Audits
Services
Services
Smart Contract Audit
Blockchain Protocol Audit
Penetration Testing
dApp Audit
Crypto Wallet Audit
Cross-Chain Bridge Audit
Bug Bounty
Proof of Reserves
CCSS Audit
Tokenomics Audit & Design
Smart Contract Audit
Mitigate weaknesses in your smart contract and improve its functionality with a double line-to-line code analysis and a separate review by a lead auditor.
Blockchain Protocol Audit
Secure the entire architecture and implementation layers of your blockchain protocol with professional security audits and testing.
Penetration Testing
Proactively detect vulnerabilities in your Web3 project by subjecting your systems to a simulated cyberattack in a secure and controlled environment.
dApp Audit
Identify vulnerabilities in applications interacting with blockchain networks with secure code review and static security analysis.
Crypto Wallet Audit
Code review & static security analysis for crypto wallet apps.
Cross-Chain Bridge Audit
Code review & security analysis for cross-chain crypto bridges.
Bug Bounty
Receive only relevant bug reports or undergo crowdsourced penetration testing with the help of thousands of ethical hackers curated by HackenProof.
Proof of Reserves
Enhance transparency in crypto exchanges with independent on-chain proof of assets’ true collateralization.
CCSS Audit
Assess and strengthen your security practices, identify vulnerabilities, and safeguard valuable digital assets in the ever-evolving cryptocurrency landscape.
Tokenomics Audit & Design
Ensure your token model robustness and efficiency and convey trust to investors and community with our thorough, independent audit of protocol economic security.
Solutions
Post-deployment security solution
Hacken Extractor
Real-time smart contract protection from assets loss
Learn more
Solutions
Featured ecosystems:
Ethereum (EVM)
BSC
Polygon
Near
Avalanche
Fantom
Aptos
Sui
Optimism
zkSync
Arbitrum
Solana
Polkadot
Cosmos
Radix
Linea
MetaMask
Others
By Languages:
Solidity
Rust
Move
Blog
Company
Company

The window to exchange $HAI for Hacken Equity Shares ($HES) is now open > Claim your spot today

Weekly News Digest #46

Weekly News Digest #46

Share via:

The rise in stalkerware goes beyond smartphones

Researchers are warning that IoT products and mobile devices are actively abused to facilitate partner coercion. According to the information provided by cybersecurity experts during the Black Hat cybersecurity conference in Las Vegas this week, the rapid increase in the frequency of use of stalkerware in gender-based violence and intimate partner violence is attributable to the coronavirus pandemic. Stalkerware may be defined as the software enabling users to monitor the activities of another user on his devices without any authorization from their side. Unlike spyware that is actively used by law enforcement or government agencies, stalkerware is mostly used by individuals.

Stalkerware may be used to remotely monitor phone calls, track location, steal images and video from the infected device, and, generally, perform any other malicious tracking activities. In most cases, physical access to the handset takes place before the installation of this malicious software. Although the remote installation of stalkarware does not often take place, in some cases, malicious SMS messages, as well as phishing emails, are used by actors to infect the targeted victim’s devices.

Hidden workers of the cybercrime world: how to cut crime

Security researchers are putting a spotlight on hidden workers who are one of the core elements of the cybercriminal ecosystem. At the same time, many of these unknown actors do not even know that they are engaged in malicious activities. The cybersecurity research on these groups of people has been conducted by Czech Technical University in cooperation with cybersec companies SecureWorks and GoSecure. Often, people enter into malicious schemes due to the opportunity to make easy money. However, the participation of hidden workers allows big malicious actors to launch huge hacking campaigns.

The security specialists working on preparing this research revealed a group of hidden workers involved in a botnet and Android malware campaigns affecting hundreds of thousands of users. Although these hidden workers are located at the bottom of the schemes behind malicious campaigns, they perform very useful activities for cybercriminals allowing the latter to spread phishing malware. Most hidden workers are invited to participate in malicious schemes through online forums and different discussion platforms.

Ransomware attacks hit new records

The first half of 2021 is associated with the rapid intensification of ransomware cybercrimes worldwide. Compared to the first half of 2020, the number of ransomware attacks committed for the first 6 months of 2021 has increased by a colossal 151 per cent. According to the information provided in the FBI warning, there are 100 different strains circulating worldwide. SonicWall Capture Lab has logged 304.7 million ransomware attacks for the first 6 months of 2021. According to the recent data provided by SonicWall, the three most widespread strains are SamSam, Cerber, and Ryuk.

The first place in the list of the most widespread strains is held by Ryuk with 93.9 million recorded attempts, a figure that is 3 times higher compared to the same period in 2020. The second place is held by Cerber with 52.5 million recorded attempts and Cerber ransomware is on the rapid rise. When speaking about SamSam, the number of recorded attempts for the first 6 months in 2021 equalled 49.7 million that is two times more than for the entire year of 2020. Every month is setting new records when speaking about the number of committed ransomware attacks.

Mitsubishi Safety PLCs exposed to remote attacks due to unpatched security flaws

Mitsubishi safety programmable logic controllers (PLCs) contain a number of unpatched vulnerabilities that could be exploited by malicious actors to acquire legitimate user names by carrying out brute force attacks. The malicious activities could even result in denial-of-service conditions. Nozomi Networks has disclosed weakness in the Mitsubishi systems related to authentication mechanism implementation in the MELSEC communication protocol.

The CVSS score of the revealed weaknesses ranges between 3.7 and 7.4. Some of the identified flaws are likely to be strung together enabling attackers to cause serious damage to the targeted systems by locking users out of PLC and even changing their existing passwords. The researchers have not disclosed any further details on the revealed vulnerabilities. Mitsubishi Electric has published a series of mitigations to address the security issues caused by the exploitation of the identified flaws.

Student safety is threatened by school ransomware attacks

In today’s K-12 cybersecurity landscape, school ransomware has become an extremely important topic. School leaders don’t always connect school ransomware and student safety that is a serious mistake from their side. K-12 ransomware is changing rapidly and now malicious actors can steal data before and after committing ransomware attacks. Previously, hackers attacked schools to force them to pay a ransom but today malicious actors start using the stolen data in radically new ways.

For example, in Johnston, Iowa, malicious actors were sending text messages to students and their parents threatening to kill them. The schools were forced to temporarily close their doors. School admins need to pay greater attention to the protection of personally identifiable information such as names, physical addresses, telephone numbers, etc. By stealing these data malicious actors get the opportunity to commit further attacks. That is why the protection of cloud applications containing these data should become a top priority for school admins.