Plus: Chinese hackers targeting online casinos in Southeast Asia
| Part of  Network | |
 Presented by  |
Moola market has been hit by hackers, according to the company. The company lost $9M worth of cryptocurrencies due to the breach. More: - Moola Market is a decentralized financial platform that enables users to yield their CELO coin and earn interest.
- An unidentified threat actor borrowed large amounts of Celo-based coins, draining the entire exchange out of its funds. This move caused the coin prices to go higher, resulting in a liquidity issue for the exchange.
- The company was forced to publicly state that it would be willing to pay a bounty if the funds would be returned within 24 hours.
- Soon after releasing this statement, an unnamed individual reached out to the company, returning 93% of the stolen funds in return for a $500,000 bounty.
Zoom Out: - Only a few days ago, a DeFI platform named Mango Markets was breached in a similar way. The threat actor drained the platforms' funds, negotiating with the company to keep $47M out of the total $114M that was stolen. The individual then claimed that his actions were legal.
- The FBI has previously warned of an increased number of hacking campaigns that are using security flaws in DeFi platforms for their own personal gain.
| |
Santander, one of the largest banks in the world, has created an investment fund for cybersecurity startups. The bank is partnering with Forgepoint Capital. More: - The fund could invest nearly $300M in the following years, targeting startups in Europe, North America, and Israel.
- The two companies are expected to launch a fund together in 2023. This will accept capital from external public and private investors, but Santander is expected to be the main investor.
- Officials from Banco Santander stated that cybersecurity represents endless opportunities as an industry and that investing in the field is a logical next step for the company.
- The partnership is expected to evolve in several steps. The first will be setting up a joint partnership fund named Forgepoint Capital International, then having Santander lead the North American investment round of this fund, and then finalizing it with a co-investment process.
Zoom Out: - Banks have been at the center of hacking campaigns numerous times. Earlier this year, a New York court sentenced a British individual to jail after he stole over $5M from U.S. banks by hacking their email servers.
| |
 A message from SECURITY COMPASS Discover an automated, scalable, developer-centric approach to threat modeling. So what differentiates a developer-centric threat modeling platform from more traditional threat modeling tools? A holistic developer-centric threat modeling platform offers a solution that covers the entire process—from analysis to implementation to measurement and reporting. It will help you release secure software faster by: - Automatically generating threat modeling diagrams
- Identifying required threat countermeasures and security controls
- Engaging key stakeholders (especially developers)
- Ensuring developers implement the required controls
- Measuring the effectiveness of the program
- Maintaining audit trails and data
- Understanding a change in risk profile
Read Developer Centric Software Threat Modeling Powered by Automation, a comprehensive guide on why developer-centric threat modeling is critical for your business. Get the guide
| |
Researchers have tracked a FUD backdoor that acts like a Windows update. The attack is coming from an unknown threat actor. More: - The infection chain begins with a Microsoft Word document, similar to many Powershell script attacks such as this one. Once the victim downloads the file, two PowerShell scripts are launched.
- The content of the PowerShell scripts is stored in text boxes inside the Word document and will be saved to the fake update directory named %AppData%\Local\Microsoft\Windows\Update.
- Once they are activated, a list of C2 commands, such as enumerating files, deleting files, running specific remote operations, etc.
- Several anti-malware software programs are able to detect the backdoor, while a number of others pass the backdoor as safe for the user.
| |
Chinese hackers are targeting online casinos in Southeast Asia with a new malware hacking campaign. The attacks are being tracked to DiceyF. More: - Researchers claim that the threat actor may be using the malware for cyberespionage and intellectual property theft.
- DiceyF used PlugX installers signed by a potentially stolen digital certificate from a secure messaging client development studio.
- The group is using a tool named GamePlayer framework. GamePlayer framework enables hackers to deploy keystroke logging, steal data, gain remote access, etc.
- The malware is written in C# and derives from a malware known as PuppetLoader.
| |
RealDefense has raised $30M in a growth funding round. The company is based in Pasadena, California. More: - The funding round was led by Sunflower Bank.
- The company offers a one-stop-shop solution through its main software product named System Mechanic Ultimate Defense.
- RealDefense aims to use the funding to refinance its debt obligations, invest in marketing, and acquire companies.
| |
Quick Hits: - You might have an amazing product and team, but you’ll struggle with your next funding round if you’re weak on this one metric.*
- CISA has released a warning on three new security flaws that were found. The flaws, tracked as CVE-2022-3385, CVE-2022-3386, and CVE-2022-3387, could allow hackers to remotely delete files or execute commands on R-SeeNet.
- Researchers have found a new Windows bug. This bug, tracked as CVE-2022-35829, could allow hackers to gain full remote administrator privileges by abusing Service Fabric Explorer. The latter is an Azure app that allows admins to complete monitoring tasks.
- The REvil hacker group is believed to be the threat actor behind the recent Ransom Cartel activity, according to a new report.
- Research shows that the number of open-source packages used in software supply chain attacks this year has risen to 88,000. This figure represents a 300% increase from 2021.
- Unlock profitable growth. See how Northbeam is helping marketers discover the true impact of their marketing spend.*
*This is sponsored content.
| |
Upcoming events at Inside: - October 14 - Learn how leaders from Slack, Shopify, and Stripe are improving developer productivity, workflow, and collaboration in their engineering orgs. (Register Here) *
- October 19 - AMA with Zecca Lehn (Responsibly VC) (Register Here)
- October 25 - Meet Our Fund 4, an Inside.com Summit (Register Here)
- November 02 - AMA with Bill Glenn (Executive Chairman at Crenshaw Associates) (Register Here)
- November 09 - Synthetic data for more efficient, robust and ethical model development - Live AMA with Yashar Behzadi (CEO and Founder of Synthesis AI)* (Register Here)
- December 07 - Live AMA with Deividi Silva ( Head of Developer Relations at Gun.io) (Register Here)
*This is a sponsored listing.
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords. | |
Security Compass is on a mission to accelerate software time-to-market while managing risk. | |
| 767 Bryant St. #203, San Francisco, CA 94107
Copyright © 2022 Inside.com | |
| |
