Search

Your search keyword '"SOCIAL engineering (Fraud)"' showing total 30 results
Start Over Descriptor "SOCIAL engineering (Fraud)" Journal bloomberg.com
30 results on '"SOCIAL engineering (Fraud)"'

1. Russian Hackers Targeted Former US Ambassador in Spy Effort.

Author

Gallagher, Ryan

Subjects
SOCIAL engineering (Fraud), AMERICAN ambassadors, CITIZENS, SPAM email, MULTI-factor authentication, AMBASSADORS
Abstract

Hackers linked to the Kremlin targeted a former American ambassador to Ukraine as part of a series of attacks on Russian and foreign civil society targets. The hackers attempted to steal passwords from former officials and academics in the US, as well as prominent exiled Russian opposition figures and media organizations. In one case, the hackers tried to trick the former ambassador into handing over his password by pretending to be another former ambassador known to him. The hackers are believed to be part of a group called Cold River, which has been previously linked to Russia's Federal Security Service. The group has targeted individuals working on issues related to Russia, Ukraine, or Belarus, and their attacks could have serious consequences for those targeted. [Extracted from the article]

Published
2024

2. Crypto Hacks Double to $1.6 Billion as Prices Jump, Report Shows.

Author

Ghosh, Suvashree

Subjects
CRYPTOCURRENCY exchanges, SOCIAL engineering (Fraud), PRICES, VALUE (Economics), PRICES of securities, CRYPTOCURRENCIES
Abstract

The value of cryptocurrency hacks has nearly doubled to $1.6 billion in the first seven months of 2024, driven by the increase in digital asset prices, according to a report by Chainalysis Inc. Although the number of hacks only slightly increased from the previous year, the stolen funds have significantly risen. The rise in value stolen is largely attributed to the appreciation in cryptocurrency prices. Bitcoin accounted for 40% of the proceeds from this year's crypto heists. The Asia-Pacific region has experienced notable exploits, with Japanese operator DMM Bitcoin losing $301 million and India's WazirX losing $235 million. Centralized exchanges have become a target for crypto thieves, and North Korean-linked groups are using sophisticated social engineering tactics to break into digital-asset platforms. [Extracted from the article]

Published
2024

3. CDK Hackers Have Ties to Notorious Russia-Based Cyber Gang.

Author

Gorrivan, Charles

Subjects
COMPUTER hackers, CHIEF information officers, SOCIAL engineering (Fraud), GANGS
Abstract

The article discusses the cybercriminal group known as BlackSuit, which is responsible for the recent cyberattacks on software provider CDK Global, causing widespread disruption to car dealerships across North America. BlackSuit is a relatively low-key and businesslike group that specializes in "double extortion," where they lock companies' systems with ransomware and steal data to sell or leak. They often use phishing attacks and stolen login credentials to gain access to their targets. The group has demanded ransom fees ranging from $300,000 to $5 million and has targeted victims primarily in the US, UK, and Canada. BlackSuit has ties to the hacking group Conti, which has been involved in numerous high-profile cyberattacks. [Extracted from the article]

Published
2024

4. Hackers Behind MGM Attack Targeting Financial Sector in New Campaign.

Author

Manson, Katrina

Subjects
CYBERTERRORISM, PHISHING, INSURANCE companies, COMPUTER hackers, SOCIAL engineering (Fraud), CRYPTOCURRENCY exchanges, RESEARCH personnel
Abstract

A hacking group known as Scattered Spider, previously accused of targeting MGM Resorts International, is now focusing on banks and insurance companies, according to cybersecurity researchers. The group has targeted 29 companies since April 20, successfully compromising the systems of at least two insurance companies. Scattered Spider uses phishing techniques, creating fake login pages to steal user credentials. The group has also expanded its targets to include sectors such as food, retail, video games, and telecommunications. The FBI and the Cybersecurity and Infrastructure Security Agency are seeking information about the group's activities. [Extracted from the article]

Published
2024

5. Hackers Behind MGM Attack Targeting Financial Sector in New Campaign.

Author

Manson, Katrina

Subjects
CYBERTERRORISM, INSURANCE companies, COMPUTER hackers, SOCIAL engineering (Fraud), PHISHING, CRYPTOCURRENCY exchanges, LIFE insurance
Abstract

A hacking group known as Scattered Spider, previously accused of targeting casinos and hotels at MGM Resorts International, is now focusing on banks and insurance companies. The group has successfully compromised the systems of at least two insurance companies and has targeted major financial institutions such as Visa, PNC Financial Services Group, Transamerica, New York Life Insurance, and Synchrony Financial. Scattered Spider uses phishing links to direct employees to fake login pages, allowing them to steal user credentials. The group has been active since May 2022 and has been linked to high-profile hacks in the past. [Extracted from the article]

Published
2024

6. Clorox Audit Revealed Cybersecurity Flaws at Its Plants in 2020.

Author

Gallagher, Ryan and Patton, Leslie

Subjects
AUDITING, INTERNET security, DATA security insurance, SOCIAL engineering (Fraud), ENTERPRISE resource planning, INTERNAL auditing
Abstract

Clorox Co., one of the largest US producers of disinfectants, experienced a cyberattack in 2023 that disrupted manufacturing and led to significant sales declines. An internal audit conducted in 2019 and 2020 had warned of cybersecurity flaws within the company's production systems, including outdated computers running vulnerable operating systems. The audit recommended upgrades to cybersecurity defenses, but senior leaders at Clorox delayed implementation due to cost concerns. While the vulnerabilities identified in the audit did not directly contribute to the cyberattack, having the recommended upgrades in place could have helped mitigate the fallout. Clorox has since made efforts to improve its cybersecurity infrastructure and recover from the attack. [Extracted from the article]

Published
2024

7. Clorox Audit Flagged Systemic Flaws in Cybersecurity at Manufacturing Plants.

Author

Gallagher, Ryan and Patton, Leslie

Subjects
FACTORIES, AUDITING, INTERNET security, DATA security insurance, SOCIAL engineering (Fraud), ENTERPRISE resource planning, INTERNAL auditing
Abstract

An internal audit conducted in 2019 and 2020 at Clorox Co. warned of systemic cybersecurity flaws within the company's production systems, including outdated computers running vulnerable operating systems. The audit recommended creating a digital perimeter around manufacturing plants to reduce the risk of cyberattacks, but senior leaders at Clorox delayed improvements and cut back on recommended upgrades due to cost concerns. While the vulnerabilities identified by the audit did not play a role in the 2023 cyberattack on Clorox, having the recommended upgrades in place could have helped mitigate the fallout. The attack caused significant disruption to Clorox's manufacturing operations and resulted in millions of dollars in lost sales. Clorox denies that it delayed or cut back on cybersecurity upgrades and claims that the audit findings were unrelated to the cause or severity of the hack. The company's cyber defenses had other issues, including a patchwork of old and new machines and a shortage of cybersecurity specialists. Clorox has since made significant upgrades to its cybersecurity infrastructure and increased its investment in cybersecurity. The hack cost Clorox approximately $350 million in sales declines, and the company is expected to incur costs of up to $109 million related to the hack itself. [Extracted from the article]

Published
2024

8. Pig-Butchering Scam Kits Are for Sale in Underground Markets.

Author

Pashankar, Sana

Subjects
SOCIAL engineering (Fraud), SWINDLERS & swindling, CRYPTOCURRENCIES, SWINE farms, SOCIAL media mobile apps, GENERATIVE artificial intelligence
Abstract

Cybercriminals are now selling pig-butchering scam kits on the dark web, making it easier for scammers worldwide to engage in this type of fraud. Pig-butchering scams involve criminals establishing a personal relationship with victims through dating apps or social media and then manipulating them into investing in fake cryptocurrency opportunities. The new version of this scam, known as "DeFi savings," relies on well-known cryptocurrency apps to gain victims' trust. The scam kits include a web page that allows fraudsters to access and steal funds from victims' wallets. These scam kits have expanded the reach of pig-butchering scams, with criminals now emerging from web addresses in Thailand and West Africa. DeFi scams are the fastest-growing area of pig-butchering, with one ring bringing in $3 million in three months. The scammers persistently contact victims even after they break off contact, using generative AI to create more believable messages. [Extracted from the article]

Published
2024

9. Software Firm Okta Falls on News That Hackers Viewed Some Customer Files.

Author

Manson, Katrina

Subjects
CONSUMERS, COMPUTER hackers, SOCIAL engineering (Fraud), MULTI-factor authentication, STOCK prices
Abstract

(Bloomberg) -- Okta Inc. shares tumbled after the identity verification company said that hackers used a stolen credential to access its support case management system. Hackers were able to view some files uploaded by certain Okta customers as part of recent support cases, according to a Friday blog post by David Bradbury, Okta's chief security officer. [Extracted from the article]

Published
2023

10. Israel's Massive Intelligence Failure Perplexes Ex-US Spy Agency Officials.

Author

Manson, Katrina

Subjects
SOCIAL engineering (Fraud), ISRAEL-Arab War, 1973, DENIAL of service attacks, ESPIONAGE, CYBER intelligence (Computer security), CYBERTERRORISM, PHISHING
Abstract

This year's invitation-only event began Saturday - just hours after the militant group Hamas attacked Israel, killing civilians, taking hostages and drawing the threat of a retaliatory ground incursion into Gaza. (Bloomberg) -- Every fall, dozens of security and intelligence officials from across the nation descend upon an island off the coast of Georgia and talk, for four days, about the most pressing threats facing the US. [Extracted from the article]

Published
2023

11. The Not-So-Invisible Hand That Guides Singapore's Growth.

Author

Moss, Daniel

Subjects
SOCIAL engineering (Fraud), CONSUMPTION (Economics), GOVERNMENT business enterprises, BIOMETRIC fingerprinting
Abstract

If all segments of society, not least the state, come together, then the Singapore story has room to run. It's also an homage to the role state muscle played in attracting the likes of HP and assuring the company that Singapore was a place it could call home. [Extracted from the article]

Published
2023

12. Clorox Security Breach Linked to Group Behind Casino Hacks.

Author

Turton, William, Manson, Katrina, and Patton, Leslie

Subjects
COMPUTER hacking, SOCIAL engineering (Fraud), COMPUTER hackers, CASINOS, INFORMATION technology, CYBERTERRORISM
Abstract

Clorox now sees an adjusted loss of as much as 40 cents a share "as the impact from the cybersecurity attack more than offset the benefits of pricing, cost savings and supply-chain optimization." (Bloomberg) -- A notorious group of hackers blamed for recent breaches on major casino companies is also suspected of being behind a recent cyberattack against Clorox Co. that has led to a nationwide shortage of its cleaning products. [Extracted from the article]

Published
2023

13. Clorox Security Breach Linked to Group Behind Casino Hacks.

Author

Turton, William, Manson, Katrina, and Patton, Leslie

Subjects
COMPUTER hacking, SOCIAL engineering (Fraud), CASINOS, INFORMATION technology, COMPUTER hackers, MALWARE
Abstract

For instance, it isn't yet clear whether the hackers deployed ransomware, a type of malicious software that encrypts files, nor is it clear if the hacking group used social engineering to gain a foothold in Clorox's network. (Bloomberg) -- A notorious group of hackers blamed for recent breaches on major casino companies is also suspected of being behind a recent cyberattack against Clorox Co. that has led to a nationwide shortage of its cleaning products. [Extracted from the article]

Published
2023

14. Hacking the Help Desk: How Attackers Talk Their Way Into Company Networks.

Author

Murphy, Margi

Subjects
COMPUTER hacking, REMOTE access networks, SOCIAL engineering (Fraud), MULTI-factor authentication
Abstract

Coinbase's Lunglhofer says his company now requires employees to log in with a small USB-type security device that provides additional authentication. Melnick says that getting employees to be vigilant about security is important and that companies should get outsiders to test their defenses - and keep workers on their toes. One employee followed the instructions, inadvertently providing the hackers with a username and password. [Extracted from the article]

Published
2023

15. MGM Resorts Hackers Broke in After Tricking IT Service Desk.

Author

Martin, Andrew, Gallagher, Ryan, and Manson, Katrina

Subjects
INFORMATION technology, COMPUTER hackers, SOCIAL engineering (Fraud), BUSINESS enterprises, DESKS, CYBERTERRORISM
Abstract

Okta's advisory warned that hackers were tricking IT service desk staff into resetting multifactor authentication settings enrolled by "highly privileged users." Okta has been assisting MGM, a customer, in its response to the attack, he said. [Extracted from the article]

Published
2023

16. MGM Resorts Hackers Broke in After Tricking IT Service Desk.

Author

Martin, Andrew, Gallagher, Ryan, and Manson, Katrina

Subjects
INFORMATION technology, COMPUTER hackers, SOCIAL engineering (Fraud), BUSINESS enterprises, DESKS, CYBERTERRORISM
Abstract

Okta has been assisting MGM, a customer, in its response to the attack, he said. Okta's advisory warned that hackers were tricking IT service desk staff into resetting multifactor authentication settings enrolled by "highly privileged users.". [Extracted from the article]

Published
2023

17. Group in Casino Hacks Skilled at Duping Workers for Access.

Author

Manson, Katrina, Turton, William, and Murphy, Margi

Subjects
SKILLED labor, COMPUTER hacking, SOCIAL engineering (Fraud), COMPUTER hackers, INFORMATION technology, SOCIAL media mobile apps
Abstract

However, the representative of Scattered Spider said the groups have worked together multiple times and that Scattered Spider was grateful for ALPHV's help in attacks on some companies. (Bloomberg) -- The hacking group suspected of cyberattacks against two giant casino operators has quickly made a name for itself for its skills in social engineering, such as tricking someone to gain access to a computer system or another storehouse of sensitive information. [Extracted from the article]

Published
2023

18. Group Behind Casino Hacks Skilled at Duping Workers for Access.

Author

Manson, Katrina, Turton, William, and Tarabay, Jamie

Subjects
SKILLED labor, COMPUTER hacking, SOCIAL engineering (Fraud), INFORMATION technology, SOCIAL media mobile apps
Abstract

(Bloomberg) -- The hacking group suspected of cyberattacks against two giant casino operators has quickly made a name for itself for its skills in social engineering, such as tricking someone to gain access to a computer system or sensitive information. However, three cybersecurity experts assessed that the Telegram user was linked to the hacking group. However, the representative of Scattered Spider said the groups have worked together multiple times and that Scattered Spider was grateful for ALPHV's help in attacks on some companies. [Extracted from the article]

Published
2023

19. Caesars Entertainment Paid Millions to Hackers in Attack.

Author

Turton, William

Subjects
COMPUTER hackers, SOCIAL engineering (Fraud), COMPUTER files
Abstract

(Bloomberg) -- Caesars Entertainment Inc. paid tens of millions of dollars to hackers who broke into the company's systems in recent weeks and threatened to release the company's data, according to two people familiar with the matter. Read More: MGM, Caesars Hacked by "Scattered Spider" in Span of Weeks The hackers began targeting Caesars as early as Aug. 27, according to one of the people. [Extracted from the article]

Published
2023

20. Caesars Entertainment Paid Millions to Hackers in Attack.

Author

Turton, William

Subjects
COMPUTER hackers, BUSINESS enterprises, SOCIAL engineering (Fraud), COMPUTER files, STOCK prices
Abstract

(Bloomberg) -- Caesars Entertainment Inc. paid tens of millions of dollars to hackers who broke into the company's systems in recent weeks and threatened to release the company's data, according to two people familiar with the matter. In the case of Caesars, the hackers first breached an outside IT vendor before gaining access to the company's network, according to the people. [Extracted from the article]

Published
2023

21. Caesars Entertainment Paid Millions in Ransom in Recent Attack.

Author

Turton, William

Subjects
RANSOM, SOCIAL engineering (Fraud), BUSINESS enterprises, YOUNG adults
Abstract

The hackers began targeting Caesars as early as Aug. 27, according to one of the people. (Bloomberg) -- Caesars Entertainment Inc. paid tens of millions of dollars to hackers who broke into the company's systems in recent weeks and threatened to release the company's data, according to two people familiar with the matter. [Extracted from the article]

Published
2023

22. Two British Teens and Their Audacious Hack of Nvidia, Grand Theft Auto and Uber.

Author

Gemmell, Katharine

Subjects
BRITISH people, COMPUTER hacking, INTERNET protocol address, SOCIAL engineering (Fraud), CRIMINAL justice system, CYBERTERRORISM, WITNESSES
Abstract

With relative ease and from the hotel room in Oxfordshire, Kurtaj - together with other unknown members of Lapsus$ - stole commercially sensitive code and video footage of the latest installment of the in-development Grand Theft Auto series. Behind the door, however, was not Lily Howarth, but 17-year-old Arion Kurtaj - already on bail for a daring, largescale hack against chip maker Nvidia Corp. and an intrusion at the UK phone group BT Group Plc. (Bloomberg) -- At 9 p.m. on Sept. 22 last year, a group of City of London police officers waited outside room M15 at the Travelodge Bicester, a one-star budget hotel in Oxfordshire, England, for the right moment to bust in. [Extracted from the article]

Published
2023

23. Deepfake Imposter Scams Are Driving a New Wave of Fraud.

Author

Ahmed, Nabila, Haigh, Adam, Thomson, Ainsley, and Harmsworth, Ellie

Subjects
FRAUD, SWINDLERS & swindling, SOCIAL engineering (Fraud), INVESTMENT fraud, CRIMINAL procedure
Abstract

Financial crime experts at major banks, including Wells Fargo & Co. and Deutsche Bank AG, say the fraud boom on the horizon is one of the biggest threats facing their industry. "It's a fair bet that over the next two or three years we're going to see more AI-generated criminal attacks", says Pope, a former deputy commissioner in the New Zealand Police who oversaw some of the nation's highest-profile criminal cases. [Extracted from the article]

Published
2023

27. Crypto Firm Turns to Estonian Authorities After $37 Million Hack.

Author

Tammik, Ott and Eglitis, Aaron

Subjects
COMPUTER hacking, SOCIAL engineering (Fraud), CRYPTOCURRENCIES, INTERNET gambling, CYBERTERRORISM
Abstract

The hack "involved elements of social engineering, aggressive bribery attempts of critical personnel, and attacks on numerous internet-accessible applications", CoinsPaid said in a statement on Thursday. CoinsPaid, which facilitates crypto payments for online casinos, on July 26 said it suspects Lazarus Group, a North Korea-linked hacking group, was behind the attack. (Bloomberg) -- CoinsPaid, the world's biggest crypto payments provider, reported a $37 million hack it's attributed to North Korea's Lazarus Group to Estonian police. [Extracted from the article]

Published
2023

28. Briton Admits to Twitter Hack That Hijacked Celebrity Accounts.

Author

Murphy, Margi

Subjects
COMPUTER hacking, SOCIAL engineering (Fraud), GUILTY pleas, CELEBRITIES, BRITONS, CYBERTERRORISM
Abstract

(Bloomberg) -- A British man has admitted to his involvement in one of the most high-profile social media hacks, a plot that included the hijacking of top US political and business leaders' Twitter accounts. The Department of Justice alleges that O'Connor plotted with others to hijack Twitter accounts to promote a scheme to defraud the public, with O'Connor paying $10,000 for just one of the accounts he requested. [Extracted from the article]

Published
2023

29. Indian Cyber-Espionage Effort Targets Election, Energy Officials.

Author

Mehrotra, Kartikay

Subjects
ELECTIONS, INDIANS (Asians), MALWARE, SOCIAL engineering (Fraud), NUCLEAR energy
Abstract

(Bloomberg) -- A hacking group with ties to the Indian military adopted a pair of mobile surveillance tools to spy on geopolitical targets in Pakistan and Kashmir amid persistent regional tensions between the nuclear-armed neighbors, according to a report from cybersecurity company, Lookout Inc. The group is known for commandeering legitimate web services in South Asia and embedding surveillance tools or malware inside these apps and services to conduct espionage. [Extracted from the article]

Published
2021

30. North Korean Hackers Targeting Cybersecurity Researchers.

Author

Mehrotra, Kartikay

Subjects
INTERNET security, COMPUTER hackers, SOCIAL engineering (Fraud), RECONNAISSANCE operations
Abstract

(Bloomberg) -- Hackers from North Korea have embarked on a sweeping intelligence gathering campaign aimed at cybersecurity researchers who hunt for vulnerabilities in corporate networks, according to Google. In other cases, the malware was installed in the researchers' systems after they followed a Twitter link to a cybersecurity blog to review possible vulnerabilities, according to Alphabet Inc.'s Google. [Extracted from the article]

Published
2021

Catalog

Books, media, physical & digital resources
See catalog results