Weekly Recap June 17 2022
Table of Contents
- By Patrick Ryan
- Jun 17, 2022
Most people are surprised to learn hundreds of thousands of new forms of malware are made on a daily basis. Programming has advanced to the point that hackers can lean on artificial intelligence to help craft new and even more creative internet-based attacks.
If you aren't keeping pace with digital miscreants by updating your computer's protections, seize the opportunity to do so. Do your part to thwart online aggression, and you'll steer clear of the drama and financial loss as described below in the recap of this week's most notable hacks, breaches, and other digital crimes.
Social Security Numbers Listed on Web Marketplace
The social security numbers and other personal information of 20 million people were recently put up for sale on the web. However, authorities recently removed the online marketplace, referred to as SSDNOB, featuring the information listing. The market was removed from the internet by the FBI and the IRS in tandem with authorities in Cyprus and Latvia. Though the criminals behind the data heist collected $19 million during its operation, it appears as though the feds have taken down the online marketplace for the time being.
Symbiote Linux Malware Emerges
Linux malware is wreaking havoc, compromising valuable personal data without being detected.
The new form of malware is analogous to a parasite, latching onto the target and siphoning data. The malware, referred to as Symbiote, has been around since the autumn of 2021. The malware relies on Pluggable Authentication Module functions for remote access.
The malware is somewhat distinct in infecting processes currently operating on a computer, causing lasting damage. The malware sets the stage for remote access, the pilfering of login information, rootkit functionality, and plenty more.
Chinese Backdoor Web3 Wallets Hit the Scene
If digital security specialists didn't already have enough to worry about, there is now the threat of Web3 wallets from China featuring backdoors. Chinese hackers are targeting iOS and Android users with the new backdoored wallets. The aim of the effort is to steal money with the backdoor approach. The attack creates faux cryptocurrency wallet websites that implement the backdoor apps to steal money from user accounts.
Qbot Malware Combines With Black Basta Ransomware
A trojan resulting from the combination of Black Basta ransomware and Qbot malware is causing all sorts of problems. The trojan is unique in that it continues to morph and avoid digital protections. Though Qbot has been around since the late aughts, the new version of the malware and ransomware combination is especially difficult to identify, stop, and eliminate.
The new threat compromises domain controllers with internalized IP address lists and controls compromised computers remotely. PowerShell commands are used to disable Windows Defender.
Kaiser Permanente Data Breach Exposes 70,000 Records
A nasty hack has resulted in hackers accessing the medical records of 70,000 patients. The hack occurred this past spring. A Kaiser Permanente Foundation Health Plan of Washington employee was targeted in the attack. The target's emails were accessed, setting the stage for the digital criminal to access patient health information. Time will tell if that information is sold on the dark web or used by hackers for identity theft.