Fishers aimed at cryptocurrencies, Taiwan turned to IPFS and other events of cybersecurity

We have collected the most important news from the world of cybersecurity in a week.

• The Debridge Protocol team announced an attempt by a hacker attack.
• The media told how the Russian Federation established control over the Internet in the occupied Kherson.
• Taiwan began to use IPFS to protect against cyber attacks.

WhatsApp has announced new confidential functions

The head of META Mark Zuckerberg announced the introduction of new functions into the WhatsApp messenger focused on increasing confidentiality.

Among them are the opportunity to adjust who can see your “online” status, as well as leave groups without notifying all participants, and restriction of messages from messages.

The media found out how the Russian Federation established control over the Internet in the occupied Cherson

A few weeks after the Russian Federation occupied the Ukrainian Kherson, the Russian military came to the offices of local Internet providers and demanded that they refuse to control their networks. This is reported by The New York Times.

After that, Kherson mobile and Internet traffic was redirected through Russian networks. Later they blocked access to Facebook, Instagram and Twitter, and also closed Ukrainian cellular networks, forcing the region residents to start using the services of Russian mobile operators.

The publication indicated that a similar situation is observed in other cities occupied by the army of the Russian Federation.

The authors noted that the restriction of access to the Internet “is part of the Russian strategy”:

“[She] made these Ukrainian regions vulnerable to the extensive system of digital censorship and surveillance. The Russian Federation can monitor web traffic and digital communications, distribute propaganda and manage the news “.

Hackers tried to attack Debridge protocol

The protocol of cross-interaction and transmission of DEBRIDGE liquidity was the goal of cyber attack. Probably behind it is the Lazarus group, the co -founder of the project Alex Smirnov said.

Attackers, on his behalf, sent a letter entitled “New salary adjustments” to the Debridge employees. Most team members immediately reported a suspicious letter, but one of them downloaded all and opened the file. The attack was not successful, but Debridge helped to https://gagarin.news/ua/news/segas-super-game-plans-to-add-nf-ts/ study its features.

“The attack vector is as follows: the user clicks on the link from the letter, downloads and opens the archive, tries to open PDF, but PDF requests a password. The user opens Password.TXT.LNK and infects the entire system, ”Smirnov explained.

The attack does not affect MacOS users, but Windows systems are at risk, he added.

Experts talked about a phishing campaign aimed at Coinbase, Metamask, Kraken and Gemini users

During 2022, attackers created phishing pages through Google Sits and Microsoft Azure for the steal of cryptocurrency wallets and accounts Coinbase, Metamask, Kraken and Gemini. This was told by Netskope Threat Labs experts.

In HIS Threat Research Blog, Gustavo Palazolo from Netskope Threat Labs Exploores Some New #Phishing Pages that abuse google sites and Microsoft Azure to Steal #cryptocurrency Wallelets.

Dive in Learn How these PHISHING PAGES WORK: https: // t.Co/Ibbgrjtcha

– Netskope (@netskope) August 11, 2022

Fishing pages advertise in the comments on other sites, mainly in blogs. Sites imitate various cryptocurrency platforms.

In the future, attackers gain access to cid-fraz, login and passwords of victims that enter these data on fake pages.

“Netskope strongly recommends that users never enter the accounting data after the transition to a certain link. Instead, always go directly to the site, ”experts said.

Taiwan began to use IPFS based on Ethereum to protect against cybercus

Taiwan’s digital affairs Ministry introduced the IPFS technology to protect its infrastructure, writes Decrypt.

The department noted that they launched the initiative on the same day when China began military exercises near Taiwan after the visit of the speaker of the House of US representatives Nancy Pelosi.

Attackers attacked Twilio and Cloudflare through phishing SMS

Twilio cloud software. Then the attackers gained access to internal systems and data of Twilio customers.

Here’s The Latest Update on Oour Investigation Into the Oonging Social-Engineering PHIM that HAS TARGETED Numerous Companies Recently.https: // t.Co/bcvlodtaaj

– Twilio (@twilio) August 11, 2022

The employees were sent to SMS allegedly from the IT department of the company, in which they were offered to enter the system by link to update the password.

As soon as the attack was identified on Twilio, the security team withdrew access to compromised accounts of employees. Nevertheless, the attackers received data about 125 customers of the company.

Hackers used similar methods to attack Cloudflare employees, but the attackers failed to enter the system of the latter.

Also on FORKLOG:

• The Dragoma gaming project on Polygon has become a victim of the Rug Pull scheme.
• The Beansstalk Farms team restarted the Defi Protokol four months after hacking.
• Almost all Bitcoin-Birzhi was blocked in Uzbekistan.
• Cybercriminals washed more than $ 540 million through the Renbridge cross-bridge, Elliptic said.
• Curve Finance users lost $ 573,000 as a result of an attack on front -end. Later, Binance blocked the $ 450,000 protocol stolen from the protocol.
• Slope refuted the bug connection in the walina hack.

What to read on the weekend?

Why Telegram is not the best solution to protect confidentiality, we tell in our exclusive:

Read the FORKLOG Bitcoin News in our Telegram-cryptocurrency news, courses and analytics.