Category: Uncategorized

Investors of Sequoia Capital were told that some of the personal and financial information may have been accessed by a third party. An employee was successfully phished by email. The Sequoia security team responded to the attack and engaged leading outside cybersecurity experts as well as law enforcement. Sequoia Capital is on of the largest venture capital firms globally and they have companies like DoorDash and Robinhood in their portfolio.

Read more at https://www.axios.com/sequoia-capital-says-it-was-hacked-590dcdd6-fe49-46c6-8422-60a944272302.html

DoppelPaymer gang is demanding that Kia Motors pay 20 million USD for their decryptor tool and so that the gang does not leak the data that was stolen. Kia Motors released a statement to BleepingComputer stating that they have seen no evidence that they suffered a ransomware attack. With nearly 800 dealers across the United States Kia Motors America is reporting a nationwide IT outage affecting dealer facing systems.

Read more at https://www.bleepingcomputer.com/news/security/kia-motors-america-suffers-ransomware-attack-20-million-ransom/ 

KeepChange a bitcoin marketplace, says it managed to limit the ramifications of a security breach on Sunday, February 07, 2021. According to a blog post on their website, several bitcoin withdrawal requests had been initiated from customer accounts to an address belonging to attackers. A KeepChange control subsystem halted the requests resulting in no loss of bitcoin.

Read more at https://ca.news.yahoo.com/keepchange-foils-bitcoin-theft-loses-085710129.html

Discount car and truck rental lose 120 GB of data to the DarkSide ransomware gang. The attack impacted Discount’s headquarter office. Discount car and truck rental have deployed a fully-dedicated team who isolated and contained the attack quickly. They are working to investigate and restore service as quickly as possible.

Read more at https://securereading.com/darkside-ransomware-gang-hits-canadian-rental-car-company/

Syracuse University students, alumni, and applicants are at risk after someone gained unauthorized access through an employee’s email account. The affected individuals have been contacted to inform them of the unauthorized access to their information. Syracuse University has coordinated with a consumer credit reporting company to offer a complimentary membership to students who have been affected.

Read more at http://dailyorange.com/2021/02/names-social-security-numbers-of-syracuse-university-students-exposed-in-data-breach/

Chromium-based browsers, Outlook, and more are at risk of a trojan harvesting logins. Cisco Talos has uncovered Masslogger evolution, a credential-stealing trojan that takes your login information from Chrome-based web browsers, Microsoft Outlook, and instant messengers. Currently, most of the targets of the attacks are in Southern and Eastern European countries.

Read more at https://www.theregister.com/2021/02/18/masslogger_cisco_talos_research/

Hackers using a popular remote desktop tool TeamViewer accessed a computer system at a small town in Florida’s water treatment facility. They attempted to flood the water supply with sodium hydroxide, the attack was witnessed by an employee who was on the system. When the attacker logged off the employee reversed the changes that were made preventing the chemical from being released into the system.

More information here: https://www.theregister.com/2021/02/09/florida_water_hacked/

After Russia allegedly hacked the SolarWinds Orion, the breach left an open “backdoor” in some government agencies’ software despite the U.S government declaring it dealt with and safe.

https://www.channele2e.com/technology/security/solarwinds-orion-breach-hacking-incident-timeline-and-updated-details/

Iranian hackers continue to pose a threat against U.S government officials despite the election’s ending. From mid-December 2020 till now, they continue to email death threats to government officials and attempt to gain access to more personal information.

https://www.reuters.com/article/us-usa-elections-iran/u-s-suspects-iranians-created-website-threatening-u-s-election-officials-idUSKBN28X2M4

A group of hackers has successfully taken the personal credentials and stole information from unsuspecting victims after emailing and calling the individuals impersonating the Australian cybersecurity center and having people download malware. Cybercriminals are still active and continue to pose a security threat to unsuspecting individuals.

https://www.cyber.gov.au/acsc/view-all-content/alerts/phone-and-email-scammers-impersonating-acsc