2012 and Cybercrime - Cyber Security Informer

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Kislitsin is accused of hacking into the now-defunct social networking site Formspring in 2012, and conspiring with another Russian man convicted of stealing tens of millions of usernames and passwords from LinkedIn and Dropbox that same year. Nikita Kislitsin, at a security conference in Russia. prison system.

Cybersecurity

Cybersecurity Cybercrime Hacking Government

The Cost of Cybercrime

Schneier on Security

JUNE 4, 2019

Really interesting paper calculating the worldwide cost of cybercrime: Abstract: In 2012 we presented the first systematic study of the costs of cybercrime. Several new cybercrimes are significant enough to mention, including business email compromise and crimes involving cryptocurrencies. and more on response.

Cybercrime

Cybercrime Scams Cryptocurrency Antivirus

NetWire Remote Access Trojan Maker Arrested

Schneier on Security

MARCH 14, 2023

From Brian Krebs : A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S.

Cybercrime

Cybercrime Marketing Passwords Spyware

Who’s Behind the NetWire Remote Access Trojan?

Krebs on Security

MARCH 9, 2023

A Croatian national has been arrested for allegedly operating NetWire , a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. NetWire has been sold openly on the same website since 2012: worldwiredlabs[.]com. org , also registered in 2012.

DNS

DNS Cybercrime Passwords Accountability

Who Stole 3.6M Tax Records from South Carolina?

Krebs on Security

APRIL 16, 2024

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 13, 2012, after a state IT contractor clicked a malicious link in an email.

Identity Theft

Identity Theft Banking Cybercrime Hacking

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

But not long after KrebsOnSecurity reported in April that Shefel/Rescator also was behind the theft of Social Security and tax information from a majority of South Carolina residents in 2012, Mr. Shefel began contacting this author with the pretense of setting the record straight on his alleged criminal hacking activities.

Retail

Retail Advertising Cryptocurrency Marketing

Authorities shut down Crimenetwork, the Germany’s largest crime marketplace

Security Affairs

DECEMBER 4, 2024

Since 2012, Crimenetwork facilitated the sale of illegal goods and services, including drugs, forged documents, hacking tools, and stolen data. The operation was carried out by Public Prosecutor’s Office in Frankfurt am Main, the Central Office for Combating Cybercrime (ZIT), and the Federal Criminal Police Office (BKA).

Cybercrime

Cybercrime Cryptocurrency Hacking Internet

Hacker deposited $1M in a popular cybercrime marketplace to buy zero-day exploits

Security Affairs

JULY 8, 2021

Bitcoins on one of the cybercrime forums, he aims at purchasing zero-day exploits from other forum members. Bitcoins on one of the cybercrime forums with the intent to purchase zero-day Exploits from other forum members, researchers from threat intelligence firm Cyble. SecurityAffairs – hacking, cybercrime).

Cybercrime

Cybercrime Malware Hacking Information Security

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking

Hacking Cybercrime Ransomware Government

Finland’s Most-Wanted Hacker Nabbed in France

Krebs on Security

FEBRUARY 5, 2023

A notorious hacker convicted of perpetrating tens of thousands of cybercrimes, Kivimäki had been in hiding since October 2022, when he failed to show up in court and Finland issued an international warrant for his arrest. The DDoS-for-hire service allegedly operated by Kivimäki in 2012. Kivimäki was 15 years old at the time.

Cybercrime

Cybercrime DDOS Hacking Accountability

State-Sponsored Cybercrime Group`s Infrastructure Revealed

Heimadal Security

MAY 18, 2023

At least since 2012, SideWinder has been active, using spear-phishing attacks to gain access to targeted environments. Among the […] The post State-Sponsored Cybercrime Group`s Infrastructure Revealed appeared first on Heimdal Security Blog.

Cybercrime

Cybercrime Phishing Cybersecurity

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

.'” MRMURZA Faceless is a project from MrMurza , a particularly talkative member of more than a dozen Russian-language cybercrime forums over the past decade. According to cyber intelligence firm Flashpoint , MrMurza has been active in the Russian underground since at least September 2012. Image: Darkbeast/Ke-la.com.

Malware

Malware Passwords Accountability Advertising

Canada Charges Its “Most Prolific Cybercriminal”

Krebs on Security

DECEMBER 8, 2021

According to cyber intelligence firm Intel 471 , that dark_cl0ud6@hotmail.com address has been used in conjunction with the handle “ DCReavers2 ” to register user accounts on a half-dozen English-language cybercrime forums since 2008, including Hackforums , Blackhatworld, and Ghostmarket.

Cybercrime

Cybercrime Ransomware Accountability Advertising

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Krebs on Security

APRIL 30, 2024

Finnish prosecutors quickly zeroed in on a suspect: Julius “Zeekill” Kivimäki , a notorious criminal hacker convicted of committing tens of thousands of cybercrimes before he became an adult. After being charged with the attack in October 2022, Kivimäki fled the country. Kivimäki was 15 years old at the time.

DDOS

DDOS Cybercrime Hacking Passwords

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Security Affairs

JULY 11, 2020

The Russian hacker Yevgeniy Nikulin found guilty for LinkedIn, Dropbox, and Formspring data breach back in 2012 and the sale of their users’ data. A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces.

Hacking

Hacking Cybercrime Advertising Data breaches

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Dmitry Yuryevich Khoroshev.

Ransomware

Ransomware Cybercrime Accountability Malware

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. The answer involved Bitcoin, but also Taleon’s new service.

Cryptocurrency

Cryptocurrency Cybercrime Retail Government

Tank, the leader of the Zeus cybercrime gang, was arrested by the Swiss police

Security Affairs

NOVEMBER 17, 2022

A suspected leader of the Zeus cybercrime gang, Vyacheslav Igorevich Penchukov (aka Tank), was arrested by Swiss police. Swiss police last month arrested in Geneva Vyacheslav Igorevich Penchukov (40), also known as Tank, which is one of the leaders of the JabberZeus cybercrime group. Pierluigi Paganini.

Cybercrime

Cybercrime Banking Identity Theft Hacking

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

One of Megatraffer’s ads on an English-language cybercrime forum. Megatraffer has continued to offer their code-signing services across more than a half-dozen other Russian-language cybercrime forums, mostly in the form of sporadically available EV and non-EV code-signing certificates from major vendors like Thawte and Comodo.

Malware

Malware Cybercrime Software Accountability

Who Is the Network Access Broker ‘Babam’?

Krebs on Security

DECEMBER 3, 2021

Since the beginning of 2020, Babam has set up numerous auctions on the Russian-language cybercrime forum Exploit , mainly selling virtual private networking (VPN) credentials stolen from various companies. All of these domains date back to between 2012 and 2013. com and wwwpexpay[.]com. com , and portalsagepay[.]com.

Ransomware

Ransomware Passwords Accountability Cybercrime

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

Security Affairs

SEPTEMBER 30, 2020

Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison for hacking LinkedIn, Dropbox, and Formspring in 2012. The Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison in the United States for hacking LinkedIn, Dropbox, and Formspring in 2012. Source: US Defense Watch.com.

Identity Theft

Identity Theft Cybercrime Advertising Hacking

Experts warn of mass exploitation of critical PHP flaw CVE-2024-4577

Security Affairs

MARCH 10, 2025

An attacker can exploit the flaw to bypass protections for a previous vulnerability, CVE-2012-1823, using specific character sequences. The issue resides in the Best-Fit feature of encoding conversion within the Windows operating system.

DDOS

DDOS Security Intelligence Malware Hacking

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Krebs on Security

SEPTEMBER 30, 2024

A California man accused of failing to pay taxes on tens of millions of dollars allegedly earned from cybercrime also paid local police officers hundreds of thousands of dollars to help him extort, intimidate and silence rivals and former business partners, the government alleges.

Cryptocurrency

Cryptocurrency Government Internet Internet

Italian mafia cybercrime sting leads to 100+ arrests

Malwarebytes

SEPTEMBER 23, 2021

In 2012, Belgian police were called in to investigate a case involving computers of the Swiss Shipping Company, MSC. The post Italian mafia cybercrime sting leads to 100+ arrests appeared first on Malwarebytes Labs. Cyber mafia” is not an unknown concept in the cybersecurity world.

Cybercrime

Cybercrime Computers and Electronics Cryptocurrency Phishing

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

Vyacheslav Igorevich Penchukov was sentenced to prison for his role in Zeus and IcedID operations

Security Affairs

JULY 13, 2024

In October 2022, Swiss police arrested Penchukov in Geneva, also known as Tank, which is one of the leaders of the JabberZeus cybercrime group. In 2012, Vyacheslav Igorevich Penchukov was accused of being a member of a cybercrime gang known as JabberZeus crew.

Cybercrime

Cybercrime Banking Malware Hacking

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Security Affairs

APRIL 14, 2020

doc, which, when opened with a vulnerable application, attempted to deliver a ransomware payload using a known shared Microsoft component vulnerability, CVE-2012-0158.” . “The emails all contained a malicious Rich Text Format (RTF) phishing lure with the file name 20200323- sitrep -63- covid -19. ” concludes the report.

Healthcare

Healthcare Ransomware Phishing Government

Red Cross Hack Linked to Iranian Influence Operation?

Krebs on Security

FEBRUARY 16, 2022

The same day the ICRC went public with its breach, someone using the nickname “ Sheriff ” on the English-language cybercrime forum RaidForums advertised the sale of data from the Red Cross and Red Crescent Movement. com, sachtimes[.]com, com, and whatsupic[.]com. com, moslempress[.]com, com, and realneinovosti[.]net.

Hacking

Hacking Ransomware Media Accountability

A new variant of Cicada ransomware targets VMware ESXi systems

Security Affairs

SEPTEMBER 2, 2024

Cicada 3301 is the name given to three sets of puzzles posted under the name “3301” online between 2012 and 2014. The first puzzle started on January 4, 2012, on 4chan and ran for nearly a month. Since June, the operators behind Cicada3301 have started recruiting affiliates on the RAMP cybercrime forum.

Ransomware

Ransomware Encryption Malware Cybercrime

Cybercrime Year in Review: 2013

SiteLock

AUGUST 27, 2021

bank accounts in 2012 by cybercrooks using malware like keyloggers. That very same week, other security researchers found that out of 44 popular antivirus products tested, only one was able to detect a keylogger. Which probably explains why an estimated $5 billion was siphoned from U.S.

Cybercrime

Cybercrime Small Business Antivirus Malware

A Deep Dive Into the Residential Proxy Service ‘911’

Krebs on Security

JULY 18, 2022

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. “all promotion methods allowed”).

VPN

VPN Computers and Electronics Antivirus Software

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes

Security Affairs

FEBRUARY 17, 2024

On October 2022, Swiss police arrested Penchukov in Geneva, also known as Tank, which is one of the leaders of the JabberZeus cybercrime group. In 2012, the Ukrainian national Vyacheslav Igorevich Penchukov was accused of being a member of a cybercrime gang known as JabberZeus crew.

Malware

Malware Cybercrime Banking Hacking

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Security Affairs

JUNE 9, 2023

The BTC-e virtual currency is popular in the cybercrime underground because it was used by crooks to launder funds for illegal activities. In accordance with these requests, between in or about March 2012 and in or about April 2013, the New York Bitcoin Broker allegedly transferred more than approximately $6.6 ” reads the DoJ.

Hacking

Hacking Cryptocurrency Advertising Banking

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

Ngo said he started taking classes again back in Vietnam, but soon found he was spending most of his time on cybercrime forums. ” Then, in March 2012, something even more remarkable happened: Court Ventures was purchased by Experian , one of the big three major consumer credit bureaus in the United States.

Identity Theft

Identity Theft Computers and Electronics Hacking Accountability

DeathStalker cyber-mercenary group targets the financial sector

Security Affairs

AUGUST 26, 2020

A hack-for-hire group, tracked as DeathStalker, has been targeting organizations in the financial sector since 2012 Kaspersky researchers say. DeathStalker is a hack-for-hire group discovered by Kaspersky, it has been targeting organizations worldwide, mainly law firms and financial entities, since 2012.

Malware

Malware Hacking Advertising Cybercrime

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

FBI spoofs 2012 – 2013. It surfaced in November 2012 and was making thousands of victims a day. Forward outlook Ransomware is a dynamic and increasingly hybrid segment of cybercrime. None of these early threats went pro. This quirk made the attack look more trustworthy and added a layer of flexibility to these scams.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Microsoft disrupted US-Based Infrastructure of the Necurs botnet

Security Affairs

MARCH 10, 2020

Necurs botnet is one of the largest spam botnet , it has been active since at least 2012 and was involved in massive campaigns spreading malware such as the Locky ransomware , the Scarab ransomware , and the Dridex banking Trojan. The Necurs botnet is active since at least 2012, it is operated by the cybercrime gang tracked as TA505.

Advertising

Advertising Malware Cybercrime Government

DoJ announced to have shut down Slilpp marketplace in international operation

Security Affairs

JUNE 11, 2021

The US Department of Justice seized the servers and domains of the popular cybercrime marketplace SlilPP. In the past, law enforcement shut down other cybercrime marketplace focused on the sale of login credentials, such as xDedic and DEER.IO. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Cybercrime

Cybercrime Accountability Retail Cyber threats

The Financial Dynamics Behind Ransomware Attacks

Security Affairs

JUNE 18, 2024

Over the last few years, ransomware attacks have become one of the most prevalent and expensive forms of cybercrime. RaaS : Mirroring the Legitimate SaaS Models In mid-2012, the ransomware ecosystem evolved with the introduction of Reveton , the first Ransomware-as-a-Service (RaaS). She is also a regular writer at Bora.

Ransomware

Ransomware Cryptocurrency Insurance Cybercrime

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

Security Affairs

NOVEMBER 22, 2019

Lisov operated the infrastructure behind the NeverQuest malware between June 2012 and January 2015, the managed a network of servers containing lists of millions of stolen login credentials.

Banking

Banking Malware Advertising Passwords

Law enforcement seized the website selling the NetWire RAT and arrested a Croatian man

Security Affairs

MARCH 10, 2023

The NetWire Remote Access Trojan (RAT) is available for sale on cybercrime forums since 2012, it allows operators to steal sensitive data from the infected systems. DomainTools further shows this email address was used to register one other domain in 2012: wwlabshosting[.]com, ” reads the press release published DoJ.

Malware

Malware Cybercrime Data breaches Internet

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Security Affairs

SEPTEMBER 19, 2021

Fahd was the mind behind a criminal scheme that begun in 2012 and that caused more than $200 million in losses to the company, according to DoJ, he continued his activity even after he became aware that law enforcement was investigating. ” reads the press release published by DoJ.

Hacking

Hacking Malware Cybercrime Information Security

Russian citizen behind JPMorgan Chase and Dow Jones attacks has been extradited to US

Security Affairs

SEPTEMBER 8, 2018

Andrei Tyurin is accused of being the mastermind of the organization that targeted the US financial institution from 2012 to mid-2015. “US prosecutors say the schemes from 2012 to mid-2015 included the theft of personal information of over 100 million customers of the victim companies.” ” states the AFP.

Identity Theft

Identity Theft Advertising Cybercrime Hacking

Experts warn of a surge in zero-day flaws observed and exploited in 2021

Security Affairs

APRIL 25, 2022

Mandiant states that From 2012 to 2021, China exploited more zero-days than any other nation. From 2012 to 2021, China-linked threat actors exploited more zero-days than any other nation-state actors. Most of the zero-days discovered by the company were exploited by nation-state APT groups. ” concludes the report.”The

Ransomware

Ransomware Hacking Software Risk

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

The Cost of Cybercrime

Trending Sources

NetWire Remote Access Trojan Maker Arrested

Who’s Behind the NetWire Remote Access Trojan?

Who Stole 3.6M Tax Records from South Carolina?

An Interview With the Target & Home Depot Hacker

Authorities shut down Crimenetwork, the Germany’s largest crime marketplace

Hacker deposited $1M in a popular cybercrime marketplace to buy zero-day exploits

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Finland’s Most-Wanted Hacker Nabbed in France

State-Sponsored Cybercrime Group`s Infrastructure Revealed

Giving a Face to the Malware Proxy Service ‘Faceless’

Canada Charges Its “Most Prolific Cybercriminal”

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

How Did Authorities Identify the Alleged Lockbit Boss?

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Tank, the leader of the Zeus cybercrime gang, was arrested by the Swiss police

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Who Is the Network Access Broker ‘Babam’?

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

Experts warn of mass exploitation of critical PHP flaw CVE-2024-4577

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Italian mafia cybercrime sting leads to 100+ arrests

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Vyacheslav Igorevich Penchukov was sentenced to prison for his role in Zeus and IcedID operations

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Red Cross Hack Linked to Iranian Influence Operation?

A new variant of Cicada ransomware targets VMware ESXi systems

Cybercrime Year in Review: 2013

A Deep Dive Into the Residential Proxy Service ‘911’

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Confessions of an ID Theft Kingpin, Part I

DeathStalker cyber-mercenary group targets the financial sector

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Microsoft disrupted US-Based Infrastructure of the Necurs botnet

DoJ announced to have shut down Slilpp marketplace in international operation

The Financial Dynamics Behind Ransomware Attacks

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

Law enforcement seized the website selling the NetWire RAT and arrested a Croatian man

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Russian citizen behind JPMorgan Chase and Dow Jones attacks has been extradited to US

Experts warn of a surge in zero-day flaws observed and exploited in 2021

Stay Connected