AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 01/19/2023

Google Ads Malware Wipes NFT Influencer’s Crypto Wallet 

An NFT influencer with the Twitter handle @NFT_GOD claims to have lost thousands of dollars worth of non-fungible tokens (NFTs) and crypto in a Google Ads-delivered malware attack. On 14th January, NFT God, also known as Alex, shared on Twitter how his “entire livelihood was violated.” In the thread, he explained how his online accounts, including Twitter, Substack, Gmail, and Discord, were hacked into and his crypto wallet compromised after he accidentally downloaded malicious software from Google Ad 

 

1,000 Ships Affected By Ransomware Attack On DNV’s Software 

DNV, a Norwegian assurance and risk management firm and classification organization, has confirmed that almost 1,000 ships were affected by a recent ransomware cyberattack on its fleet management system. After the hack on its ShipManager fleet management and operations platform was discovered on Saturday, January 7, in the evening, the class society was obliged to shut down the software’s IT servers. DNV has officially confirmed that a ransomware assault that it claims affected 1,000 vessels and 70 customers has affected those numbers. The server outage has no impact on any additional DNV services, and there are no indications that any other DNV software or data is concerned. All users can still access the onboard, offline capabilities of the ShipManager program. 

 

Mailchimp says it was hacked — again 

Email marketing and newsletter giant Mailchimp says it was hacked and that dozens of customers’ data was exposed. It’s the second time the company was hacked in the past six months. Worse, this breach appears to be almost identical to a previous incident. The Intuit-owned company said in an unattributed blog post that its security team detected an intruder on January 11 accessing one of its internal tools used by Mailchimp customer support and account administration, though the company did not say for how long the intruder was in its systems, if known.  

 

Illegal Solaris darknet market hijacked by competitor Kraken 

Solaris, a large darknet marketplace focused on drugs and illegal substances, has been taken over by a smaller competitor named ‘Kraken,’ who claims to have hacked it on January 13, 2022. The Tor site of Solaris currently redirects to Kraken, while blockchain monitoring experts at Elliptic report no movements in the cryptocurrency addresses associated with the site after January 13, 2022. The Solaris marketplace emerged a few months ago, following the seizure of Hydra, attempting to capture a portion of the then-disturbed market. The new market quickly captured about 25% of the market and processed roughly $150,000,000 in illegal sales. 

 

Git Users Urged to Update Software to Prevent Remote Code Execution Attacks 

The maintainers of the Git source code version control system have released updates to remediate two critical vulnerabilities that could be exploited by a malicious actor to achieve remote code execution. The flaws, tracked as CVE-2022-23521 and CVE-2022-41903, impacts the following versions of Git: v2.30.6, v2.31.5, v2.32.4, v2.33.5, v2.34.5, v2.35.5, v2.36.3, v2.37.4, v2.38.2, and v2.39.0. Patched versions include v2.30.7, v2.31.6, v2.32.5, v2.33.6, v2.34.6, v2.35.6, v2.36.4, v2.37.5, v2.38.3, and v2.39.1. X41 D-Sec security researchers Markus Vervier and Eric Sesterhenn as well as GitLab’s Joern Schneeweisz have been credited with reporting the bugs. 

 

Scientists Are Getting Eerily Good at Using WiFi to ‘See’ People Through Walls in Detail 

Researchers at Carnegie Mellon University developed a method for detecting the three dimensional shape and movements of human bodies in a room, using only WiFi routers. To do this, they used DensePose, a system for mapping all of the pixels on the surface of a human body in a photo. DensePose was developed by London-based researchers and Facebook’s AI researchers. From there, according to their recently-uploaded preprint paper published on arXiv, they developed a deep neural network that maps WiFi signals’ phase and amplitude sent and received by routers to coordinates on human bodies. 

Related Posts