- Man allegedly kills girlfriend, then pretends to be her on Facebook Sunday 4:29 PM
- Trevor Lawrence met TikTok teen who looks just like him Sunday 3:48 PM
- Trump’s hospital visit spawns conspiracy theories Sunday 2:49 PM
- ‘SNL’ skit combines Harry Styles, the Popeyes chicken sandwich, and Disney+ Sunday 2:02 PM
- Doctored photo of GOP congresswoman flipping the bird fools critics Sunday 1:05 PM
- Internet scammers taking advantage of Narwhal the ‘unicorn’ rescue puppy Sunday 12:19 PM
- Sunday Night Football: How to stream Bears vs. Rams live Sunday 12:00 PM
- CupcakKe’s month-long ‘water fast’ has fans concerned Sunday 11:24 AM
- Will.i.am claims ‘racist’ flight attendant called police on him Sunday 10:28 AM
- How does Disney+ compare to Netflix, Hulu, HBO Max, and Apple TV+? Sunday 9:35 AM
- How to stream Patriots vs. Eagles live Sunday 9:30 AM
- Girl turns herself into ‘pleading face’ emoji Sunday 9:27 AM
- How to stream Cowboys vs. Lions live Sunday 9:00 AM
- Chaotic good, true neutral: The 2020 Democrat alignment chart Sunday 6:30 AM
- How to stream Mexico vs. Brazil live in the U-17 World Cup final Sunday 3:00 AM
Hackers set up a fake jobs website aimed at U.S. military veterans in order to infect their computers with malware.
Discovered by cybersecurity researchers with Cisco Talos, the site, called hiremilitaryheroes.com, attempted to convince visitors to download a malware downloader disguised as an app.
Once installed, the attackers would be able to retrieve information on their victim’s computer.
“The attacker can then see information on the system, the patch level, the number of processors, the network configuration, the hardware, firmware versions, the domain controller, the name of the admin, the list of the account, etc,” a blog post from Cisco Talos explains.
That data would then enable the hackers to carry out additional attacks tailored specifically to individual victims if necessary.
Cisco Talos says the attackers behind the website belong to a threat actor group they have dubbed “Tortoiseshell.”
The site is especially dangerous, Cisco Talos added, given the probability that it could quickly spread across social media.
“Americans are quick to give back and support the veteran population,” the blog continued. “[T]his website has a high chance of gaining traction on social media where users could share the link in the hopes of supporting veterans.”
The group was also accused by cybersecurity firm Symantec last week of targeting several major IT providers in Saudi Arabia. CrowdStrike, another cybersecurity firm, believes the hackers are Iranian.
- A bunch of popular YouTube channels were the victims of a nasty hack
- How China targeted Uyghur Muslims with iPhone-hacking websites
- Twitter CEO’s account hacked, retweets pro-Nazi propaganda
Mikael Thalen is a tech and security reporter based in Seattle, covering social media, data breaches, hackers, and more.