Connect with us

PressRelease

FBI: Hackers target defence companies with ransomware using BadUSB

Published

on

Hackers target defence companies

In a recently updated flash notice, the Federal Bureau of Investigation (FBI) cautioned US businesses that the financially driven FIN7 cybercriminal gang has been targeting the US military industry with packages carrying infected USB sticks to spread ransomware.

The attackers sent out shipments with “BadUSB” or “Bad Beetle USB” devices marked with the LilyGO brand, which are often sold online.

Since August 2021, they have been mailing harmful packages to companies in the transportation and insurance sectors as well as defence companies beginning in November 2021 via the United States Postal Service (USPS) and United Parcel Service (UPS).

Networks that have been hacked by ransomware such as BlackMatter or REvil
Targets were duped into opening the shipments and plugging the USB drives onto their computers by FIN7 agents posing as representatives from Amazon and the US Department of Health & Human Services (HHS).

According to allegations the FBI has received since August, these harmful shipments may also include letters concerning COVID-19 regulations, fake gift cards, or forgeried thank-you notes, depending on the impersonated party.

The USB drive immediately registers as a Human Interface Device (HID) Keyboard as the targets insert it into their PCs (allowing it to operate even with removable storage devices toggled off).

Once keystrokes have been injected, malware payloads are subsequently installed on the infected systems.

FIN7’s ultimate objective in such assaults is to get access to the targets’ networks and use a variety of tools, including Metasploit, Cobalt Strike, Carbanak malware, the Griffon backdoor, and PowerShell scripts, to instal ransomware (including BlackMatter and REvil) within a compromised network.

Teddy bears were used to spread malware

The FBI previously issued a warning about a previous string of events in which FIN7 actors pretended to be Best Buy and sent identical shipments containing malicious flash drives to lodging facilities, dining establishments, and retail establishments via USPS.

Reports about these assailants first surfaced in February 2020. Additionally, several of the targets said that the hackers threatened them through phone or email to connect the discs to their systems.

The infected parcels supplied by FIN7 also contained objects like teddy bears intended to deceive targets into relaxing their guard, starting at least in May 2020.

Assaults like the ones made by FIN7 are referred to be HID or USB drive-by attacks, and they are only effective if the targets are coerced into inserting unfamiliar USB devices into their workstations or voluntarily do so.

By limiting employee access to USB devices based on their hardware ID or if they have been approved by the company’s security staff, businesses may protect themselves from such assaults.

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

nineteen + four =

PressRelease

What is faze save kidshaywarddecrypt?

Published

on

By

faze save kidshaywarddecrypt

“Faze Save Kidshaywarddecrypt” likely refers to a meme or joke within the gaming community.

Esports faze save

“Faze Clan” is a professional esports and entertainment organization, primarily known for their presence in the Call of Duty and Counter-Strike: Global Offensive scenes. “Faze Save” could refer to a clutch play or a significant moment in a match where a player from the Faze Clan saved the round for their team. However, without more context, it’s difficult to determine the specific meaning of “Faze Save.”

Several players of the popular esports FaZe clan were suspended recently for promoting a controversial cryptocurrency called Save The Kids. Save The Kids was advertised as an alternative to Dogecoin and Etherium, and it promised to donate a portion of the proceeds to a charity. The controversy caused a huge backlash from fans, who slammed the clan for its shady business practices.

The members of FaZe Clan have denied being involved with the scheme, but anyone found to be involved in the scheme could face serious consequences. FaZe Clan’s reputation could be ruined, and potential sponsors could be discouraged from working with the group.

Faze clan save

“Faze Clan Save” could refer to a clutch play or a significant moment in a match where a player from the Faze Clan saved the round for their team. It might be used to describe a play that was critical to the outcome of a match and helped secure a win for Faze Clan.

faze save the kids

“Save the Kids” is a phrase that has become popular in internet culture and is often used as a hashtag or meme. The exact meaning of “Save the Kids” varies depending on the context, but it generally refers to a call to action or a show of support for a cause, often related to children’s rights, safety, or well-being.

In the context of “Faze Save the Kids”, it’s possible that it is a reference to the Faze Clan supporting the “Save the Kids” cause or using the phrase as a rallying cry within the gaming community. However, without more context, it is difficult to determine the exact meaning.

Continue Reading

PressRelease

Sources:On Monday, Facebook will reveal a range of music products, such as a Clubhouse-like app, a podcast discovery service integrated with Spotify, and more. (Vox, Peter Kafka)

Published

on

sources monday spotifykafkavox

Sources:On Monday, Facebook will reveal a range of music products, such as a Clubhouse-like app, a podcast discovery service integrated with Spotify, and more. (Vox, Peter Kafka)

Peter Kafka / Vox:

Several audio products, including a Clubhouse-like app, a podcast finding service integrated with Spotify, and more, will be unveiled by Facebook on Monday, according to sources. On Monday, there will be announcements, although some things won’t be available for some time. — Facebook wants you to start communicating with others on the site.

Continue Reading

PressRelease

ByteDance’s founder Zhang Yiming steps down as Executive Chairman

Published

on

Zhang Yiming
The founder of TikTok’s parent company ByteDance founder Zhang Yiming has stepped down as chairman after announcing last May he was resigning as CEO and moving into a strategy role. New CEO Liang Rubo has taken over as chairman of the company’s board. The news comes shortly after the company announced a major organisational reshuffle at ByteDance to create six separate business units.
Continue Reading

Trending