Posts

Big YouTube accounts are being plagued by hackers promoting Bitcoin scams resembling the hack that compromised Twitter

Image
  As SpaceX and NASA made history last week with their fast ever spaceflight together , millions flocked to YouTube to watch astronauts return to Earth.  Tens of thousands of those viewrs unwittingly clicked on videos that append to be official SpaceX livestreams, posted by seemingly legitimate YouTube channels with hunderds of thousands of subscribes. Instead, they were met with "Bitcoin giveaway" meaaseages urging them to send Bitcoin in order to be paid back double - a common scam tactic. Hackers appear to have compromised several high-profile YouTube channels in the past week, changed then channel names to hot-button topics like SpaceX or Elone Musk, and promoted Bitcoin scams. The trend was pointed out Monday by esports commentator Rod Breslau. The tactics appear similar to those employed by the hackers who compromised Twitter last month, taking over verified accounts , including Kim Kardashin's Bitcoin scams. But while the Twitter breach was the results of hackers g...

Pakistan news channel Dawn hacked, screen shows Indian tricolour; probe launched

Image
While an advertisement was running on the channel, an Indian flag appeared on the screen with the message "Happy Independence Day" written on it. Leading Pakistani news channel Dawn TV said it had launched an investigation into the sudden broadcast of an Indian flag and Happy Independence Day text on its screen during a commercial on Sunday. Anonymous hackers attacked Dawn TV on Sunday afternoon. While an advertisement was running on the channel, an Indian flag appeared on the screen with the message “Happy Independence Day” written on it. The flag and the message stayed on the screen for a while before disappearing. The incident went viral on social media and clips of the broadcast were circulated on Twitter. Soon after the incident, Dawn News issued a statement, saying, “The Dawn administration has ordered an immediate investigation into the matter. The agency is investigating the matter and will inform its viewers as soon as it reaches a final conclusion.” In July, the web...

Carryminati's YouTube account hacked, hacker asks for bitcoin donations. Twitter has memes

Image
Carryminati's second YouTube account was hacked recently and the hackers asked for bitcoin donations. Twitter responded with memes. ot long ago, Twitter accounts of some of the most prominent people including Jeff Bezos, Elon Musk, Warren Buffet, Barack Obama, Joe Biden and Bill Gates were hacked. All these accounts tweeted out a similar bitcoin message asking people to donate through a particular URL. Now, one of the most famous Indian YouTuber Carryminati aka Ajey Nagar is going through the same ordeal. His YouTube channel Carryislive was hacked during the early hours of Saturday. He took to Twitter to ask for assistance from YouTube. Nagar tweeted, “@YouTubeIndia My channel Carryislive has been hacked, need immediate assistance (sic).” Twitter account of YouTube India was also quick to respond and they left a comment that read, “We're really sorry this happened. Mind following us so we can continue with next steps over DM (sic)?” Similar to the Twitter hack, Carryminati’s Yo...

40,000 cyber-attacks attempted by Chinese hackers on Indian banking, IT sector in five days.

Image
A top police official in Maharashtra informed on Tuesday that hackers based in China attempted over 40,000 cyber attacks on India's Information Technology infrastructure and banking sector in the last five days. Maharashtra police's cyber wing collected information about the hacking attempts and found out that most of them originated from Chengdu area in China. "According to our information at least 40,300 cyber attacks were attempted in the last four-five days on the resources in Indian cyberspace," PTI qouted Yashasvi Yadav, Special Inspector General of Police of the Maharashtra Police's cyber wing, as saying. Meanwhile, the central government has asked citizens to remain alert against a phishing attack on Sunday that could be used to steal personal and financial information in the garb of official communication on coronavirus COVID-19 pandemic. According to the Indian Computer Emergency Response Team (CERT), the phishing attack campaign by "malicious actor...

Truecaller data of 4.75 cr Indian users leaked on dark web: Report

Image
Truecaller data of 4.75 crore Indian users have been put on sale on the dark web for around ₹75,000, online intelligence firm Cyble reported. Truecaller however denied the report saying that there’s no breach on its database. The Truecaller data is from 2019 and the information available on the dark web has been categorised based on states, cities and carriers, Cyble said in a blog post. User information available includes phone number, carrier, name, gender, email address, Facebook ID and more. Cyble has also published the leaked details on its blog post. The security firm also suggested that this information trove will lead to scams, spams, and identity thefts. Truecaller on the other hand refutes the report and says that there’s no data breach as claimed by Cyble. “Thank you for bringing this to our attention. There has been no breach of our database and all our user information is secure. We take the privacy of our users and the integrity of our services extremely seriously and we ...

Unacademy Hacked?? Unacademy database of 22 million users hacked, information put up for sale

Image
  A database of around 22 million users of Unacademy with contacts of employees of Wipro, Infosys, Cognizant, Google and its investor Facebook is up for sale on the darkweb, according to US-based security firm Cyble. The company had suffered a breach in January following which contacts were put up for sale as recently as May 3 for $2000, the firm said. According to Cyble the database includes usernames, emails addresses, passwords, date joined, last login date, first and last names, account profile and account status (whether the account is active). Hemesh Singh, Co- Founder and CTO, Unacademy in a statement to ET said, "As per our internal investigations, email data of around 11 million users has been compromised as against 22 million stated in reports. This is on account of only around 11 million email data of users available on the Unacademy platform. We have been closely monitoring the situation and would like to assure our users that no sensitive information such as financial...

A Indian Cyber Security Researcher earns 15 lakhs bug bounty From Facebook

Image
A cross-site scripting (XSS) vulnerability that affected the ‘Login with Facebook’ button has earned a security researcher 15 lakhs. A indian cyber security researcher named Vinoth Kumar discovered a DOM-based XSS vulnerability in the technology that gives third-party websites the option to authenticate visitors through the Facebook platform. The security issue arose because of a flawed implementation of the postMessage API. Kumar described the technology is an underexplored avenue for security bug hunters, hence his decision to look into Facebook’s implementation. The researcher reported the issue to Facebook on April 17, three before days the social network resolved the security bug. Facebook paid out a 15 lakhs bug bounty for Kumar’s find on May 1.