over

now browsing by tag

 
 

IS #militants #hack into #Swedish #radio station in #Malmo, take over #broadcast

Source: National Cyber Security – Produced By Gregory Evans

The attack occurred Friday morning in the southern city of Malmo, but went unnoticed until listeners began calling in. Experts say it is unlikely the prepetrators will be caught.

Islamic State militants hacked into a Swedish radio station Friday, taking over its transmission and broadcasting an English language propaganda song aimed at recruiting more militants.

The song entitled, “For the Sake of Allah” played for about 30 minutes on the Mix Megapol station in Malmo. Mix Megapol is an FM and internet-based radio station that is part of a private radio network.

Jakob Gravestam, a Marketing Director for the Bauer Media Group, which operates the Malmo-based station, issued a statement that said “Somebody interfered with our frequency using a pirate transmitter.”

Mix Megapol is one of Sweden’s biggest radio stations, and has about 1.4 million listeners daily. But the pirated transmission was only heard in parts of the southern city of Malmo, Sweden’s third largest metropolis, with a population of about 350,000.

The song features male voices singing, in English, such lyrics as: “For the sake of Allah we will march to gates of the paradise where our maidens await. We are men who love death just as you love your life, we are soldiers who fight in the day and the night.”

Preventing such attacks

The hack occurred during a popular morning show ‘Anders & Gry with Friends’ but the hosts didn’t notice anything was askew until listeners called in and asked what was going on.

“A lot of people have called us about this,” Gravestam told the 24Malmo website. “We are very happy that people are vigilant and we treat this very seriously.”

Gravestam said the attack highlights the need for broadcasters to discuss how to “prevent” such incidents. He added that Bauer Media will organize such a discussion and invite other broadcasters, as well as the Swedish Post and Telecom Authority (PTS), which monitors the electronic communications and postal sectors, to the meeting.

The post IS #militants #hack into #Swedish #radio station in #Malmo, take over #broadcast appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Florida #man gets 16 months over #bitcoin bank #hacker scheme

Source: National Cyber Security – Produced By Gregory Evans

Florida #man gets 16 months over #bitcoin bank #hacker scheme

NEW YORK – A Florida software engineer was sentenced to 16 months in prison for helping run an illegal Bitcoin exchange suspected of laundering money for a group of hackers who targeted financial and publishing firms including JPMorgan Chase & Co. and Dow Jones & Co.

Yuri Lebedev, 39, helped operate Coin.mx, which tricked banks into processing bitcoin transactions by disguising them as restaurant-delivery charges and online purchases of collectible items. He was convicted in March of conspiracy and fraud following a month-long trial in Manhattan.

Lebedev, wearing a black suit, stood before sentencing to tell the judge he regretted his actions. He said he joined Coin.mx to create “cutting edge technology” and build something “that would make me exceptional.”

“I got carried away,” he said, adding he realizes now “there are no shortcuts.”

U.S. District Judge Alison J. Nathan in New York said Lebedev used his “impressive technology skills” to trick banks, making them “unwilling participants in the scheme.”

Prosecutors said the unregistered exchange sold bitcoins that were used in illegal online transactions and as payment in ransomware attacks. To help dodge regulators, Lebedev also conspired with his boss to bribe a New Jersey pastor to let them take over a credit union that was run out of a church and use it to help legitimize the exchange’s corrupt operations.

The operator of Coin.mx, Anthony Murgio, was sentenced to 5½ years in June. He admitted in January that he ran Coin.mx for the hacking scheme’s main Israeli architect, Gery Shalon, the self-described founder of a sprawling criminal enterprise that hacked at least nine companies.

Lebedev was born in Russia and raised in Ukraine before moving in with a host family in the U.S. state of Georgia. His attorney, Eric Creizman, cited the wide-ranging nature of the scheme to portray his client as a husband and doting father of three who was been caught up in something too big for him to recognize. In court papers, he described Lebedev as an “unlikely criminal defendant.”

“This case in which Lebedev was tried and convicted as a defendant involved a far broader scope of criminality than the conduct that Lebedev purposefully involved himself in or even knew about,” Creizman said in a court filing.

Lebedev wasn’t accused of money laundering and wasn’t involved in the hacking scheme. Creizman emphasized his technology role and said he wasn’t involved in the three-way calls with banks in which customers lied about the nature of their transactions.

Family and friends sent letters to the court supporting Lebedev, all of which described him as a man devoted to hard work and to giving his children the kind of opportunities he didn’t have in Ukraine. His host family described how Lebedev tutored their child in math, while a college friend relayed how Lebedev washed dishes to avoid using a credit card for living expenses like others did.

Shalon’s global network allegedly stole information on more than 100 million customers of banks and publishing firms and generated hundreds of millions of dollars in illicit proceeds from pump-and-dump stock scams and online gambling.

Murgio operated the exchange with Lebedev from about 2013 to 2015 through a front company, the Collectables Club Private Member Association, which lists Murgio’s West Palm Beach address, court papers show. At Murgio’s sentencing hearing, he wept and said he’d “screwed up badly.”

The men “knowingly exchanged cash for people whom they believed may be engaging in criminal activity,” the government said in court filings.

As part of the scheme, Lebedev was installed on the board of New Jersey-based HOPE Federal Credit Union to bribe Trevon Gross, a pastor who was convicted in the same case, to gain control of the credit union and use it to process corrupt bank transactions that would appear legitimate, court filings show. Gross hasn’t been sentenced.

“Lebedev was one of the handful of co-conspirators involved in the credit union’s processing of over $60 million in risky” transactions, prosecutors said in court papers.

Lebedev’s role was to set up an array of servers that Coin.mx used to process its transactions, a critical element of the scheme that required constant attention to avoid detection by the banks, the U.S. said.

“One of those critical issues that Lebedev handled was the use of separate servers to mislead banks and payment processors into thinking that Coin.mx bitcoin transactions were actually Collectables Club memorabilia and MyXtremeDelivery food transactions,” the U.S. said in court papers.

Lebedev also attempted to obstruct the case by deleting files from a computer, prosecutors said.

Shalon and his alleged top lieutenant, Ziv Orenstein, were arrested in Israel in July 2015 and extradited to the U.S. last year. They have pleaded not guilty. An American who allegedly conspired with them, Joshua Aaron, who attended Florida State University with Anthony Murgio, was detained by Russian authorities in 2015 and returned to the U.S. to face charges. He denies wrongdoing.

The post Florida #man gets 16 months over #bitcoin bank #hacker scheme appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Ethereum #heist: New #phishing scam sees #hackers rake in over $15,000 in just two hours

Source: National Cyber Security – Produced By Gregory Evans

Ethereum #heist: New #phishing scam sees #hackers rake in over $15,000 in just two hours

A new Ethereum phishing campaign, targeting users of the online Ethereum wallet website Myethereumwallet.com, has been uncovered. The scam saw hackers make away with over $15,000 (£11,308) in just two hours.

According to security researcher Wesley Neelen, who identified the campaign when he received a phishing email from the cybercriminals, the scam involved hackers sending out phishing emails purporting to be from the Myetherwallet.com website. The email was designed to trick victims into clicking on malicious links that would redirect them to a fake version of the website. The victims would then be prompted into divulging their account passwords, which the hackers would later use to transfer out all the coins in the victims’ wallet.

Although the fake Myetherwallet.com site was designed to look similar to the legitimate site, keen observers would likely notice that the fake site contained a small comma beneath the “t” in the site’s address. According to Neelen, the cybercriminals used a Unicode trick that allowed them to register domains that looked like Latin characters. This ploy in turn, allowed the hackers to create fake sites that can convincingly look like legitimate sites to unsuspecting users.

According to Neelen, some people have unfortunately already fallen victim to the scam. Neelen and his colleague Rik van Duijn, discovered a log file that contained a list of all the wallets stolen by the hackers. The security experts determined that the cybercriminals had stolen a total of $15,875.65 in Ethereum and had then proceeded to transfer the stolen coins to three different wallets operated by the hackers.

Ethereum’s growing popularity has made it an attractive target for cybercriminals. So far, there have been around four incidents involving hackers stealing millions of dollars worth of ether from various wallets. Oddly, in one such Ethereum heist, a hacker who stole nearly $7m of Ethereum from CoinDash later returned around $3m in stolen funds, sparking further mystery about the heist.

The post Ethereum #heist: New #phishing scam sees #hackers rake in over $15,000 in just two hours appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Craigslist Sides With LinkedIn In Battle Over Users’ Data

Source: National Cyber Security – Produced By Gregory Evans

Listings service Craigslist is backing LinkedIn in a fight with startup HiQ Labs over scraping. Website operators “have every right to employ technological measures” to block scraping by outside companies, Craigslist argues in a friend-of-the-court brief filed this week with the 9th Circuit Court of Appeals. Craigslist’s involvement marks the…

The post Craigslist Sides With LinkedIn In Battle Over Users’ Data appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Hacking and fake news cast shadows over German election

Source: National Cyber Security – Produced By Gregory Evans

The Bundestag break-in occurred in May 2015, without a window being smashed. The intruders to the German parliament were not looking for anything tangible, nor were they even in Berlin. They wanted data and they got it: an estimated 16 gigabytes worth. This was no random smash-and-grab: the hackers sorted…

The post Hacking and fake news cast shadows over German election appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Thousands of Australians could have pacemakers being recalled in US over hacking risk

Source: National Cyber Security – Produced By Gregory Evans

Thousands of Australians are believed to have pacemakers that have been recalled in the United States because they are vulnerable to being hacked. The US Food and Drug Administration (FDA) has recalled 465,000 devices from Abbott’s (formerly St Jude Medical) because hackers could remotely cause the batteries to rapidly go…

The post Thousands of Australians could have pacemakers being recalled in US over hacking risk appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Agency blames hackers over ‘F— Trump’ road sign in DC park

Source: National Cyber Security – Produced By Gregory Evans

Authorities are looking into the apparent hack of a road sign in Washington’s scenic Rock Creek Park that was emblazoned with a profane message Monday morning about President Trump. The electronic sign was supposed to inform drivers that a local road was closed for sewer work. Instead, all it said…

The post Agency blames hackers over ‘F— Trump’ road sign in DC park appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Police warn of hacking threat via our online fridges and kettles as fears are raised over the ‘internet of things’

Source: National Cyber Security – Produced By Gregory Evans

Household appliances which connect to the internet will increasingly be hacked by criminals seeking to steal your identity, rob your home or bank accounts, a police chief has warned. Durham chief constable Mike Barton warned about the danger of the ‘internet of things’ as more ordinary household items such as…

The post Police warn of hacking threat via our online fridges and kettles as fears are raised over the ‘internet of things’ appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Target Gift Card Thief Spent Over $150,000, Pleads Not Guilty, OCDA Says

Source: National Cyber Security – Produced By Gregory Evans

A Stanton woman pleaded not guilty to racking up over $150,000 in purchases over seven months has pleaded not guilty to identity theft. LAKE FOREST, CA — Sure. Everyone loves shopping at Target. But could you spend over $150,000 there in seven months? A 28-year-old Stanton woman is facing charges…

The post Target Gift Card Thief Spent Over $150,000, Pleads Not Guilty, OCDA Says appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures