AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 9/23/2024

Hacker Claims “Minor” Data Breach at DELL; Leaks Over 10,000 Employee Details

A hacker claims Dell suffered a “minor” breach, exposing over 10,000 employee records. The incident raises cybersecurity concerns amid ongoing threats targeting businesses by tricking employees into phishing and phone call scams. A hacker using the alias “grep” claims that the technology giant Dell has experienced a “minor” data breach, resulting in the theft of over ten thousand (10,863) employee records. This information was revealed by the hacker on the notorious hacker and cybercrime platform Breach Forums, where the allegedly stolen data was leaked earlier today, September 19, 2024. The hacker also claims that the breach occurred earlier this month.

 

Millions of Android streaming boxes hit by damaging malware

More than a million TV streaming boxes running older versions of Android are currently infected with malware which could allow hackers to take over the devices, experts have warned. Cybersecurity researchers from Dr.Web recently discovered 1.3 million TV streaming boxes, powered by the Android Open Source Project, infected with a piece of malware called Vo1d. While the malware was said to grant the attackers total control over the infected instances, the researchers didn’t discuss what they were actually used for. We can make an educated guess that they’re being added to a botnet, to be used for DDoS attacks. They can also be used as a way into the wider network, or as a way to install ad-serving apps.

 

New macOS update breaks multiple security products

Every now and then, software updates for popular operating systems break other programs installed on these devices, and this time around, it’s Apple’s turn. TechCrunch is reporting that the latest macOS update, Sequoia (AKA macOS 15) broke many major cybersecurity solutions. This, understandably, caused both frustration and fear among the Apple community since, after all, not having endpoint protection places many organizations at serious risk.

 

Deja blues… LockBit boasts once again of ransoming IRS-authorized eFile.com

In an intriguing move, notorious ransomware gang LockBit claims once again to have compromised eFile.com, which offers online services for electronically filing tax returns with the US Internal Revenue Service (IRS). To be clear: eFile.com is not owned nor operated by the IRS, nor is it part of the agency’s e-file program, though it is an IRS-authorized e-file provider. The Register has not verified the crooks’ latest claims, and neither the dot-com nor the IRS immediately responded to The Register’s inquiries about the alleged breach. We will update this story as we receive additional information.

 

Tor Responds to Reports of German Police Deanonymizing Users

Germany’s Panorama TV program and investigative journalism outfit STRG_F have obtained evidence showing that the country’s Federal Criminal Police Office (BKA) and the Public Prosecutor General’s Office in Frankfurt were able to identify at least one user suspected of being involved in the distribution of child sexual abuse materials on the dark web. Law enforcement leveraged extended monitoring of Tor nodes and timing analysis to determine exactly which nodes had been used by the perpetrator, ultimately obtaining information on his real identity from the ISP. The law enforcement operation was carried out between 2019 and 2021 and resulted in a long prison sentence being handed out to the suspect in late 2022.

 

Related Posts