The FBI appears to have been used as a pawn in a fight between hackers and security researchers. According to Bleeping Computer, the FBI has confirmed intruders compromised its email servers early today (November 13th) to send fake messages claiming recipients had fallen prone to data breaches. The emails tried to pin the non-existent attacks on Vinny Troia, the leader of dark web security firms NightLion and Shadowbyte.
The non-profit intelligence organization Spamhaus quickly shed light on the bogus messages. The attackers used legitimate FBI systems to conduct the attack, using email addresses scraped from a database for the American Registry for Internet Numbers (ARIN), among other sources. Over 100,000 addresses received the fake emails in at least two waves.
The FBI described the hack as an "ongoing situation" and didn't initially have more details to share. It asked email recipients to report messages like these to the bureau's Internet Crime Complaint Center or the Cybersecurity and Infrastructure Security Agency. Troia told Bleeping Computer he believed the perpetrators might be linked to "Pompomourin," a persona that has attacked the researcher in the past.
Feuds between hackers and the security community aren't new. In March, attackers exploiting Microsoft Exchange servers tried to implicate security journalist Brian Krebs using a rogue domain. However, it's rare that they use real domains from a government agency like the FBI as part of their campaign. While that may be more effective than usual (the FBI was swamped with calls from anxious IT administrators), it might also prompt a particularly swift response — law enforcement won't take kindly to being a victim.
These fake warning emails are apparently being sent to addresses scraped from ARIN database. They are causing a lot of disruption because the headers are real, they really are coming from FBI infrastructure. They have no name or contact information in the .sig. Please beware!
— Spamhaus (@spamhaus) November 13, 2021
After a three year run, the latest chapter in the Jason Voorhees story is coming to something of an end (via IGN). Publisher Gun Media says it will release one final update for Friday the 13th: The Game before shutting the multiplayer slasher fest’s…
Facebook just escalated its lawsuit over surveillance firm NSO Group’s WhatsApp call exploit attacks. The WhatsApp team has filed accusations that NSO relied on US-based servers to stage its spyware attacks using Pegasus software. NSO reportedly used…
Engadget RSS Feed
There’s some not-so-great news about the beta update for the OnePlus 3T; apparently, it was accidentally sending copied clipboard information to a Chinese server owned by Alibaba. Oops. The beta update for Oreo with December’s security update was caught trying to access a suspicious IP address with the built-in clipboard application, and after some digging […]
Come comment on this article: OnePlus 3T beta software was accidentally sending clipboard data off to Chinese servers
Did you pay for an expensive pay-per-view or streaming pass to watch the hyped-up boxing match between Floyd Mayweather and Conor McGregor, only to boil with rage as your access went down? You're far from alone. Numerous reports have revealed that…
Engadget RSS Feed