Deep Web

Recently we observed that part of the REvil ransomware infrastructure was up and running again, now we can confirm that they hit new victims. On September 7, the servers of the REvil ransomware gang were back online after around two months since their shutdown. The circumstance was immediately noted by many researchers, me too. The […]

The post Revil ransomware operators are targeting new victims appeared first on Security Affairs.

Read More Revil ransomware operators are targeting new victims

A threat actor that goes online with the moniker ‘Sangkancil’ claims to have stolen the personal information of 7 million Israelis. A threat actor that goes online with the moniker ‘Sangkancil’ claims to have stolen the personal information of 7 million Israelis from the CITY4U website. The hacker is offering the data for sale, but […]

The post Personal information of 7 million Israelis available for sale appeared first on Security Affairs.

Read More Personal information of 7 million Israelis available for sale

Groove gang leaked online Fortinet credentials that could be used to breach networks of organizations using the compromised devices. The financially motivated threat actor Groove has leaked online compromised credentials belonging to many organizations. The ransomware group has been active since August 2021 and implement a double extortion model like other gangs. The threat actor leaked a […]

The post Groove gang leaks list of 500k credentials of compromised Fortinet appliances appeared first on Security Affairs.

Read More Groove gang leaks list of 500k credentials of compromised Fortinet appliances

The leak site of the popular REvil ransomware gang is it is not clear if the group resumed operations or the FBI turned on its servers. Today the servers of the REvil ransomware gang were back online after around two months since their shutdown. The circumstance was immediately noted by many researchers, me too. The […]

The post REvil ransomware gang’s servers are mysteriously online again appeared first on Security Affairs.

Read More REvil ransomware gang’s servers are mysteriously online again

Pacific City Bank was hit by AVOS Locker Ransomware operators, the gang claims to have stolen sensitive file from the company and threatens to leak it. Pacific City Bank is an American community bank that focuses on the Korean-American community based in California and offers commercial banking services The bank was hit by AVOS Locker […]

The post Pacific City Bank hit by AVOS Locker Ransomware appeared first on Security Affairs.

Read More Pacific City Bank hit by AVOS Locker Ransomware

Since early 2020, bad actors have added Tor exit nodes to the Tor network to intercep traffic to cryptocurrency-related sites Starting from January 2020, a threat actor has been adding thousands of malicious exit relays to the Tor network to intercept traffic and carry out SSL stripping attacks on users while accessing mixing websites, The […]

The post Threat actors added thousands of Tor exit nodes to carry out SSL stripping attacks appeared first on Security Affairs.

Read More Threat actors added thousands of Tor exit nodes to carry out SSL stripping attacks

A privacy bug in the Brave Browser caused the leak of the Tor onion URL addresses visited in the Tor mode by the users. A bug in the Private Window with Tor implemented in the Brave web browser could reveal the onion sites visited by the users. The Tor mode implemented in the Brave web […]

The post Privacy bug in the Brave browser exposes Tor addresses to user’s DNS provider appeared first on Security Affairs.

Read More Privacy bug in the Brave browser exposes Tor addresses to user’s DNS provider