Disinformation at the UN. Phishing against Ukraine. Hydra Market taken down. Is someone carrying on for Lapsus$? Compromise at Mailchimp. FIN7 branches out into ransomware.
Disinformation at the UN. Russian cyber operations against Ukraine. Bravo, BKA: German police take down a major contraband market. Under arrest but still in business? At least someone’s carrying on for Lapsus$. Compromise at Mailchimp. Joe Carrigan describes Javascript vulnerabilities. Carole Theriault with an eye on romance scams through the lens of Netflix's "The Tinder Swindler". And a well-known gang branches out.
Selected reading.
Live Updates: U.N. Security Council to Meet as Evidence of War Crimes Mounts (New York Times)
Elephant Framework Delivered in Phishing Attacks against Ukrainian Organizations (Intezer)
Germany takes down Hydra, world's largest darknet market (BleepingComputer)
LAPSUS$ hacks continue despite two hacker suspects in court (Naked Security)
FIN7 hackers evolve toolset, work with multiple ransomware gangs (BleepingComputer)
Notorious hacking group FIN7 adds ransomware to its repertoire (CyberScoop)
Hackers breach MailChimp's internal tools to target crypto customers (BleepingComputer)
Email marketing giant Mailchimp has confirmed a data breach (TechCrunch)