Connect with us

News

Ransomware attack affecting 20 countries brings code that avoids targets in Russia

Published

on

The latest chapter in the 2021 ransomware attack, Action Against Kaseya, shows how REvil criminals are deliberately avoiding harming targets in Russia. According to a report by Trustwave SpiderLabs, the malware is configured not to affect systems that use Russian or related languages ​​as their primary language.

“They don’t want to piss off local authorities and know that if they do it this way, they can run their business for much longer,” Ziv Mador, vice president of security research at Trustwave SpiderLabs, told NBC News. The Kaseya system failure is already considered the largest attack of its kind in history, affecting hundreds of companies around the world, and it is expected that many of them will take weeks to recover.

According to researcher Marcus Hutchins (publicly identified as @MalwareTechBlog on Twitter), this is not behavior that REvil alone is pursuing. According to him, it is common for malware codes to check language packs and CIS keyboards, as well as the geolocation of their victims, before continuing their actions.

“As long as the attackers make an effort not to harm Russian users or businesses, they are unlikely to be arrested,” said Hutchins. “I’m not really sure why the article quotes a security company that claims it was the first to identify this as this is a well-known feature and has been talk of REvil since the ransomware was discovered,” he comments Items. from NBC News.

Security agencies in the United States and the United Kingdom accuse Russia of funding and granting asylum to groups like REvil, CozyBear and DarkSide (among others) involved in actions affecting various businesses and government organizations. The Kremlin often denies participating in such cases, claiming that none of them have official ties with Moscow.

Source: NBC news, MalwareTechBlog / Twitter

Did you like this article?

Subscribe to your email on Canaltech for daily updates on the latest technology news.

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

News

Learn how to create a custom feed on Facebook

Published

on

By

Did you know that Facebook (Android | iOS | network) can you create a custom timeline with only select people? This function is called “Favorites”, there you can add some friends and Facebook pages that you want to follow new posts.

This way it is possible to create a second timeline with the latest news from the sites and from your favorite friends. Do you want to find out how to do it? See how in the next few lines!

How to find your favorites on Facebook

Before you start, remember that this feature is available in the Facebook app for Android and iOS devices.

Do you want to catch up on the best tech news of the day? Access and subscribe to our new Canaltech News YouTube channel. Every day a summary of the most important news from the tech world for you!

Step 1: Tap on the “Menu” symbol on the Facebook homepage to display further options. Once that’s done, go to the “Recent and Favorites” category.

step 2: On this page you will find all the posts from the last 3 days by the people and pages you have bookmarked. To add someone to your favorites, tap Manage Favorites.

step 3: Here you can search for your Facebook friends in the search bar. Then just tap the blue “Add” button to add it to your custom “News Feed”. You can also add pages to follow by tapping the Pages tab.

Step 4: After all, when you go to the “Favorites” tab again, you will only find the latest posts from the people you have selected.

Quick, right? Did you like this tip? Share this story with your Facebook friends.

Source: Facebook

Did you like this article?

Subscribe to Canaltech’s email to receive daily updates on the latest technology news.

Continue Reading

News

YouTube creators stole accounts through cookie-stealing malware

Published

on

By

This Wednesday (20), Google announced that YouTube creators are being targeted by cyberattacks aimed at stealing their accounts through phishing scams from employed criminals.

According to researchers from Google’s Threat Analysis Group (TAG), who discovered the first cases of this fraud in late 2019, those responsible are being recruited from job postings in forums where users communicate in Russian, with promises of a basic payment plus part of the profit from videos of the stolen canal made.

Criminals used emailed social engineering tactics that directed victims to bogus websites simulating social networks or large platforms like Steam or Cisco to prevent this Phishing. When accessed, these sites infected computers with malicious agents designed to steal information used in credential theft and attacks. Pass on cookie (pass the cookie, in free translation) where the attacker catches Cookies Internet access of users and use them to access content on another device.

Do you want to catch up on the best tech news of the day? Access and subscribe to our new Canaltech News YouTube channel. Every day a summary of the most important news from the tech world for you!

Sample message trying to trick users into falling for the scam. (Image: Playback / Google)

You Cookies they are small files created by websites and stored on the user’s computer by the browser. These documents contain information that enables the site to identify the visitor. Theft and execution on other computers can provide a lot of information from victims to criminals.

According to TAG, the following malware was identified in the attacks:

  • Red line
  • Life
  • Predator the thief
  • Nexus thief
  • Azorult
  • racoon
  • Big thief
  • Vicro-thief
  • masad
  • Kanta

Attention

In total, Google has identified more than a thousand internet domains with links to these attacks and at least 15,000 Youtube accounts specially created for this scam that contain links that direct those who access it to pages where the malware is installed .

Channels compromised in this campaign were renamed to be sites associated with top tech executives or cryptocurrency brokers (exchanges) and were used to spread crypto-asset market scams.

The Threat Analysis Group also claims that some hacked accounts have been sold in the credentials market, with prices ranging from $ 3 (about R $ 17 at current prices) to $ 4,000 (about $ 4,000 at current prices) depending on the number of subscribers.

According to Ashley Shen, security engineer at TAG, social engineering scams have been known for decades but are on the rise in 2021 as online service users adopt multi-factor authentication more widely, compounding the theft process. difficult credentials that require more effort to gain access to an account.

Shen concludes by stating that since May 2021, TAG has managed to block 99.6% of the emails used in these scams.

Source: BleepingComputer

Did you like this article?

Subscribe to Canaltech’s email to receive daily updates on the latest technology news.

Continue Reading

News

Expansion of e-commerce continues: the industry grew by 24.21% in September

Published

on

By

Index data MCC-ENET, developed by Neotrust | Buy & Trust Movement, in collaboration with the Metrics Committee of Brazilian Chamber of Digital Economy, indicate that Brazilian e-commerce grew 24.21% in September 2021 compared to the same period in 2021. Revenue increased again by 15.81% and the average ticket increased by 1.95%.

Since the beginning of the year, sales have grown by 10.82%, but when compared between September and August, there was a decline of 6.31%. When compared to September and August, sales also showed a negative variance of 4.49%.

Image: Reproduction / Pixabay

The breakdown of sales growth by region shows the leading position in the North (32.74%), followed by the Midwest (26.55%), Northeast (24.84%), South (18.21%) and Southeast (11, 72%) in comparison between September 2021 and 2020. Over the year, the results show the center-west in first place with 29.94%, followed by north (28.62%), north-east (26.16%, south (18 , 79%) and Southeast (3.82%).).

Do you want to catch up on the best tech news of the day? Access and subscribe to our new Canaltech News YouTube channel. Every day a summary of the most important news from the tech world for you!

The Midwest leads the way in regional sales (32.26%). Then come the northeast (27.70%), the south (26.25%), the north (25.94%) and the southeast (21.65%). In terms of the annual total, the Midwest is ahead (40.42%) and then comes the Northeast (33.52%), the South (32.07%), the North (28.14%) and the Southeast (15.31 %). The comparison looks at September 2021 in relation to September 2020.

Involvement of e-commerce in retail

In retail, the e-commerce share reached 12.3% in August 2021. This is the fifth best result in the segment since January 2018. The annual evaluation shows a participation of 11.2%. The indicator takes into account the latest monthly trade survey by the Brazilian Institute of Geography and Statistics (IBGE), published on October 6th.

Image: Playback / Freepik / Snow

In the quarter of July to September 2021, 16.7% of Brazilians made at least one online purchase. The research collects 100% of the actual sales of much of the Brazilian e-commerce market. It excludes data from the MercadoLivre, OLX, and Webmotors websites, travel and tourism, advertising, and transportation and food applications.

Did you like this article?

Subscribe to Canaltech’s email to receive daily updates on the latest technology news.

Continue Reading

Trending