APT28

Arrested Russian linked to theft of 117 million LinkedIn passwords
by Ivana Kottasova @ivanakottasovaOctober 20, 2016: 6:00 AM ET
Related: Hackers steal medical data of US Olympic stars

According to a statement issued by Czech police, the man appeared to be "surprised" whenarrested by officers at a hotel in central Prague. They said the man then suffered a "nervous breakdown" and was taken to a hospital.

LinkedIn (LNKD, Tech30) originally claimed that 6.5 million passwords were stolen in the 2012 attack. But in May, the company increased its estimate to 117 million.

It also admitted that a massive batch of the stolen login credentials were being sold on the black market.
...

http://money.cnn.com/2016/10/20/technology/russian-hacker-arrested-linkedin-password/index.html
 
U.S. web provider says probing East Coast cyber attack
4 / 17

Reuters
1 hr ago

BBbnopg.img

© TRT Haber "IŞİD internet savaşını kazandı"

Some major internet companies suffered service disruptions on Friday due to what internet infrastructure provider Dyn said was a cyber attack that affected some sites, mainly for users on the U.S. East Coast.

Some U.S. internet users had trouble accessing sites including microblogging site Twitter, music streaming service Spotify, discussion site Reddit and news site Vox, but others found the sites accessible in Europe or via mobile phones.

Amazon's web services unit said on its site that it had identified the root cause of the issue and was working to resolve it.

"Customers may experience failures indicating 'hostname unknown' or 'unknown host exception' when attempting to resolve the hostnames for AWS services and EC2 instances," Amazon said in the announcement on its site.

Dyn said what it described as an "attack" was mainly affecting the East Coast and that its engineers were working on it.

The outages happened as hackers launched a large distributed denial of service (DDoS) attack on Dyn's servers, tech news site Gizmodo reported.

An FBI representative said she had no immediate comment on the outages.

Dyn is a Manchester, New Hampshire-based provider of Internet infrastructure services, including managing DNS activity that connects a user to a website's servers.

Dyn's website says customers include some of the world's biggest corporations and Internet firms: Pfizer, Visa, Netflix and Twitter, SoundCloud and BT.

A company representative could not immediately be reached to clarify Dyn's statement, made via Twitter, on the outages. (Reporting By Jim Finkle and Dustin Volz; Editing by Bill Trott)

http://www.msn.com/en-us/news/techn...east-coast-cyber-attack/ar-AAjeziu?li=BBnb7Kz
 
Friday's Dyn cyberattacks unlikely to be state sponsored, senior official says
Berkeley Lovelace Jr. | Antonio José Vielma
33 Mins Ago CNBC.com
Third cyber attack underway against internet firm Internet infrastructure company Dyn says third denial-of-service attack is underway
104039801-6ED4-CB-DYN-ATTACK-102116.600x400.jpg

Third cyber attack underway against internet firm 1 Hour Ago | 02:46

Internet traffic company Dyn on Friday warned a third cyberattack is currently ongoing, hours after websites and services across the East Coast were initially shut down.

Dyn told CNBC Friday afternoon the attacks are "well planned and executed, coming from tens of millions of IP addresses at the same time."

A senior U.S. intelligence official told NBC News the current assessment is that this is a classic case of internet vandalism. The official said it does not appear at this point to be any kind of state-sponsored or directed attack. Impossible to say how long it will take to say who's responsible, the official added.

Dyn told CNBC that one of the sources of the attack is coming from devices known as the "Internet of Things" devices such as DVRs, Printers, and appliances connected to the internet.

The company said in a conference call Friday afternoon that the attack is being waged from devices infected with a malware code that was released on the web in recent weeks.

Dyn said it has not heard from attackers and does not know who they are.

"What they're actually doing is moving around the world with each attack," Dyn Chief Strategy Officer Kyle York said in a conference call Friday afternoon.

The company's general counsel, Dave Allen, said during the call the company regularly prepares for scenarios like this.

"We have begun monitoring and mitigating a DDoS attack against our Dyn Managed (Domain Name System) infrastructure. Our Engineers are continuing to work on mitigating this issue," Dyn said on its website at 11:52 a.m. ET. ...

http://www.cnbc.com/2016/10/21/majo...oast-knocked-out-in-apparent-ddos-attack.html
 
Russian man accused of hacking U.S. targets arrested in Prague
by Ivana Kottasova and Jim Sciutto @CNNTechOctober 19, 2016: 12:19 PM ET
A Russian man suspected of carrying out cyberattacks against U.S. targets has been arrested in Prague.

Czech police declined to give the name of the arrested man, but said that he was wanted by the U.S. Federal Bureau of Investigation for allegedly carrying out a number of cyberattacks.

Cyberattacks suspected of originating in Russia have produced major headlines in recent months -- especially because some appear to be designed to influence the U.S. presidential election.

The Russian citizen arrested Wednesday in Prague is not thought to be involved in those hacks, according to U.S. officials with knowledge of the investigation.

The officials said that the investigation instead involves other, unspecified "criminal activity."

Local police said they had cooperated with the FBI in the lead up to the man's arrest. The arrested individual was also wanted by Interpol, which had issued a international warrant -- or "red notice" -- for his arrest.
...

http://money.cnn.com/2016/10/19/tec...i-prague/index.html?iid=ob_homepage_tech_pool
 
:sneaky:

American vigilante hacker sends Russia a warning
by Jose Pagliery @Jose_PaglieryOctober 22, 2016: 11:53 AM ET
left a message: Stop attacking Americans.


"Comrades! We interrupt regular scheduled Russian Foreign Affairs Website programming to bring you the following important message," he wrote. "Knock it off. You may be able to push around nations around you, but this is America. Nobody is impressed."

MID.ru is the official website of the Russian agency that is in charge of maintaining that country's international diplomacy -- equivalent to the U.S. Department of State.

His hacking of the website included this gag: Visitors are subjected to the ear-piercing sound of an American civil alert message -- that shrieking dial tone that accompanies emergency weather broadcasts.

The U.S. government recently blamed Russia for meddling in American politics. Russian intelligence agencies have been accused of hacking into Democratic National Committee emails and the sites of other Democratic Party-linked organizations, leaking damning information to sway the election away from Hillary Clinton.

Stolen emails have been taken by Russia and published by WikiLeaks.

Russia and President Vladimir Putin have denied involvement.

The Jester referenced Putin's denial in his webpage graffiti.

"Let's get real, I know it's you, even if by-proxy, and you know it's you," he wrote. "Now, get to your room. Before I lose my temper."...

http://money.cnn.com/2016/10/22/technology/russian-foreign-ministry-hacked/
 
How Experts Traced the DNC Hack to Russian Spies
Join us for this week's episode of Decrypted as we examine the hints the hackers left behind.

Jordan Robertson
and
Aki Ito

October 25, 2016 — 9:00 AM EDT
Donald Trump insists that we don’t know who was behind the cyber attack on the Democratic National Committee. Is he right? In this week's Decrypted, Bloomberg Technology’s Jordan Robertson talks to Mike Buratowski, who oversaw Fidelis Cybersecurity's investigation into the malicious code that spied on emails sent by DNC officials and others. After examining the hints left behind, they tackle the big issue: If hackers backed by Russia really were the perpetrators, what more could they do to mess with Americans’ votes and U.S. democracy?

Want to hear more? Subscribe on iTunes and Pocket Casts for new episodes every Tuesday. Decrypted is a weekly podcast that uncovers the hidden projects, quiet rivalries and uncomfortable truths in the global technology industry.


https://www.bloomberg.com/news/articles/2016-10-25/how-experts-traced-the-dnc-hack-to-russian-spies
 
TS INFILTRATE THE INTERNET TO MANIPULATE, DECEIVE, AND DESTROY REPUTATIONS

main2b-jpg.167633


One of the many pressing stories that remains to be told from the Snowden archive is how western intelligence agencies are attempting to manipulate and control online discourse with extreme tactics of deception and reputation-destruction. It’s time to tell a chunk of that story, complete with the relevant documents.

Over the last several weeks, I worked with NBC News to publish a series of articles about “dirty trick” tactics used by GCHQ’s previously secret unit, JTRIG (Joint Threat Research Intelligence Group). These were based on four classified GCHQ documents presented to the NSA and the other three partners in the English-speaking “Five Eyes” alliance. Today, we at the Interceptare publishing another new JTRIG document, in full, entitled “The Art of Deception: Training for Online Covert Operations.”

By publishing these stories one by one, our NBC reporting highlighted some of the key, discrete revelations: the monitoring of YouTube and Blogger, the targeting of Anonymous with the very same DDoS attacks they accuse “hacktivists” of using, the use of “honey traps” (luring people into compromising situations using sex) and destructive viruses. But, here, I want to focus and elaborate on the overarching point revealed by all of these documents: namely, that these agencies are attempting to control, infiltrate, manipulate, and warp online discourse, and in doing so, are compromising the integrity of the internet itself...

https://theintercept.com/2014/02/24/jtrig-manipulation/
 
You must log in or register to reply here.
Back
Top