Plus: Apple patches a flaw that was used to hack iPhones, iPads, and Macs
| Part of  Network | |
 Presented by  |
Thirty-eight thousand victims in a Moneygram fraud scheme are set to be compensated with $115M in damages. The FTC claims that the company willingly allowed others to take advantage of its clients. More: - Moneygram, one of the most well-known money transfer businesses in the world, agreed with the FTC and the DOJ in 2012 to increase its efforts in stopping scammers from receiving their money using its service.
- The company agreed to implement a fraud prevention program that required the company to investigate, restrict, suspend, and terminate high-fraud agents.
- According to the FTC, Moneygram continued to allow fraudulent actors to scam its users, leading to a $115M fine.
- Now this fine will be distributed to the nearly 40,000 victims that were scammed throughout this period.
- The victims, many of whom are elderly, will receive the full amount they lost.
- This case was handled by the Money Laundering and Asset Recovery Section’s Bank Integrity Unit and the U.S. Attorney’s Office for the Middle District of Pennsylvania.
| |
Technion-Israel Institute of Technology has been hit by a cyberattack, forcing it to postpone all exams and shut down its communication network. A hacker group named DarkBit has asked for a $1.7M ransom, taking credit for the attack. More: - The announcement was made by the university itself on Twitter.
- DarkBit has demanded that the payment be made in 80 bitcoins, threatening to increase the amount by 30% if its demands are not met within two days.
- The threat actor's social media channels were created this month, showing that the group was recently formed.
- Israeli authorities believe the group may be state-backed, as they are cooperating with the university regarding the case.
| |
 A message from FINGERPRINT Fingerprint Pro: The World’s Most Accurate Visitor Identifier Preventing fraud is HARD. Identifying malicious users is one of the constant challenges engineering, and product teams face. Even the best fraud prevention solutions only recognize 60% of returning users, resulting in significant business losses to fraudulent activities. With 3rd party cookies going away and increasing browser privacy restrictions, fighting fraud only becomes more difficult. Fingerprint combines multiple signals within a layered identification process to enable the highest accuracy in visitor identification. The platform combines the following: - Server-side analysis and machine learning to generate the most stable visitorID
- Storage and deduplication for fuzzy matching, handling browser, and OS upgrades
- Cookie and local storage management, retaining cryptographically signed cookies
Start building with Pro for free. Talk to an expert
| |
Cloudflare announced that it blocked the largest DDoS attack ever. The group of attacks peaked at 71 million requests per second. More: - Cloudflare claims that a threat actor launched a dozen attacks, which averaged 50 million requests per second.
- This campaign was launched by over 30,000 different IP addresses and targeted a gaming provider, several cryptocurrency companies, hosting providers, and cloud computing platforms.
- The largest attack surpasses the previous record of 46 million RPS, which happened in June 2022.
- The company claims that the amount of HTTP DDoS attacks in 2022 increased by 79% compared to 2021, and it expects this trend to continue due to the relative ease with which hackers can launch this type of attack.
- The number of attacks lasting more than three hours increased by 87% QoQ.
- Cloudflare added that it will continue to provide free DDoS attack protection for its clients.
| |
Apple has patched a zero-day flaw that was used to hack iPhones, iPads, and Macs. The bug is tracked as CVE-2023-23529. More: - If hackers were to exploit this flaw, it would let them execute arbitrary code on devices running older iOS, iPadOS, and macOS versions after opening a malicious web page that pops up.
- This flaw affected devices such as:
- iPhone 8 and later
- iPad Pro (all models),
- iPad Air 3rd generation and later,
- iPad 5th generation and later,
- iPad mini 5th generation and later
- Devices using MacOS Ventura.
- This marks the first zero-day flaw that Apple patched in 2023.
- The company has not given technical details in order to help protect users' safety.
- According to Apple, the flaw may have been used to breach users, although no cases have been reported yet.
| |
The customers of the domain hosting company Namecheap are being targeted with phishing emails. The company claims that its system and user data have not been breached. More: - The phishing emails started around 4:30 p.m. ET on Sunday and came from SendGrid. The latter is an upstream provider for the company.
- One of the emails falsely led users to believe that their MetaMask accounts had to be verified, asking them to put in their login credentials.
- Namecheap claims that the reason that these phishing emails were sent is that its upstream provider was breached and not Namecheap itself.
- The company has advised its users not to click on the links that they were sent and to report the emails.
- It insists that no personal information that belongs to any user was stolen by hackers in this breach.
- Namecheap has over 10 million users and nearly 80 million domains under management.
- The company was founded in 2000 and is based in Phoenix.
| |
Quick Hits: - Athletic Brewing is pioneering a non-alcoholic craft beer revolution and donating 2% of sales toward protecting and restoring local trails.*
- Australia's Defense Department will replace surveillance cameras made by Chinese firms Hikvision and Dahua, citing security concerns as the main reason for the decision. The U.S. and U.K. have removed cameras made by the two manufacturers in public buildings since last year.
- NATO has announced that the Pro-Russia hacker group Killnet has launched a DDoS hacking campaign on several NATO websites, including the NATO Special Operations Headquarters website.
- Threat intelligence company VulnCheck has raised a $3.2M seed funding round led by Sorenson Ventures with participation from In-Q-Tel, Lux Capital, and Aviso Ventures.
- Michigan's Attorney General Dana Nessel warned the residents of the state to be aware of the online betting apps that they are using, saying that hackers are constantly on the lookout for new ways to steal personal information such as credit card numbers.
*This is sponsored content.
| |
Upcoming events at Inside: - February 14 - Inside Startups Coffee Break (Register Here)
- February 16 - Inside Marketing w/ Kate Chernis (Lately) (Register Here)
- February 20 - Inside Marketing Coffee Break (Register Here)
- March 01 - Webinar on the changing privacy landscape in the US by Vanta and Osano (Register Here) *
- March 02 - AI Quality Workshop: Driving ML Performance and Trustworthiness (Register Here) *
- April 18 - Human Resources Summit'23 (Register Here)
*This is a sponsored listing.
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords. | |
Fingerprint is the premier device identity platform for high-scale applications. | |
| 767 Bryant St. #203, San Francisco, CA 94107
Copyright © 2023 Inside.com | |
| |
