sold

now browsing by tag

 
 

#cybersecurity | #infosec | WeLeakInfo, the site which sold access to passwords stolen in data breaches, is brought down by the FBI

Source: National Cyber Security – Produced By Gregory Evans

FBI seizes control of WeLeakInfo.com which sold passwords stolen in data breaches

Law enforcement agencies have seized control of the domain of WeLeakInfo, a website offering cheap access to billions of personal credentials stolen from approximately 10,000 data breaches.

For as little as $2 per day, anyone could search the controversial website’s database of records and in many instances extract names, email addresses, phone numbers, and passwords. These passwords could then be used by unscrupulous hackers to break into other accounts where users had made the mistake of reusing the same credentials.

Weleakinfo

With the seizure of the WeLeakInfo.com domain, the website’s operations are effectively suspended.

Visitors to the WeLeakInfo.com website are now greeted by a message from the various law enforcement agencies who have been investigating the website’s activities.

Seized website

A 22-year-old man was arrested by police on Wednesday in Fintona, County Tyrone, Northern Ireland, in connection with the website, and another 22-year-old male has been arrested by East Netherland Cyber Crime Unit (Politie) in Arnhem.

According to an NCA press release, the two individuals are suspected by police of having made profits in excess of £200,000 from the site.

Prosecutors are likely to argue that those behind the website were profiting from the unlawful sale of stolen data, and assisting third-parties in also accessing sensitive details.

It’s important to recognise that there is a clear difference between the likes of WeLeakInfo and legitimate services like Troy Hunt’s HaveIBeenPwned.

WeLeakInfo allowed anyone to scoop up the passwords of those involved in a data breach, meaning they could be used in future security breaches.

HaveIBeenPwned, on the other hand, doesn’t store or share anybody’s password – instead the service, which I heartily recommend individuals and organisations sign up for, informs you if your email address has been included in a data breach. And that’s it. The onus is then on you to take steps to protect yourself (which may mean resetting passwords, and ensuring that you are not using the password you use on the hacked website anywhere else).

Authorities say they continue to investigate WeLeakInfo, and one can’t help but wonder if there will be more arrests if the site’s customer details are extracted from the seized infrastructure.

Source link

The post #cybersecurity | #infosec | WeLeakInfo, the site which sold access to passwords stolen in data breaches, is brought down by the FBI appeared first on National Cyber Security.

View full post on National Cyber Security

#deepweb | Lime Scooter Accounts Are Being Sold on the Dark Web

Source: National Cyber Security – Produced By Gregory Evans

On the dark web, there are plenty of people looking for a free ride. Or at least a very cheap one. A vendor on a dark web marketplace is advertising what they say are accounts for the scooter service Lime.

“This account is used free to locate rental scooters (with a random life),” a listing on a dark web market reads, referring to finding scooters that may be available to use. The vendor says they have accounts for both the European Union and the U.S.

“The accounts sold here are functional and verified. They are unique for sale. Once sold, the accounts are automatically deleted from my database,” the advert continues. The listing offers one account for €13.

Lime, like a wealth of other companies entering this space, lets users quickly rent scooters across major cities. Motherboard recently reported how Los Angeles wants scooter companies like Lime, Bird, and Uber’s JUMP to provide real-time location data of the scooters for city planning purposes, although activists have privacy concerns around the sharing of this data.

Armed with one of these accounts, it seems a customer wouldn’t need to pay Lime for using its scooters. The vendor has some conditions over using the accounts.

A section of the dark web listing offering Lime accounts. Image: Motherboard

“Do not change anything on the account (email/password etc),” they write. “Do not share the account (s).”

A Lime spokesperson said in a statement, “While this is not caused by any Lime security vulnerability, this illegal and dangerous behavior is absolutely against Lime policy and will not be tolerated on the Lime platform. We strongly remind our users that sharing account access information with any third party is against our user agreement and can expose them to significant cybersecurity risk.”

Lime added that it will be migrating iPhone users to Apple ID login in the future, and that the company does not allow people to use any password that has already appeared in HaveIBeenPwned’s leaked password list. The HaveIBeenPwned database, maintained by security researcher Troy Hunt, contains email addresses, usernames, and plaintext and hashed passwords from data breaches.

Motherboard previously discovered Uber accounts for sale on the dark web in 2015. Hackers were able to access these by using previously compromised passwords from other services.

Subscribe to our cybersecurity podcast, CYBER.

This article originally appeared on VICE US.

Source link
——————————————————————————————————

The post #deepweb | <p> Lime Scooter Accounts Are Being Sold on the Dark Web <p> appeared first on National Cyber Security.

View full post on National Cyber Security

#deepweb | Disney+ accounts being sold on dark web marketplaces

Source: National Cyber Security – Produced By Gregory Evans If you like to watch movies and TV series online then you should know what Disney+ is but for those who don’t, Disney+ is a video-on-demand streaming service owned by Walt Disney. The service was launched last week on November 12th, 2019. However, word on the […] View full post on AmIHackerProof.com

Quantum computer worth $15 million sold to tackle cybersecurity

Source: National Cyber Security – Produced By Gregory Evans

Quantum computer worth $15 million sold to tackle cybersecurity

A state-of-the-art computer system using quantum mechanics and valued at $15 million dollars has been sold to a cyber-security firm. D-Wave, the developers of the quantum computer, announced the sale to Temporal Defense Systems , earlier this week. Temporal Defense …

The post Quantum computer worth $15 million sold to tackle cybersecurity appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Overwatch hack alert : In-game hacks for Blizzard’s game sold at $30

Overwatch-Soldier-76-980x500-702x336

Source: National Cyber Security – Produced By Gregory Evans

Overwatch gaming hack, Aimbots are sold at $30 giving gamers cheats like auto aim, instant reload and no recoil Blizzard’s Overwatch is probably the best thing to happen to gamers in 2016. With Overwatch animated shorts and Overwatch porn already making news there is little surprise that in-game hacks would be far behind. A listing […]

The post Overwatch hack alert : In-game hacks for Blizzard’s game sold at $30 appeared first on National Cyber Security.

View full post on National Cyber Security

TalkTalk hacked details sold in black market for just over a pound each

Source: National Cyber Security – Produced By Gregory Evans

TalkTalk hacked details sold in black market for just over a pound each

Hacked TalkTalk customers’ bank details are now up for sale for just over a £1 each in black market websites.  Express reported that the details emerged online Sunday. The information includes people’s names, phone numbers, addresses, and even account numbers. Charging £1.50 for each detail, the people behind the massive cyber crime could generate huge profit from peddling the information. The fraudsters are selling the details online to multiple people, who will then try to use them on fraudulent activities. Hackers gained access to information from more than four million TalkTalk customers in the UK. Online scammers find these data highly valuable. According to Mail Online, Eastern European criminal gangs are the main buyers of the stolen information. There is a total of 21,000 bank account numbers, codes, and phone numbers that were hacked in the massive security breach, according to TalkTalk. Now, there are reports that one hacker could earn up to  £150,000 out of one data and selling it to multiple gangs. Source: http://www.vcpost.com/articles/103320/20151103/talktalk-hacked-details-sold-black-market-over-pound-each.htm

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post TalkTalk hacked details sold in black market for just over a pound each appeared first on National Cyber Security.

View full post on National Cyber Security

Malta ‘hacker’ sold details of 650,000 online betting customers

Malta ‘hacker’ sold details of 650,000 online betting customers

An unnamed online seller in Malta is being described as the source of hacked online details of 650,000 online betting customers. Canadian man Jason Ferguson, tried to sell on the hacked details of the Paddy Power customers for €7,600, but […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Malta ‘hacker’ sold details of 650,000 online betting customers appeared first on National Cyber Security.

View full post on National Cyber Security

NSA-grade surveillance software being sold to oppressive regimes, report finds

  Advocacy group Privacy International has put together an extensive report on the powerful surveillance technologies being sold by private companies. The findings, it says, are “downright scary” and show that private companies are capable of acquiring spying tools just as capable as what the NSA and GCHQ are using. The details have all been collected in a database called […] View full post on Gregory d. evans