Russian hacker group Killnet is claiming that it hacked Prince William's Prince of Wales website. The group claims they are the reason the website has been offline since yesterday. More: - Newsweek has not yet received a comment from Kensington Palace on the matter.
- Killnet claims that this hacking campaign is part of its ongoing efforts to launch cyberattacks against actors that have supported Ukraine in its war against Russia. The group shared the statement in Telegram, a messaging platform that has become popular among hacker groups recently.
- The Prince of Wales' website is not used very often by the Royal Family and still has outdated information about the family, a sign that the website is not considered a priority and that the damage caused by the threat actor, in this case, is limited.
Zoom Out: - This is not the first time that Prince William has been the target of Russian threat actors. In 2018, Russian hackers managed to steal unpublished pictures from his wedding reception.
| |
Russian hackers have stolen over 50 million passwords in the first seven months of 2022 using info stealer malware. The passwords were stolen collectively by 34 hacker groups. More: - In addition to these passwords, the hackers have stolen information from 2.11 billion cookie files, 113,000 crypto wallets, and 103,000 credit cards.
- These figures represent an 80% YoY increase in the number of passwords breached, 74% for cookie files, and 216% for crypto wallets.
- A majority of the victims are located in the U.S. (91,000 devices), followed by Brazil (86,000 devices), India (53,000 devices), Germany (40,000), Indonesia (35,000), the Philippines (31,000 devices), France (30,000 devices), Turkey (28,000 devices), Vietnam (22,000 devices), and Italy (21,000 devices). In total, Russian threat actors managed to breach 890,000 devices in 111 countries.
- The value of credit card information that the groups hold is at least $5.8M.
- Researchers claim that Telegram has become the go-to choice for hackers whenever they want to communicate publically or even spread stealer malware. When it comes to the latter, Redline and Racoon were the two most used info stealers.
| |
 A message from SECURITY COMPASS The only secure developer training that is accredited by (ISC)² Our role-based, language-specific, secure developer training meets developers where they are in their knowledge and learning style to ensure they successfully develop and apply secure coding skills. Go beyond secure coding training. Retain talent, remain competitive, and stay compliant. We offer over 49 courses covering topics including: ● Defending AWS, .NET, Angular, Java, and more ● DevSecOps Fundamentals and DevSecOps for Managers ● Defending Containers, Kubernetes, Docker ● Secure Software Requirements, Design, Testing Explore language-specific, role-based, (ISC)² accredited secure developer training. Visit our page to browse our curriculum, try a free course, or speak to the team. Browse our curriculum
| |
Cloudbrink has raised a $26M funding round to improve internet connection security. The round was led by Highland Capital Partners. More: - Cloudbrink offers software that improves the quality of the internet connection users have and also improves the security of that connection by providing a zero-trust security system for both cloud and data centers.
- The California-based company stated that it is growing between 5x-7x annually. It expects the growth to continue as hybrid work has become a major part of everyday life for both startups and large companies.
- The importance of having good quality for a video call meeting and a safe internet connection that doesn't compromise data has never been bigger. Cloudbrink wants to benefit from the trend and become a leader in the cloud security market, which is expected to reach $77B by 2026.
- Other participants in the round include The Fabric co-creation studio, First Rays VP, Streamlined Ventures, BluePointe Ventures, CMF, and Qualcomm Ventures.
- This is the company's first funding round, as it had operated under stealth mode since being founded in 2019.
| |
The EU Parliament's website has been hacked by the pro-Russia Killnet group only hours after passing a resolution that calls Russia "a state that sponsors terrorism." Hackers used a DDoS attack as their threat vector. More: - The highest legislator body of the EU approved the resolution in the early afternoon today, while the DDoS cyberattack happened only a few hours later at around 15:00 CET.
- While the website went back online, it was brought down again by the hackers only 30 minutes later.
- The EU has not officially identified the responsible threat actor, but the pro-Russia hacker group tracked as Killnet has taken credit.
- Russia denounced the resolution, while the Spokesperson of the Russian MFA called the resolution "an act of idiocy."
| |
Carv has raised a $4M funding round at a $40M valuation to build Web3-based identity verification systems. The startup is based in Los Angeles. More: - Carv enables users to host their own data without having to trust an intermediary system. The company does this by building on blockchain-based technology.
- The company aims to differentiate itself by offering the service for the gaming industry first. This is because it believes users in this space are very dynamic and will adapt to any changes quickly, providing the company with quick feedback and decentralization opportunity.
- Carv provides the service as a white-label data service to game operators.
- So far, there have been over 300,000 registered users, while 160,000 of them are monthly active users.
- The funding round was led by Singaporean-based venture capital firm Veterex with participation from EVOS, Snackclub, Infinity Ventures Crypto, YGG SEA, UpHonest Capital, Lyrik Ventures, Lintentry Foundation, PAKADAO, 7UpDAO, etc.
| |
Quick Hits: - DUER's founder wanted pants that stretch "from bike lane to boardroom to an evening night out." Try the World's Most Comfortable Pants during Black Friday — shop up to 50% off sitewide.*
- Meta claims that it has removed 39 Facebook and 26 Instagram accounts that belonged to the U.S. Army. These accounts were allegedly used for covert operations.
- The Dutch government has released a new cybersecurity national security strategy. The strategy aims to change the way companies report cyberattacks, improve cooperation between the private and public sectors, etc.
- Estonian Prime Minister Kaja Kallas stated that the most important sectors in modern life, such as healthcare, manufacturing, and security, depend on cybersecurity, making competency in the field a pressing issue.
- Microsoft has released a patch for CVE-2022-37966, a security flaw that impacts Windows Server, specifically Kerberos authentication.
*This is sponsored content.
| |
Upcoming events at Inside:
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords. | |
Security Compass delivers best-practice, role-based, accredited eLearning solutions. | |
