InfoSecBulletin Cybersecurity for mankind
INTERPOL has found around 1,300 suspicious IP addresses and URLs worldwide. These were discovered during their operation against phishing, malware, and ransomware attacks.
Operation Synergia was launched from September to November 2023 to address the increasing problem of transnational cybercrime and the need for coordinated action against new cyber threats.
WhatsApp banned on all US House of Representatives devices
Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store
OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems
Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform
Hackers Bypass Gmail MFA With App-Specific Password Reuse
Russia detects first SuperCard malware attacks via NFC
Income Property Investments exposes 170,000+ Individuals record
ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs
CISA Flags Active Exploits in Apple iOS and TP-Link Routers
10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online
A total of 60 law enforcement agencies from over 50 INTERPOL member countries participated in an operation. They conducted house searches and confiscated servers and electronic devices. So far, they have taken down 70% of the identified command-and-control (C2) servers, while the rest are still being investigated.
Operational details:
Authorities detained 31 individuals and identified an additional 70 suspects.
Most of the C2 servers taken down were in Europe, where 26 people were arrested.
Hong Kong and Singapore Police took down 153 and 86 servers, respectively.
South Sudan and Zimbabwe reported the most takedowns on the African continent, arresting four suspects.
Bolivia mobilized a range of public authorities to identify malware and resulting vulnerabilities.
Kuwait’s worked closely with Internet Service Providers to identify victims, conduct field investigations and offer technical guidance to mitigate impacts.
Operation Synergia showed that cybersecurity is most effective when law enforcement, national authorities, and private sector partners work together to share best practices and proactively fight cybercrime. INTERPOL and its partners Group-IB, Kaspersky, TrendMicro, Shadowserver, and Team Cymru provided analysis and intelligence support during the operation.
Bernardo Pillot, Assistant Director to INTERPOL Cybercrime Directorate, said:
“The results of this operation, achieved through the collective efforts of multiple countries and partners, show our unwavering commitment to safeguarding the digital space. By dismantling the infrastructure behind phishing, banking malware, and ransomware attacks, we are one step closer to protecting our digital ecosystems and a safer, more secure online experience for all.”
Participating countries:
Albania, Algeria, Australia , Bangladesh, Belarus, Belgium, Benin, Bolivia, Bosnia and Herzegovina, Brazil, Cameroon, Canada, China, Cyprus, Czech Republic, Dominican Republic, Ecuador, Estonia, Eswatini, France, Georgia, Greece, Guyana, India, Ireland, Israel, Kuwait, Latvia, Lebanon, Lichtenstein, Maldives, Mauritius, Moldova, Nepal, Nicaragua, Nigeria, Palestine, Poland, Qatar, Russia, San Marino, Singapore, South Korea, South Sudan, Spain, Sri Lanka, Switzerland, Tanzania, Thailand, Tonga, Tunisia, Türkiye, Uganda, United Arab Emirates, Uruguay, Zimbabwe.
