Secjuice Squeeze Volume 28

Welcome to the 28th edition of the Secjuice Squeeze, a curated selection of interesting security articles and infosec news that you may have missed, lovingly prepared for you every week. We have been away for a few weeks and this edition will be longer than usual. This week's volume compiled by Secjuice writers Sinwindie, Prasanna, Mike Peterson, Hartoyo Wahyu, and Miguel Calles.

Articles

Stalker Online hacked! Over one million gamers' passwords made available for download

More than one million players of the video game Stalker Online have been put at risk after hackers offered them for sale on the darknet.

Source: grahamcluley.com
Curator: Prasanna

‘BlueLeaks’ Exposes Files from Hundreds of Police Departments

Hundreds of thousands of potentially sensitive files from police departments across the United States were leaked online last week. The collection, dubbed "BlueLeaks" and made searchable via a new website by the same name, stems from a security breach at a Texas web design and hosting company that maintains a number of state law enforcement…

Source: krebsonsecurity.com
Curator: Sinwindie

ARM-based Japanese supercomputer is now the fastest in the world

Fugaku is being used in COVID-19 research.

Source: theverge.com
Curator: Sinwindie

Hackers use Google Analytics to steal credit cards, bypass CSP

Hackers are using Google's servers and the Google Analytics platform to steal credit card information submitted by customers of online stores.

Source: bleepingcomputer.com
Curator: Sinwindie

WikiLeaks Founder Charged in Superseding Indictment

A federal grand jury returned a second superseding indictment today charging Julian P. Assange, the founder of WikiLeaks, with offenses that relate to Assange’s alleged role in one of the largest compromises of classified information in the history of the United States.

Source: justice.gov
Curator: Sinwindie

European bank suffers biggest PPS DDoS attack, new botnet suspected

A bank in Europe was the target of a huge distributed denial-of-service (DDoS) attack that sent to its networking gear a flood of 809 million packets per second (PPS).

Source: bleepingcomputer.com
Curator: Prasanna

Satori Botnet Creator Sentenced to 13 Months in Prison

The creator of the Satori/Okiru, Masuta and Tsunami/Fbot botnets has been sentenced to prison for compromising hundreds of thousands of devices.

Source: threatpost.com
Curator: Sinwindie

Warning: ‘Invisible God’ Hacker Sold Access To More Than 135 Companies In Just Three Years

Cybersecurity researchers believe they’ve uncloaked a Kazakhstan national responsible for a massive three-year hacking campaign selling access to well over 100 company networks.

Source: forbes.com
Curator: Sinwindie

Russian hackers Evil Corp target US workers at home

Hackers are using a new computer virus to hold company files to ransom for millions of dollars.

Source: bbc.com
Curator: Sinwindie

Docker servers infected with DDoS malware in extremely rare attacks | ZDNet

Most Docker servers are usually infected with cryptocurrency-mining malware.

Source: zdnet.com
Curator: Mike Peterson

Owner of Cardplanet credit card market gets 9 years in prison

A 30-year old Russian national named Aleksey Yurievich Burkov was sentenced today to nine years in prison for running Cardplanet and Direct Connection, two sites that facilitated payment card fraud, computer hacking, and other cybercrimes.

Source: bleepingcomputer.com
Curator: Mike Peterson

Nationwide Facial Recognition Ban Proposed By Lawmakers

Lawmakers proposed a new bill that would ban the use of facial recognition by law enforcement nationwide.

Source: threatpost.com
Curator: Mike Peterson

The Next El Chapo Is Coming for Your Smartphone

Once known for drug running, Latin American organized crime is poised to break into the digital bank-robbing business.

Source: bbc.com
Curator: Sinwindie

South Korea Looks to Track Crypto Transactions in Light of Recent Scandal

A South Korean government agency aims to trace crypto transactions conducted on the dark web by developing an AI-based software.

Source: cointelegraph.com
Curator: Sinwindie

Upcoming Events, Webcasts, Conferences, etc.

LASCON 20/20 - Call for Papers and Training

When: Now thru June 30, 2020
Source: lascon.org
Curator: Miguel Calles

SANS@MIC - The 14 Absolute Truths of Security

When: July 06, 2020 at 8:30 PM EDT (2020-07-07 00:30:00 UTC)
Location: Online
Source: sans.org
Curator: Miguel Calles

OWASP Virtual AppSec Days Summer of Security

When: July 28-29, 2020 (12:00pm to 4:00pm EDT/1800pm to 2200pm CET)
Location: Online
Source: appsecdays.org
Curator: Hartoyo Wahyu

Ai4 2020

When: September 1-2, 2020
Location: MGM Grand, Las Vegas
Cost: $595 (early registration)
Source: ai4.io
Curator: Miguel Calles

Open Source Digital Forensics Conference

When: October 20-22, 2020
Location: Herndon, VA
Cost: $0-$350 + $499 optional training
Source: osdfcon.org
Curator: Hartoyo Wahyu

LASCON 20/20

When: October 29-30, 2020
Location: Austin, TX
Cost: $199 (early registration)
Source: lascon.org
Curator: Miguel Calles