- \n
- Media report an order to halt a US cyber offensive against Russia.<\/li>\n
- Crypto was stolen from job seekers via fake software.<\/li>\n
- Sweden and France to consider amendments enabling the breaking of messenger encryption.<\/li>\n
- Microsoft announced the closure of Skype.<\/li>\n<\/ul>\n<\/div>\n
Media report order to halt US cyber offensive against Russia<\/strong><\/h2>\n
US Defense Secretary Pete Hegseth ordered Cyber Command to abandon any planning for offensive action against Russia, including in the digital realm, according to Record<\/a>, which cited three informed sources.<\/p>\n
According to the information available, Hegseth passed the instruction to Cyber Command chief General Timothy Ho, who in turn informed the command\u2019s director of operations, Marine Corps Major General Ryan Heritage.<\/p>\n
The sources also said the order reportedly does not extend to the National Security Agency and signals intelligence work directed against Russia.<\/p>\n
The directive\u2019s full scope remains unclear, as does its precise duration.<\/p>\n
Cyber Command has begun compiling a report listing actions or missions slated for suspension, assessing the risks of the decision and potential threats emanating from Russia.<\/p>\n
Crypto stolen from job seekers via fake software<\/strong><\/h2>\n
The Russian-speaking hacking group Crazy Evil has launched a malicious campaign, GrassCall, targeting professionals seeking work in the Web3 sector, Bleeping Computer<\/a> reports.<\/p>\n
The attackers created X and LinkedIn profiles for a fictitious company, ChainSeeker.io, and placed premium job ads on popular recruitment sites on its behalf.<\/p>\n
Applicants were asked to download the GrassCall app supposedly for interviews. In reality, the software installed a stealer that grabbed passwords, cookies and cryptocurrency wallet data.<\/p>\n
Data: Bleeping Computer.<\/figcaption><\/figure>\n The scam affected hundreds of people. For now, the ads posted by the attackers have been removed.<\/p>\n
Telegram fined more than $600,000 in Australia<\/strong><\/h2>\n
Australia\u2019s online safety regulator, eSafety, fined Telegram more than $600,000 after the messenger delayed by 160 days providing information on measures to combat terrorism and child abuse material, The Guardian<\/a> reports.<\/p>\n
The platform has 28 days to appeal the decision, pay the amount or request a deferral.<\/p>\n
Meanwhile, in Russia, from February 2022 to February 2025, Roskomnadzor fined<\/a> Telegram a total of 63.4 million roubles for failing to comply with the agency\u2019s orders, not removing prohibited information and refusing self-moderation.<\/p>\n
Sweden and France weigh amendments to break messenger encryption<\/strong><\/h2>\n
Sweden\u2019s government could adopt a law as early as March 2026 introducing a so-called backdoor to end-to-end encryption (E2EE) in messaging apps. This would give law enforcement access to users\u2019 confidential data, writes The Register<\/a>.<\/p>\n
Signal CEO Meredith Whittaker sharply criticised<\/a> the initiative and said the company would shut down business in the country if the law takes effect. In her words, breaking E2EE would make all of the app\u2019s code vulnerable to cyberattacks.<\/p>\n
An analogous amendment was adopted<\/a> by France\u2019s Senate and is under review in the National Assembly. It requires encrypted messengers to open access to correspondence within 72 hours upon request. At the same time, local authorities want to ban ISPs and VPN services from providing access to pirate sites.<\/p>\n
Privacy-focused email provider Tuta and the VPN Trust Initiative warned that the new laws threaten privacy and personal security.<\/p>\n
Access to ChatGPT cut off for several North Korean hackers<\/strong><\/h2>\n
OpenAI has blocked<\/a> several North Korean hacking groups from using the ChatGPT platform. The accounts were detected with information from an industry partner and linked to the gangs Velvet Chollima (also known as Kimsuky, Emerald Sleet) and Stardust Chollima (APT38, Sapphire Sleet).<\/p>\n
The cybercriminals used the chatbot to research future targets, attack methods, assistance in writing malicious code and to search for information on cryptocurrencies.<\/p>\n
OpenAI threat analysts found that the North Korean actors revealed staging URLs of previously unknown binaries. The information was passed to security researchers to update rules and prevent attacks.<\/p>\n
The company also blocked accounts linked to a potential scheme to place North Korean IT specialists in Western organisations.<\/p>\n
Suspect in hacks of 90 organisations arrested in Thailand<\/strong><\/h2>\n
The Royal Thai Police, together with counterparts in Singapore, arrested in Bangkok a suspect in a series of intrusions, extortion and data leaks affecting more than 90 organisations worldwide. Experts from Group-IB<\/a> assisted the investigation.<\/p>\n
According to investigators, since 2020 the hacker operated under the aliases ALTDOS, DESORDEN, GHOSTR and 0mid16B. The total volume of data stolen exceeded 13 TB.<\/p>\n
If a victim refused to pay, the suspect notified the media or data protection regulators in order to inflict greater reputational and financial damage.<\/p>\n
Data: Group-IB.<\/figcaption><\/figure>\n During the raid, police seized laptops and luxury items allegedly purchased with criminal proceeds.<\/p>\n
The suspect faces multiple charges, including unauthorised access to protected computer systems and data, attempted extortion and illegal residence.<\/p>\n
Microsoft announces Skype shutdown<\/strong><\/h2>\n
The Skype video-calling service will cease<\/a> operations on 5 May. Microsoft will end support for the app and focus on developing the free Teams platform.<\/p>\n
The latter, like Skype, offers calls, messaging and file sharing. Teams\u2019 advanced features include holding meetings, managing calendars, and creating and joining communities.<\/p>\n
The platform\u2019s user base has already reached the hundreds of millions.<\/p>\n
To ease migration between the messengers, Microsoft will allow sign-in to Teams using a Skype account.<\/p>\n
Also on ForkLog:<\/p>\n
- \n
- Pi Network responded to fraud allegations<\/a> from Bybit\u2019s CEO.<\/li>\n
- Kyrgyzstan claimed links between several crypto firms<\/a> and money laundering.<\/li>\n
- On his birthday, the founder of Mask Network had $4 million in crypto stolen<\/a>.<\/li>\n
- Immunefi: in February, the crypto industry lost $1.53 billion<\/a> due to the Bybit hack.<\/li>\n
- The Pump.fun X account was hacked<\/a> to promote scam tokens.<\/li>\n
- The FBI<\/a>, following Arkham<\/a>, confirmed North Korea\u2019s involvement in the Bybit hack.<\/li>\n
- Binance\u2019s founder criticised<\/a> Safe\u2019s report on a wallet infrastructure vulnerability<\/a> in the context of the Bybit hack.<\/li>\n
- The US Department of Justice announced the extradition<\/a> of Gotbit\u2019s founder.<\/li>\n
- Searches began<\/a> in cities across Moldova over a crypto-exchange fraud case.<\/li>\n
- Fake software on GitHub netted hackers $485,000<\/a> in bitcoin from a single attack.<\/li>\n
- SMS scammers targeted<\/a> Binance users with \u2018warnings\u2019 about hackers.<\/li>\n
- The Bybit hackers laundered $113 million<\/a> in a day.<\/li>\n
- A user lost more than $760,000 due to \u2018address poisoning\u2019<\/a>.<\/li>\n
- Russia has launched inspections of \u2018drop facilitators\u2019<\/a> and crypto exchangers.<\/li>\n
- Adam Back linked the Bybit hack to shortcomings in the EVM<\/a>.<\/li>\n
- US authorities seized<\/a> $31 million in crypto assets tied to the Uranium Finance hack.<\/li>\n
- An expert explained how scammers \u2018kill\u2019<\/a> trading bots.<\/li>\n
- The Garantex crypto exchange was added<\/a> to the EU sanctions list.<\/li>\n
- Bybit blocked<\/a> a Lazarus-linked meme token and fully restored its reserves<\/a>.<\/li>\n
- The stablecoin bank Infini was hacked<\/a> for 49.5 million USDC.<\/li>\n
- Experts spoke out against an Ethereum \u2018rollback\u2019<\/a>.<\/li>\n<\/ul>\n
What to watch this weekend?<\/strong><\/h2>\n
A fresh episode of \u2018Podcast Society\u2019 in which Web3 entrepreneur Vladimir Menaskop dissects the details of the largest Bybit breach in an attempt to understand who was behind it and whether the incident could have been prevented.<\/p>\n
- Kyrgyzstan claimed links between several crypto firms<\/a> and money laundering.<\/li>\n
- Pi Network responded to fraud allegations<\/a> from Bybit\u2019s CEO.<\/li>\n
![\"US](\"https:\/\/lh7-qw.googleusercontent.com\/docsz\/AD_4nXdwvt7Kk6rQi6odmJdLM6r39mPoLfFA26flzNRnjj3BnQjEjTCKFrg960TxdOfd8EQIHmqWEY2XKQGTZuFPnKRRPk0rE0gcrlojRgRz8qhGepiJm-yZBNnfpideJpjBipSjXFyPuQ?key=qPxS8E_RbzrxhSB2Qqft9Wbv\")
![\"US](\"https:\/\/lh7-qw.googleusercontent.com\/docsz\/AD_4nXf6y4DTTL-zRBTwt0CO15Jp2bGzmOUZ6NIBcs13WhkYozk4XtZTU-bu1PFBdeB3gBVBE8tuGO_9WW0_vk8yLCT15UWwW8-dxBoRYZnvQy2Ue1sJqTalLsto20o34ptLWt2_flw6dw?key=qPxS8E_RbzrxhSB2Qqft9Wbv\")