Custom search

Mystery malware destroys 600,000 routers from a single ISP during 72-hour span

An unknown threat actor with equally unknown motives forces ISP to replace routers.

Ars Technica

Man who built ISP instead of paying Comcast $50K expands to hundreds of homes

Jared Mauch gets $2.6 million from gov't to expand fiber ISP in rural Michigan.

The Cyber Express

Malicious Firmware Update Destroyed Over 600,000 Routers Across ISP

In one of the largest mass bricking events in history, at least 600,000 routers belonging to subscribers of the same

CyberNews

India’s Cherrinet ISP leaks user data, exposes accounts to abuse attempts

The Cybernews research team discovered an open 1.8TB data trove belonging to internet service provider Cherrinet.

Ars Technica

Some Twitter traffic briefly funneled through Russian ISP, thanks to BGP mishap

Despite the timing, the 45-minute hijacking was most likely an error, not an attack.

The Record

Ransomware attack knocked a Kentucky city-operated ISP offline before holiday

The “Bourbon Capital of the World” is still investigating alleged ransomware attack.

Bleeping Computer

Russia’s largest ISP says 2022 broke all DDoS attack records

Russia's largest internet service provider Rostelecom says 2022 was a record year for Distributed denial of service attacks (DDoS) targeting organizations in the country.

Bleeping Computer

Pro-Ukraine hackers breach Russian ISP in revenge for KyivStar attack

A pro-Ukraine hacktivist group named 'Blackjack' has claimed a cyberattack against Russian provider of internet services M9com as a direct response to the attack against Kyivstar mobile operator.

Infosecurity News

Record-Breaking Year for DDoS Attacks Targeting Russia

ISP Rostelecom says longest attack lasted three months

SecurityWeek

10 months ago

Iran-Run ISP 'Cloudzy' Caught Supporting Nation-State APTs, Cybercrime Hacking Groups

Researchers unmask an Iranian-run company providing command-and-control services to hacking groups, including state-sponsored APT actors.

HACKRead

Indian ISP Hathway Data Breach: Hacker Leaks 4 Million Users, KYC Data

In an unusual move, the hacker behind the Hathway data breach has developed a dark web search engine for potential victims. This tool allows them to search for their email addresses and phone numbers to check if their data was exposed.

Ars Technica

ISP deploys fiber service with a wrinkle—the users themselves own each network

Despite costly Silicon Valley project, CEO says this isn't just for wealthy areas.

Cyber Security News

Threat Actors Attack Telecom, ISP, & Universities Using Cross-platform Malware

There have been multiple reports of attacks targeting multiple sectors of the Middle East and Africa by an unknown threat actor

The Hacker News

16 hours ago

Mysterious Cyber Attack Takes Down 600,000+ Routers in the U.S.

Over 600,000 routers bricked in a massive cyber attack targeting a single U.S. ISP.

ZDNet

'Massive cyberattack' against Ukrainian ISP has been neutralized, Ukraine says | ZDNet

The attack on core IT infrastructure led to the most severe internet disruption registered in Ukraine since the invasion by Russia, according to NetBlocks.

CyberScoop

Russians allegedly storm Ukrainian ISP, blackmail it to switch to Russian networks

Russia has hit Ukrainian satellite broadband services and Internet providers since the beginning of the war and recently began physically attacking Ukrainian Internet companies, according to the state information agency.

Security Affairs

19 hours ago

Over 600,000 SOHO routers were destroyed by Chalubo malware in 72 hours

The Chalubo trojan destroyed over 600,000 SOHO routers from a single ISP, researchers from Lumen Technologies reported.

SecurityWeek

MoustachedBouncer: Foreign Embassies in Belarus Likely Targeted via ISPs

MoustachedBouncer is a cyberespionage group that targets foreign diplomats in Belarus via ISP adversary-in-the-middle attacks.

Security Affairs

Anonymous leaked 128GB of data stolen from Russian ISP Convex revealing FSB’s warrantless surveillance

The popular collective Anonymous has leaked 128 GB of data allegedly stolen from the Russian Internet Service Provider Convex. The collective Anonymous released last week 128 gigabytes of documents that were allegedly stolen from the Russian Internet Service Provider Convex. The huge trove of data was leased by an affiliate of Anonymous’s affiliate group called […]

Bleeping Computer

FTC to force ISP to deploy fiber for 60K users to match speed claims

The Federal Trade Commission (FTC) today proposed an order requiring Connecticut-based internet service provider Frontier Communications to stop "lying" to its customers and support its high-speed internet claims.

SecurityWeek

22 hours ago

Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers

Over 600,000 SOHO routers belonging to a single ISP and infected with the Chalubo trojan were rendered inoperable.

Bleeping Computer

Vodafone plans carrier-level user tracking for targeted ads

Vodafone is piloting a new advertising ID system called TrustPid, which will work as a persistent user tracker at the mobile Internet Service Provider (ISP) level.

Bleeping Computer

Save up to $315 on data privacy tools with AdGuard VPN

A VPN is the first defense you have again ISP throttling, commercial data trackers, and malicious actors. AdGuard VPN has three deals to choose from now through January 14th.

Bleeping Computer

Save up to $315 on data privacy tools with AdGuard VPN

A VPN is the first defense you have again ISP throttling, commercial data trackers, and malicious actors. AdGuard VPN has three deals to choose from now through January 14th.

Cyber Security News

BGP Error Handling Flaw Leads to Prolonged Network Outage

BGP is the backbone protocol and the internet's "glue," which directs the routing decisions between ISP networks to hold the internet under a set.

The Record

A Q&A with the chief technical officer at Ukrtelecom

An interview with Dmytro Mykytiuk, chief technical officer at Ukrtelecom, from shortly before an apparent cyberattack struck the ISP.

ThreatPost

Cyberattacks on Squid Game Minecraft Tourney Take Down Andorra’s Internet

Some of the bursts of traffic reached up to 10Gbps, reports noted, overwhelming the country's only ISP, and crippling Andorran Squidcraft gamers along with the rest of the population.

Bleeping Computer

ExpressVPN bug has been leaking some DNS requests for years

ExpressVPN has removed the split tunneling feature from the latest version of its software after finding that a bug exposed the domains users were visiting to configured DNS servers.

Security Affairs

ExpressVPN leaked DNS requests due to a bug in split tunneling feature

A bug in the split tunneling feature implemented in ExpressVPN exposed the domains visited by the users.

Ars Technica

10 months ago

The ‘90s Internet: When 20 hours online triggered an email from my ISP’s president

1998 plea for restraint reveals a lost world where the 'Net was an opt-in experience.

The Hacker News

Researchers Uncover Decade-Long Cyber Espionage on Foreign Embassies in Belarus

MoustachedBouncer targets foreign embassies in Belarus. Discover how this skilled group employs AitM attacks and advanced tools.

Bleeping Computer

Malware botnet bricked 600,000 routers in mysterious 2023 attack

A malware botnet named 'Pumpkin Eclipse' performed a mysterious destructive event in 2023 that took 600,000 office/home office (SOHO) internet routers offline, according to a new report by researchers at Lumen's Black Lotus Labs.

Bleeping Computer

Malware botnet bricked 600,000 routers in mysterious 2023 event

A malware botnet named 'Pumpkin Eclipse' performed a mysterious destructive event in 2023 that took 600,000 office/home office (SOHO) internet routers offline, according to a new report by researchers at Lumen's Black Lotus Labs.

Ars Technica

Ongoing campaign compromises senior execs’ Azure accounts, locks them using MFA

The wide range of employee roles targeted indicates attacker's multifaceted approach.

Bleeping Computer

Hands on with Microsoft Edge's new built-in VPN feature

Edge's Secure Network is powered by Cloudflare - one of the most trusted DNS hosts in the industry - and it aims to protect your device and sensitive data as you browse. The feature is in the early stage of development available to select users in Edge Canary and it's not a full-fledged VPN service offered in browsers like Opera.

The Record

‘MoustachedBouncer’ espionage hackers targeting embassies in Belarus

Four embassies in Belarus were targeted by an espionage campaign, including two from Europe and one each from South Asia and Africa.

Bleeping Computer

11 months ago

Microsoft Edge upgrades built-in Cloudflare VPN with 5GB of data

Microsoft's Edge browser has recently enhanced its 'Edge Secure Network' feature, which now offers 5GB of data, significantly increasing from the previously offered 1GB.

ZDNet

Modem vs router: What's the difference?

You'll need both for your internet connection, but they do different jobs.

Cyber Security News

20 hours ago

Hackers Compromised SOHO 600,000 Routers Within 72 Hours For Botnet

Hackers often target the routers to take charge of network traffic, get hold of sensitive data, and make attacks on attached devices.

Infosecurity News

New Cyber Threat 'MoustachedBouncer' Targets Embassies in Belarus

The new APT is allegedly aligned with the Belarusian regime and has operated under the radar for at least nine years

The Record

DDoS attacks on Andorra's internet linked to Squid Game Minecraft tournament

A high-stakes Minecraft tournament is believed to be the cause of a series of DDoS attacks that have hit Andorra's only internet provider for the last four days in what experts believe has been an attempt to prevent local gamers from participating.

SecurityWeek

ExpressVPN User Data Exposed Due to Bug

ExpressVPN disables split tunneling on Windows after learning that DNS requests were not properly directed.

Computerworld

VPNs and browsers — staying secure while online

There’s been a growing focus on the use of VPNs for routine surfing. But browser choice, search engine selection, and third-party tools are at least as important for online security.

Bleeping Computer

MoustachedBouncer hackers use AiTM attacks to spy on diplomats

A cyberespionage group named 'MoustachedBouncer' has been observed using adversary-in-the-middle (AitM) attacks at ISPs to hack foreign embassies in Belarus.

Bleeping Computer

Anonymize your browsing with 61% off a Windscribe VPN Pro Plan

A virtual private network is one of the cornerstones of staying safe online. This three-year subscription to Windscribe VPN's Pro plan helps keep your data private for $79.97, but that price only lasts through February 19 at 11:59 p.m. PT.

ZDNet

10 ways to speed up your internet connection today

Is your slow internet connection getting you down? Here's how to fix the most common issues.

Bleeping Computer

Netgear fixes dangerous code execution bug in multiple routers

Netgear has fixed a high severity remote code execution (RCE) vulnerability found in the Circle parental control service, which runs with root permissions on almost a dozen modern Small Offices/Home Offices (SOHO) Netgear routers.

Ars Technica

Why Russia’s “disconnection” from the Internet isn’t amounting to much

So far, moves by two of the Internet's major pipelines are having negligible effects.

DataBreaches

U.S. Internet Leaked Years of Internal, Customer Emails

Brian Krebs reports: The Minnesota-based Internet provider U.S. Internet Corp. has a business unit called Securence, which specializes in providing...

Computerworld

Italian spyware firm is hacking into iOS and Android devices, Google says

RCS Lab spyware uses known exploits to install harmful payloads and steal private user data, according to a Google report.

Bleeping Computer

3 years ago

Comcast now blocks BGP hijacking attacks and route leaks with RPKI

Comcast, one of America's largest broadband providers, has now deployed RPKI on its network to defend against BGP route hijacks and leaks. Left unchecked, a BGP route hijack or leak can cause a drastic surge in internet traffic that now gets misdirected or stuck, leading to global congestion and a Denial of Service (DoS).

Ars Technica

Google Fiber touts 20Gbps download speed in test, promises eventual 100Gbps

Google Fiber test delivered 20.2Gbps downloads to exec's home in Kansas City.

CyberNews

2 months ago

Alarming: researchers can fingerprint and block eight out of ten top VPN providers

OpenVPN, the most widely used open-source VPN protocol for secure and private connections, can be reliably detected and blocked at scale.

CyberScoop

Hackers with links to Pro-Russian groups compromised foreign embassies in Belarus, researchers say

The work has been carried out by a newly identified group dubbed "MustachedBouncer," according to researchers with ESET.

Bleeping Computer

Google shut down caching servers at two Russian ISPs

Two Russian internet service providers (ISPs) have received notices from Google that the global caching servers on their network have been disabled.

DataBreaches

Digging into Decoder.re in Kaseya ransom notes– threat intel by Resecurity

Interesting #threatintel thread on Twitter this morning from Resecurity (Full disclosure: I worked with one of their team a number of years ago.). Their...

SecurityWeek

Leaseweb Reports Cloud Disruptions Due to Cyberattack

Dutch cloud company Leaseweb shut down some critical systems last week due to a cyberattack whose full impact is unclear.

Bleeping Computer

Microsoft Edge's built-in VPN support is around the corner

Microsoft Edge's built-in VPN functionality could soon begin rolling out to users in the stable channel. Edge's VPN 'Edge Secure Network' uses Cloudflare and aims to protect your device and sensitive data as you browse, but remember it is not a proper replacement for your VPN.

The Hacker News

Five Eyes Agencies Expose APT29's Evolving Cloud Attack Tactics

Russian hackers target cloud infrastructure. Learn their tactics & how to defend yourself.

ZDNet

Ukraine destroys five bot farms that were spreading 'panic' among citizens | ZDNet

Over 100,000 fake accounts were allegedly used to spread misinformation about Russia's invasion.

SecurityWeek

FBI Warns of Hacktivist DDoS Attacks, But Says Impact Limited

FBI tells organizations to prepare for hacktivists launching DDoS attacks but says these assaults have little impact.

Bleeping Computer

7 months ago

E-Root admin faces 20 years for selling stolen RDP, SSH accounts

Sandu Diaconu, the operator of the E-Root marketplace, has been extradited to the U.S. to face a maximum imprisonment penalty of 20 years for selling access to compromised computers.

ZDNet

Elon Musk activates Starlink to help keep Ukraine's internet up | ZDNet

Russia's invasion of Ukraine is targeting its internet as well along with its military and civilians. Help is on the way.

The Cyber Wire

5 months ago

Ukraine at D+657: Complementary strikes against infrastructure.

Russia continues to accept high casualties as hopes in Moscow grow that Western support for Ukraine will fade.

Infosecurity News

Orange España Breach: Dark Web Flooded With Operator Credentials

Resecurity discovered over 1572 compromised customers from RIPE, APNIC, AFRINIC and LACNIC

Infosecurity News

Government Initiative Promises Rapid Blocking of Scam Sites

Real-time data sharing with ISPs could stop fraud at scale

CyberNews

VPNs on iOS are “a scam” as they have been leaking traffic for years, security researcher says | Cybernews

A security researcher Michael Horowitz called VPNs on iOS “a scam.” In a blog post, he exposed the VPN tunnel leaks on iOS devices, with the latest investigated version being 15.6.

Infosecurity News

UK Businesses Lose £31bn to Security Breaches in a Year

Beaming data reveals the cost of UK cybersecurity breaches surged 138% over four years to £31.5bn

Bleeping Computer

3 years ago

Irish High Court issues injunction to prevent HSE data leak

The High Court of Ireland has issued an injunction against the Conti Ransomware gang, demanding that stolen HSE data be returned and not sold or published.

Infosecurity News

8 months ago

Royal Family Website Downed by DDoS Attack

Russian Killnet group suspected of a DDoS attach that took the Royal.uk offline for 90 minutes

Infosecurity News

Global Cyber-Attack Volume Surges 38% in 2022

Last year was also worst on record for UK businesses

Infosecurity News

Air Force Upgrades Digital Modernization Strategy to

The transition will be carried out through three procurements to be awarded before the end of 2024

ZDNet

What is an IP address and how can you change it with a VPN?

Your IP address can be a gold mine for invasive advertisers, as well as thieves, hackers, and other bad actors. We'll explain why it's so sought after, and how you can protect your IP address by using a VPN.

Bleeping Computer

7 months ago

Russian Sandworm hackers breached 11 Ukrainian telcos since May

The state-sponsored Russian hacking group tracked as 'Sandworm' has compromised eleven telecommunication service providers in Ukraine between May and September 2023.

Bleeping Computer

Three UK telco bug has customers receiving and making random calls

Customers of the Three UK telco company are panicking as they receive a series of random phone calls due to an ongoing issue. Likewise, outbound calls from customers are being routed to random strangers.

Cyber Security News

Beware of Lapsus Ransomware Group Hiring Insiders

LAPSUS$ group has become known to many after they hacked Samsung and Nvidia. Most importantly they published nearly 190 GB of Samsung’s internal data as a torrent file on their telegram channel.

Bleeping Computer

NSA shares guidance on how to secure your home network

The U.S. National Security Agency (NSA) has issued guidance to help remote workers secure their home networks and defend their devices from attacks.

CyberNews

5 months ago

Experiment: the ultimate filter for ads, malvertisers, spies and scammers

After the hassle of setting up a Pi-Hole, Cybernews readers gave me the best advice this year.

Bleeping Computer

3 years ago

Best Windows 10 commands to diagnose your Internet connection

Diagnosing an Internet connection in Windows can be a frustrating experience. To help with this, we have outlined six Windows 10 commands that you can use to troubleshoot your Internet connection and help determine why you cannot reach a website.

Security Affairs

Residential Proxies vs. Datacenter Proxies: Choosing the Right Option

Residential Proxies vs. Datacenter Proxies: this post examines the contours of each type and provides info on how to choose the perfect proxy

The Record

FBI, DOJ defend ‘offensive’ actions against Chinese, Russian operations

The Justice Department and FBI defended offensive cyber operations taken over the last two years against Chinese and Russian hacking campaigns but acknowledged the privacy concerns around the actions.

The Hacker News

Chinese Hackers Using MgBot Malware to Target International NGOs in Mainland China

Evasive Panda, a Chinese APT group, targeting international NGOs in Mainland China with MgBot modular malware framework.

The Cyber Wire

5 months ago

Ukraine at D+659: Russian attrition tactics count on war-weariness in the West.

A battle of attrition continues in Marinka as Russia sees hope in Western war-weariness. Kyivstar works toward full restoration of service, but it will be a long process.

The Cyber Express

Indian Entities on Alert as Dawnofdevil Hacker Group Resurfaces

The hacker group known as "dawnofdevil" has emerged as a threat actor, actively targeting Indian organizations, including government entities. Operating

Bleeping Computer

Police seize record 50,000 Bitcoin from now-defunct piracy site

The police in Saxony, eastern Germany, have seized 50,000 Bitcoin from the former operator of the pirate site movie2k.to through a voluntary deposit to a state-controlled wallet.

Infosecurity News

1 month ago

Bad Bots Drive 10% Annual Surge in Account Takeover Attacks

Malicious bots now represent a third of all internet traffic, says Imperva

ZDNet

Best mobile VPN (2022) | ZDNet

What's the best mobile VPN? Our number one pick is NordVPN! We analyzed privacy features, reliability, mobile platforms, and speed to determine the best mobile VPN, whether you are using an iOS-powered iPhone or Android smartphone.

SecurityWeek