Pawb.Social Reports @transparency

8 posts8 participants2 posts today

**heise Security** @heisec@social.heise.de · 2025-03-25T11:55:00.000Z

heise Security @heisec@social.heise.de

Rückblick secIT 2025: Patentrezepte gegen Cybercrime und 21 kg Espressobohnen

Die IT-Security-Konferenzmesse secIT lockte abermals tausende Admins und CISOs nach Hannover und war ein voller Erfolg. Im Herbst geht es weiter.

https://www.heise.de/news/Rueckblick-secIT-2025-Patentrezepte-gegen-Cybercrime-und-21-kg-Espressobohnen-10326431.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

heise online · 17mRückblick secIT 2025: Patentrezepte gegen Cybercrime und 21 kg EspressobohnenBy Dennis Schirrmacher

#Cyberangriff #Cybercrime #IT

12m

**CTI.FYI** @CTI_FYI@infosec.exchange · 7h

CTI.FYI @CTI_FYI@infosec.exchange

New ransom group blog post!

Group name: ransomhub
Post title: cisd.org
Info: https://cti.fyi/groups/ransomhub.html

cti.fyiransomhub

#ransomware #cti #threatintelligence

**⚯ Michel de Cryptadamus ⚯** @cryptadamist@universeodon.com · 1d *

⚯ Michel de Cryptadamus ⚯ @cryptadamist@universeodon.com

December 2023: US District Attorney Jessica Aber indicts 4 Russians for war crimes in #Ukraine

September 2024: US District Attorney Jessica Aber indicts Russian cryptocurrency money launderer / cybercriminal #SergeyIvanov

November 2024: US District Attorney Jessica Aber accuses Virginia based companies of running "three different schemes to illegally transship sensitive American technology to Russia," including sending equipment to a Russian telecommunications company linked to the #Kremlin and Russia's notorious #FSB security agency.

March 2025: Former US District Attorney Jessica Aber found dead at age 43

More: https://www.newsweek.com/jessica-aber-death-2049234

WASHINGTON, DC — DECEMBER 6: U.S. Attorney for the Eastern District of Virginia Jessica Aber speaks during a press conference at the U.S. Department of Justice on December 6, 2023 in Washington, DC. The Department of Justice announced today that four Russian military personnel have been indicted for war crimes committed against a U.S. national living in Ukraine, the first of such charges ever to be brought under the U.S. war crimes statute. (Photo by Samuel Corum/Getty Images)

Former US attorney for eastern district of Virginia found dead at age 43

Alexandria police find Jessica Aber unresponsive after responding to reports and say investigation under way
Maya Yang
Sun 23 Mar 2025 14.55 EDT

The former US attorney for the eastern district of Virginia was found dead in Alexandria on Saturday, authorities said.

In a statement on social media, Alexandria police announced that at about 9.18am on Saturday, police responded to the 900 block of Beverley Drive following reports of an unresponsive woman. Upon arriving at the scene, authorities located a deceased woman who they later identified as 43-year-old Jessica Aber.

#Putin #VladimirPutin #JessicaAber

1d *

**The New Oil** @thenewoil@mastodon.thenewoil.org · 2025-03-20T19:54:42.000Z

The New Oil @thenewoil@mastodon.thenewoil.org

#VSCode extensions found downloading early-stage #ransomware

https://www.bleepingcomputer.com/news/security/vscode-extensions-found-downloading-early-stage-ransomware/

BleepingComputer · 4dVSCode extensions found downloading early-stage ransomwareBy Bill Toulas

#cybersecurity

**JayeLTee** @JayeLTee@infosec.exchange · 4d *

JayeLTee @JayeLTee@infosec.exchange

Dealing with something ridiculous at the moment that is a great example of just how 'easy' it really is to close down exposed data:

Found a server recently with no access controls at all that was hit by ransomware in May 2024 and most of the data is encrypted. (It got hit by an automated script, it wasn't targeted by a ransom group)

Found a non encrypted directory:

The company is STILL uploading, monthly, hundreds of millions of records of logs with their clients data.

Tried to reach out to the company, nothing. Company is from AUS so I tried ASD, nothing.

I sent an email to AUSCERT, they validated with me the issue and forwarded the information and my contact to ASD, they also tried to reach out to the company themselves.

Not a word from anyone and the server is still exposed a month after my initial alerts.

Logs are still being uploaded to the server so it's obvious no one did anything.

So what am I supposed to do here?

#cybersecurity #infosec #ransomware

4d *

**DFN-CERT** @dfncert@infosec.exchange · 4d

DFN-CERT @dfncert@infosec.exchange

CERT.at investigates ransomware attacks via critical Fortinet vulnerabilities (FortiOS, FortiProxy) and recommends urgent forensic investigations of all devices that didn't have FortiOS 7.0.16 installed before 2025-01-27, when the PoC for CVE-2024-55591 was published. Those devices may be compromised despite having been patched later.

Check (German) warning by @CERT_at
https://www.cert.at/de/warnungen/2025/3/ransomware-gruppen-nutzen-weiterhin-kritische-fortinet-schwachstellen-warnung-vor-gepatchten-aber-bereits-kompromittierten-geraten

Long story with Forescout:
https://www.forescout.com/blog/new-ransomware-operator-exploits-fortinet-vulnerability-duo/

Screenshot of attack timeline from Forescout's blog post.

#ransomware #fortinet #Mora_001

**Kevin Beaumont** @GossiTheDog@cyberplace.social · 4d

Kevin Beaumont @GossiTheDog@cyberplace.social

Black Basta ransomware group is indeed dead, post hack and dump of their chats. #threatintel #ransomware

GIF

**The New Oil** @thenewoil@mastodon.thenewoil.org · 2025-03-17T15:58:18.000Z

The New Oil @thenewoil@mastodon.thenewoil.org

Hackers are exploiting #Fortinet firewall bugs to plant #ransomware

https://techcrunch.com/2025/03/17/hackers-are-exploiting-fortinet-firewall-bugs-to-plant-ransomware/

TechCrunch · Mar 17Hackers are exploiting Fortinet firewall bugs to plant ransomware | TechCrunchSecurity researchers say that a threat actor it calls Mora_001 has ‘close ties’ to the Russia-linked hacking group

#cybersecurity

**The New Oil** @thenewoil@mastodon.thenewoil.org · 2025-03-15T14:16:26.000Z

The New Oil @thenewoil@mastodon.thenewoil.org

New #Akira #ransomware decryptor cracks encryptions keys using GPUs

https://www.bleepingcomputer.com/news/security/gpu-powered-akira-ransomware-decryptor-released-on-github/

BleepingComputer · Mar 15GPU-powered Akira ransomware decryptor released on GitHubBy Bill Toulas

#cybersecurity

Mar 17

**Cybernews** @cybernews@infosec.exchange · Mar 17

Cybernews @cybernews@infosec.exchange

Rostislav Panev, a 51-year-old Russian and Israeli national, has been extradited to the United States. He is suspected of being a developer for LockBit.

#LockBit #Russia #cybersecurity #ransomware

https://cnews.link/lockbit-ransomware-developer-extradited-to-the-us-1/

Mar 17

**Kevin Karhan** @kkarhan@infosec.space · Mar 16

Kevin Karhan @kkarhan@infosec.space

@masek @isotopp Ja.

Dass @Lilith nur "#PR-Kopfschmerzen" macht und nicht bei irgendeiner #Ransomware-Gang als Affiliate agiert ist mehr Glück als Verstand.

Finds definitiv.gut, dass die nicht auf "der Dubklen Seite" ist, auch wenn's dort vielleucht bequemer erscheint...

#Sarkasmus

Mar 16

**𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕** @kubikpixel@chaos.social · 2025-03-14T16:55:10.000Z

𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕 @kubikpixel@chaos.social

Ransomware gang creates tool to automate VPN brute-force attacks

The Black Basta ransomware operation created an automated brute-forcing framework dubbed 'BRUTED' to breach edge networking devices like firewalls and VPNs.

https://www.bleepingcomputer.com/news/security/black-basta-ransomware-creates-automated-tool-to-brute-force-vpns/

BleepingComputer · Mar 14Ransomware gang creates tool to automate VPN brute-force attacksBy Bill Toulas

#vpn #hacking #ransomware

Mar 15