Russian hackers have found a clever way to break into secure networks. Instead of attacking directly, they first hack into a nearby, less secure company. From there, they connect to their main target’s Wi-Fi network, avoiding security checks like multi-factor authentication. Once inside, they use normal system tools to steal data, making their actions hard to spot. Researchers at Volexity have uncovered a novel attack method employed by Russian-backed hackers, notably the APT28 group (also known as Fancy Bear). The “Nearest Neighbor” attack involves compromising a less secure company located near the primary target to gain access via Wi-Fi networks. By infiltrating a neighbouring organization’s network, the attackers leveraged devices with wired internet and Wi-Fi capabilities to connect directly to the target’s Wi-Fi, bypassing multi-factor authentication (MFA) safeguards. Once inside, they utilized legitimate Windows functions—a tactic known as “living off the land”—to exfiltrate data without deploying traditional malware, making detection challenging.

Cybercriminals Turn to Physical Mail for Malware Distribution

In an unexpected shift, cybercriminals are resorting to traditional mail to disseminate malware. The Swiss Federal Office for Cybersecurity has issued warnings about letters impersonating the national meteorological agency. These letters contain QR codes that, when scanned, download malware such as the banking Trojan “Coper” (also known as “Octo2”) onto Android devices. This method aims to exploit individuals’ trust in physical mail and circumvent digital security measures. Recipients are advised to exercise caution with unsolicited communications and avoid scanning unknown QR codes.

Data Breach at Andrew Tate’s Online Platform

“The Real World,” an online educational platform owned by Andrew Tate, has suffered a significant data breach. Hacktivists accessed and leaked sensitive information of approximately 800,000 users, including usernames, email addresses, and chat logs. The attackers criticized the platform’s inadequate security measures, describing it as “hilariously insecure.” This incident highlights the critical importance of robust cybersecurity practices, even for platforms that may not be traditional high-profile targets.

Protecting Yourself Online

To keep your personal information safe:

• Be Cautious with Emails and Letters: Don’t trust unsolicited messages or letters, especially those asking you to download apps or scan QR codes.
• Use Strong, Unique Passwords: Create different passwords for each of your accounts to prevent hackers from accessing multiple services if one password is compromised.
• Enable Two-Factor Authentication (2FA): This adds an extra layer of security by requiring a second form of verification beyond just your password.
• Stay Informed: Keep up with the latest cybersecurity news to be aware of new threats and learn how to protect yourself.

By following these steps, you can reduce the risk of falling victim to cyber threats and keep your online information secure.