Two of the four Romanian hackers charged with the 2011 remote hijacking of credit card processing systems of more than 150 Subway restaurants, as well as other retailers in the United States, have pleaded guilty to the crimes. According to documents filed on Monday in the U.S. District Court in New Hampshire, Iulian Dolan, 28, pleaded guilty to one count of conspiracy to commit computer fraud and two counts of conspiracy to commit credit card fraud, and Cezar Iulian Butu, 27, pleaded guilty to one count of conspiracy to commit credit card fraud. The defendants were both arrested in August 2011 upon entering the Untied States. According to federal prosecutors, the sting resulted in more than $10 million in losses.
Vulnerable Apache NiFi implementations are being targeted in new attacks deploying the Kinsing cryptomining malware, as indicated by the significant increase in HTTP requests for "/nifi" on May 19, according to The Hacker News.
Numerous fraudulent websites masquerading as legitimate software, including ChatGPT, Gimp, AstraChat, and Go To Meeting, have been used in a new RomCom malware campaign by Cuba ransomware affiliate Void Rabisu, also known as Tropical Scorpius, from December 2022 to April 2023, which was mostly targeted at Eastern Europe, according to BleepingComputer.
Scandinavian Airlines has been demanded to pay $3 million by the Anonymous Sudan threat operation to put an end to distributed denial-of-service attacks against the airline's websites that began in February, reports The Record, a news site by cybersecurity firm Recorded Future.