The hacker behind the handle “Tessa88” is offering Twitter credentials for sale in a dark web souk for ten Bitcoin (about $5800). Tessa88 is the same handle associated with the recent VK credential theft. Twitter has been tweeting that it’s confident it wasn’t breached, but evidently a lot of its users were. Many suspect a connection to the LinkedIn, MySpace, and Tumblr breaches.
Data from the LinkedIn breach are being exploited in an unusually specific spearphishing campaign in Europe.
Unconfirmed reports suggest a third-party data breach may have exposed seventy-seven-thousand State Farm accounts.
India continues to investigate the strongly suspected connection between the Danti espionage group and the Chinese government.
Rapid7’s Project Sonar finds more than fifteen million devices with exposed Telnet connections. Belgium is the leader in this vulnerability sweeps.
Researchers at Zscaler shed some light on how documents with malicious macros are incorporating new anti-VM and anti-sandboxing to evade defenses.
One of the older forms of ransomware, Zcrypt, is being upgraded for better evasiveness and more reliable delivery. Other researchers look at commodity ransomware SNSLocker (helped by careless malware coders). Ransomware remains cheap and low-risk cyber crime. The latest victim to pay up is the University of Calgary, which forked over $20,000 (Canadian, roughly $16,000 US) to regain its data.
NATO’s conference in Estonia considers ways of avoiding surprise and improving collaboration. Estonia points out that budget constraints can breed innovation.
The cyber sector welcomes its newest unicorn: Cylance’s Series D round puts its valuation above $1 billion.