Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade.

Cryptocurrency 244

Cryptocurrency Cybercrime Retail Government 244

Krebs on Security

FEBRUARY 5, 2023

A notorious hacker convicted of perpetrating tens of thousands of cybercrimes, Kivimäki had been in hiding since October 2022, when he failed to show up in court and Finland issued an international warrant for his arrest. The DDoS-for-hire service allegedly operated by Kivimäki in 2012.

Cybercrime 247

Cybercrime DDOS Hacking Accountability 247

Security Affairs

APRIL 30, 2024

Finnish hacker was sentenced to more than six years in prison for hacking into an online psychotherapy clinic and attempted extortion. Threat actors hacked the clinic and stole a database containing information of some 33,000 clients. Kivimäki was deported to Finland and his trial concluded in March 2024.

Hacking 130

Hacking Cybercrime Data breaches Information Security 130

Krebs on Security

JUNE 22, 2022

last week said they dismantled the “ RSOCKS ” botnet, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. Authorities in the United States, Germany, the Netherlands and the U.K.

Advertising 291

Advertising Cybercrime System Administration Hacking 291

The Last Watchdog

JUNE 21, 2020

The epidemic went truly mainstream with the release of CryptoLocker back in 2013, and it has since transformed into a major dark web economy spawning the likes of Sodinokibi, Ryuk, and Maze lineages that are targeting the enterprise on a huge scale in 2020. FBI spoofs 2012 – 2013. File encryption 2013 – 2015.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Krebs on Security

AUGUST 6, 2020

Hacked or ill-gotten accounts at consumer data brokers have fueled ID theft and identity theft services of various sorts for years. In 2013, KrebsOnSecurity broke the news that the U.S. Also in 2013, KrebsOnSecurity broke the news that ssndob[.]ms Dun & Bradstreet , and Kroll Background America Inc.

Accountability 350

Accountability Identity Theft Hacking Insurance 350

Security Affairs

SEPTEMBER 27, 2024

government sanctioned the virtual currency exchanges Cryptex and PM2BTC for facilitating cybercrime and money maundering. The authorities believe that these exchanges facilitate the laundering of proceeds from cybercrime. ” reads the press release published by DoJ. data breaches. This included over $158 million from fraud, $8.8

Cybercrime 126

Cybercrime Cryptocurrency Banking Ransomware 126

Krebs on Security

NOVEMBER 6, 2023

Last week, KrebsOnSecurity broke the news that one of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. Cyber intelligence firm Intel 471 says Fearlless first registered on Verified in February 2013.

Passwords 260

Passwords Cybercrime Accountability Hacking 260

Krebs on Security

SEPTEMBER 30, 2024

A California man accused of failing to pay taxes on tens of millions of dollars allegedly earned from cybercrime also paid local police officers hundreds of thousands of dollars to help him extort, intimidate and silence rivals and former business partners, the government alleges. Troy Woody Jr. In December 2022, Troy Woody Jr.

Cryptocurrency 275

Cryptocurrency Government Internet Internet 275

Krebs on Security

NOVEMBER 16, 2023

In a 2,200-page report, Finnish authorities laid out how they connected the extortion spree to Kivimäki, a notorious hacker who was convicted in 2015 of perpetrating tens of thousands of cybercrimes, including data breaches, payment fraud, operating a botnet and calling in bomb threats.

Cybercrime 234

Cybercrime Hacking Data breaches Banking 234

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a

Cybercrime 231

Cybercrime Banking Computers and Electronics DDOS 231

Security Affairs

JANUARY 31, 2024

It was operating between 2008 and 2013. In 2013, the Motion Picture Association of America (MPAA) shut down the website due to concerns related to copyright infringement. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – cybercrime, Apple)

Media 130

Media Cybercrime Advertising Information Security 130

Krebs on Security

MAY 4, 2021

Which means when a cybercrime forum gets hacked and its user databases posted online, it is often possible to work backwards from some of the more unique passwords for each account and see where else that password was used. Mistake number two was the password for his email account was the same as his cybercrime forum admin account.

Passwords 334

Passwords Cybercrime Accountability Password Management 334

Krebs on Security

MARCH 10, 2020

District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations. ru , a cybercrime forum in its own right that called itself “ The Antichat Mafia.”

Accountability 307

Accountability Advertising Hacking Cybercrime 307

Security Affairs

JUNE 17, 2023

Polish police, as part of the international law enforcement operation PowerOFF, dismantled a DDoS-for-hire service that has been active since at least 2013. An international operation codenamed PowerOff led to the shutdown of a DDoS-for-hire service that has been active since at least 2013. Viewer discretion is advised.

DDOS 98

DDOS Computers and Electronics Cybercrime Cryptocurrency 98

Krebs on Security

NOVEMBER 8, 2021

” These last two nicknames correspond to accounts on several top cybercrime forums way back in 2013, where a user named “Yaroslav2468” registered using the email address yarik45@gmail.com. Prosecutors say Vasinskyi also used the monikers “ Yarik45 ,” and “ Yaroslav2468.” 3 was Lublin, Poland.

Ransomware 320

Ransomware Cybercrime System Administration Passwords 320

Krebs on Security

SEPTEMBER 24, 2022

Denis Emelyantsev , as the apparent owner of RSOCKS, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. ” Kloster’s blog even included a group photo of RSOCKS employees.

Cybercrime 218

Cybercrime Data breaches Malware Ransomware 218

Security Affairs

SEPTEMBER 19, 2021

A Pakistani national has been sentenced to 12 years of prison in the US for his role in a hacking scheme against the telecom giant AT&T. “Later in the conspiracy, Fahd had the bribed employees install custom malware and hacking tools that allowed him to unlock phones remotely from Pakistan. ” Pierluigi Paganini.

Hacking 141

Hacking Malware Cybercrime Information Security 141

Krebs on Security

FEBRUARY 14, 2020

In May 2013, the U.S. Justice Department seized Liberty Reserve , alleging the virtual currency service acted as a $6 billion financial hub for the cybercrime world.

Identity Theft 240

Identity Theft Government Scams Cybercrime 240

Security Affairs

AUGUST 25, 2024

Telegram Messenger is a cloud-based, cross-platform instant messaging service launched in 2013 for iOS and Android. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganin ( SecurityAffairs – hacking, newsletter ) Telegram and the French Interior Ministry have not yet commented on the news.

Media 139

Media Encryption Hacking Cybercrime 139

Security Affairs

SEPTEMBER 2, 2024

A second round of puzzles began one year later on January 4, 2013, and then a third round following the confirmation of a fresh clue posted on Twitter on January 4, 2014. Since June, the operators behind Cicada3301 have started recruiting affiliates on the RAMP cybercrime forum. The third puzzle has not been solved yet.

Ransomware 138

Ransomware Encryption Malware Cybercrime 138

Krebs on Security

JUNE 18, 2020

An information technology specialist at the Federal Emergency Management Agency (FEMA) was arrested this week on suspicion of hacking into the human resource databases of University of Pittsburgh Medical Center (UPMC) in 2014, stealing personal data on more than 65,000 UPMC employees, and selling the data on the dark web.

Identity Theft 341

Identity Theft Healthcare Hacking Technology 341

Krebs on Security

MAY 18, 2020

Almost daily now there is news about flaws in commercial software that lead to computers getting hacked and seeded with malware. But the reality is most malicious software also has its share of security holes that open the door for security researchers or ne’er-do-wells to liberate or else seize control over already-hacked systems.

Malware 320

Malware Cybercrime Ransomware Marketing 320

Security Affairs

JANUARY 2, 2021

Ticketmaster agreed to pay a $10 million fine for hacking into the computer system of the startup rival CrowdSurge. The intrusions into the competitor’s systems took place repeatedly between 2013 and 2015. The intrusions into the competitor’s systems took place repeatedly between 2013 and 2015. Pierluigi Paganini.

Hacking 122

Hacking Passwords Accountability Cybercrime 122

Security Affairs

AUGUST 15, 2021

.” “ MAB5 was described in gushing terms and with incredible detail, even naming the military leader – a Lieutenant Colonel (Lt Col) in the Royal Corps of Signals, who was awarded the MBE in the Queen’s Birthday Honours List 2013 when he was a Major. SecurityAffairs – hacking, cybercrime). Pierluigi Paganini.

Computers and Electronics 107

Computers and Electronics Hacking Engineering Mobile 107

Security Affairs

MARCH 26, 2020

that is hosting various cybercrime products and services were being sold. was shut down by the FBI today, and its suspected administrator – alleged Russian hacker Kirill Victorovich Firsov – was arrested and charged with crimes related to the hacking of U.S. The Russian man also advertised the platform on other hacking forums.

Cybercrime 144

Cybercrime Advertising Hacking Accountability 144

Security Affairs

JUNE 27, 2020

The Russian national named Aleksey Yurievich Burkov (30) was sentenced to nine years in prison for running Cardplanet and Direct Connection, two credit card market that facilitated payment card fraud, computer hacking, and other illegal activities. SecurityAffairs – hacking, Cardplanet). Pierluigi Paganini.

Marketing 119

Marketing Cybercrime Advertising Insurance 119

Security Affairs

MAY 5, 2019

International ‘Malvertiser’ Oleksii Petrovich Ivanov extradited from the Netherlands to face hacking charges in New Jersey. The man is suspected to have carried out malvertising campaigns between October 2013 through May 2018. SecurityAffairs – cybercrime, malspam). Attorney Carpenito. Pierluigi Paganini.

Hacking 105

Hacking Advertising Cybercrime Internet 105

Krebs on Security

APRIL 18, 2023

” MRMURZA Faceless is a project from MrMurza , a particularly talkative member of more than a dozen Russian-language cybercrime forums over the past decade. MrMurza’s Faceless advertised on the Russian-language cybercrime forum ProCrd. In 2013, U.S. Image: Darkbeast/Ke-la.com.

Malware 257

Malware Passwords Accountability Advertising 257

SiteLock

AUGUST 27, 2021

For example, in a study just published by Russian security firm Kaspersky , the number two target for phishing attacks around the world in 2013 was the financial community. That includes banks, credit card companies, and payment systems like PayPal and Western Union. Any guess what the number one target for phishing was?

Data privacy 52

Data privacy Cybercrime Banking Marketing 52

Krebs on Security

NOVEMBER 3, 2022

In 2013, Kurittu worked on investigation involving Kivimaki’s use of the Zbot botnet, among other activities Kivimaki engaged in as a member of the hacker group Hack the Planet. Among those who grabbed a copy of the database was Antti Kurittu , a former criminal investigator at the Helsinki Police Department.

Data breaches 208

Data breaches Cybercrime Telecommunications Accountability 208

Security Affairs

AUGUST 6, 2023

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, data breach) The post Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack appeared first on Security Affairs.

Education 98

Education Data breaches Ransomware Hacking 98

Security Affairs

OCTOBER 30, 2022

The Darknet marketplace was a crucial service for drug trafficking in the cybercrime underground for several years. . ” The DiDW Darknet marketplace first appeared on the threat landscape in 2013. . ” The DiDW Darknet marketplace first appeared on the threat landscape in 2013. Pierluigi Paganini.

Marketing 110

Marketing Cybercrime Mobile Internet 110

Krebs on Security

DECEMBER 3, 2021

Since the beginning of 2020, Babam has set up numerous auctions on the Russian-language cybercrime forum Exploit , mainly selling virtual private networking (VPN) credentials stolen from various companies. Verified was hacked at least twice in the past five years, and its user database posted online. com and wwwpexpay[.]com.

Ransomware 316

Ransomware Passwords Accountability Cybercrime 316

Krebs on Security

JULY 28, 2022

Launched in 2013, Microleaves is a service that allows customers to route their Internet traffic through PCs in virtually any country or city around the globe. The very first discussion thread started by the new user Microleaves on the forum BlackHatWorld in 2013 sought forum members who could help test and grow the proxy network.

Advertising 234

Advertising Software Computers and Electronics Internet 234

Security Affairs

OCTOBER 9, 2018

According to the FBI , the number of business email account (BEC) and email account compromise (EAC) scam incidents worldwide reached 78,000 between October 2013 and May 2018. Company credentials are a valuable commodity in the cybercrime underground , they are offered up to $5,000 for a single username and password pair.

Scams 108

Scams Accountability Hacking Passwords 108

Security Affairs

JUNE 29, 2023

. “It’s not clear who is behind the LetMeSpy hack or their motives. A copy of the hacked database also appeared online later the same day.” The hacker intimated that they deleted LetMeSpy’s databases stored on the server. ” reported TechCrunch. India, and Africa.

Data breaches 98

Data breaches Spyware Hacking Accountability 98