Security News > 2020 > August

A Russian national was arrested in the United States after attempting to convince an employee at a targeted company to deploy a piece of malware. He promised $1 million to the employee and was allegedly planning to flee the United States after being contacted by the FBI. Kriuchkov, a criminal complaint and statements made in court reveal, conspired with others to recruit an employee at an unnamed company in Nevada, to convince them to install malware onto the organization's network, in exchange for $500,000.

A man authorities say participated in a scam to steal victims' banking information by offering phony computer tech support services has pleaded guilty, federal prosecutors say. Abrar Anjum, 34, a citizen of India, pleaded guilty Monday to conspiracy to commit wire fraud in U.S. District Court in Providence.

AffirmLogic, a company that uses behavior analysis to detect malware, this week announced that it has closed a $25 million equity financing round, which follows a $5.2 million funding round announced earlier this year. The Mclean, Virginia-based AffirmLogic automates application analysis, applying mathematical foundations to identify what it calls "The deep meaning of software."

According to the indictment, the brothers swapped ASINs for items Amazon ordered to send large quantities of different goods instead. In one instance, Amazon ordered 12 canisters of disinfectant spray costing $94.03. The defendants allegedly shipped 7,000 toothbrushes costing $94.03 each, using the code for the disinfectant spray, and later billed Amazon for over $650,000.

The FBI has arrested a Russian national who recently traveled to the United States and offered $1 million in bribe to an employee of a targeted company for his help in installing malware into the company's computer network manually. Egor Igorevich Kriuchkov, 27-year-old, entered the United States as a tourist and was arrested in Los Angeles after meeting with the unnamed employee of an undisclosed Nevada-based company numerous times, between August 1 to August 21, to discuss the conspiracy.

A group of academics from three German universities has decided to investigate whether and how mobile app vendors respond to subject access requests, and the results of their four-year undercover field study are dispiriting. "In three iterations between 2015 and 2019, we sent subject access requests to vendors of 225 mobile apps popular in Germany. Throughout the iterations, 19 to 26 % of the vendors were unreachable or did not reply at all. Our subject access requests were fulfilled in 15 to 53 % of the cases, with an unexpected decline between the GDPR enforcement date and the end of our study," they shared.

It's one thing for APT groups to conduct cyber espionage to meet their own financial objectives. "The cybercriminal group infiltrated the company using a tainted and specially crafted plugin for Autodesk 3ds Max," Bitdefender researchers said in a report released today.

Although the names of the compromised apps using the SDK have not been disclosed, the code was uncovered in the iOS version of the Mintegral SDK, with the first version of the malicious SDK dating back to July 17, 2019. Hijack User Ad Clicks Stating that the SDK contains several anti-debug protection intending to hide the actual behavior of the application, Snyk uncovered evidence that Mintegral SDK not only intercepts all the ad clicks within an app but also use this information to fraudulently attribute the click to its ad network even in cases where a competing ad network has served the ad. It's worth noting that apps that feature in-app ads include SDKs from multiple ad networks with ad mediators' help.

It's one thing for APT groups to conduct cyber espionage to meet their own financial objectives. "The cybercriminal group infiltrated the company using a tainted and specially crafted plugin for Autodesk 3ds Max," Bitdefender researchers said in a report released today.

To handle the CDN log data spikes inherent with DDoS attacks, organizations often guesstimate how much compute they may need and maintain that higher level of resource for their logging solution. The security team would then use Kibana to interact with the Cloudflare log data to triage DDoS attacks as they occur.