Secjuice Squeeze Volume 28
Welcome to the the Secjuice Squeeze, a curated selection of interesting security articles and news that you may have missed, plus upcoming events!
Welcome to the 28th edition of the Secjuice Squeeze, a curated selection of interesting security articles and infosec news that you may have missed, lovingly prepared for you every week. We have been away for a few weeks and this edition will be longer than usual. This week's volume compiled by Secjuice writers Sinwindie, Prasanna, Mike Peterson, Hartoyo Wahyu, and Miguel Calles.
Articles
Stalker Online hacked! Over one million gamers' passwords made available for download
More than one million players of the video game Stalker Online have been put at risk after hackers offered them for sale on the darknet.
Source: grahamcluley.com
Curator: Prasanna
‘BlueLeaks’ Exposes Files from Hundreds of Police Departments
Hundreds of thousands of potentially sensitive files from police departments across the United States were leaked online last week. The collection, dubbed "BlueLeaks" and made searchable via a new website by the same name, stems from a security breach at a Texas web design and hosting company that maintains a number of state law enforcement…
Source: krebsonsecurity.com
Curator: Sinwindie
ARM-based Japanese supercomputer is now the fastest in the world
Fugaku is being used in COVID-19 research.
Source: theverge.com
Curator: Sinwindie
Hackers use Google Analytics to steal credit cards, bypass CSP
Hackers are using Google's servers and the Google Analytics platform to steal credit card information submitted by customers of online stores.
Source: bleepingcomputer.com
Curator: Sinwindie
WikiLeaks Founder Charged in Superseding Indictment
A federal grand jury returned a second superseding indictment today charging Julian P. Assange, the founder of WikiLeaks, with offenses that relate to Assange’s alleged role in one of the largest compromises of classified information in the history of the United States.
Source: justice.gov
Curator: Sinwindie
European bank suffers biggest PPS DDoS attack, new botnet suspected
A bank in Europe was the target of a huge distributed denial-of-service (DDoS) attack that sent to its networking gear a flood of 809 million packets per second (PPS).
Source: bleepingcomputer.com
Curator: Prasanna
Satori Botnet Creator Sentenced to 13 Months in Prison
The creator of the Satori/Okiru, Masuta and Tsunami/Fbot botnets has been sentenced to prison for compromising hundreds of thousands of devices.
Source: threatpost.com
Curator: Sinwindie
Warning: ‘Invisible God’ Hacker Sold Access To More Than 135 Companies In Just Three Years
Cybersecurity researchers believe they’ve uncloaked a Kazakhstan national responsible for a massive three-year hacking campaign selling access to well over 100 company networks.
Source: forbes.com
Curator: Sinwindie
Russian hackers Evil Corp target US workers at home
Hackers are using a new computer virus to hold company files to ransom for millions of dollars.
Source: bbc.com
Curator: Sinwindie
Docker servers infected with DDoS malware in extremely rare attacks | ZDNet
Most Docker servers are usually infected with cryptocurrency-mining malware.
Source: zdnet.com
Curator: Mike Peterson
Owner of Cardplanet credit card market gets 9 years in prison
A 30-year old Russian national named Aleksey Yurievich Burkov was sentenced today to nine years in prison for running Cardplanet and Direct Connection, two sites that facilitated payment card fraud, computer hacking, and other cybercrimes.
Source: bleepingcomputer.com
Curator: Mike Peterson
Nationwide Facial Recognition Ban Proposed By Lawmakers
Lawmakers proposed a new bill that would ban the use of facial recognition by law enforcement nationwide.
Source: threatpost.com
Curator: Mike Peterson
The Next El Chapo Is Coming for Your Smartphone
Once known for drug running, Latin American organized crime is poised to break into the digital bank-robbing business.
Source: bbc.com
Curator: Sinwindie
South Korea Looks to Track Crypto Transactions in Light of Recent Scandal
A South Korean government agency aims to trace crypto transactions conducted on the dark web by developing an AI-based software.
Source: cointelegraph.com
Curator: Sinwindie
Upcoming Events, Webcasts, Conferences, etc.
LASCON 20/20 - Call for Papers and Training
When: Now thru June 30, 2020
Source: lascon.org
Curator: Miguel Calles
SANS@MIC - The 14 Absolute Truths of Security
When: July 06, 2020 at 8:30 PM EDT (2020-07-07 00:30:00 UTC)
Location: Online
Source: sans.org
Curator: Miguel Calles
OWASP Virtual AppSec Days Summer of Security
When: July 28-29, 2020 (12:00pm to 4:00pm EDT/1800pm to 2200pm CET)
Location: Online
Source: appsecdays.org
Curator: Hartoyo Wahyu
Ai4 2020
When: September 1-2, 2020
Location: MGM Grand, Las Vegas
Cost: $595 (early registration)
Source: ai4.io
Curator: Miguel Calles
Open Source Digital Forensics Conference
When: October 20-22, 2020
Location: Herndon, VA
Cost: $0-$350 + $499 optional training
Source: osdfcon.org
Curator: Hartoyo Wahyu
LASCON 20/20
When: October 29-30, 2020
Location: Austin, TX
Cost: $199 (early registration)
Source: lascon.org
Curator: Miguel Calles