By Deeba Ahmed
BlackCat ransomware initially claimed responsibility for the ransomware attack on its dark web blog but later removed its post, indicating negotiations between the two parties.
This is a post from HackRead.com Read the original post: BlackCat (ALPHV) Gang Claims Ransomware Attack on NCR Data Center

****The ransomware attack was discovered on April 12th, 2023 when the company began investigating an issue in its Aloha restaurant point of sale (PoS) product.****

Leading US software and payment platform provider NCR has confirmed that it has fallen victim to a ransomware attack. NCR specializes in providing technology and payment systems for the restaurant and hospitality sectors.

The ransomware attack was discovered on April 12th, 2023 when the company began investigating an issue in its Aloha restaurant point of sale (PoS) product. It was confirmed as a ransomware attack on April 13. NCR promptly notified law enforcement and launched an investigation in collaboration with third-party cybersecurity experts.

NCR has revealed that the attack impacted some of the ancillary applications and Counterpoint used by a small subset of its hospitality clients, causing operational disruption at one of its data centres.

However, NCR stated that affected restaurants can still serve customers as the entire system was unaffected. Customers are currently able to access limited functions on some cloud-based systems, as the attack affected features that disrupted the restaurant’s administrative functionalities.

NCR is working diligently to restore full service for its customers and is providing dedicated assistance and workarounds to support its operations in the meantime. The company is also focused on establishing alternative functionality for customers, enhancing cybersecurity mechanisms, and fully restoring impacted data and apps.

Notably, NCR’s digital banking, ATM, payments, and other retail products were not processed at the affected data centre.

The ransomware group responsible for the attack, known as BlackCat (aka Alphv), has claimed responsibility and stated that NCR representatives have contacted them to learn what data was stolen from their systems.

However, the hackers later removed this post, suggesting that negotiations between the two parties have begun and NCR may potentially pay the ransom. NCR has not disclosed the ransom amount at this time.

> NCR Corporation breached by Black Cat. https://t.co/6beimfrsze pic.twitter.com/Bnh6s3RKfu
> 
> — Dominic Alvieri (@AlvieriD) April 15, 2023

According to NCR’s incident report, the company is working to make its Insight and NCR Back Office cloud environments available soon. Once this is done, Insight, NBO, and Pulse will upload/process restaurant data and impacted clients will receive an email containing replication configuration details after a few days.

Recovery plans for other affected applications, including Aloha Configuration Center, are also underway. It is worth noting that last month, the BlackCat ransomware gang also claimed responsibility for compromising Amazon’s Ring camera and gaining access to customers’ sensitive data.

1.  OVH data centre catches disastrous fire
2.  National Data Center Hit by watering hole attack
3.  Tech Giants’ Login Data Leaked in 2 Data Center Hacks
4.  Hyperconverged Infrastructure is Changing Data Centers

BlackCat (ALPHV) Gang Claims Ransomware Attack on NCR Data Center

By Deeba Ahmed
The new ransomware was spotted by MalwareHunterTeam, which is capable of encrypting macOS devices.
This is a post from HackRead.com Read the original post: LockBit Ransomware Expands Attack Spectrum to Mac Devices

****Analysis by Apple’s Patrick Wardle confirms that Lockbit ransomware “poses no threat to macOS users.”****

LockBit ransomware gang is reportedly developing a new version of malware that can encrypt files on Apple macOS, as revealed by MalwareHunterTeam. This would be the first instance of malware targeting Mac devices, as LockBit has previously focused on Linux and Windows devices.

The ransomware group is known for its RaaS (ransomware-as-a-service) operation, lending ransomware to cybercriminals for a fee. The new malware is named locker\_Apple\_M1\_64, and there are separate versions for PowerPC Macs as well.

****Malware Details:****

The new malware, locker\_Apple\_M1\_64, was first detected targeting Mac devices in November 2022, according to Vx-Underground, a platform that examines malware samples. It has not been detected by any anti-malware engines on VirusTotal, but information about this malware has been limited since last fall.

Researchers have noted that the LockBit ransomware gang is expanding its attack spectrum by targeting Macs, which marks a significant development in their tactics.

> Not a single person I can find tweeted LockBit has a Mac targeting version before I did above yesterday, nor can find any blog posts mentioning it, etc. So even if the gang had the first build in 2022 November, for public, this is not late at all, but even yet, seems the first… pic.twitter.com/4iR71cuLpo
> 
> — MalwareHunterTeam (@malwrhunterteam) April 16, 2023

****Expert Analysis:****

According to Patrick Wardle, a security researcher and founder of Objective-See, while the malware is capable of running on Macs, it does not pose a serious risk due to several factors. The malware sample analyzed by Wardle was not signed by a trusted certificate, which means macOS won’t run it.

Additionally, Apple’s file system protection solutions such as Transparency, Consent, and Control/TCC would limit the impact of the malware even if it manages to infiltrate a macOS device. Moreover, the malware had bugs, and Wardle concluded that it was not ready for prime time.

In a blog post, Wardle stated that the ransomware is buggy and contains flaws, including buffer overflows that cause it to prematurely exit.

> While this may be the first time a large ransomware group created ransomware capable of running on macOS, it is worth noting that this sample is far from ready for prime time \[…\] From its lack of a valid code-signing signature to its ignorance of TCC and other macOS file-system protections as it stands it poses no threat to macOS users.
> 
> Patrick Wardle

****Conclusion:****

In conclusion, the LockBit ransomware gang’s development of a macOS version of malware targeting Mac devices is a significant development in their attack tactics. However, based on Apple’s analysis, the current version of the malware does not pose a serious risk to macOS devices due to security measures in place.

Nevertheless, it underscores the need for continued vigilance against evolving malware threats and the importance of robust cybersecurity measures to protect against ransomware attacks on all platforms.

1.  BitTorrent sites drop crypto-ransomware on macOS
2.  EvilQuest ransomware hits macOS via pirated software
3.  macOS malware XcodeSpy sneaking into spy on victims

LockBit Ransomware Expands Attack Spectrum to Mac Devices

By Waqas
QuaDream, based in Ramat Gan, Israel, with around 40 employees, is known for its spyware used for hacking iPhones. 
This is a post from HackRead.com Read the original post: QuaDream, Israeli iPhone hacking spyware firm, to shut down

****QuaDream, an Israeli cyber mercenary, was recently exposed by Citizen Lab and Microsoft for developing spyware that hacks iPhones.****

QuaDream, a rival spyware developer of NSO Group, is reportedly preparing to shut down its operations. Employees of QuaDream have been summoned for a hearing, and it has been revealed that the company plans to lay off most of its employees, retaining only a small fraction to oversee the closure.

This decision comes amidst a survival crisis faced by the Israeli cyberattack industry, with several companies, including the cyberattack unit of Cognyte and Nemesis, reportedly shutting down. NSO Group also laid off 150 employees in the previous summer.

It is worth noting that Hackread.com also published a report on QuaDream titled “QuaDream: Israeli Cyber Mercenary Behind iPhone Hacks,” based on the findings of Citizen Lab and Microsoft. These findings may have played a significant role in QuaDream’s apparent demise.

Here’s what Eva Galperin, the Director of Cybersecurity at EFF (Electronic Frontier Foundation), had to say about the recent development:

> — Eva (@evacide) April 16, 2023

QuaDream, based in Ramat Gan, Israel, with around 40 employees, is known for its spyware used for hacking iPhones. Sources indicate that the company has notified its employees about the upcoming closure.

QuaDream’s operations have always been shrouded in mystery and came to the forefront recently after it sent a response letter to the Bat Yam Labor Court in defence of a lawsuit brought by a former employee.

Reportedly, in the letter, QuaDream cited a crisis in the cyberattack sector as the reason for laying off employees, with the industry’s downturn starting in 2018 when several companies publicly disclosed their activities, resulting in the blacklisting of Candiru and NSO by the US Chamber of Commerce in November 2011.

The crisis further deepened in early 2022 when the Israeli regulator announced a reduction in the number of countries where companies could sell their products, from 102 to 37, causing a severe economic crisis across the entire industry. By November 2022, businesses reported a significant negative trend, which also impacted QuaDream’s cash flow.

QuaDream was founded by Nimrod Reznik and Ilan Dabelstein, who still serve as senior managers. Its flagship product is an integrated software/hardware system that takes over local networks to hack phones connected to it.

Another popular product is software used for gaining remote access to phones. In 2022, Reuters reported that QuaDream had developed a no-interaction-based zero-click hacking tool similar to NSO Group’s products, which was in high demand among cybercriminals and espionage actors.

However, QuaDream faced a major setback when a report from Microsoft and Citizen Lab revealed that its hacking tools were used against advocacy organizations, journalists, and opposition figures in ten countries, including North America and Europe.

The report also suggested that the spyware used in these attacks was provided by QuaDream. Microsoft’s associate general counsel, Amy Hogan-Burney, emphasized the importance of publicly disclosing the activities of companies like QuaDream to hold them accountable.

Since the publication of this research, QuaDream has not been fully active, and its board of directors is now reportedly looking to sell its intellectual property.

1.  Zippyshare Quits Operation: 10 Best Alternatives
2.  Dark web market for stolen cards UniCC calls it quits
3.  Franco-Israeli Gang Linked to $40m CEO Scam Busted
4.  Israel Hit by Wave of Cyberattacks on Critical Networks
5.  Israeli Spyware Vendor Uses Chrome 0day to Hit Journalists
6.  European Spyware Vendor Sells Android & iOS Device Exploits

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

QuaDream, Israeli iPhone hacking spyware firm, to shut down

By Owais Sultan
Smart home devices are becoming more and more popular in recent years, promising convenience and automation to enhance…
This is a post from HackRead.com Read the original post: Are Smart Home Devices Invading Your Privacy?

Smart home devices are becoming more and more popular in recent years, promising convenience and automation to enhance our daily lives. However, as more of these devices become interconnected, and as they collect and transmit more data, concerns are growing about the privacy and security implications of their use.

As smart home devices continue to be compromised with just a simple Google search, it’s crucial to understand how these devices may be invading your privacy. In this article, we’ll delve into the various ways smart home devices can compromise your privacy and discuss effective measures to protect yourself.

**What is a Smart Home Device?**

Smart home devices are Internet of Things (IoT) devices that are designed to automate and enhance various aspects of your home. These devices can include smart thermostats, security cameras, door locks, lights, and even appliances like fridges and washing machines. They are typically controlled through a smartphone app, and can often be integrated with virtual assistants like Amazon Alexa or Google Assistant.

According to Nicole B of SenseMother, the benefits of smart home devices are easy to spot – they can save you time and money by automating tasks and reducing energy usage. For example, a smart thermostat can adjust the temperature of your home based on your habits and preferences, while a smart washing machine can optimize your laundry schedule to save water and electricity. Smart home devices can also improve security, allowing you to monitor your home remotely and receive alerts if anything unusual happens.

**How do Smart Home Devices collect data?**

Smart home devices are constantly collecting data about your activities, preferences, and habits. This data is used to improve the performance of the devices and to provide personalized recommendations and services. A simple coffee machine can infect your system with ransomware or might be collecting data on your heating and cooling preferences, while a smart fridge can track your food consumption and suggest recipes based on what you have on hand.

Some of the data collected by smart devices can be sensitive, including information about your daily routines, sleep patterns, and even your relationships. This data is often transmitted to the cloud storage for analysis and can be shared with third-party companies for marketing and research purposes

**Dangers of Smart Home Devices**

Smart home devices offer many benefits, but they also come with potential privacy risks. One of the most common security concerns with smart home devices is data breaches, which can result in the theft of your personal information, including your name, address, and payment information.

These devices can also be vulnerable to hacker attacks, allowing cybercriminals to gain access to your home network and sensitive data. By connecting to one smart home device, the hacker can also access and launch attacks on other devices connected to your home network, including your computer and your smartphone. Security cameras in particular can be hacked to gain surveillance by malicious individuals, watching you and your family without your knowledge or consent.

Smart home devices can also track your movements and activities, including when you enter and leave your house, and how often you use certain devices. Using this information, companies can create detailed profiles of your behaviour and preferences, which can be sold to advertisers.

**How to protect your Smart Home Devices from threats?**

There are several measures you can take to protect your privacy when using smart home devices. First of all, only choose reputable brands of smart home devices that have established a track record of prioritizing privacy and security. Before buying a product, read reviews and perform thorough research to make an informed decision.

Keeping your home network secure can go a long way in protecting your smart home devices. A strong password and enabling two-factor authentication wherever possible are great ways of improving the security of your home network. Keep your router’s firmware updated and consider segregating your smart home devices onto a separate network to limit the potential impact of a data breach.

Carefully read through the manufacturer’s privacy policy before purchasing to understand how they collect, use, and share your data. This will give you a better idea of what kinds of data the manufacturer will gather and what they will be doing with them. Consider disabling any unnecessary features on your device that you won’t be using, as these features may be collecting and transmitting additional data.

Regularly update your devices, keeping their software up-to-date. New updates can feature important security additions that will help your devices secure. Some updates may not be advertised, and you can check whether an update is available through the associated mobile app or on the manufacturer’s website.

Installing additional antivirus software on your devices will give you an extra layer of protection against attackers – many modern antivirus suites feature an additional smart security package that keeps your home network secure, automatically protecting any connected devices.

**Conclusion: Can Smart Home Devices Be Safe?**

Overall, smart home devices offer a wide range of benefits, considered by many to overshadow the potential dangers these devices create. With a proper approach to home cybersecurity and enough protective measures being taken, smart home devices can be a safe and very efficient addition to any home, automating mundane tasks and helping you keep a secure and comfortable space.

When using smart devices, don’t skimp on security measures. Utilize the tips we’ve provided in this article, and you’ll be sure to stay safe in your home, without having to get rid of all your cool smart home devices. Never buy smart devices from shady manufacturers, keep your software updated, and use a reliable antivirus suite for additional protection.

1.  IoT devices could help authorities solve criminal cases
2.  Internet Connected Plugs can be Exploited by Hackers
3.  A blackout scenario involving smart climate control devices
4.  Art of Convenience in A World Run by The Internet of Things
5.  Casino fish tank thermometer hacked to obtain sensitive data

Are Smart Home Devices Invading Your Privacy?

By Waqas
Zippyshare is no longer available after the service announced its shutdown on March 30th, 2023.
This is a post from HackRead.com Read the original post: 10 Best Zippyshare Alternatives – Best File Sharing Services

****With Zippyshare no longer available, users are now in search of alternative file hosting services to meet their needs. In this article, we will explore the top 10 Zippyshare alternatives that users can consider for their file hosting requirements.****

Zippyshare (Zippyshare.com) was a file hosting and sharing website that launched in 2006 and allowed users to upload and share files with others. Zippyshare provided a platform for users to store and share various types of files, including documents, images, videos, audio files, and more.

The service also allowed users to upload files to Zippyshare and generate download links that could be shared with others to download files.

Zippyshare had been known for its simplicity and ease of use, allowing users to quickly upload and share files without the need for an account or registration. It had been commonly used for sharing files in forums, blogs, and other online platforms, as well as for personal file-sharing purposes.

****Zippyshare Quits Operation****

As of February 2023, Zippyshare.com had a staggering 45 million daily visitors. However, on March 19th, 2023, the platform sent shockwaves through its user base as it announced March 30th, 2023 to be its last day of service.

Zippyshare.com cited multiple reasons for its decision to shut down, including a decline in ad revenue, increasing competition, rising electricity costs, and the widespread use of ad blockers, which collectively led to a significant decline in earnings.

As Zippyshare.com has ceased its operations, visitors to the site are greeted with a brief farewell message conveying the platform’s closure.

“Hello weary wanderer, Here lies Zippyshare , once upon a time a fairly big file hosting site blessed with a loyal and loving community. Before you leave, consider whether any of the following services will make your onward journey somehow easier and safer. Farewell.”

****Zippyshare Alternatives****

The thing about the internet is that one service goes down another one comes up. As a result, users seeking alternative file hosting and sharing websites can consider the following options:

**1\. **Mediafire****

Mediafire is a cloud-based file hosting and sharing service that allows users to upload, store, and share files with others. It provides a platform for users to store and share various types of files, including documents, images, videos, audio files, and more.

MediaFire offers both free and paid plans, with different features and storage limits. With a free account, users can upload and share files up to a certain storage limit, while paid plans offer larger storage limits, and additional features such as password protection, direct links, and ad-free file sharing.

Users can create accounts on MediaFire, upload files, and generate download links that can be shared with others. MediaFire also offers file management tools, such as file renaming, file deletion, and folder organization, to help users manage their uploaded files.

**2\. **Google Drive****

Google Drive is a widely used cloud storage service that allows users to store, share, and collaborate on files and folders. It offers up to 15GB of free storage per Google account and supports various file types, including documents, photos, videos, and more.

**3\. **Dropbox****

Dropbox is another popular cloud storage and file-sharing service that provides free and paid plans. It offers features such as file synchronization, file versioning, and sharing options with password protection and expiration dates. Dropbox also integrates with various third-party applications for enhanced functionality.

**4\. **Mega****

Mega is a cloud storage and file-sharing platform that offers end-to-end encryption for enhanced security. It provides free and paid plans with features like large file upload support, file versioning, and password protection for shared links.

**5\. **OneDrive****

OneDrive is a cloud storage and file-sharing service offered by Microsoft, which comes with free storage for Microsoft account holders. It allows users to store and share files and folders and offers features such as file synchronization, file versioning, and collaboration tools.

**6\. **4Shared****

4Shared is a file hosting and sharing website that allows users to upload, store, and share files with others. It provides a platform for users to store and share various types of files, including documents, images, videos, music, and more. 4Shared allows users to create accounts, upload files, and generate download links that can be shared with others, facilitating file sharing and collaboration.

4Shared offers both free and paid plans, with different features and storage limits. It has been used for personal file sharing, online backup, and collaborative file sharing purposes. Users can also search for and access files shared by others on the 4Shared platform.

**7\. **FileFactory****

FileFactory is a cloud-based file hosting and sharing service that allows users to upload, store, and share files with others. It provides a platform for users to store and share various types of files, including documents, images, videos, music, and more.

FileFactory allows users to create accounts, upload files, and generate download links that can be shared with others, facilitating file sharing and collaboration. FileFactory provides features such as file encryption, password protection, and download tracking to enhance file security and control. FileFactory offers both free and paid plans.

**8\. **AnonFiles****

AnonFiles is a file hosting and sharing website that allows users to upload and share files anonymously. It provides a platform for users to store and share various types of files, including documents, images, videos, audio files, and more. AnonFiles.com does not require users to create accounts or register, allowing for anonymous file sharing.

Users can upload files to AnonFiles and generate download links that can be shared with others, enabling them to download the files. AnonFiles.com also provides options for password protection and file expiration, allowing users to add additional security measures to their shared files.

**9\. **WeTransfer****

WeTransfer is a cloud-based file transfer service that allows users to send and share large files with others. It provides a simple and user-friendly interface for uploading and sending files, making it easy to share files with colleagues, clients, friends, or family.

WeTransfer offers a free plan that allows users to send files up to 2GB in size, with a limit of 20 transfers per week. Files are stored on WeTransfer’s servers for a limited time, typically 7 days, and users can choose to send files via email or by generating a download link that can be shared with others.

WeTransfer also offers a paid plan called WeTransfer Plus, which provides additional features such as increased file transfer size (up to 20GB), longer storage duration (up to 100GB), password protection for shared files, and customizable backgrounds for download pages, among others.

**10\. **pCloud****

pCloud is a cloud storage service that allows users to store, share, and synchronize files and data online. It provides a platform for users to upload, store, and access files, photos, videos, documents, and other types of data in the cloud, making them accessible from anywhere with an internet connection.

pCloud.com offers various features such as file syncing, file sharing, file versioning, and encryption to ensure data security and privacy. It also offers mobile apps for iOS and Android devices, as well as desktop apps for Windows, macOS, and Linux operating systems, making it convenient for users to access and manage their files across different devices.

pCloud.com offers both free and paid plans with different storage capacities and features to suit the needs of different users and businesses. Since the site is based in Europe, it fully complies with GDPR which means respect for user privacy and data protection.

****Beware of malicious files****

When downloading files from an email or any of the aforementioned Zippyshare alternatives, it’s important to be cautious of potentially malicious files. To ensure the safety of your device and data, always scan downloaded files using reputable antivirus software or online scanning services like VirusTotal, FileScan, or Any.Run.

This will help detect and mitigate any potential threats before they can harm your device or compromise your security. Stay vigilant and prioritize your cybersecurity when downloading files from any source, including file hosting and sharing websites.

****Conclusion****

These websites provide similar features such as uploading, storing, and sharing files with others, and may offer different plans, storage limits, and additional features. It’s important to review the terms of service and privacy policy of these websites to ensure compliance and up-to-date information.

1.  Tor and Its 10 Best Alternatives
2.  5 Best Internet Service Locators
3.  The Best Alternatives Operating Systems
4.  Tor domain remains online after Feds seize Z-Library sites
5.  Best legal, free online streaming sites for movies, TV shows

10 Best Zippyshare Alternatives – Best File Sharing Services

By Owais Sultan
If you encounter a “No signal” issue on your monitor despite your computer being powered on, and you…
This is a post from HackRead.com Read the original post: Troubleshooting No Signal Monitor Issue: Steps to Get Computer Display Back

If you encounter a “No signal” issue on your monitor despite your computer being powered on, and you receive messages such as “No signal detected,” “Check signal cable,” or “No input signal,” regardless of the type of connection (HDMI, VGA, Display Port, DVI), this article will provide you with some simple solutions to help you restore your computer display.

****The Root of the Issue****

If your computer doesn’t turn on when indicator lights are on or turn on when they are off, there could be several reasons. You may encounter three different error messages on your monitor screen that can help identify the issue.

⚠️ No input signal

⚠️ Check signal cable

⚠️ No signal detected

All these notifications indicate that the input is not receiving the supported video signal, and the underlying reason is the same. However, the specific alerts may vary depending on your monitor.

Regardless, it’s important to take your time before sending your computer for repair, as various factors such as the power supply, motherboard, cable, or battery can affect the performance of your equipment.

To troubleshoot and potentially fix the issue, you can take specific steps to identify the cause of the malfunction and attempt to resolve it on your own. Alternatively, you can seek assistance from experts at consulting service Howly for an easier solution. If you prefer to tackle the problem independently, the following information will be helpful.

****Essential Ways to Solve the Problem****

It’s important to start by considering the simple and common causes of the problem, along with their corresponding solution methods. It’s crucial not to skip any point, even if you believe everything is okay with it.

*   Make sure to check if the cable connecting the monitor or PC video card is securely connected and not disconnected. Sometimes, accidental impacts or movements can loosen the cable.
*   If you have recently upgraded your monitor or video card and connected it using an adapter or cable with different interfaces (e.g., Display Port to HDMI, HDMI to VGA/DVI), keep in mind that these cables or adapters can sometimes be the source of problems. Some of them are unidirectional, and others may only work with specific equipment (e.g., video cards that support analogue output via HDMI).

Proper solutions to consider are: Try to connect using the same type of ports or at least digital output to digital input. Avoid using adapters or opt for an active signal converter. Consider using the monitor’s original cable without adapters.

*   If you have connected your computer to a second monitor, projector, or TV, turn off your computer, unplug the TV cable from the video card, then turn the computer back on and check if the “No signal detected” or “Check the signal cable” problem is resolved.
*   If your monitor menu has an input source selection option, open the menu and manually select the input signal used.
*   Connect your monitor to another computer or laptop to rule out a problem with the monitor itself or its ports. If there is no signal on the other computer as well, the issue likely lies with the monitor itself.
*   If your computer previously had a discrete video card, but you now connect the monitor to the integrated video output on the motherboard and receive a “No signal” message, it may be due to disabled integrated video in the BIOS, PCI-E video card priority setting in the BIOS, or the processor lacking integrated video.
*   Some older graphics cards may not output a signal to the Display Port before the drivers are loaded during system boot. If you have just assembled a computer with such a video card or are reinstalling the operating system from a USB flash drive, and the monitor is connected via Display Port, there may be no signal.
*   If you have purchased a new monitor with a USB-C/Thunderbolt connection and connected it to a laptop, check the laptop specifications as not all laptops support display output via USB-C. It is recommended to use the “native” cable provided with the monitor, as not all USB-C cables may support video/audio output to the monitor.

****Heavier Artillery****

If the previously mentioned solutions did not work, here are some other possible options to consider, although they may be more complex than the previous ones, they can still be applied at home.

*   If you have integrated video, you can try disconnecting the discrete graphics card and connecting the monitor to the integrated video output to see if that resolves the issue. If it does, possible causes could be: additional power not connected to the discrete video card, hardware problems with the video card, insufficient power from the power supply unit, or issues with the slot where the video card is plugged in.
*   If your computer appears to be working with fans running and indicator lights on, but there is no signal on the monitor, it may not necessarily mean that the computer is fully functional. Issues with the video card, power supply, RAM, or motherboard power connections can prevent the computer from starting and displaying a signal on the monitor.
*   If your computer starts but the monitor shows a POST/BIOS or logo screen followed by a “No signal” or “Signal is out of range” message, there may be an issue with the output settings of your operating system.

One possible solution is to boot into safe mode and use restore points or boot from a USB flash drive with the same version of the OS you have installed, then select “System Restore” on the second screen at the bottom left corner and use the restore points.

In Windows 10, you can access the recovery environment (Windows RE) after two forced shutdowns. Alternatively, you may need to consider reinstalling the operating system.

****Conclusion****

If you haven’t been able to find a solution for the “No signal” monitor issue, you can always seek help from specialists. It’s important to prepare all the necessary information for them, such as the model of your video card and monitor, details about the connection setup, what might have caused the issue, and what troubleshooting steps you have already taken. With this information, the experts will be able to provide a tailored solution for your specific case.

1.  How to Teach Your Child Coding
2.  What to Do If Your Mac Keeps Freezing
3.  How to Create and Manage Groups on iPhone
4.  Top 5 macOS Monterey Issues You Might Need to Fix
5.  How to Hide Tables in SQL Server Management Studio

Owais takes care of Hackread's social media from the very first day. At the same time He is pursuing for chartered accountancy and doing part time freelance writing.

Troubleshooting No Signal Monitor Issue: Steps to Get Computer Display Back

By Waqas
Is it a highly dubious claim by the infamous LockBit 3.0 ransomware gang? It looks like it!
This is a post from HackRead.com Read the original post: LockBit 3.0 Posts Dubious Claims of Breaching Darktrace Cybersecurity Firm

**Darktrace, a leading cybersecurity firm renowned for its AI-powered threat detection and response solutions, has swiftly dismissed LockBit 3.0’s statements.**

LockBit 3.0, a notorious ransomware gang known for its high-profile and some time making up attacks, has claimed to have successfully hacked, prominent Cambridge, United Kingdom-based Darktrace cybersecurity company.

The gang announced the breach on its dark web portal, where they posted images of Darktrace’s CEO Poppy Gustafsson that are already publicly available. Although LockBit 3.0 claims to have published the alleged stolen data, clicking the download links on the gang’s website only redirects users to Darktrace’s official website.

Screenshot from LockBit 3.0’s website (Credit: Hackread.com)

Darktrace, on the other hand, has issued a statement acknowledging the claims made by LockBit 3.0, but denying any breaches or malicious activity.

> **Our security teams have run a full review of our internal systems and can see no evidence of compromise. None of the LockBit social media posts link to any compromised Darktrace data. We will continue to monitor the situation extremely closely, but based on our current investigations we are confident that our systems remain secure and all customer data is fully protected.**
> 
> Darktrace

LockBit 3.0 has a track record of targeting high-profile organizations, such as a SpaceX contractor, and demanding hefty ransoms for the release of encrypted data. Yet, the group has faced allegations of fabricating claims about compromising new victims. For example, in a similar instance last year, LockBit 3.0 claimed to have breached cybersecurity firm Mandiant, which is owned by Google. However, Mandiant swiftly denied and dismissed the gang’s statements.

There has also been confusion regarding whether LockBit 3.0 initially meant Darktrace or DarkTracer, a Singapore-based threat intelligence and OSINT firm, as their victim. However, it is safe to say that neither Darktrace nor DarkTracer has been targeted or impacted by any breach. Read more about this on Twitter.

> The reliability of the RaaS service operated by LockBit ransomware gang seems to have declined. They appear to have become negligent in managing the service, as fake victims and meaningless data have begun to fill the list, which is being left unattended. pic.twitter.com/mfGhH93oYh
> 
> — Fusion Intelligence Center @ DarkTracer (@darktracer\_int) April 12, 2023

****Ransomware, a growing threat****

In recent years, ransomware attacks have become a major cybersecurity challenge, causing significant financial losses and reputational damage to businesses and organizations worldwide.

These attacks often result in data breaches, operational disruptions, and financial extortion, as victims are left with few options other than paying the ransom or facing severe consequences.

As the cybersecurity landscape continues to evolve, organizations must remain vigilant in their efforts to safeguard their systems and data from cyber threats. This includes implementing robust cybersecurity measures, regularly updating and patching systems, and providing comprehensive employee training on cybersecurity best practices.

1.  Hackers infiltrate Western Digital Internal Systems
2.  New Strain of Rorschach Ransomware Hits US Firms
3.  LockBit blames victim for DDoS attack on its website
4.  UK Criminal Records Office Hit by Ransomware Attack
5.  New Cylance Ransomware Targets Linux and Windows

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

LockBit 3.0 Posts Dubious Claims of Breaching Darktrace Cybersecurity Firm

By Waqas
The Legion malware is capable of stealing credentials from misconfigured or exposed servers and is linked to the AndroxGh0st malware family.
This is a post from HackRead.com Read the original post: Legion: Credential Harvesting & SMS Hijacking Malware Sold on Telegram

**The new Python-based Legion malware is being linked to a potential Indonesian developer.**

Cloud forensics and incident response platform startup, Cado Security Ltd., has revealed details of a new credential harvester and hacking tool called “Legion.”

According to researchers, Legion is being sold on Telegram and is designed to exploit various services for email abuse. The tool is believed to be linked to the AndroxGh0st malware family which was first reported in December 2022.

The use of Telegram for selling Legion malware should not come as a surprise, as the popular messaging platform has often been associated with illegal activities. In fact, just last week, **it was reported** that threat actors are leveraging Telegram to automate phishing attacks, highlighting the platform’s role in facilitating cybercriminal activities.

Legion specifically targets web servers running content management systems, PHP or PHP-based frameworks. It has the ability to retrieve credentials for a wide range of web services, including email providers, cloud service providers, server management systems, databases, and payment platforms like Stripe Inc. and PayPal Holdings Inc. Additionally, Legion can hijack SMS messages and compromise Amazon Web Services Inc. credentials.

One notable feature of Legion is its availability of modules that can enumerate vulnerable SMTP servers, conduct remote code execution, exploit vulnerable versions of Apache, and brute-force cPanel and WebHost Manager accounts.

It also interacts with the **Shodan Search Engine**‘s API to retrieve a target list and has modules focused on abusing AWS services. Researchers have also highlighted Legion’s ability to send SMS spam messages to mobile network users in the United States across all carriers, which sets it apart from other similar tools.

Legion is being sold on various Telegram channels and is being promoted on YouTube through tutorial videos, suggesting that it is widely distributed and likely paid malware.

While the origin of the malware is not confirmed, comments found in Bahasa Indonesia suggest that the developer may be Indonesian or based in Indonesia. A GitHub Gist link leads to a user named “Galeh Rizky” with a profile indicating residence in Indonesia.

As a precaution, Cado Security researchers recommend in their **report** that users of web server technologies and frameworks like Laravel review their existing security processes and ensure that credentials are appropriately stored.

Ideally, sensitive information such as credentials should be stored in a .env file outside of web server directories to prevent unauthorized access.

Legion splash screen (Cado Labs)

The discovery of Legion highlights the ongoing threat of credential harvesting and hacking tools in the cybersecurity landscape. It serves as a reminder for organizations to prioritize robust security measures and stay vigilant against evolving cyber threats.

On the other hand, the trend of using Telegram as a platform for buying and selling malware is concerning, as it provides a convenient and anonymous means for cybercriminals to conduct illicit activities.

1.  360 Million WhatsApp Records Leaked on Telegram
2.  Hackers turn to Telegram to assist Iranian protestors
3.  Telegram and Discord Bots Drop Infostealing Malware
4.  Fake Telegram and WhatsApp clones steal crypto funds
5.  21M SuperVPN, GeckoVPN user data leaked on Telegram

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Legion: Credential Harvesting & SMS Hijacking Malware Sold on Telegram

By Waqas
Watch out for compromised Facebook business pages offering fake and malware-infected installers for ChatGPT and Google Bard AI chatbot.
This is a post from HackRead.com Read the original post: Malicious ChatGPT & Google Bard Installers Distribute RedLine Stealer

**Cybercriminals are hijacking Facebook pages and using sponsored posts to offer downloads of ChatGPT and Google Bard AI, which in reality spread RedLine Stealer malware.**

According to a report from security automation startup Veriti, threat actors are attempting to exploit the popularity of OpenAI’s chatbot **ChatGPT** and Google Bard to distribute malware and steal sensitive data. These attempts underscore the risks associated with generative AI platforms.

It should come as no surprise that ChatGPT’s popularity has been exploited for malicious purposes since its launch. As a result, OpenAI, ChatGPT’s parent company, recently introduced its **first-ever bug bounty program**.

****Attack Mechanism****

Veriti researchers have observed that attackers first hijack Facebook business or community pages, carefully selecting pages with thousands of followers. They then post seemingly legitimate sponsored ads on these pages, offering free downloads of ChatGPT and **Google Bard**. Unsuspecting visitors fall into the trap and download the malicious files, which then unleash the RedLine information-stealing malware on their devices.

Compromised Facebook pages spreading RedLine stealer (Via: Veriti)

“These posts are designed to appear legitimate, using the buzz around OpenAI language models to deceive unsuspecting users into downloading the files. However, once the user downloads and extracts the file, the **RedLine Stealer malware** is activated and can steal passwords and download further malware onto the user’s device,” reads Veriti’s **report**.

For reference, RedLine Stealer is sold on online hacker forums as a malware-as-a-service (MaaS) platform, with a primary focus on targeting browsers to collect users’ data. This commoditized malware is often favoured by cybercriminals due to its low cost, priced at $100 to $150.

****What are the Dangers?****

When a victim installs the malicious file from one of these sponsored ads, their device is **hijacked by the RedLine infostealer**, which can then steal confidential data, disrupt critical infrastructure, and compromise financial accounts.

By targeting web browsers on the infected device, RedLine Stealer can steal credentials, credit card information, or other payment card details, as well as conduct system inventory to identify vulnerabilities for further attacks.

Furthermore, RedLine Stealer has the capability to upload/download files and execute commands, providing even novice hackers with extensive opportunities to carry out various types of cyberattacks.

****Who are the Targets?****

Researchers detected this campaign in January 2023 and observed a peak in March. So far, dozens of Facebook accounts have been hijacked across ten countries to distribute RedLine Stealer through malicious ads.

The highest number of victims were identified in Greece, followed by India, Mexico, the USA, and Bangladesh. Approximately 77% of the attacks were observed in the USA, with Canada at 9%, Mexico at 6%, India at 4%, and Portugal at 2%.

This campaign serves as an early warning of what may lie ahead, as the soaring popularity of AI-based chatbots has made them lucrative targets for threat actors. They can exploit the versatility of these products, which can be packaged in different forms such as open source or mobile applications, allowing them to create **trojanized downloads**.

The potential impact is significant, as attackers can steal anything from private to financial data and target critical infrastructure.

Researchers suggest that enterprises should upgrade their cybersecurity practices, educate employees about the risks associated with downloading files from unauthenticated or unknown sources, and ensure strong security configurations to prevent system compromise.

Limiting the downloading of executables and implementing sandboxing of executables before downloading can also reduce the risk of infecting corporate IT infrastructure.

1.  Bard AI Causes Google Losses of $100 Billion
2.  Scammers Pose as ChatGPT in New Phishing Scam
3.  ChatGPT Clone Apps Collect Data on iOS, Play Store
4.  Fake ChatGPT Extension Hijacks Facebook Accounts
5.  Researchers create Blackmamba malware with ChatGPT

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Malicious ChatGPT & Google Bard Installers Distribute RedLine Stealer

By Owais Sultan
Mobile security is becoming increasingly important as we delve deeper into the era of the Internet of Things…
This is a post from HackRead.com Read the original post: Top Mobile Security Considerations for Business Travelers

Mobile security is becoming increasingly important as we delve deeper into the era of the Internet of Things (IoT). With many business travelers relying on their mobile devices for productivity, it is crucial to ensure the safety and security of these devices.

In this article, we will provide an overview of the ten most important considerations for protecting your mobile device when traveling for work. We will look at best practices for setting up strong passwords, protecting against malicious websites and apps, and tips for avoiding public Wi-Fi hotspots. By implementing these simple steps, you can keep your device safe while on the go.

****1: Avoid public Wi-Fi networks****

Public Wi-Fi networks can pose a security risk as they are typically unsecured and make it easy for malicious actors to gain access to your devices or view traffic sent over the network. It is best practice to avoid using public Wi-Fi when traveling for business to ensure that all data remains secure and out of reach of potential attackers.

If you must use public Wi-Fi for cellular connectivity while traveling, make sure to use a virtual private network (VPN). This will encrypt all data sent over the network, making it much more difficult for malicious actors to access.

****2: Enable password protection****

When traveling for business, it is of utmost importance to enable password protection on all mobile devices. Passwords should be complex and changed regularly to ensure the highest level of security. Additionally, passwords should never be shared or written down. For added security, consider using fingerprint or face recognition technology for authentication.

People lose or misplace their phones all the time, and while traveling, there are more opportunities for strangers to see and gain access to your device. To prevent the risk of theft, enable a tracking app in case your mobile device is lost or stolen. These tracking apps allow you to locate and lock the stolen device remotely.

****3: Utilize virtual private networks (VPNs)****

Using a VPN while traveling is essential for ensuring secure internet connections. Virtual Private Networks (VPNs) encrypt all data traveling between your mobile device and the server, making it impossible for hackers to intercept or access it. Additionally, VPNs can be used to hide your true IP address and location, so you can remain anonymous online when using public Wi-Fi hotspots.

A virtual private network should be a foundational part of any good mobile cybersecurity policy for traveling employees. They are quick, easy to use, and provide a great way to keep your data safe while you are abroad.

****4: Install antivirus software****

One of the best ways to protect your devices from malicious threats is by installing antivirus software on all mobile devices used when traveling for business. Antivirus programs scan and monitor the device’s activities, alerting you if any suspicious activity or malware is detected. They can also be set up to automatically update with the latest virus definitions and protection.

The good news is that there are plenty of antivirus software options available, both free and paid, depending on your business’s budget. The most important thing is to ensure you find one that offers comprehensive protection for all devices used when traveling.

****5: Use two-factor authentication (2FA)****

Two-factor authentication (2FA) is a great way to increase the security of any account or device accessed when traveling. This method requires users to enter two forms of authentication, such as a PIN code and fingerprint when signing in. This way, even if someone were to gain access to your password, they would still be unable to access the account or device without the second form of authentication.

Using 2FA is especially important for business travelers who may have confidential information stored on their devices. By requiring two forms of authentication at sign-in, you can be sure that any sensitive information remains secure while traveling.

****6: Utilize remote data wiping****

Utilizing remote data wiping capabilities is crucial in case a mobile device is lost or stolen. This helps protect your business by allowing you to remotely erase all data from lost or stolen devices.

Remote data wiping is an important security measure that can save your business time and money if a mobile device is lost or stolen while traveling. It’s also important to note that many of the best security solutions offer automatic backups so that any wiped data can be restored at a later date if necessary.

****7: Use disk encryption****

Using disk encryption is a crucial step in protecting the data stored on your device, as it prevents unauthorized users from accessing the information without having access to the encryption key. This method of encryption scrambles all files, making them unreadable without the encryption key.

Disk encryption is especially important for business travelers who may have confidential information stored on their devices, as it ensures that any sensitive data remains secure even if a device falls into the wrong hands.

****8: Utilize mobile device management (MDM)****

Utilizing mobile device management (MDM) software is a great way to increase the security of any devices used while traveling. MDM provides users with centralized control over their mobile devices and allows businesses to enforce security policies such as password requirements and disk encryption. Additionally, MDM can be used remotely with location-tracking capabilities, making it easier to find lost or stolen devices quickly.

Finally, MDM also helps businesses protect their data by providing granular control over what information can be accessed on each device. This helps ensure that confidential data remains secure, even if a device falls into the wrong hands.

Download apps from trusted sources only. It’s important to be cautious about the apps you download and install onto your devices, as malicious apps can potentially cause harm or compromise the security of your device. It’s always best practice to only download apps from trusted sources, such as the Apple App Store or Google Play Store.

Additionally, it’s important to review an app before downloading it. Look at reviews and ratings from other users and make sure that the app has been regularly updated with bug fixes and security patches. This will help ensure that any installed apps are safe and secure while traveling.

****Takeaway****

In conclusion, the security of mobile devices is critical for business travelers, as lost or stolen devices can potentially put your business at risk. To protect against this, businesses should consider utilizing remote data-wiping capabilities and disk encryption to ensure that any sensitive information stored on a device remains secure even if it falls into the wrong hands.

Additionally, public Wi-Fi networks pose an additional security risk, so using a VPN whenever possible is recommended. Lastly, mobile device management (MDM) software provides users with centralized control over their devices and helps enforce important security policies such as password requirements and disk encryption.

Finally, only download apps from trusted sources like the Apple App Store or Google Play Store to help keep your device safe while traveling. By following these ten simple tips, you can ensure that all of your confidential data stays safe no matter where you go.

1.  10 gadgets to have while traveling
2.  The Benefits Of Blockchain In The Travel Industry
3.  Keep Your Data Safe When Traveling With A Laptop
4.  BusKill USB cable switches off laptop in event of theft
5.  With KENT CamEye Travelling in a Cab Got a Lot Safer!