2012, Cybercrime and Hacking - Cyber Security Informer

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. ”] Kislitsin was hired by Group-IB in January 2013, nearly six months after the Formspring hack. Department of Justice.

Cybersecurity

Cybersecurity Cybercrime Hacking Technology

Who Stole 3.6M Tax Records from South Carolina?

Krebs on Security

APRIL 16, 2024

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 13, 2012, after a state IT contractor clicked a malicious link in an email.

Identity Theft

Identity Theft Banking Cybercrime Hacking

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities. .”

Hacking

Hacking Cybercrime Ransomware Government

Red Cross Hack Linked to Iranian Influence Operation?

Krebs on Security

FEBRUARY 16, 2022

The ICRC said the hacked servers contained data relating to the organization’s Restoring Family Links services, which works to reconnect people separated by war, violence, migration and other causes. In their online statement about the hack (updated on Feb. Image: Ke-la.com. com, sachtimes[.]com, com, and whatsupic[.]com.

Hacking

Hacking Ransomware Media Accountability

NetWire Remote Access Trojan Maker Arrested

Schneier on Security

MARCH 14, 2023

From Brian Krebs : A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S.

Cybercrime

Cybercrime Marketing Passwords Spyware

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Security Affairs

JULY 11, 2020

The Russian hacker Yevgeniy Nikulin found guilty for LinkedIn, Dropbox, and Formspring data breach back in 2012 and the sale of their users’ data. A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces.

Hacking

Hacking Cybercrime Data breaches Advertising

Hacker deposited $1M in a popular cybercrime marketplace to buy zero-day exploits

Security Affairs

JULY 8, 2021

Bitcoins on one of the cybercrime forums, he aims at purchasing zero-day exploits from other forum members. Bitcoins on one of the cybercrime forums with the intent to purchase zero-day Exploits from other forum members, researchers from threat intelligence firm Cyble. SecurityAffairs – hacking, cybercrime).

Cybercrime

Cybercrime Malware Hacking Information Security

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Krebs on Security

APRIL 30, 2024

A 26-year-old Finnish man was sentenced to more than six years in prison today after being convicted of hacking into an online psychotherapy clinic, leaking tens of thousands of patient therapy records, and attempting to extort the clinic and patients. After being charged with the attack in October 2022, Kivimäki fled the country.

DDOS

DDOS Cybercrime Hacking Passwords

Finland’s Most-Wanted Hacker Nabbed in France

Krebs on Security

FEBRUARY 5, 2023

A notorious hacker convicted of perpetrating tens of thousands of cybercrimes, Kivimäki had been in hiding since October 2022, when he failed to show up in court and Finland issued an international warrant for his arrest. The DDoS-for-hire service allegedly operated by Kivimäki in 2012. Kivimäki was 15 years old at the time.

Cybercrime

Cybercrime DDOS Hacking Accountability

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

FBI spoofs 2012 – 2013. It surfaced in November 2012 and was making thousands of victims a day. In many cases, the crooks hack managed service providers (MSPs) first and then use this access to compromise the partnering organizations. Forward outlook Ransomware is a dynamic and increasingly hybrid segment of cybercrime.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

.'” MRMURZA Faceless is a project from MrMurza , a particularly talkative member of more than a dozen Russian-language cybercrime forums over the past decade. According to cyber intelligence firm Flashpoint , MrMurza has been active in the Russian underground since at least September 2012. Image: Darkbeast/Ke-la.com.

Malware

Malware Passwords Accountability Advertising

Canada Charges Its “Most Prolific Cybercriminal”

Krebs on Security

DECEMBER 8, 2021

According to cyber intelligence firm Intel 471 , that dark_cl0ud6@hotmail.com address has been used in conjunction with the handle “ DCReavers2 ” to register user accounts on a half-dozen English-language cybercrime forums since 2008, including Hackforums , Blackhatworld, and Ghostmarket.

Cybercrime

Cybercrime Ransomware Accountability Advertising

Authorities shut down Crimenetwork, the Germany’s largest crime marketplace

Security Affairs

DECEMBER 4, 2024

Since 2012, Crimenetwork facilitated the sale of illegal goods and services, including drugs, forged documents, hacking tools, and stolen data. The operation was carried out by Public Prosecutor’s Office in Frankfurt am Main, the Central Office for Combating Cybercrime (ZIT), and the Federal Criminal Police Office (BKA).

Cybercrime

Cybercrime Cryptocurrency Hacking Internet

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. The answer involved Bitcoin, but also Taleon’s new service.

Cryptocurrency

Cryptocurrency Cybercrime Retail Government

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

Security Affairs

SEPTEMBER 30, 2020

Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison for hacking LinkedIn, Dropbox, and Formspring in 2012. The Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison in the United States for hacking LinkedIn, Dropbox, and Formspring in 2012.

Identity Theft

Identity Theft Cybercrime Advertising Hacking

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

Ngo got his treasure trove of consumer data by hacking and social engineering his way into a string of major data brokers. Ten years ago, then 19-year-old hacker Ngo was a regular on the Vietnamese-language computer hacking forums. “Then I used the same vulnerability to hack other websites. BEGINNINGS. ” MICROBILT.

Identity Theft

Identity Theft Computers and Electronics Hacking Accountability

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Security Affairs

SEPTEMBER 19, 2021

A Pakistani national has been sentenced to 12 years of prison in the US for his role in a hacking scheme against the telecom giant AT&T. “Beginning in 2012, Fahd, 35, conspired with others to recruit AT&T employees at a call center located in Bothell, Washington, to unlock large numbers of cellular phones for profit.

Hacking

Hacking Malware Cybercrime Information Security

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Security Affairs

JUNE 9, 2023

Two Russian nationals have been charged with the hack of the cryptocurrency exchange Mt. Russian nationals Alexey Bilyuchenko (43) and Aleksandr Verner (29) have been charged with the hack of the cryptocurrency exchange Mt. Gox ) The post Russians charged with hacking Mt. Gox ) The post Russians charged with hacking Mt.

Hacking

Hacking Cryptocurrency Advertising Banking

Tank, the leader of the Zeus cybercrime gang, was arrested by the Swiss police

Security Affairs

NOVEMBER 17, 2022

A suspected leader of the Zeus cybercrime gang, Vyacheslav Igorevich Penchukov (aka Tank), was arrested by Swiss police. Swiss police last month arrested in Geneva Vyacheslav Igorevich Penchukov (40), also known as Tank, which is one of the leaders of the JabberZeus cybercrime group. SecurityAffairs – hacking, Zeus).

Cybercrime

Cybercrime Banking Identity Theft Hacking

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

One of Megatraffer’s ads on an English-language cybercrime forum. Megatraffer has continued to offer their code-signing services across more than a half-dozen other Russian-language cybercrime forums, mostly in the form of sporadically available EV and non-EV code-signing certificates from major vendors like Thawte and Comodo.

Malware

Malware Cybercrime Software Accountability

Who Is the Network Access Broker ‘Babam’?

Krebs on Security

DECEMBER 3, 2021

Since the beginning of 2020, Babam has set up numerous auctions on the Russian-language cybercrime forum Exploit , mainly selling virtual private networking (VPN) credentials stolen from various companies. Verified was hacked at least twice in the past five years, and its user database posted online. com and wwwpexpay[.]com.

Ransomware

Ransomware Passwords Accountability Cybercrime

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

But not long after KrebsOnSecurity reported in April that Shefel/Rescator also was behind the theft of Social Security and tax information from a majority of South Carolina residents in 2012, Mr. Shefel began contacting this author with the pretense of setting the record straight on his alleged criminal hacking activities.

Retail

Retail Advertising Cryptocurrency Marketing

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Krebs on Security

SEPTEMBER 30, 2024

A California man accused of failing to pay taxes on tens of millions of dollars allegedly earned from cybercrime also paid local police officers hundreds of thousands of dollars to help him extort, intimidate and silence rivals and former business partners, the government alleges. had some personal problems and checked himself into rehab.

Cryptocurrency

Cryptocurrency Government Internet Internet

Vyacheslav Igorevich Penchukov was sentenced to prison for his role in Zeus and IcedID operations

Security Affairs

JULY 13, 2024

In October 2022, Swiss police arrested Penchukov in Geneva, also known as Tank, which is one of the leaders of the JabberZeus cybercrime group. In 2012, Vyacheslav Igorevich Penchukov was accused of being a member of a cybercrime gang known as JabberZeus crew. The man was also condemned to pay $73 million in restitution.

Cybercrime

Cybercrime Banking Malware Hacking

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes

Security Affairs

FEBRUARY 17, 2024

On October 2022, Swiss police arrested Penchukov in Geneva, also known as Tank, which is one of the leaders of the JabberZeus cybercrime group. In 2012, the Ukrainian national Vyacheslav Igorevich Penchukov was accused of being a member of a cybercrime gang known as JabberZeus crew.

Malware

Malware Cybercrime Banking Hacking

DeathStalker cyber-mercenary group targets the financial sector

Security Affairs

AUGUST 26, 2020

A hack-for-hire group, tracked as DeathStalker, has been targeting organizations in the financial sector since 2012 Kaspersky researchers say. DeathStalker is a hack-for-hire group discovered by Kaspersky, it has been targeting organizations worldwide, mainly law firms and financial entities, since 2012.

Malware

Malware Hacking Advertising Cybercrime

A new variant of Cicada ransomware targets VMware ESXi systems

Security Affairs

SEPTEMBER 2, 2024

Cicada 3301 is the name given to three sets of puzzles posted under the name “3301” online between 2012 and 2014. The first puzzle started on January 4, 2012, on 4chan and ran for nearly a month. Since June, the operators behind Cicada3301 have started recruiting affiliates on the RAMP cybercrime forum.

Ransomware

Ransomware Encryption Malware Cybercrime

DoJ announced to have shut down Slilpp marketplace in international operation

Security Affairs

JUNE 11, 2021

The US Department of Justice seized the servers and domains of the popular cybercrime marketplace SlilPP. In the past, law enforcement shut down other cybercrime marketplace focused on the sale of login credentials, such as xDedic and DEER.IO. SecurityAffairs – hacking, SlilPP marketplace). Pierluigi Paganini.

Cybercrime

Cybercrime Accountability Retail Cyber threats

Don’t trust links with known domains: BMW affected by redirect vulnerability

Security Affairs

JANUARY 3, 2024

This type of vulnerability, which affected BMW websites and other SAP systems, was first identified in 2012 but still poses risks to organizations even after applying security updates. Those typically occur when web apps or components fail to properly validate or sanitize URLs before redirecting users.

Phishing

Phishing Manufacturing Firewall Cybercrime

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

Security Affairs

NOVEMBER 22, 2019

Lisov operated the infrastructure behind the NeverQuest malware between June 2012 and January 2015, the managed a network of servers containing lists of millions of stolen login credentials.

Banking

Banking Malware Advertising Passwords

The Financial Dynamics Behind Ransomware Attacks

Security Affairs

JUNE 18, 2024

Over the last few years, ransomware attacks have become one of the most prevalent and expensive forms of cybercrime. RaaS : Mirroring the Legitimate SaaS Models In mid-2012, the ransomware ecosystem evolved with the introduction of Reveton , the first Ransomware-as-a-Service (RaaS). She is also a regular writer at Bora.

Ransomware

Ransomware Cryptocurrency Insurance Cybercrime

Microsoft disrupted US-Based Infrastructure of the Necurs botnet

Security Affairs

MARCH 10, 2020

Necurs botnet is one of the largest spam botnet , it has been active since at least 2012 and was involved in massive campaigns spreading malware such as the Locky ransomware , the Scarab ransomware , and the Dridex banking Trojan. The Necurs botnet is active since at least 2012, it is operated by the cybercrime gang tracked as TA505.

Advertising

Advertising Malware Cybercrime Government

Belarusian authorities seized XakFor, one of the largest Russian-speaking hacker sites

Security Affairs

SEPTEMBER 8, 2019

Ministry of Internal Affairs announced that Belarusian police have seized and shutdown XakFor, one of the largest hacking forums on the internet. net), a popular hacking forum a place frequented by hackers, malware authors, scammers and cybercriminals. Belarusian police have seized the servers of XakFor (xakfor[.]net),

Advertising

Advertising Malware Cybercrime Hacking

Russian citizen behind JPMorgan Chase and Dow Jones attacks has been extradited to US

Security Affairs

SEPTEMBER 8, 2018

The man was arrested in Georgia at the request of US authorities, he faces 10 charges on multiple conspiracy counts, including wire fraud, aggravated identity theft and four counts of computer hacking. Andrei Tyurin is accused of being the mastermind of the organization that targeted the US financial institution from 2012 to mid-2015.

Identity Theft

Identity Theft Advertising Cybercrime Hacking

Experts warn of a surge in zero-day flaws observed and exploited in 2021

Security Affairs

APRIL 25, 2022

Mandiant states that From 2012 to 2021, China exploited more zero-days than any other nation. From 2012 to 2021, China-linked threat actors exploited more zero-days than any other nation-state actors. SecurityAffairs – hacking, zero-days). Most of the zero-days discovered by the company were exploited by nation-state APT groups.

Ransomware

Ransomware Hacking Software Risk

Law enforcement seized the website selling the NetWire RAT and arrested a Croatian man

Security Affairs

MARCH 10, 2023

The NetWire Remote Access Trojan (RAT) is available for sale on cybercrime forums since 2012, it allows operators to steal sensitive data from the infected systems. DomainTools further shows this email address was used to register one other domain in 2012: wwlabshosting[.]com, ” reads the press release published DoJ.

Malware

Malware Cybercrime Data breaches Internet

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

Security Affairs

JULY 25, 2022

The ransomware gang Lockbit claims to have hacked the Italian Revenue Agency (Agenzia delle Entrate) and added the government agency to the list of victims reported on its dark web leak site. “From 1 December 2012 the Revenue Agency incorporated the Territory Agency (article 23-quater of Legislative Decree 95/2012).”

Ransomware

Ransomware Government Scams Hacking

A study on malicious plugins in WordPress Marketplaces

Security Affairs

AUGUST 30, 2022

The experts studied the evolution of CMS plugins in the production web servers dating back to 2012, to do this they developed an automated framework named YODA to detect malicious plugins. SecurityAffairs – hacking, WordPress). Pierluigi Paganini.

Backups

Backups Malware Technology Hacking

Russian national sentenced to 40 months for selling stolen data on the dark web

Security Affairs

AUGUST 16, 2024

The marketplace had been active since 2012, it was allowing sellers to offer stolen login credentials, including usernames and passwords for bank accounts, online payment accounts, mobile phone accounts, retailer accounts, and other online accounts.

Banking

Banking Accountability Retail Mobile

Multiple threat actors exploit PHP flaw CVE-2024-4577 to deliver malware

Security Affairs

JULY 11, 2024

An attacker can exploit the flaw to bypass protections for a previous vulnerability, CVE-2012-1823, using specific character sequences. ” Pierluigi Paganini Follow me on Twitter: @securityaffairs and Facebook and Mastodon ( SecurityAffairs – hacking, PHP flaw CVE-2024-4577)

Malware

Malware DDOS Internet Internet

US CISA appointed Kiersten Todt as new chief of staff

Security Affairs

SEPTEMBER 14, 2021

Between 2012 and 2016 she served as president and managing partner at cyber consulting firm Liberty Group Ventures. SecurityAffairs – hacking, Todt). .” reads CISA’s announcement. Todt has been directing the Cyber Readiness Institute (CRI), a non-profit focused on developing cybersecurity tools for small businesses.

Small Business

Small Business Government Cybersecurity Hacking

New Version of Meduza Stealer Released in Dark Web

Security Affairs

DECEMBER 29, 2023

Presently, Meduza password stealer supports Windows Server 2012/2016/2019/2022 and Windows 10/11. The product has been originally emerged at XSS underground forum, and later received positive feedback on other well-established communities including Exploit.

Password Management

Password Management Cryptocurrency Passwords Authentication

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Security Affairs

NOVEMBER 10, 2023

Skynet was first discovered in 2012 and has since grown to become one of the largest botnets in the world. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, DDoS) The post After ChatGPT, Anonymous Sudan took down the Cloudflare website appeared first on Security Affairs.

DDOS

DDOS Cryptocurrency Accountability Media

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Who Stole 3.6M Tax Records from South Carolina?

Trending Sources

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Red Cross Hack Linked to Iranian Influence Operation?

NetWire Remote Access Trojan Maker Arrested

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Hacker deposited $1M in a popular cybercrime marketplace to buy zero-day exploits

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Finland’s Most-Wanted Hacker Nabbed in France

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Giving a Face to the Malware Proxy Service ‘Faceless’

Canada Charges Its “Most Prolific Cybercriminal”

Authorities shut down Crimenetwork, the Germany’s largest crime marketplace

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

Confessions of an ID Theft Kingpin, Part I

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Tank, the leader of the Zeus cybercrime gang, was arrested by the Swiss police

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Who Is the Network Access Broker ‘Babam’?

An Interview With the Target & Home Depot Hacker

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Vyacheslav Igorevich Penchukov was sentenced to prison for his role in Zeus and IcedID operations

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes

DeathStalker cyber-mercenary group targets the financial sector

A new variant of Cicada ransomware targets VMware ESXi systems

DoJ announced to have shut down Slilpp marketplace in international operation

Don’t trust links with known domains: BMW affected by redirect vulnerability

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

The Financial Dynamics Behind Ransomware Attacks

Microsoft disrupted US-Based Infrastructure of the Necurs botnet

Belarusian authorities seized XakFor, one of the largest Russian-speaking hacker sites

Russian citizen behind JPMorgan Chase and Dow Jones attacks has been extradited to US

Experts warn of a surge in zero-day flaws observed and exploited in 2021

Law enforcement seized the website selling the NetWire RAT and arrested a Croatian man

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

A study on malicious plugins in WordPress Marketplaces

Russian national sentenced to 40 months for selling stolen data on the dark web

Multiple threat actors exploit PHP flaw CVE-2024-4577 to deliver malware

US CISA appointed Kiersten Todt as new chief of staff

New Version of Meduza Stealer Released in Dark Web

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Stay Connected