Security News

Researchers Ryan Ellis and Yuan Stevens provide a window into the working lives of hackers who participate in "Bug bounty" programs­ - programs that hire hackers to discover and report bugs or other vulnerabilities in their systems. This report illuminates the risks and insecurities for hackers as gig workers, and how bounty programs rely on vulnerable workers to fix their vulnerable systems.

A top underground market for buying and selling stolen credit-card details, UniCC, has announced it's shutting down operations. The site accounted for about 30 percent of carding scam business and, since it was launched in 2013, handled about $358 million in cryptocurrency transactions, according to the Elliptic Threat Intel team, which published the announcement from UniCC leadership.

A dark web marketplace named '2easy' is becoming a significant player in the sale of stolen data "Logs" harvested from roughly 600,000 devices infected with information-stealing malware. "Logs" are archives of data stolen from compromised web browsers or systems using malware, and their most important aspect is that they commonly include account credentials, cookies, and saved credit cards.

Underground marketplace and hacker forum, RaidForums, recently exposed internal pages from its website, meant for staff members only. RaidForums is a data breach marketplace where threat actors often sell or leak illicitly obtained data dumps.

GitGuardian announces availability on the GitHub Marketplace. GitGuardian on GitHub Marketplace makes code security accessible and easy to install.

CYFIRMA announced the availability of CYFIRMA's two core products, DeCYFIR and DeTCT, in Amazon Web Services Marketplace. CYFIRMA has also been inducted into the AWS Independent Software Vendors Accelerate program, which provides CYFIRMA with co-sell support and benefits to easily gain access to millions of active AWS customers with AWS field sellers globally.

The illicit marketplace AlphaBay appears to have resurfaced, four years after a high-profile takedown by international law enforcement agencies. Rather, the reconstituted version of the site is described as an homage to the original and a tribute to the now deceased alleged AlphaBay moderator Alexandre Cazes.

Paian IT Solutions and Corent Technology create a transactable presence for cloud optimization services on Microsoft's Azure Marketplace. Paian's vision is to reach the entire Azure customer base across the region, offering PASOS - Paian's Azure Spend and Optimization services.

Sunlight launches its Sunlight Infrastructure Manager and Marketplace to make it simple to deploy and manage infrastructure and applications in highly distributed Edge environments as well as in the Cloud - enabling true Edge 'Software as a Service' models. The SIM joins Sunlight's NexVisor HCI to provide a complete software-defined Edge computing stack at a fifth of the cost of trying to deploy the leading data center hyperconverged solution at the Edge.

Bandura Cyber released "Cyber Intelligence Marketplace," allowing Bandura Cyber clients to discover, access, acquire, deploy and enforce a curated collection of high quality cyber intelligence data within minutes across their entire network and edge - in real time - without added latency. The Bandura Cyber Intelligence Marketplace offers over 50 data listings and integrations, including DomainTools, Proofpoint, Webroot, open source lists, government lists and ISAC/ISAO integrations.