Ukraine has shut down a call center that hacked over 18,000 individuals. The scamming operation was located in Ukraine but targeted international citizens. More: - The scammers contacted the victims, claiming that their bank accounts had been accessed by attackers, and requested their financial information claiming that it was needed in order to help with the investigation. They instead used it to steal the money in the bank accounts.
- The takedown was a partnership between the Ukrainian Cyber Police Department, the Prosecutor General's Office, and law enforcement officers in Kazakhstan.
- The operation comprised 37 individuals who targeted over 18,000 people located in Kazakhstan.
- Ukrainian law authorities have so far seized 45 pieces of computer equipment, mobile phones, SIM cards, and documents.
| |
U.S.-based rail company Wabtec has announced a data breach that has led to unauthorized access to customer information and data leaks. The threat actor responsible for the breach is unknown at this point. More: - Wabtec is a leader in the freight locomotive market, operating in 50 countries and hiring over 25,000 employees.
- The company claims that so far, there have not been any signs that the stolen data has been misused but has urged its users to change their log-in credentials to avoid any possible incidents.
- The exact number of people affected by the incident remains undisclosed.
- The stolen information includes:
- Full name,
- Date of birth,
- Non-U.S. national ID number,
- Non-U.S. Social Insurance number or fiscal code,
- Passport number,
- IP address,
- Employer Identification Number,
- USCIS or Alien Registration Number,
- National Health Service number (U.K.),
- Medical record/health insurance information,
- Photograph, gender/gender identity,
- Salary, Social Security number (U.S.),
- Financial account information,
- Payment card information,
- Account username and password,
- Biometric information,
- Race/ethnicity,
- Criminal conviction or offense,
- Sexual orientation/life,
- Religious beliefs,
- Union affiliation.
| |
 A message from BIGID You can’t protect what you don’t know. Shine a light on dark data with SmallID: designed to do cloud data security, but better. Get up and running in minutes - and automatically scan, classify, and inventory the data that matters most to you across the cloud: - Find and identify data by type, sensitivity, policy, and more
- Uncover dark data across AWS S3, Azure, Google, Salesforce, dev environments, and more
- Reduce risk and accelerate compliance
- Jumpstart DSPM and improve your security posture
- Find and lock down your sensitive data before the bad guys do
“SmallID gave us everything we needed: from out of the box classifiers to being able to build our own based on our own data. I can easily find what I need with confidence - whether that’s searching for date of birth, gender, or other personal information (PI) and personally identifiable information (PII) - and automatically maintain my data inventory to improve our security posture while flagging potential issues.” - Walter Burge, Data Engineer, Lumosity Try SmallID free for 14 days, and get the most advanced data discovery & classification on-demand. Claim your free trial
| |
An unknown hacker group is using stolen bank information to convince victims to click on malware-infected Excel files. The malware is RAT tracked as BitRAT. More: - BitRAT is malware sold sale on underground forums for $20. The malware is used to steal data, harvest credentials, mine cryptocurrency, and download additional binaries.
- The stolen banking information details belong to Colombian citizens. The Hackers have reportedly been able to steal information such as:
- Email addresses,
- Phone numbers,
- Customer names,
- Payment records,
- Salary details, etc.
- Researchers believe that the details have yet to be published on dark web forums.
- Based on a GitHub repository tied to the malware, the hacking campaign has likely been active at least since November 2022.
| |
Israeli cybersecurity startup funding fell by 64% YoY in 2022. Startups in the country raised $3.22B, down from $8.84B in 2021. More: - Israel is known as the startup nation as the country has one of the highest numbers of startups per capita, especially in cybersecurity.
- The average 2022 seed round broke the 2021 figure of $7M, reaching $9M. In total, seed funding rose by 65% in 2022, going from $233M in 2021 to $384M in 2022.
- The number of Series A rounds remained approximately in line with 2021, dropping from 30 to 24.
- The number of overall funding rounds in the country also decreased from 135 in 2021 to 94 in 2022.
| |
 A message from ARRIVED Unbelievable: a must-see real estate investing hack. Arrived is an easy-to-use real estate investment platform offering SEC-qualified investments, and it’s backed by world-class investors like Jeff Bezos and Marc Benioff. In a few clicks, you can: - Browse properties (<1% make it through vetting): AirBnBs, long-term rentals, and more coming soon.
- Pick your favorites: invest anywhere between $100 to $50K per property.
- Boom: you're officially earning income and appreciation while Arrived manages your properties.
Both first-time investors and long-time real estate millionaires are flocking to Arrived, funding over 200 properties and $75M of property value since last year. Demand is high. What’s holding you back? Browse properties
| |
Raspberry Robin is being used to launch cyber attacks against financial and insurance companies in Europe, signaling a new target for the operators behind the malware. The first two countries to be targeted are Spain and Portugal. More: - Raspberry Robin is known for being spread primarily via USB devices used by employees in different organizations.
- Once the victim inserts a malware-infected USB, Raspberry Robin acts as an info stealer.
- Researchers tracked the activity to the IP address (85).56.236[.]45. Its traffic is routed through the TOR browser.
- This info stealer data is then encrypted using a hard-coded key and sent to a command-and-control server, from which point on command is executed remotely.
| |
Quick Hits: - This year, try a resolution that sticks — going to therapy with BetterHelp. Save 25% off your first month.*
- Over 60,000 Microsoft Exchange servers that were exposed online by hackers have still not been patched by Microsoft, according to researchers.
- Bristol Community College in Massachusetts has been hacked by an unknown threat actor, according to a statement by the college. Its website and email service have been shut down due to the hack.
- Over 200 U.S. organizations were targeted by ransomware attacks in 2022, research shows. Some of them include 105 counties, 44 colleges and universities, 45 public schools, and 24 healthcare providers.
*This is sponsored content.
| |
Upcoming events at Inside: - January 05 - AMA with Gun.io - Building and managing software development teams w/ Deividi Silva (Watch On Demand)
- January 06 - AMA with LinearB - Improving workflow for developers w/ Ori Keren (Watch On Demand)
- January 10 - Inside Startups Coffee Break (Register Here)
- January 17 - Inside Marketing Coffee Break (Register Here)
- January 31 - Growth Summit 2023 (Register Here)
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords. | |
Automatically find, classify, and protect the cloud data that matters most to you with SmallID. | |
| |
