Hackers are distributing a cracked password manager that steals data, deploys ransomware

Cybercriminals are distributing a tainted version of a popular password manager, through which they’re able to steal data and deploy ransomware. This is according to security researchers WithSecure Threat Intelligence, who recently observed one such attack in the wild. In an in-depth analysis published recently, the researchers said a client of theirs downloaded what they thought was KeePass – a popular password manager. They clicked on an ad from the Bing advertising network, and landed on a page that looked exactly like the KeePass website.

Unexplained components found in Denmark’s energy equipment imports, industry group says

Unexplained electronic components have been found in imported equipment for Denmark’s energy supply network, industry group Green Power Denmark said on Wednesday, adding that an investigation was underway to learn more. The findings coincide with an increased focus internationally on potential security vulnerabilities in critical infrastructure such as energy grids. “It concerns printed circuit boards that were supposed to be part of components for the energy supply,” Jorgen Christensen, technical director at Green Power Denmark, told Reuters.

Global Law Enforcers and Microsoft Seize 2300+ Lumma Stealer Domains

Microsoft has teamed up with law enforcement agencies across the globe to disrupt the infrastructure behind one of the world’s most notorious infostealer operations. Microsoft said that, between March 16 and May 16, it identified over 394,000 Windows computers globally that were infected with Lumma Stealer malware. A coordinated operation between the tech giant, Europol, Japan’s Cybercrime Control Center (JC3) and operatives in the US then set to work, resulting in the “takedown, suspension, and blocking” of over 2300 domains that formed “the backbone of Lumma’s infrastructure.” Over 1300 of these domains were redirected to Microsoft sinkholes.

Hacker who breached communications app used by Trump aide stole data from across US government

A hacker who breached the communications service used by former Trump national security adviser Mike Waltz earlier this month intercepted messages from a broader swathe of American officials than has previously been reported, according to a Reuters review, potentially raising the stakes of a breach that has already drawn questions about data security in the Trump administration. Reuters identified more than 60 unique government users of the messaging platform TeleMessage in a cache ofleaked data, opens new tab provided by Distributed Denial of Secrets, a U.S. nonprofit whose stated mission is to archive hacked and leaked documents in the public interest. The trove included material from disaster responders, customs officials, several U.S. diplomatic staffers, at least one White House staffer and members of the Secret Service. The messages reviewed by Reuters covered a roughly day-long period of time ending on May 4, and many of them were fragmentary.

Coinbase Hack Highlights How Greed Can Overwhelm Cyber Defenses

Following cybersecurity best practices doesn’t always protect against human greed.  Scammers again proved that to be true by bribing Coinbase Global Inc. representatives based in India to steal customer data from the cryptocurrency company and then demanding a $20 million ransom. The fraudsters offered cash to the Coinbase customer representatives in exchange for users’ names, addresses, government ID images and other data, the company said Thursday. They then intended to use that illicitly obtained information to pose as Coinbase and dupe customers into giving up their crypto.