HN22 - Crypto Chaos: How a Fake SEC Tweet Triggered a Bitcoin Spike
About this Episode
In this gripping episode of Exploit Brokers, we delve deep into the intricate world of cryptocurrency and cybersecurity. Our journey begins with the astonishing SEC Twitter hack, where hackers manipulated the SEC's account to spread false information about Bitcoin ETF approvals. This led to a monumental $2,000 surge in Bitcoin prices, leaving the crypto community in awe. We dissect the attack and explore the potential motives behind this mind-bending sequence of events.
Our attention then shifts to North Korea's state-sponsored hackers who have managed to pilfer atleast an astounding $600 million in cryptocurrencies throughout 2023. Despite a 30% reduction from 2022 crypto theft, North Korea remains a major player in the crypto theft game, responsible for nearly a third of all funds stolen in crypto attacks last year. We dive into their sophisticated tactics, money laundering methods, and the constant battle they wage against law enforcement agencies, posing a significant challenge to businesses and governments worldwide.
Finally, we turn our focus to NoaBot, the latest Mirai-based botnet making waves in the cyber world. Targeting SSH servers for cryptocurrency mining since the beginning of 2023, NoahBot stands out with its wormable self-spreader capability. We explore its tactics, including SSH brute-forcing and the creation of SSH public keys for remote access, shedding light on the evolving landscape of cyber threats. Join us in this episode to gain valuable insights and knowledge, helping you stay vigilant and informed in an ever-changing digital environment. Don't forget to like, subscribe, and hit the notification bell to stay updated on the latest developments in cybersecurity and cryptocurrency. #CryptoChaos #NorthKoreanHackers #DataBreaches #Cybersecurity #NoaBot #BitcoinETF #SEC #CryptoScams #HackingTactics #RustMalware #GolangMalware #HackingNews
Sources:
Malwarebytes SEC account hacked: https://www.malwarebytes.com/blog/news/2024/01/sec-x-account-hacked-to-hawk-crypto-scams
SEC approved bitcoin ETF: https://www.engadget.com/sec-approves-bitcoin-etfs-for-real-this-time-224125584.html?src=rss
North Korea Hackers Steal Crypto: https://thehackernews.com/2024/01/north-koreas-cyber-heist-dprk-hackers.html
Mirai-based NoaBot: https://thehackernews.com/2024/01/noabot-latest-mirai-based-botnet.html
Recent Episodes from Exploit Brokers - Tech and Hacking News Commentary
HN28 - Ransomware Alert: Black Cat's Bold Move Against UnitedHealth
HN27 - Massive Ransomware Empire Crumbles: Inside the Fall of LockBit
In this explosive episode of Exploit Brokers, we delve into the groundbreaking takedown of LockBit, one of the most formidable names in the ransomware arena. With law enforcement agencies from the US, EU, and beyond joining forces, this rare international operation has sent shockwaves through the cybercrime world. From arrests in Ukraine and France to the seizing of servers and crypto accounts, we uncover the strategies that led to this significant blow against digital extortion. Join us as we dissect the implications of Operation Cronos, explore the intricacies of ransomware attacks, and discuss the future of cybersecurity in the wake of LockBit's disruption. Whether you're a cybersecurity enthusiast or just keen to understand the evolving landscape of digital threats, this episode is packed with insights and analyses not to be missed.
#CyberSecurity #LockBit #Ransomware #OperationCronos #DigitalCrime #InfoSec #DataBreach #ExploreBrokers #InfoSec #HackingNews #CyberCrime #lockbit #ransomware #europol #fbi #decrypt
Lockbit Disrupted: https://www.reuters.com/technology/cybersecurity/lockbit-cybercrime-gang-disrupted-by-international-police-operation-2024-02-19/
Lockbit Father-Son Duo: https://www.reuters.com/technology/cybersecurity/ukraine-arrests-father-son-duo-lockbit-cybercrime-bust-2024-02-21/
Decrypt resources: https://www.nomoreransom.org/en/index.html
HN26 - AI and Cyber Attacks: Unveiling the Tactics of Nation State Hackers
Welcome back to Exploit Brokers, where we delve deep into the world of cybersecurity, AI, and the digital battlegrounds of our time. In this episode, we're exploring a topic that sounds like it's straight out of a sci-fi movie, but is unfolding in real life: the integration of AI into military and cyber warfare by nation states. With an unprecedented surge in data breaches, hacking attempts, and digital crimes, we're at a critical juncture in understanding the impact of AI on our security and daily lives.
Join us as we discuss how countries like China, Iran, North Korea, and Russia advanced persistent threats (APTs) are employing large language models (LLMs) to enhance their cyber operations. From weaponizing AI in cyber attacks to developing sophisticated malware and social engineering campaigns, we uncover the chilling advancements in digital warfare. But it's not all doom and gloom; we also highlight the measures being taken by giants like Microsoft and OpenAI to combat these threats.
Whether you're a tech enthusiast, a cybersecurity professional, or just curious about the role of AI in shaping our world, this episode offers insightful analysis and thought-provoking discussions on the challenges and opportunities presented by AI in cybersecurity.
Remember to like, subscribe, and hit the bell icon to stay updated with our weekly episodes every Thursday. Your support helps us grow the channel and continue bringing you in-depth content on the latest in technology and cybersecurity. Thank you for tuning in to Exploit Brokers!
#CyberSecurity #ArtificialIntelligence #DigitalWarfare #NationStateHacking #APT #CyberAttack #TechAnalysis #AIinMilitary #DataBreach
#ExploitBrokers #CyberDefense #InfoSec #Hacking #MachineLearning #CyberCrime #EthicalHacking #CyberThreats #TechnologyNews #DigitalSecurity
#AIResearch #CyberWarfare #SecurityBreach #TechTrends #FutureOfAI #PrivacyMatters #CyberSafety #OnlineSecurity #ThreatIntelligence
#DataProtection #AIInCyberSecurity
Source: https://www.darkreading.com/threat-intelligence/microsoft-openai-nation-states-are-weaponizing-ai-in-cyberattacks
HN25 - Hacking Havoc: How Fulton County Became a Real-Life Cyberwar Zone
Dive into the eye-opening world of cybersecurity as we dissect the recent cyber attack and Hacking Havoc that has plunged Fulton County into turmoil. Witness the frightening resemblance between fictional cyber threats depicted in shows like Mr. Robot and the stark reality facing our digital infrastructures today. This episode of Exploit Brokers takes you on a journey through the silent yet devastating impacts of cyber warfare. From communication breakdowns to complete operational shutdowns, understand the profound consequences of being unprepared in the digital age.
We'll also delve into the technical depths, examining the vulnerabilities exploited and the urgent need for robust security measures. As we navigate through these unprecedented challenges, it's clear that the boundary between cinematic fiction and our digital existence is blurring. Join us in exploring the critical lessons from Fulton County's ordeal and the essential steps we must take to fortify our cyber defenses.
#cybersecurityinsights #DigitalDystopia #FultonCountyShutdown #CyberThreatReality #InfrastructureAtRisk #GovernmentInCrisis #SecureDigitalWorld #CyberWarfareUnveiled #ProtectingOurFuture #CyberResilience #leavetheworldbehind #cyberattacks #powerplant #infosec #hackers #hackingnews
Timeline:
00:00 Opener
00:48 Intro
01:19 Fulton Power Grid Attack
08:46 Jenkins Exploited Via CVE
15:33 Outro
Sources:
Fulton County: https://www.darkreading.com/cyberattacks-data-breaches/fulton-county-suffers-power-outages-cyberattack
Jenkins PoC Vuln: https://www.darkreading.com/vulnerabilities-threats/poc-exploits-heighten-risks-around-critical-new-jenkins-vuln
Jenkins: https://www.jenkins.io/
HN24 - Sandwich Data Breach Alert: Jason's Deli & Subway Under Attack
🔒 Dive into the world of cybersecurity as we uncover the latest threats facing businesses in today's digital landscape. In this video, we dissect the Jason's Deli data breach, shedding light on the dangers of credential stuffing attacks. Discover how hackers exploit weak password habits and gain access to personal data, leaving thousands of customers at risk. Stay informed and learn how to protect yourself and your business from cyber threats. 💻🌐
#Cybersecurity #DataBreach #Ransomware #LockBit #CredentialStuffing #OnlineSecurity #DigitalThreats #Cybercrime #PasswordProtection #ProtectYourData
🍔 But that's not all! We also delve into the Subway ransomware attack, where the LockBit 3.0 gang threatens to expose sensitive financial information. Understand the evolving tactics of cybercriminals and how they target businesses of all sizes. Gain insights into the importance of proactive measures such as multi-factor authentication, secure passwords, and robust backup strategies. Stay ahead of the game and safeguard your digital assets. 🛡️🌐
#Subway #RansomwareAttack #LockBit3 #CybersecurityMeasures #DataProtection #DigitalSafety #CyberThreats #OnlinePrivacy #ProtectYourBusiness
🔐 Join us on this cybersecurity journey to uncover the truth behind these cyber threats and learn how to fortify your defenses. Explore the world of hackers, ransomware, and the ever-evolving landscape of online security. Don't miss out on essential tips to keep your data safe in the digital age. Tune in now and become a cybersecurity expert! 🚀💻
#OnlineSafety #CybersecurityAwareness #DataPrivacy #CyberSecurityTips #StaySafeOnline #SecurityMeasures #ProtectYourself #DigitalProtection #CybersecurityInsights #ExploreBrokers
Website: https://Exploitbrokers.com
Follow us: https://follow.exploitbrokers.com
Timeline:
00:00 Intro
00:18 Opener
00:49 Jason's Cred Stuffing
07:37 Subway Ransomware
19:50 Closing Remarks/Outro
Sources
Jason's Deli: https://www.darkreading.com/cyberattacks-data-breaches/jason-s-deli-accounts-compromised-by-credential-stuffing-
Subway: https://www.darkreading.com/cyberattacks-data-breaches/subway-lockbit-investigation-on-menu
HN23 - One Click Away: The Alarming Reality of Data Theft Exploits
In this eye-opening episode of Exploit Brokers, we delve deep into the world of cybercrime, dissecting the sinister Phemedrone Stealer malware and its ability to pilfer your precious data.
Join us as we explore the chilling reality that just one click on a seemingly harmless URL can lead to a catastrophic data breach. Discover the insidious tactics used by cybercriminals, from leveraging unpatched Windows flaws to social engineering techniques that lure unsuspecting users into clicking malicious links. Find out how this open-source information stealer, Phemedrone Stealer, targets web browsers, cryptocurrency wallets, and messaging apps like Telegram, Steam, and Discord.
This episode serves as a stark reminder of the importance of keeping your systems updated with the latest patches. Don't be one of the countless individuals who remain vulnerable to these cyber threats long after patches are released. Protect yourself against data theft, cryptocurrency loss, and identity compromise. Join us as we shine a light on the dark world of cybercrime and provide you with the knowledge to safeguard your digital life.
💻🔒 #Cybersecurity #DataTheft #PhemedroneStealer #WindowsVulnerabilities #Cybercrime #OnlineSecurity #ExploitBrokers #DataProtection #cybersecurity #hackingnews #financialcrime #hackingnews #blackhats #cybersecurity #infosec #malware #phishing
Sources:
Opening Quote: https://www.goodreads.com/quotes/514768-all-it-takes-is-one-bad-day-to-reduce-the
Hackers Weaponize .URL: https://thehackernews.com/2024/01/hackers-weaponize-windows-flaw-to.html
Phemedrone-Stealer: https://github.com/nullixx/Phemedrone-Stealer
HN22 - Crypto Chaos: How a Fake SEC Tweet Triggered a Bitcoin Spike
In this gripping episode of Exploit Brokers, we delve deep into the intricate world of cryptocurrency and cybersecurity. Our journey begins with the astonishing SEC Twitter hack, where hackers manipulated the SEC's account to spread false information about Bitcoin ETF approvals. This led to a monumental $2,000 surge in Bitcoin prices, leaving the crypto community in awe. We dissect the attack and explore the potential motives behind this mind-bending sequence of events.
Our attention then shifts to North Korea's state-sponsored hackers who have managed to pilfer atleast an astounding $600 million in cryptocurrencies throughout 2023. Despite a 30% reduction from 2022 crypto theft, North Korea remains a major player in the crypto theft game, responsible for nearly a third of all funds stolen in crypto attacks last year. We dive into their sophisticated tactics, money laundering methods, and the constant battle they wage against law enforcement agencies, posing a significant challenge to businesses and governments worldwide.
Finally, we turn our focus to NoaBot, the latest Mirai-based botnet making waves in the cyber world. Targeting SSH servers for cryptocurrency mining since the beginning of 2023, NoahBot stands out with its wormable self-spreader capability. We explore its tactics, including SSH brute-forcing and the creation of SSH public keys for remote access, shedding light on the evolving landscape of cyber threats. Join us in this episode to gain valuable insights and knowledge, helping you stay vigilant and informed in an ever-changing digital environment. Don't forget to like, subscribe, and hit the notification bell to stay updated on the latest developments in cybersecurity and cryptocurrency. #CryptoChaos #NorthKoreanHackers #DataBreaches #Cybersecurity #NoaBot #BitcoinETF #SEC #CryptoScams #HackingTactics #RustMalware #GolangMalware #HackingNews
Sources:
Malwarebytes SEC account hacked: https://www.malwarebytes.com/blog/news/2024/01/sec-x-account-hacked-to-hawk-crypto-scams
SEC approved bitcoin ETF: https://www.engadget.com/sec-approves-bitcoin-etfs-for-real-this-time-224125584.html?src=rss
North Korea Hackers Steal Crypto: https://thehackernews.com/2024/01/north-koreas-cyber-heist-dprk-hackers.html
Mirai-based NoaBot: https://thehackernews.com/2024/01/noabot-latest-mirai-based-botnet.html
HN21 - Underground Market for Twitter/X Accounts; Google OAuth Backdoor for Hackers
HN20 - T-Mobile's Watchful Eye, Big Brother, and the Misconstrued Fines. The Prelude to Big Brother?
In this episode of Exploit Brokers, we delve into a recent online uproar surrounding T-Mobile and its alleged imposition of fines for text messages containing hate speech and other violations. We take a closer look at the image that sparked the controversy, which led many to fear that T-Mobile was turning into a "Big Brother" figure, constantly monitoring and fining consumers. However, as we investigate further, we find that the situation is not as dire as it initially seemed.
As we dissect the details, we emphasize the importance of staying informed about evolving policies and industry practices. While there is no immediate cause for consumer alarm, it's crucial to keep an eye on developments in the telecommunications sector to ensure that user privacy and freedom of communication are protected.
Join us as we separate fact from fiction in this intriguing story of T-Mobile, potential fines, and the evolving landscape of digital communication. Please subscribe to our podcast or YouTube channel for more thought-provoking discussions on tech and cybersecurity.
#tmobile #privacyconcerns #telecommunications #datasecurity #bigbrother #digitalprivacy #internetsecurity #onlineprivacy
Website: https://exploitbrokers.com
Sources:
(Original link appears to be moved behind account access now) Support Article: https://support.bandwidth.com/hc/en-us/articles/19939626519575-New-non-compliance-fees-on-January-1
Wayback Machine version: https://web.archive.org/web/20231227053133/https://support.bandwidth.com/hc/en-us/articles/19939626519575-New-non-compliance-fees-on-January-1
updated roughly 6-7pm central/ 7-9 est on Dec 27th 2023 from the previous verbage not saying A2P traffic
Legalish info: https://support.yotpo.com/docs/shaft-and-prohibited-sms-content-in-sms-marketing
original tweet and image: https://twitter.com/lauraloomer/status/1739009180197925005