

3. The Matrix
The Matrix is a hacker movie at heart. It features gifted Neo searching for answers, hacking further and further until he realizes the world is the computer program. Like any hacker, he seeks to learn the truth about reality, finding that the world, as he knows it, is no longer and that machines are in charge.

4. Hackers
Before the days of smartphones and Wi-Fi, the movie Hackers introduced many to the internet. Its plot reflects the ideals of the Hacker Manifesto, which is quoted in the film, “This is our world now…You call us criminals… Yes, I am a criminal. My crime is that of curiosity.”

5. Blackhat
In this story, there are multiple sides to the hacker experience: the villain is the blackhat, the officer has the moral compass, and the red hat has a past of previous crimes but considers himself neither good nor bad. Blackhat opens with a hacker breaching a nuclear plant’s infrastructure, making it explode. The blackhat in this story is like any blackhatter, he’s hacking into systems as a means for monetary gain and attacking others.

6. Mr. Robot
Mr. Robot been widely praised for its accurate technical portrayal of information security and data privacy as we know them today. Mr. Robot reveals not only the real implications of data protection and cybersecurity, but also what may be the most technically accurate representation of that community’s everyday life.

7. Mission: Impossible — Ghost Protocol
This movie is great fun for all the action lovers out there. And its decidedly high-tech hacking scenes make it a highly entertaining hacker movie to watch. The story focuses on Tom Cruise’s Ethan Hunt and the IMF, an organization wrongly accused of an explosion. In the mix is Hendricks, whose access to Russian nuclear launch codes fuels his plans to launch an attack on the US. Promptly, Ghost Protocol is invoked, which means a stop to the IMF.

All time top 10 Hacking Attacks

Sanket Kate — Wed, 26 Aug 2020 19:09:46 +0000

With more and more reliance of human beings on technology for storage of large chunk of data and incessant dealing with it by sharing transferring and editing, the importance of computer networking rising day by day. When this data is dealt by using internet, which is an open network with no centralised control, there is possibility of compromise in security of data. This is done by various hacking techniques which utilises loopholes in computer system for the purpose of breaching privacy of data. This data most of the time is used to get economic fortunes. Hacking attacks becoming more and more frequent day by day.

Here is the list of top 10 Hacking attacks in history.

1. 2016: Bangladesh Bank Heist
Bangladesh Bank heist was noteworthy for how the attackers got into the bank’s IT systems. The story caused huge concern because the attackers had managed to hack the SWIFT global monetary transfer system, giving them free rein to make withdrawals under the protection of the supposedly hyper-secure SWIFT system. The gang responsible had planned to remove $950 million, before a simple error blew their cover. They ended up making off with $81 million anyway, and have been linked to other attacks on banks across Asia.

2. 2011: CitiGroup
CitiGroup’s slew security measures exposed in 2011 when hackers by repeating the way the URL changed when credit card customers entered a valid username and password, were able to access the accounts of more than 200,000 people, stealing names, addresses and account numbers, and making off with $2.7 million.

3. 2014: Mt Gox Bitcoin Exchange
The Mt Gox Bitcoin exchange had been bankrupted by the theft of some $460 million worth of Bitcoin currency, probably over a period of several years. Following an investigation, it was discovered that hackers had broken into the Mt Gox customer database, stealing the usernames and passwords of 60,000 people, and using them to get into the system to steal currency.

4. 2014: Cyberattack on Yahoo
In 2014, Yahoo announced it had suffered a cyber attack in 2014 that affected 500 million user accounts constituting the largest massive hacking of individual data directed against a single company.

5. 2018: Facebook
On September 27th, Facebook was breached when hackers exploited three bugs that put at least 50 million users’ data at risk. While private messages or credit cards were not taken, Facebook made a statement that the hackers obtained personal information like your name and hometown from your profile page.

6. 2017: WannaCry
The WannaCry attack in May 2017 spread like wildfire by targeting a vulnerability in older versions of Windows OS. Within days, tens of thousands of businesses and organisations across 150 countries, including the UK’s National Health Service (NHS), were locked out of their own systems by WannaCry’s encryption. The attackers demanded $300 per computer to unlock the code.

7. 2007: Estonia DDoS
Over a three week period, wave after wave of DDoS attacks in Estonia, hit the servers which ran the country’s government, media, education and banking infrastructure, crippling the economy, public services and daily life. Fingers were pointed towards neighbouring Russia, but no concrete evidence were found.

8. 2009: Hacker steals tens of millions of credit card details
Gonzales, a hacker from Miami, was responsible for one of the biggest fraud cases in US history. Gonzales was responsible for sealing tens of millions of credit card and debit card numbers from over 250 financial institutions. He had hacked the payment card network from companies including the 7-Eleven convenient store chain.

9. 2019: Dubsmash
In February, video messaging app Dubsmash announced that hackers nabbed nearly 162 million users’ account holder names, email addresses and hashed passwords.

10. 2019: First American
First American Financial Corp., an American real estate and mortgage insurer, revealed in May 2019 that it left 900 million sensitive customer files exposed. The trove of digital documents that could have been accessed included private information, such as Social Security numbers and bank accounts. But it’s not clear if any of the files were improperly accessed.