2007, Cybercrime and Hacking - Cyber Security Informer

From Cybercrime Saul Goodman to the Russian GRU

Krebs on Security

FEBRUARY 7, 2024

In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. Launched in 2001 under the tagline “Network terrorism,” Mazafaka would evolve into one of the most guarded Russian-language cybercrime communities. Mark Rasch , a former cybercrime prosecutor for the U.S. As well as the cost of my services.”

Cybercrime

Cybercrime Accountability Identity Theft Hacking

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. Emerging in 2007 as a banking trojan, QakBot (a.k.a. Qakbot/Qbot was once again the top malware loader observed in the wild in the first six months of 2023.

Hacking

Hacking Malware Ransomware Government

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Krebs on Security

MARCH 10, 2020

District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations. It also was used in 2007 to register xeka[.]ru Click image to enlarge.

Accountability

Accountability Advertising Hacking Cybercrime

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

One of Megatraffer’s ads on an English-language cybercrime forum. Megatraffer has continued to offer their code-signing services across more than a half-dozen other Russian-language cybercrime forums, mostly in the form of sporadically available EV and non-EV code-signing certificates from major vendors like Thawte and Comodo.

Malware

Malware Cybercrime Software Accountability

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime

Cybercrime Computers and Electronics Hacking Banking

Grief ransomware gang hit US National Rifle Association (NRA)

Security Affairs

OCTOBER 27, 2021

Grief ransomware operators announced to have hacked US National Rifle Association (NRA) and threaten to leak the stolen data. The NRA was added to the list of compromised organizations on the leak site of the group, that gang also published a set of documents as proof of the hack. SecurityAffairs – hacking, NRA).

Ransomware

Ransomware Banking Cybercrime Hacking

Evil Corp rebrands their ransomware, this time is the Macaw Locker

Security Affairs

OCTOBER 21, 2021

Evil Corp cybercrime gang is using a new ransomware called Macaw Locker to evade US sanctions that prevent victims from paying the ransom. The Evil Corp cybercrime group (aka the Dridex gang Indrik Spider , the Dridex gang, and TA505 ) has been active in cybercrime activities since 2007. Pierluigi Paganini.

Ransomware

Ransomware Cybercrime Banking Encryption

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

How cybercrime is impacting SMBs in 2023

SecureList

JUNE 26, 2023

One of the methods often utilized to hack into employees’ smartphones is so-called “ smishing ” (a combination of SMS and phishing). Even something totally unrelated to business, such as a YouTube link, may be used to target SMBs, as their employees often use the same devices for work and personal matters.

Cybercrime

Cybercrime Phishing Banking Malware

Russian cybercriminal Aleksandr Brovko sentenced to 8 years in jail

Security Affairs

NOVEMBER 3, 2020

“As reflected in court documents, from 2007 through 2019, Brovko worked closely with other cybercriminals to monetize vast troves of data that had been stolen by “botnets,” or networks of infected computers. Brovko was involved in the illegal practice between 2007 and 2019. SecurityAffairs – hacking, Aleksandr Brovko).

Accountability

Accountability Banking Advertising Data collection

Top 8 Cybersecurity Podcasts of 2021

eSecurity Planet

APRIL 23, 2021

Since 2017, host Jack Rhysider has investigated some of the most noteworthy stories related to the darkside of the internet, specifically hacking, data breaches, and cybercrime. Through interviews and research, Ran connects the dots between the early days of cybercrime and today’s stories of data hacks and breaches.

Cybersecurity

Cybersecurity InfoSec Cybercrime Hacking

NON-STATE ACTORS IN THE CYBERSPACE: AN ATTEMPT TO A TAXONOMIC CLASSIFICATION, ROLE, IMPACT AND RELATIONS WITH A STATE’S SOCIOECONOMIC STRUCTURE

Security Affairs

JUNE 28, 2022

Non-state actors include multinational corporations, collectives of hacktivists, non-governmental organizations (NGOs), cybercrime syndicates, private military organizations, media outlets, terrorist groups, labor unions, organized ethnic groups, lobby groups, criminal organizations, private businesses, and others. Pierluigi Paganini.

Cyber Attacks

Cyber Attacks Cybercrime Telecommunications Government

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

Security Affairs

OCTOBER 24, 2020

Researchers from the NCC Group’s report and later Symantec confirmed that malware was developed by the Russian cybercrime crew known as Evil Corp , which was behind the Dridex Trojan , and multiple ransomware like Locky , Bart, Jaff , and BitPaymer. This group has been active since at least 2007, in December 2019, the U.S.

Ransomware

Ransomware Telecommunications Banking Advertising

Sophos linked Entropy ransomware to Dridex malware. Are both linked to Evil Corp?

Security Affairs

FEBRUARY 23, 2022

DoppelPaymer and Dridex were both attributed to the operation of a cybercrime gang known as Evil Corp , which launched in October a new ransomware called Macaw Locker to evade US sanctions that prevent victims from making ransom payments. SecurityAffairs – hacking, Dridex). Follow me on Twitter: @securityaffairs and Facebook.

Ransomware

Ransomware Malware Cybercrime Banking

QBOT – A HTML Smuggling technique to target victims

Quick Heal Antivirus

NOVEMBER 11, 2022

QBot, also known as Qakbot, QuackBot, and Pinkslipbot, is a Banking Trojan that was first observed in 2007. The post QBOT – A HTML Smuggling technique to target victims appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.

Banking

Banking Phishing Cybercrime Ransomware

Vietnam-linked Bismuth APT leverages coin miners to stay under the radar

Security Affairs

DECEMBER 1, 2020

The experts warn that nation-state actors are adopting TTPs associated with cybercrime gangs to make it hard the attack attribution. They also leveraged the Sysinternals DebugView tool, the McAfee on-demand scanner, and Microsoft Word 2007.” SecurityAffairs – hacking, BISMUTH). ” Microsoft said. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Antivirus Government Manufacturing

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Security Affairs

AUGUST 6, 2023

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, data breach) The post Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack appeared first on Security Affairs.

Education

Education Data breaches Ransomware Hacking

Romanian Duo Receives Jailtime For Infecting 400,000 With Malware

Threatpost

DECEMBER 9, 2019

Since 2007, the two allegedly operated a cybercrime ring called "Bayrob Group.".

Cybercrime

Cybercrime Malware Government Hacking

Romanian duo convicted of fraud Scheme infecting 400,000 computers

Security Affairs

APRIL 14, 2019

.” According to the authorities, the Romanian duo, along with a third co-conspirator who has pled guilty, operated their criminal conspiracy from Bucharest since 2007. SecurityAffairs – Romanian Duo, cybercrime). Sentencing is scheduled for August 24 before Chief Judge Patricia A. Gaughan in the Northern District of Ohio.

Cryptocurrency

Cryptocurrency Identity Theft Advertising Accountability

FBI identifies 16 Conti ransomware attacks on US health care and first responder networks

SC Magazine

MAY 24, 2021

Tavakoli said the FBI report mentions Mimikatz, a tool created in 2007. And elements of Cobalt Strike were also used in the SolarWinds supply chain hack. Oliver Tavakoli, CTO at Vectra, said while each of the active ransomware groups has its own particular collection of tools, many of those tools are well-known and pedestrian.

Ransomware

Ransomware Encryption Cryptocurrency Media

Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group

Security Affairs

JULY 20, 2023

The APT41 group, aka Winnti , Axiom, Barium , Blackfly, HOODOO) is a China-linked cyberespionage group that has been active since at least 2007. The experts noticed the use of an IP address that was part of the hacking infrastructure used by APT41 between May 2014 and August 2020. government.

Spyware

Spyware Surveillance Mobile Malware

News URSNIF variant doesn’t support banking features

Security Affairs

OCTOBER 21, 2022

It appeared on the threat landscape in 2007 and gained popularity in 2014 when its source code was leaked online giving the opportunity to several threat actors to develop their own version. SecurityAffairs – hacking, ursnif). ” Ursnif is one of the most and widespread common threats today delivered through malspam campaigns.

Banking

Banking Malware Hacking Ransomware

Malicious Life Podcast: The Life and Exploits of Albert Gonzales Part 3

Security Boulevard

JULY 26, 2021

In this third installment of the series ( Part 1 , Part 2 ), we come back to the story in early 2007 when a Secret Service agent operating out of San Diego takes a flight halfway across the world. He’s going to meet with Europe’s most prolific stolen credit card salesman.

InfoSec

InfoSec Cybercrime Hacking Cybersecurity

Canadian Police Raid ‘Orcus RAT’ Author

Krebs on Security

APRIL 2, 2019

In response to an inquiry from this office, the RCMP stopped short of naming names, but said “we can confirm that our National Division Cybercrime Investigative Team did execute a search warrant at a Toronto location last week.”. According to Rezvesz himself, he is no stranger to the Canadian legal system.

Advertising

Advertising Malware Software Marketing

The new DOJ Law Enforcement Crypto Reports (TL;DR)

Security Boulevard

SEPTEMBER 20, 2022

financial transactions associated with the commission of crimes, such as buying and selling drugs or weapons, leasing servers used in the commission of cybercrime, soliciting funds to support terrorist activity, or ransom, blackmail and extortion. . The new report points out something that I've recently been mentioning as well.

Cryptocurrency

Cryptocurrency Marketing Cybercrime Banking

The Hacker Mind Podcast: The Fog of Cyber War

ForAllSecure

JULY 6, 2022

Mikko Hypponen joins The Hacker Mind to discuss cybercrime unicorns, the fog of cyber war that surrounds the Ukrainian war with its much larger neighbor, and of course Mikko’s new book, If it’s Smart, it’s Vulnerable. It’s about challenging our expectations about the people who hack for a living.

Cybercrime

Cybercrime Government Ransomware Hacking

China-linked APT group Winnti targets Japanese organizations since March 2024

Security Affairs

FEBRUARY 18, 2025

” The APT group was first spotted by Kaspersky in 2013, but according to the researchers,the gang has been active since 2007. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon PierluigiPaganini ( SecurityAffairs hacking,APT group Winnti)

Malware

Malware Manufacturing Engineering Encryption

MY TAKE: Here’s how ‘bulletproof proxies’ help criminals put compromised IoT devices to work

The Last Watchdog

AUGUST 21, 2019

My big takeaways: Bulletproof weaponry Back in 2007, a noted fellow journalist, Brian Krebs, exposed how the Russian Business Network had pioneered something called “ bulletproof hosting.” We know this from the Inside the Mind of a Cybercrimal survey conducted by Andrei Barysevich, director of advanced collection at Recorded Future.

IoT

IoT Internet Internet Financial Services

Cyber Security Informer

From Cybercrime Saul Goodman to the Russian GRU

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Webinars

Trending Sources

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Webinars

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Grief ransomware gang hit US National Rifle Association (NRA)

Evil Corp rebrands their ransomware, this time is the Macaw Locker

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

How cybercrime is impacting SMBs in 2023

Russian cybercriminal Aleksandr Brovko sentenced to 8 years in jail

Top 8 Cybersecurity Podcasts of 2021

NON-STATE ACTORS IN THE CYBERSPACE: AN ATTEMPT TO A TAXONOMIC CLASSIFICATION, ROLE, IMPACT AND RELATIONS WITH A STATE’S SOCIOECONOMIC STRUCTURE

Boyne Resorts ski and golf resort operator hit with WastedLocker ransomware

Sophos linked Entropy ransomware to Dridex malware. Are both linked to Evil Corp?

QBOT – A HTML Smuggling technique to target victims

Vietnam-linked Bismuth APT leverages coin miners to stay under the radar

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Romanian Duo Receives Jailtime For Infecting 400,000 With Malware

Romanian duo convicted of fraud Scheme infecting 400,000 computers

FBI identifies 16 Conti ransomware attacks on US health care and first responder networks

Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group

News URSNIF variant doesn’t support banking features

Malicious Life Podcast: The Life and Exploits of Albert Gonzales Part 3

Canadian Police Raid ‘Orcus RAT’ Author

The new DOJ Law Enforcement Crypto Reports (TL;DR)

The Hacker Mind Podcast: The Fog of Cyber War

China-linked APT group Winnti targets Japanese organizations since March 2024

MY TAKE: Here’s how ‘bulletproof proxies’ help criminals put compromised IoT devices to work

Stay Connected