Security Affairs
Attacker Used AI to Build Custom PowerShell Recon Malware|Malware Hits Japan’s Largest Taxi Company Nihon Kotsu, Services Temporarily Suspended|CrashStealer: New macOS Infostealer Uses Signed Apps to Evade Gatekeeper|Lidl Notified Online Shop Customers in Germany, Belgium, and the Netherlands of a Data Breach|U.S. CISA adds a Cisco IOS flaw to its Known Exploited Vulnerabilities catalog|EU Targets FSB-Linked Hackers in New Sanctions Over Cyber Sabotage|Dutch Nationals Suspected in Odido Hack That Exposed Six Million Customers|Australia Alerts Organizations to Ongoing CMS Exploitation Attacks|Ryuk Ransomware Member Pleads Guilty Over Attacks on U.S. Organizations|Progress Told ShareFile Customers to Pull the Plug on Their Servers. Here’s What We Know.|SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 105|Security Affairs newsletter Round 585 by Pierluigi Paganini – INTERNATIONAL EDITION|Attacker Used AI to Build Custom PowerShell Recon Malware|Malware Hits Japan’s Largest Taxi Company Nihon Kotsu, Services Temporarily Suspended|CrashStealer: New macOS Infostealer Uses Signed Apps to Evade Gatekeeper|Lidl Notified Online Shop Customers in Germany, Belgium, and the Netherlands of a Data Breach|U.S. CISA adds a Cisco IOS flaw to its Known Exploited Vulnerabilities catalog|EU Targets FSB-Linked Hackers in New Sanctions Over Cyber Sabotage|Dutch Nationals Suspected in Odido Hack That Exposed Six Million Customers|Australia Alerts Organizations to Ongoing CMS Exploitation Attacks|Ryuk Ransomware Member Pleads Guilty Over Attacks on U.S. Organizations|Progress Told ShareFile Customers to Pull the Plug on Their Servers. Here’s What We Know.|SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 105|Security Affairs newsletter Round 585 by Pierluigi Paganini – INTERNATIONAL EDITION|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

The OurMine group also hacked the Google CEO Sundar Pichai’s Quora account

The Saudi-based group of hackers known as OurMine has another illustrious victim, after Mark Zuckerberg they have also hacked the Google CEO Sundar Pichai’s Quora account. OurMine is a hacking collective that is scaring IT giants, the list of victims is very long and include names like Mark Zuckerberg, Twitter co-founder Evan Williams, David Guetta Daniel Ek, former […]

The OurMine group also hacked the Google CEO Sundar Pichai’s Quora account

The Saudi-based group of hackers known as OurMine has another illustrious victim, after Mark Zuckerberg they have also hacked the Google CEO Sundar Pichai’s Quora account.

OurMine is a hacking collective that is scaring IT giants, the list of victims is very long and include names like Mark ZuckerbergTwitter co-founder Evan Williams, David Guetta Daniel Ek, former Twitter CEO Dick Costolo, the CEO and founder of Spotify, and many others.

The last victim in order of time is the CEO of Google, Suchar Pichai, members of the OurMine group have hacked his Quora account that was also linked to his Twitter accounts. The hackers have been posting messages on through the Pichai’s Quora account and shared them also with all the 508,000 Twitter followers.

Twitter promptly removed the messages, but it is easy to find them online, below a picture shared by Techworm.net.

Suchar Pichai Quora account hacked Tweets

 

As already occurred for other victims, it is likely that OurMine hackers have used data coming from other data breaches, but the hacking crew claims that it have used the exploits in their arsenal in order to obtain the login credentials of its illustrious victims.

Which is the motivation?

It seems that the OurMine group is linked to a Security Firm that is trying to obtain notoriety from the attacks and is offering its services to the targets, that evidently need them to avoid further incidents.

OurMine hackers

One of the messages posted by the group states:

“We are just testing people security (sic), we never change their passwords, we did it because there is other hackers can hack them and change everything.”

The OurMine group explained that it gained access to Pichai’s account by exploiting a security issue in Quora’s platform, the team also explained that it reported the flaw to the company that ignored its warning.

Quora’s users are advised, I strongly suggest you to avoid sharing same login credentials among several web services.

[adrotate banner=”9″]

Pierluigi Paganini

(Security Affairs – Sundar Pichai, OurMine Team)