Volkswagen reports data breach affecting over 3.3 million Audi owners

The American division of Volkswagen AG (Volkswagen Group of America, Inc., VWGoA) reported a data breach by one of the third-party vendors working with the automaker in sales and marketing. The leak affected more than 3.3 million customers, most of whom are Audi owners. flaw in the third-party company’s system existed from August 2019 to May 2021, and as a result, an unauthorized person gained access to the personal data of customers. The leak was reported by TechCrunch, which received a letter written by representatives of Volkswagen to the Attorney General of Maine. The document says...

US authorities liquidate Slilpp marketplace that traded with stolen credentials

The US Department of Justice reported that the joint efforts of law enforcement agencies from the United States, Germany, the Netherlands and Romania allowed to liquidate the Slilpp marketplace, where criminal groups have exchanged and traded stolen credentials for many years. 2012, Slilpp has worked on multiple domains, both on the darknet and the public internet. On the site, anyone could register an account and then start trading hacked accounts. According to the Ministry of Justice, over the nine-year history of Slilpp, the site has sold more than 80,000,000 credentials belonging to more...

Data stolen from CD Projekt Red is spreading in the network

In early February 2021, CD Projekt Red announced that it had been the victim of a HelloKitty ransomware attack, and now the stolen data is spreading across the network. ransomware claimed to have stolen the source code for the company’s games Cyberpunk 2077, The Witcher 3 (including an unreleased version with ray tracing) and Gwent, as well as financial, legal, administrative and HR documentation. CD Projekt Red immediately announced that it did not intend to negotiate with the criminals and pay them a ransom, realizing that in the end, compromised data could still be disclosed. Soon...

JBS CEO admits the company paid the extortionists $11 million

In May, JBS Foods was forced to temporarily suspend production at several sites as it was hacked, as it turned out, company paid the extortionists a ransom of $11 million. incident affected several JBS manufacturing facilities in various countries, including the United States, Australia and Canada. Today, JBS is the world’s largest supplier of beef and poultry, as well as the second largest producer of pork. The company operates in the USA, Australia, Canada, Great Britain and so on, serving clients from 190 countries. Soon, the American authorities and the FBI reported that the...

Hackers Attacking JBS Stole Data from Branches in Australia and Brazil

The REvil (Sodinokibi) group, hackers who were attacking the world’s largest meat producer JBS in May this year, have been stealing data from the food giant’s branches in Australia and Brazil for several months. to experts from SecurityScorecard, the “reconnaissance” phase of the cyberattack began in February this year. The research refers to multiple public and private sources of information, dark web observations, and research tools such as NetFlow, which monitors digital traffic flows. A spokesman for JBS USA challenged the experts’ findings and said they did...

US government reclaims most of Colonial Pipeline ransom

The US Department of Justice said law enforcement agencies were able to reclaim most of the ransom paid to cybercriminals by Colonial Pipeline. , 63.7 of the 75 bitcoins ($4.4 million) that Colonial Pipeline transferred to hackers from the DarkSide group in early May were returned. This is the first time that the US government has publicly announced that it has returned the ransom paid to the ransomware. In mid-May 2021, Colonial Pipeline, the largest pipeline operator in the United States, which transports fuel, was hit by a DarkSide ransomware attack. The attack caused problems with the...

Information security specialists discovered attacks on a critical vulnerability in VMware vCenter

Experts warned that cybercriminals are already actively scanning the network in search of VMware vCenter servers with critical vulnerabilities. Many are at risk of the recently corrected RCE issue CVE-2021-21985, which scored 9.8 out of 10 on the CVSS v3 vulnerability rating scale. from Bad Packets write about the scans that have begun. According to the search engine Shodan, there are currently several thousands of vulnerable vCenter servers on the network. And it is necessary to understand that this product is not used by individuals and even small businesses, that is, we are talking about...

FBI says ransomware REvil was behind attack on JBS

Last weekend, food company JBS Foods was forced to suspend production at several sites due to a hacker attack by the REvil ransomware. The incident affected several JBS manufacturing facilities in various countries, including the United States, Australia and Canada. , JBS is the world’s largest supplier of beef and poultry, as well as the second largest producer of pork. The company operates in the USA, Australia, Canada, Great Britain and so on, serving clients from 190 countries around the world. JBS also stressed that the investigation did not find any evidence of compromising the...