Facebook phishing, VPN blocks and other cybersecurity events

We have gathered the weeks most important cybersecurity news.

Security researchers uncover a phishing campaign targeting Facebook users

Trustwave detected attempts to breach Facebook users via phishing emails allegedly from the platform’s support service and a Messenger chatbot.

👾 Due to its popularity, Facebook Messenger is an active target for #cybercriminals. Recently, the Trustwave #SpiderLabs team uncovered a #phishing email that made use of the #chatbot feature within Meta’s Messenger.
👉 View the details and the IOCs here: https://t.co/ujcu2kN9OD

— Trustwave (@Trustwave) July 1, 2022

Attackers send victims letters about alleged violations of the social networks rules. To resolve the issue and avoid a block, they offer assistance via the “support service” using a chatbot.

Victims are subsequently redirected to a phishing site where they are asked to enter their data, including email, phone number, and the account password.

LockBit launches a bug bounty program and unveils an updated ransomware

The operators of the LockBit ransomware launched a program to discover vulnerabilities in potential targets and information about them, dubbing it the “first bug bounty program in the dark web.” In addition, they introduced the updated malware LockBit 3.0.

According to Bleeping Computer, for finding various bugs hackers are willing to pay from $1,000 to $1,000,000. They also offered rewards for “brilliant ideas” to improve their ransomware software.

In addition, the hackers will pay $1 million for doxxing of the head of the LockBit affiliate program.

The group also began accepting as ransom payment the privacy-focused cryptocurrency Zcash in addition to Bitcoin and Monero.

Earlier this year, BTC-Alpha user data was exposed to the public, and more than 100,000 PayBito customers were reported as having their information stolen.

TikTok confirmed that some China-based employees may access US user data

Several American senators accused TikTok of spying on US citizens. They demanded clarification on whether China-based employees have access to data of US users and whether it could be accessed by Chinese authorities.

The company confirmed in a letter that some employees may have access to certain information about TikTok users in the US. It stressed that the data is not handed to Chinese authorities.

Media: Roskomnadzor prepares to block another batch of VPN services

Roskomnadzor intends to limit access to another batch of VPN services. This follows a letter from the Central Bank to Russian banks, writes Frank Media.

The services include VPN Proxy Master, Browsec VPN, vpn-super unlimited proxy, Melon VPN, Windscribe VPN, VPN RedCat secure unlimited and Proton VPN. Some of them have already begun blocking.

The main reason for restricting the operation of various VPN services cited by Roskomnadzor is the possibility of obtaining access to information banned on the territory of the Russian Federation via these services.

RansomHouse hackers claim theft of over 450 GB of data from AMD

The hacker group RansomHouse said that last year it stole more than 450 GB of data from one of the world’s largest processor manufacturers, AMD, according to Bleeping Computer.

The publication notes that RansomHouse usually encrypted data and demanded a ransom. However, in this case the hackers considered selling the stolen information to other criminals and companies more profitable.

AMD said it had begun an investigation.

Also on ForkLog:

• OpenSea reported a data leak of user data.
• Elliptic said that Lazarus may be behind the Horizon attack, according to Elliptic.
• A hacker breached the largest NFT marketplace built on Optimism.
• North Korea lost millions of dollars, stolen by hackers, due to a downturn in the crypto market, according to media reports.

What to read this weekend?

Unfettered access to information is a fundamental human right realized through the internet. Restrictions, censorship and other curbs on this right effectively limit freedom. Today this is happening in Russia.

ForkLog has prepared a concise guide to services, apps and messenger apps that can help circumvent censorship:

Read ForkLog’s bitcoin news on our Telegram — cryptocurrency news, rates and analysis.