Tag Archives: Night Lion Security

Banks, Globally, Attacked by Fileless Malware

Banks around the world are being infected with a new form of fileless malware. This type of malware is invisible, as it lies undetected within the memory of a bank’s network gathering passwords and administrative information. The malware then feeds this data back to the hackers, who use it to control the bank’s computer system remotely.

According to Kaspersky Lab, who discovered the new form of malware, there have been reports of this malware at 140 different enterprises in 40 different countries throughout the globe, including: banks, telecoms and government institutions. The United States being hit the hardest with 21 reported incidents.

“What is interesting here is that these attacks are ongoing globally against banks themselves,” said Kaspersky Lab expert Kurt Baumgartner to Ars Technica late last week. Baumgartner went on to explain, “the banks have not been adequately prepared in many cases to deal with this.”

Fileless malware attacks are becoming more common than anyone imagined, which is why cyber security has become such an important tool. Digital Forensic Firms, such as,  NightLion Security, offer malware detection and removal with 24/7 service. Vinny Troia, CEO of the St. Louis Digital Forensics Firm, commented that banks are being targeted because they do not have the proper security in place to protect them against this type of invisible malware distribution.

Kaspersky Lab is unsure who is behind the attack or if it is more than one group using the same tools. They plan on releasing their findings later today.

Whoever is behind these attacks is focusing on computers that run automatic teller machines and “pushing money out of the banks from within the banks,” explains Baumgartner. He goes on to say that many of these attacks varied in the way they were executed, which is why they think numerous groups could be involved.

Credit Card Skimmers striking at gas stations

Most people don’t even think twice when inserting their credit cards into the machine to get gas. But you can never be careless when dealing with credit cards unfortunately.

St. Louis, as well as a ton of places in the U.S., have been experiencing a rise in credit card skimming devices at gas stations. The reason gas pumps are more popular for skimming devices than ATMs is because the keys to get inside the pumps are much easier to access and can even be sold online.

Vinny Troia, Digital Forensics Investigator and CEO of Night Lion Security, said that skimming devices are very hard to avoid and even the new credit cards with the chip won’t prevent you from being hacked. The only thing you can do, Troia explained, is to check your credit card statements daily.

Watch the video from FOX 2 News here. 

Identity theft Increases during tax season

Identity theft has become an increasingly large issue throughout the world. Unfortunately, it is an even bigger issue around tax season, according to a video from KSDK. Last year alone 500,000 people complained of stolen identity and about half occurred during tax season.

The only things you can do to prevent identity fraud is by filing your taxes earlier and using an IRS pin number to file safely. Vinny Troia, Cyber Security Expert and CEO of Night Lion Security, explained how the IRS pin is the main way to avoid a stolen identity because the pin is only assigned to one person and no one else can file your taxes for you unless they get the pin number.

Click here to watch the video to learn more.

Hacking Forensic Investigator discusses US Bank data breaches

Customer information was hacked at JP Morgan and 9 other US banks. There was no money actually taken from accounts but through credit cards. Apple pay system was designed to prevent credit card hacks. There is no possible way to obtain the credit card number with the Apple pay system. Vinny Troia, Hacking Forensic Investigator and CEO of Night Lion Security, a cyber security and IT risk management company, discusses this topic on Fox Business.

Troia explains that the next logical way for hackers will be to match usernames and passwords of people’s bank accounts and drain their money. This would be an enormous upset for banks, when this does happen. The banks would have to give whatever money was stolen back to their customers.

Cyber Security Expert talks about recent hacker

A recent article on Fox News talks about a Bahamian man who hacks into tons of celebrity emails to steal unreleased movies and TV scripts. Alonzo Knowles is the man being investigated for criminal copyright infringement and identity theft charges. Knowles is also giving away social security numbers and other personal things. Vinny Troia, Certified Hacking Forensic Investigator and CEO of Night Lion Security, a digital forensics and penetration testing firm, doesn’t believe that Knowles hacked into celebrity email accounts. In fact, he believes this is all a scam and that Knowles never hacked anything at all.

Troia thinks this was just a challenge to lure customers in to buying some of the things he hacked. Once the customers decided to buy the social security numbers, for example, Knowles would run away and leave the customer with nothing, Troia presumes. Knowles’ plan was working for him because people believe it is hard to obtain social security numbers but it is actually incredibly simple, Troia explains. Troia clarifies that one hack would have been difficult enough to pull off and there is no evidence to suggest that he is skilled enough to pull off all of these hacks and steal all of this information.

JP Morgan Breach – Discussion on CNBC

Since the JP Morgan breach, companies are becoming more aware of the data breaches that are likely to happen. Vinny Troia, Cyber Security Expert and CEO of Night Lion Security, discusses the JP Morgan breach with Kevin O’Leary, Michelle Caruso-Cabrera and the staff of CNBC’s Closing Bell. The hacker had gotten in through a personal computer at JP Morgan. This proves that hackers can get into anything at any time.

Troia explains that the hackers had clearly calculated their move because they did not take the passwords that go to the usernames. This is because JP Morgan would have sent out a notification for everyone to change his or her passwords immediately. A question came up regarding whether the hacker had stolen money and it was never confirmed. This data breach clearly shows that people’s information is not safe anymore.

Cyber Security Expert Discusses Hacked Celebrity Photos

With the rise of celebrity’s photos getting hacked, Vinny Troia, Certified Hacking Forensic Investigator and CEO of Night Lion Security, discusses this issue with Rebecca Jarvis on ABC World News. Celebrities like Jennifer Lawrence, Kate Upton, and many others have all experienced these awful hacks. Apple announced that there were no hacks on their systems but on the celebrity’s user names, passwords and security questions.

Night Lion Security is a St. Louis based Digital Forensics firm, Troia explains how hackers can find a lot of the information to hack them through their Wikipedia pages. The hackers can find the latitude, longitude and altitude of where these photos were taken and they make lots of money doing this. The only solution to these hacking problems is to create unique passwords and changing them frequently.