Hackers are creating false Porsche NFT accounts / Prilex malware now able to block NFC payments / Google Fi has been hacked

Plus: Hypernative raises $9M Seed to help prevent crypto thefts

Inside.com Part of   Network February 01, 2023

Hackers are creating false Porsche NFT accounts to deploy a phishing campaign. The automaker recently canceled its plans to launch an NFT collection after poor reviews. More: Porsche planned to mint 7,500 NFTs on Monday, but the company failed to successfully mint all of them.  This caused backlash from the crypto community, leading to the cancellation of the entire project. Even though this news spread among crypto enthusiasts, hackers are still trying to take advantage of this situation by sending direct messages to individuals on social media and asking them to provide their information in return for receiving Porsche NFTs. Other cases include hackers sending phishing links to their targets, asking that they connect their crypto wallets to have the NFT transferred to them, but in reality, the hackers steal the funds they have on those wallets. One specific fake Twitter account managed to gain 11,000 followers pretending to be the official page of the NFT collection. The account was taken down by Twitter.

The Prilex malware is now able to block contactless NFC card payments. By doing so, threat actors can get customers to use their cards in a reader that has previously been compromised to steal their information. More: Contactless payment systems payments use near-field communication technology implemented in Samsung Pay, Apple Pay, Google Pay, Fitbit Pay, or other popular forms of payment. This payment technology has risen in popularity since the pandemic, resulting in increased interest from threat actors to use it in their favor. The new feature was tracked in Prilex version 06.03.8080, 06.03.8070, and 06.03.8072.

Google has announced that its mobile virtual network provider Google Fi has been breached. Victims have been contacted through email by the company. More: Google has stated that hackers have stolen information such as: date of account activation, data about individual mobile service plans, SIM card serial numbers, and account status. Other information, such as a user's name, email address, credit card details, etc. has remained safe, according to the company. The threat actor responsible for this breach has not been identified yet, but researchers believe it may be tied to the recent T-Mobile hack, considering the fact that Google Fi uses T-Mobile for its network services.

Hypernative has raised a $9M Seed funding round to help prevent crypto thefts. Boldstart ventures and IBI tech fund led the round. More: Hypernative offers a security platform that helps companies detect security threats hours before they reach their digital infrastructure.  The company claims that it has helped its clients save $14B in potential damages that could have been caused by cyberattacks. Blockdaemon, Alchemy, Borderless, CMT Digital, and Nexo also participated in the funding round.

Indonesia-based Peris Ai has raised an undisclosed funding round to offer a comprehensive cybersecurity software suite for enterprises. East Ventures led the funding round. More: Peris AI is a cybersecurity startup that offers an all-in-one suite of products, including: Pen testing, Open-source intelligence, Vulnerability assessment, Cybersecurity training, Bounty remediation, Attack Surface management, etc. This platform uses AI to anticipate cyberattacks that may target the digital infrastructure of the company's clients. The company offers these services in the form of SaaS products, where enterprises sign up for a monthly subscription and choose the services they need. Magic Fund also participated in the round.

Quick Hits This year, try a resolution that sticks — going to therapy with BetterHelp. Save 25% off your first month..* Researchers have tracked a new malware named Nevada. This ransomware targets Windows systems, as the administrators behind the campaign have been inviting China and Russia-based hackers to use it in exchange for 85% of the amount they're able to steal. Four schools in Nantucket, Massachusetts, were forced to close after a cyberattack shut down their digital infrastructure. The threat actors behind the campaign are unknown so far. Over 30,000 QNAP devices are believed to have been exposed due to a security flaw tracked as CVE-2022-27596. A hacking campaign targeted over 10,000 victims by sending fraudulent emails impersonating digital signature company DocuSign. The emails led victims to a phishing page, where an infected PDF file was used as an infection mechanism. Automation is your finance team's best productivity strategy. See five finance tasks you should be automating today.* *This is sponsored content.

Upcoming events at Inside: February 02 - Inside Marketing w/ Effie Bersoux (Growth Girls) (Register Here) February 06 - Inside Coffee Break (Register Here) April 18 - Human Resources Summit'23 (Register Here)

Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. Editor Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 and 1972 Fords.

767 Bryant St. #203, San Francisco, CA 94107 Copyright © 2023 Inside.com

Did someone forward this email to you? Head over to inside.com to get your very own free subscription! You received this email because you subscribed to Inside Security. Click here to unsubscribe from Inside Security list or manage your subscriptions.