2011, Cybercrime, Internet and Malware - Cyber Security Informer

Why Malware Crypting Services Deserve More Scrutiny

Krebs on Security

JUNE 21, 2023

If you operate a cybercrime business that relies on disseminating malicious software, you probably also spend a good deal of time trying to disguise or “crypt” your malware so that it appears benign to antivirus and security products. This story explores the history and identity behind Cryptor[.]biz WHO RUNS CRYPTOR[.]BIZ?

Malware

Malware Antivirus Cybercrime Hacking

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

For the past seven years, a malware-based proxy service known as “ Faceless ” has sold anonymity to countless cybercriminals. The proxy lookup page inside the malware-based anonymity service Faceless. as a media sharing device on a local network that was somehow exposed to the Internet. Image: spur.us.

Malware

Malware Passwords Accountability Advertising

The Link Between AWM Proxy & the Glupteba Botnet

Krebs on Security

JUNE 28, 2022

On December 7, 2021, Google announced it was suing two Russian men allegedly responsible for operating the Glupteba botnet, a global malware menace that has infected millions of computers over the past decade. AWMproxy, the storefront for renting access to infected PCs, circa 2011. Image: Google.com.

Passwords

Passwords Malware Internet Internet

Google obtained a temporary court order against CryptBot distributors

Security Affairs

APRIL 28, 2023

to disrupt the operations of the CryptBot malware, which experts estimate infected approximately 670,000 computers this past year. Google targeted the distributors of the malware who are paid to spread and deliver the malicious code and infect a larger number of systems as possible. ” reads the announcement published by Google.

Malware

Malware Cybercrime Cryptocurrency Media

Copycat Criminals mimicking Lockbit gang in northern Europe

Security Affairs

JANUARY 28, 2023

The recent Hive infrastructure takedown as well as other major gangs dissolution such as Conti in 2022, is making room in the cybercrime business The Lockbit locker leaked a few months ago in the underground, is increasing its popularity and adoption among micro-criminal actors.

Penetration Testing

Penetration Testing Ransomware Firewall Social Engineering

Google disrupts the Glupteba botnet

Security Affairs

DECEMBER 7, 2021

The blockchain-enabled botnet has been active since at least 2011, researchers estimate that the Glupteba botnet is currently composed of more than 1 million Windows PCs around the world. Botnet operators use to spread the malware via cracked or pirated software and pay-per-install (PPI) schemes. users were warned via Safe Browsing.

Backups

Backups Advertising Accountability Malware

Silent Night Zeus botnet available for sale in underground forums

Security Affairs

MAY 23, 2020

The source code of the Zeus Trojan is available in the cybercrime underground since 2011 allowing crooks to develop their own release since. Experts found multiple variants in the wild, many of them belonging to the Terdot Zbot/Zloader malware family. The malware is able to infect all operating systems.

Banking

Banking Advertising Malware Data collection

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

eSecurity Planet

SEPTEMBER 14, 2022

Cybercrime is a growth industry like no other. According to statistics from the FBI’s 2021 Internet Crime Report , complaints to the Internet Crime Complaint Center (IC3) have been rising since 2017. Phishing complaints were reported over 300,000 times in 2021 to IC3, the only Internet crime to crack 100,000+ complaints.

Social Engineering

Social Engineering Energy and Utilities Phishing Internet

Breach Exposes Users of Microleaves Proxy Service

Krebs on Security

JULY 28, 2022

Launched in 2013, Microleaves is a service that allows customers to route their Internet traffic through PCs in virtually any country or city around the globe. Microleaves works by changing each customer’s Internet Protocol (IP) address every five to ten minutes. pro , Hackforums , OpenSC , and CPAElites. “Online[.]io

Advertising

Advertising Software Computers and Electronics Internet

The Origins and History of the Dark Web

Identity IQ

FEBRUARY 8, 2024

The Origins and History of the Dark Web IdentityIQ The dark web is a hidden part of the internet that cannot be accessed as easily. The dark web consists of websites and services that operate anonymously and aren’t accessible in the “public” part of the internet. The deep web is far and away the largest part of the internet.

Identity Theft

Identity Theft Cryptocurrency Government Engineering

Glupteba botnet is back after Google disrupted it in December 2021

Security Affairs

DECEMBER 19, 2022

The blockchain-enabled botnet has been active since at least 2011, researchers estimated that the Glupteba botnet was composed of more than 1 million Windows PCs around the world as of December 2021. Botnet operators use to spread the malware via cracked or pirated software and pay-per-install (PPI) schemes.

DNS

DNS Antivirus Cryptocurrency Software

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Image: treasury.gov.

Ransomware

Ransomware Cybercrime Accountability Malware

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The above-mentioned AIDS Trojan hailing from the distant pre-Internet era was the progenitor of the trend, but its real-world impact was close to zero. Forward outlook Ransomware is a dynamic and increasingly hybrid segment of cybercrime. These included PClock, CryptoLocker 2.0, Crypt0L0cker, and TorrentLocker. pharma giant ExecuPharm.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Dissecting the malicious arsenal of the Makop ransomware gang

Security Affairs

MARCH 14, 2023

The gang leverages exposed remote administration services and internet-facing vulnerabilities to gain and maintain access to victim networks. He is a former member of the ANeSeC CTF team, one of the firsts Italian cyber wargame teams born back in 2011.

Ransomware

Ransomware Software System Administration Encryption

Ten Years Later, New Clues in the Target Breach

Krebs on Security

DECEMBER 14, 2023

The malware used in the Target breach included the text string “ Rescator ,” which also was the handle chosen by the cybercriminal who was selling all of the cards stolen from Target customers. For starters, the text string “Rescator” was found in some of the malware used in the Target breach.

Cybercrime

Cybercrime Accountability Advertising Computers and Electronics

Meet the World’s Biggest ‘Bulletproof’ Hoster

Krebs on Security

JULY 16, 2019

For at least the past decade, a computer crook variously known as “ Yalishanda ,” “ Downlow ” and “ Stas_vl ” has run one of the most popular “bulletproof” Web hosting services catering to a vast array of phishing sites, cybercrime forums and malware download servers. Image: Intel471.

Cybercrime

Cybercrime Phishing Banking Malware

Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows

Security Affairs

MAY 8, 2020

It should be noted that some of the tech companies provide a wide range of Internet-related services and some of them, like cloud storages and email services, form separate categories. Malware delivery: what’s on the menu? CERT-GIB’s findings indicate that phishing attack perpetrators have revised their so-called target pool.

Phishing

Phishing Spyware Banking Malware

APT trends report Q1 2021

SecureList

APRIL 27, 2021

In our initial report on Sunburst , we examined the method used by the malware to communicate with its C2 (command-and-control) server and the protocol used to upgrade victims for further exploitation. This campaign made use of a previously unknown malware family we dubbed FourteenHi.

Malware

Malware Government Spyware Social Engineering

The History of Computer Viruses & Malware

eSecurity Planet

NOVEMBER 2, 2022

If you’ve used a computer for more than 5 minutes, you probably know a thing or two about computer viruses and malware. On the modern Internet, malware is a near-constant presence. Though often conflated with one another, malware and computer viruses aren’t necessarily the same thing. From Theory to Reality: 1948-1971.

Malware

Malware Ransomware Antivirus Internet

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime

Cybercrime Computers and Electronics Banking Hacking

Former Russian Cybersecurity Chief Sentenced to 22 Years in Prison

Krebs on Security

FEBRUARY 26, 2019

Sergei Mikhailov , formerly deputy chief of Russia’s top anti-cybercrime unit, was sentenced today to 22 years in prison. In 2013, Vrublevsky was convicted of hiring his most-trusted spammer and malware writer to launch a crippling distributed denial-of-service (DDoS) attack against one of his company’s chief competitors.

Cybersecurity

Cybersecurity Cybercrime Media Antivirus

ChatGPT: Cybersecurity friend or foe?

Malwarebytes

MAY 21, 2023

” But the security community and other technology leaders have started raising the alarm, worried about the program’s potential to write malware and spread mis- and disinformation. It's currently easier for an expert threat actor to create malware from scratch than to spend time correcting what ChatGPT has produced.

Cybersecurity

Cybersecurity Artificial Intelligence Social Engineering Engineering

Cyber Security Informer

Why Malware Crypting Services Deserve More Scrutiny

Giving a Face to the Malware Proxy Service ‘Faceless’

Trending Sources

The Link Between AWM Proxy & the Glupteba Botnet

Google obtained a temporary court order against CryptBot distributors

Copycat Criminals mimicking Lockbit gang in northern Europe

Google disrupts the Glupteba botnet

Silent Night Zeus botnet available for sale in underground forums

The Scammers’ Playbook: How Cybercriminals Get Ahold of Your Data

Breach Exposes Users of Microleaves Proxy Service

The Origins and History of the Dark Web

Glupteba botnet is back after Google disrupted it in December 2021

How Did Authorities Identify the Alleged Lockbit Boss?

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Dissecting the malicious arsenal of the Makop ransomware gang

Ten Years Later, New Clues in the Target Breach

Meet the World’s Biggest ‘Bulletproof’ Hoster

Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows

APT trends report Q1 2021

The History of Computer Viruses & Malware

Cyber CEO: The History Of Cybercrime, From 1834 To Present

Former Russian Cybersecurity Chief Sentenced to 22 Years in Prison

ChatGPT: Cybersecurity friend or foe?

Stay Connected