The dark web Ad claims that an anonymous group of 20k people are willing to spend 20k to buy insider access to the servers of Telegram. This would allow them to use the popular chat platform to trade illicit goods or conduct other illegal activities. In addition, this could give them a sneak peek at the data of the users who use the service.
20,000 USD buys insider access to telegram servers
One of the best ways to nab a bargain is via the dark web. This is the place to shop for gadgets and trinkets, not to mention nefarious contraptions. A dark web marketplace is an underground trade hub catering to vendors from across the globe. Its low-stakes competition makes for a lucrative trade. However, scammers and scumbags are more than willing to snoop and snuff out good deals. If your chin is on the line, the best way to ensure you don’t take is to steer clear of these forums.
The dark web is litter with vendors hawking their wares, and the likes. Although it’s difficult to discern who is who, it’s not hard to find a vendor who is out to get you. As a result, you’ll have to be prepared to do some eavesdropping. You might be surprised to find out that the same vendor is selling off a few snazzy looking baubles. Warned though, not all vendors are as reputable as their peers, and you’ll be in the dark unless you know what to look for.
While you’re at it, keep an eye out for the sexiest vendors. This is especially true if you’re looking for a blingtastic trinket, as the seller might be inclined to sling it in for you.
Gift card fraud
A seller on a dark web marketplace claims that he able to provide insider access to Telegram servers. This is not the first time a merchant has claimed this ability.
On May 7, 2019, two more dark web marketplaces taken down. One was the Wall Street Marketplace and the other was the Valhalla Marketplace. Both targeted by an international coordinated operation. Those affected included an IT company called iTCo, a New Zealand based business that specializes in online security. It confirmed that no payment enquires to restore the systems. The New Zealand Uniforms spokesperson said the attack had only applied to certain systems, and they were back online within 48 hours.
Meanwhile, the Russian cybercriminal gang Snatch claimed to have stolen 500 gigabytes of data from McDonalds. They posted a demand for an undisclosed amount on a Dark Web site. While the restaurant has not commented on the incident, it is possible that the stolen data could have released.
Another vendor on the dark web marketplace claims that he can provide unrestricted access to Telegram servers via employees. He says that the stolen information could use to expose the security and privacy of the users of the service. However, he insists that the claim is a scam. Unless he able to prove that his assertions are true, they could hurt the reputation of the service as an encryption-based messaging application.
In addition, this vendor claims that he able to provide unrestricted access to Telegram’s internal network. If this is true, a user with insider access can then access users’ log data and other sensitive information.
Lapsus$ ransomware group issues a poll on its Telegram channel
The Lapsus$ ransomware group isn’t the only crook on the block. A Russian cybercriminal gang known as Snatch is also trying to extort money from McDonalds. In fact, Snatch has reportedly stolen 500 gigabytes of data from the fast-food giant. It is unclear what exactly the group is aiming at.
The Lapsus$ gang isn’t the first to boast a multi-billion-dollar database of malware. According to security experts, the most impressive aspect of the Lapsus$ worm is its obfuscation, which may or may not achieved using a cryptographically unlocked code. However, the most interesting part of the story is that several major companies have affected by this malware. While Nvidia and Samsung have yet to confirm or deny that the group has accessed their systems, the company does say that it has found some evidence of the attack.
As if that wasn’t enough, the worm was responsible for the theft of 70GB of source code from Globant, a company that develops software for companies including Coca-Cola and Walmart. The hackers were able to break into the company’s internal systems and steal code for an unknown reason, despite a security team’s efforts to prevent the hack. Although Globant has yet to confirm the details, a spokesperson did say that the worm was able to make its way into the company’s network, which is an interesting development. Despite being unable to confirm the identity of the crook, Globant is not about to give up and is putting the pieces of its shattered corporate cohesion back together.
Whether or not the Lapsus$ worm caused any damage is an open question, but one that’s only going to get more interesting in the coming days. It’s still a good idea to remain vigilant, and to keep tabs on any suspicious activities, such as phishing and email scams.
OL1MP criminal chat platform used to contraband trade
A recent sting operation revealed that authorities covertly monitored messages from more than 12,000 users in more than 100 countries. These include several notable chat platforms, ranging from the OL1MP criminal chat platform, to a telegram app called Jabber, to an encrypted chatting service called Discord.
According to a slew of news reports, the OL1MP (one last megaphone) is a criminal chat platform used to trade contraband, in the form of gifts cards. In particular, the platform’s chat bot can help buyers find a reputable dealer. It is also possible to use an automated marketplace to buy and sell items. The same bot can use to browse for the best deals. This is a great way to boost sales of illicit items.
Security of user data stored in multiple data centres around the globe
A vendor from the dark web claims to have insider access to Telegram servers. If that’s true, this could be a serious problem for the instant messaging service, which many security-conscious users prefer. That’s because if you have access to the Telegram logs, you can steal sensitive user details and tarnish the app’s reputation as a secure messaging tool.
This type of fraud is all too common online. In fact, Nvidia, a company that makes graphics cards, recently announced it was under investigation for data theft. The attack came from a group of cybercriminals called Lapus$. They had stolen information from Vodafone, MercadoLibre and Impresa. According to a screen shot, they claimed to have 1TB of stolen data. But, as reported by Security.com, these claims are unverified and have yet to be verify by the firm.
Similarly, the dark web marketplace that the vendor claims to be operating from isn’t a trustworthy place to check their claims. And, since the merchant hasn’t provided proof that he has insider access to Telegram, there’s no way to tell if his claims are true.
Recommended readings: