2016, Cybercrime and Hacking - Cyber Security Informer

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Krebs on Security

FEBRUARY 4, 2025

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled , English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. to , and vDOS , a DDoS-for-hire service that was shut down in 2016 after its founders were arrested. 30, the U.S.

eCommerce

eCommerce Cybercrime Accountability Passwords

From Cybercrime Saul Goodman to the Russian GRU

Krebs on Security

FEBRUARY 7, 2024

In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. Launched in 2001 under the tagline “Network terrorism,” Mazafaka would evolve into one of the most guarded Russian-language cybercrime communities. Mr. Safronov posted this image of himself on Facebook in 2016. ” WHO IS DJAMIX?

Cybercrime

Cybercrime Accountability Identity Theft Hacking

DoJ seized credit card marketplace PopeyeTools and charges its administrators

Security Affairs

NOVEMBER 24, 2024

seized the stolen credit card marketplace PopeyeTools and charged its operators, this is a major success against cybercrime. PopeyeTools was a dark web marketplace specializing in selling stolen credit cards and cybercrime tools, facilitating fraud and illicit online activities since 2016.

Cybercrime

Cybercrime Cryptocurrency Banking Accountability

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking

Hacking Cybercrime Ransomware Government

This Service Helps Malware Authors Fix Flaws in their Code

Krebs on Security

MAY 18, 2020

Almost daily now there is news about flaws in commercial software that lead to computers getting hacked and seeded with malware. But the reality is most malicious software also has its share of security holes that open the door for security researchers or ne’er-do-wells to liberate or else seize control over already-hacked systems.

Malware

Malware Cybercrime Ransomware Marketing

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime

Cybercrime Banking Malware Ransomware

Bitfinex hacker Ilya Lichtenstein was sentenced to 5 years in prison

Security Affairs

NOVEMBER 15, 2024

Bitfinex hacker, Ilya Lichtenstein , who stole 1 billion worth of Bitcoins from Bitfinex in 2016, has been sentenced to five years in prison. Billion in stolen cryptocurrency stolen during the 2016 hack of Bitfinex. billion in cryptocurrency (roughly 95,000 of the stolen crypto assets) linked to that hack.

Cryptocurrency

Cryptocurrency Hacking Government Accountability

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Krebs on Security

MARCH 10, 2020

District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations. ru , a cybercrime forum in its own right that called itself “ The Antichat Mafia.”

Accountability

Accountability Advertising Hacking Cybercrime

This Simple Hack Could Tank Your Business

Adam Levin

JULY 24, 2020

Barely a day goes by without news of an elite hacking team creating a more stealth exploit– malware , elaborate spear-phishing attacks, trojans, and a killer array of ransomware that can take factories and other organizations offline, or even hobble entire cities. Cyberattacks are constantly getting more sophisticated.

Hacking

Hacking Phishing Risk Accountability

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

JUNE 22, 2022

last week said they dismantled the “ RSOCKS ” botnet, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. ” In 2016, Deniskloster.com featured a post celebrating three years in operation.

Advertising

Advertising Cybercrime System Administration Hacking

A Deep Dive Into the Residential Proxy Service ‘911’

Krebs on Security

JULY 18, 2022

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. THE INTERNET NEVER FORGETS. com , cleantraffic[.]net

VPN

VPN Computers and Electronics Antivirus Software

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The infamous Locky ransomware was first spotted in the wild in February 2016. CryptXXX, another major family discovered in April 2016 and later rebranded as UltraCrypter, relied on exploit kits that used software vulnerabilities to infiltrate systems. The first viable Mac ransomware called KeRanger was spotted in the spring of 2016.

Ransomware

Ransomware Hacking Encryption Penetration Testing

U.S. authorities seized cybercrime marketplace Rydox

Security Affairs

DECEMBER 13, 2024

Department of Justice (DoJ) announced the seizure of the cybercrime marketplace Rydox (“rydox.ru” and “rydox[.]cc”). Department of Justice (DoJ) seized Rydox, a cybercrime marketplace for selling stolen personal data and fraud tools. cc”). Thousands of U.S. victims were affected. Attorney Eric G.

Cybercrime

Cybercrime Identity Theft Cryptocurrency Hacking

A Retrospective on the 2015 Ashley Madison Breach

Krebs on Security

JULY 27, 2022

It’s been seven years since the online cheating site AshleyMadison.com was hacked and highly sensitive data about its users posted online. It’s also a complete lie,” the hacking group wrote. Brutium routinely advertised the sale of large, hacked databases, and on Jan. ” NEO-NAZIS TARGET ASHLEY MADISON CEO.

Cybercrime

Cybercrime Hacking Media Advertising

Administrator of RSOCKS Proxy Botnet Pleads Guilty

Krebs on Security

JANUARY 24, 2023

First advertised in the cybercrime underground in 2014, RSOCKS was the web-based storefront for hacked computers that were sold as “proxies” to cybercriminals looking for ways to route their Web traffic through someone else’s device. RSOCKS, circa 2016. A copy of the passport for Denis Emelyantsev, a.k.a. Image: archive.org.

Cybercrime

Cybercrime Advertising IoT Malware

ExCobalt Cybercrime group targets Russian organizations in multiple sectors

Security Affairs

JUNE 24, 2024

The cybercrime group ExCobalt targeted Russian organizations in multiple sectors with a previously unknown backdoor known as GoRed. Positive Technologies researchers reported that a cybercrime gang called ExCobalt targeted Russian organizations in multiple sectors with a previously unknown Golang-based backdoor known as GoRed.

Cybercrime

Cybercrime Telecommunications DNS Technology

US seizes $3.6 billion worth of cryptocurrency stolen in 2016 Bitfinex hack

Security Affairs

FEBRUARY 8, 2022

billion worth of cryptocurrency linked to the 2016 Bitfinex cryptocurrency exchange hack. Billion in stolen cryptocurrency stolen during the 2016 hack of Bitfinex. billion in cryptocurrency linked to that hack. SecurityAffairs – hacking, Bitfinex ). The law enforcement seized $3.6 Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Hacking Accountability Marketing

DoJ charged 19 individuals in a transnational cybercrime investigation xDedic Marketplace

Security Affairs

JANUARY 8, 2024

19 individuals worldwide were charged in a transnational cybercrime investigation of the now defunct xDedic marketplace. The black marketplace has been active since 2014, it was first analyzed by experts at Kaspersky Lab in 2016. At the time, the domain (xdedic[.]biz) The website quickly reappeared in the Tor network.

Cybercrime

Cybercrime Identity Theft Government Hacking

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Krebs on Security

SEPTEMBER 10, 2021

While last night’s Meris attack on this site was far smaller than the recent Cloudflare DDoS, it was far larger than the Mirai DDoS attack in 2016 that held KrebsOnSecurity offline for nearly four days. By comparison, the 2016 Mirai DDoS generated approximately 450,000 requests-per-second. Image: Qrator.

IoT

IoT DDOS Internet Internet

Source code of Dharma ransomware now surfacing on public hacking forums

Security Affairs

MARCH 29, 2020

The source code of the infamous Dharma ransomware is now available for sale on two Russian-language hacking forums. The source code of one of the most profitable ransomware families, the Dharma ransomware , is up for sale on two Russian-language hacking forums. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Hacking Advertising Malware

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

” MRMURZA Faceless is a project from MrMurza , a particularly talkative member of more than a dozen Russian-language cybercrime forums over the past decade. MrMurza’s Faceless advertised on the Russian-language cybercrime forum ProCrd. Image: Darkbeast/Ke-la.com. In 2013, U.S.

Malware

Malware Passwords Accountability Advertising

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Security Affairs

JULY 11, 2020

A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces. The Russian criminal was arrested in Prague in October 2016 in an international joint operation with the FBI. Source: US Defense Watch.com.

Hacking

Hacking Cybercrime Advertising Data breaches

$10M Is Yours If You Can Get This Guy to Leave Russia

Krebs on Security

MAY 4, 2023

government this week put a $10 million bounty on the head of a Russian man who for the past 18 years operated Try2Check , one of the cybercrime underground’s most trusted services for checking the validity of stolen credit card data. Russian vehicle registration records have also been hacked and leaked online over the years.

Marketing

Marketing Cybercrime Accountability Hacking

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Krebs on Security

JULY 18, 2023

[This is Part III in a series on research conducted for a recent Hulu documentary on the 2015 hack of marital infidelity website AshleyMadison.com.] LeakedSource was advertised on a number of popular cybercrime forums as a service that could help hackers break into valuable or high-profile accounts. Abusewith[.]us

Hacking

Hacking Accountability Data breaches Marketing

FCA fines Tesco Bank £16.4m over 2016 cyber attack

Security Affairs

OCTOBER 2, 2018

as part of a settlement with the Financial Conduct Authority following the 2016 security breach. fine to Tesco Bank for the vulnerabilities in its systems that were exploited by hackers to steal millions of pounds from customers’ online accounts in 2016. Security Affairs – Tesco cyber heist, cybercrime). Pierluigi Paganini.

Banking

Banking Cyber Attacks Advertising Accountability

Global Law Enforcement Shuts Down Two of the Largest Cybercrime Forums

SecureWorld News

JANUARY 30, 2025

In a coordinated international effort, law enforcement agencies from the United States, Europe, and Australia have dismantled Cracked and Nulled, two of the world's largest cybercrime marketplaces. By dismantling these two major forums, law enforcement agencies have disrupted a global supply chain of cybercrime tools.

Cybercrime

Cybercrime Identity Theft Hacking Cryptocurrency

Canada Charges Its “Most Prolific Cybercriminal”

Krebs on Security

DECEMBER 8, 2021

Matthew Filbert, in 2016. According to cyber intelligence firm Intel 471 , that dark_cl0ud6@hotmail.com address has been used in conjunction with the handle “ DCReavers2 ” to register user accounts on a half-dozen English-language cybercrime forums since 2008, including Hackforums , Blackhatworld, and Ghostmarket.

Cybercrime

Cybercrime Ransomware Accountability Advertising

Who Is the Network Access Broker ‘Babam’?

Krebs on Security

DECEMBER 3, 2021

Since the beginning of 2020, Babam has set up numerous auctions on the Russian-language cybercrime forum Exploit , mainly selling virtual private networking (VPN) credentials stolen from various companies. But in February 2016, Babam joined Verified , another Russian-language crime forum. com back in 2011, and sanjulianhotels[.]com

Ransomware

Ransomware Passwords Accountability Cybercrime

FBI Warns of ‘Unlimited’ ATM Cashout Blitz

Krebs on Security

AUGUST 12, 2018

” Organized cybercrime gangs that coordinate unlimited attacks typically do so by hacking or phishing their way into a bank or payment card processor. million from accounts at the National Bank of Blacksburg in two separate ATM cashouts between May 2016 and January 2017.

Banking

Banking Accountability Retail Phishing

WeLeakInfo Leaked Customer Payment Info

Krebs on Security

MARCH 15, 2021

com , a wildly popular service that sold access to more than 12 billion usernames and passwords stolen from thousands of hacked websites. For several years, WeLeakInfo was the largest of several services selling access to hacked passwords. 24, 2016 with the domain registrar Dynadot. design was registered on Aug.

Passwords

Passwords Accountability Hacking Data breaches

Personal health information of 42M Americans leaked between 2016 and 2021

Security Affairs

DECEMBER 31, 2022

Crooks have had access to the medical records of 42 million Americans since 2016 as the number of hacks on healthcare organizations doubled. Medical records of 42 million Americans are being sold on the dark web since 2016, this information comes from cyberattacks on healthcare providers. million in 2016 to close to 16.5

Healthcare

Healthcare Ransomware Backups Hacking

911 Proxy Service Implodes After Disclosing Breach

Krebs on Security

JULY 29, 2022

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. A cached copy of flashupdate[.]net

Cybercrime

Cybercrime Software VPN Backups

Married couple pleaded guilty to laundering billions in cryptocurrency stolen from Bitfinex in 2016

Security Affairs

AUGUST 4, 2023

A married couple from New York pleaded guilty this week to laundering billions of dollars stolen from Bitfinex in 2016. The couple pleaded guilty to money laundering charges in connection with the hack of the cryptocurrency stock exchange Bitfinex that took place in 2016. Law enforcement also seized over $3.6

Cryptocurrency

Cryptocurrency Hacking Accountability Banking

Cobalt cybercrime gang abused Google App Engine in recent attacks

Security Affairs

JANUARY 27, 2019

The Cobalt cybercrime gang has been using Google App Engine to distribute malware through PDF decoy documents. The Cobalt hacking group has been using Google App Engine to distribute malware through PDF decoy documents. The post Cobalt cybercrime gang abused Google App Engine in recent attacks appeared first on Security Affairs.

Engineering

Engineering Cybercrime Banking Advertising

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Security Affairs

FEBRUARY 6, 2025

The investigation began in early 2024 after data stolen from a Madrid business association was leaked on dark web cybercrime forums. The hacker claimed responsibility for the attacks on multiple cybercrime forums under different monikers to avoid being identified. ” continues the press release. ” concludes the statement.

Cybercrime

Cybercrime Government Data breaches Information Security

Uber hacked, internal systems and confidential documents were allegedly compromised

Security Affairs

SEPTEMBER 16, 2022

According to the New York Times , the threat actors hacked an employee’s Slack account and used it to inform internal personnel that the company had “suffered a data breach” and provided a list of allegedly hacked internal databases. “I SecurityAffairs – hacking, Uber). states the message. Pierluigi Paganini.

Hacking

Hacking Data breaches Information Security Engineering

U.S. CISA adds Adobe ColdFusion and Oracle Agile PLM flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

FEBRUARY 25, 2025

is a Java deserialization vulnerability in the Apache BlazeDS library in Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, CISA )

Hacking

Hacking Cybersecurity Risk Cybercrime

Why Malware Crypting Services Deserve More Scrutiny

Krebs on Security

JUNE 21, 2023

If you operate a cybercrime business that relies on disseminating malicious software, you probably also spend a good deal of time trying to disguise or “crypt” your malware so that it appears benign to antivirus and security products. biz , a long-running crypting service that is trusted by some of the biggest names in cybercrime.

Malware

Malware Antivirus Cybercrime Hacking

Operator of Codeshop Cybercrime Marketplace Sentenced to 90 months in prison

Security Affairs

APRIL 19, 2019

Djevair Ametovski was sentenced to 90 months in prison for operating an international cybercrime marketplace named Codeshop. Macedonian national Djevair Ametovski (32) was sentenced to 90 months in prison by US DoJ authorities for operating an international cybercrime marketplace named Codeshop. Codeshop.su Pierluigi Paganini.

Cybercrime

Cybercrime Identity Theft Banking Advertising

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

One of Megatraffer’s ads on an English-language cybercrime forum. 2016 sales thread on Exploit. That protracted and public conflict formed the backdrop of my 2014 book — “ Spam Nation: The Inside Story of Organized Cybercrime, from Global Epidemic to Your Front Door. “Why do I need a certificate?”

Malware

Malware Cybercrime Software Accountability

Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.

Krebs on Security

SEPTEMBER 24, 2022

Denis Emelyantsev , as the apparent owner of RSOCKS, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. ” The employees who kept things running for RSOCKS, circa 2016.

Cybercrime

Cybercrime Data breaches Malware Ransomware

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. A 2016 screen shot of the Joker’s Stash homepage.

Cryptocurrency

Cryptocurrency Cybercrime Retail Government

This Simple Hack Could Tank Your Business

Adam Levin

JULY 23, 2020

Barely a day goes by without news of an elite hacking team creating a more stealth exploit– malware , elaborate spear-phishing attacks, trojans, and a killer array of ransomware that can take factories and other organizations offline, or even hobble entire cities. Cyberattacks are constantly getting more sophisticated.

Hacking

Hacking Phishing Risk Accountability

Chinese-speaking cybercrime gang Rocke changes tactics

Security Affairs

OCTOBER 15, 2019

Chinese-speaking cybercrime gang Rocke that carried out several large-scale cryptomining campaigns, has now using news tactics to evade detection. Chinese-speaking cybercrime gang Rocke, that carried out several large-scale cryptomining campaigns in past , has now using news tactics to evade detection. Pierluigi Paganini.

Cybercrime

Cybercrime DNS Malware Advertising

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

From Cybercrime Saul Goodman to the Russian GRU

Trending Sources

DoJ seized credit card marketplace PopeyeTools and charges its administrators

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

This Service Helps Malware Authors Fix Flaws in their Code

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

Bitfinex hacker Ilya Lichtenstein was sentenced to 5 years in prison

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

This Simple Hack Could Tank Your Business

Meet the Administrators of the RSOCKS Proxy Botnet

A Deep Dive Into the Residential Proxy Service ‘911’

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

U.S. authorities seized cybercrime marketplace Rydox

A Retrospective on the 2015 Ashley Madison Breach

Administrator of RSOCKS Proxy Botnet Pleads Guilty

ExCobalt Cybercrime group targets Russian organizations in multiple sectors

US seizes $3.6 billion worth of cryptocurrency stolen in 2016 Bitfinex hack

DoJ charged 19 individuals in a transnational cybercrime investigation xDedic Marketplace

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Source code of Dharma ransomware now surfacing on public hacking forums

Giving a Face to the Malware Proxy Service ‘Faceless’

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

$10M Is Yours If You Can Get This Guy to Leave Russia

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

FCA fines Tesco Bank £16.4m over 2016 cyber attack

Global Law Enforcement Shuts Down Two of the Largest Cybercrime Forums

Canada Charges Its “Most Prolific Cybercriminal”

Who Is the Network Access Broker ‘Babam’?

FBI Warns of ‘Unlimited’ ATM Cashout Blitz

WeLeakInfo Leaked Customer Payment Info

Personal health information of 42M Americans leaked between 2016 and 2021

911 Proxy Service Implodes After Disclosing Breach

Married couple pleaded guilty to laundering billions in cryptocurrency stolen from Bitfinex in 2016

Cobalt cybercrime gang abused Google App Engine in recent attacks

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Uber hacked, internal systems and confidential documents were allegedly compromised

U.S. CISA adds Adobe ColdFusion and Oracle Agile PLM flaws to its Known Exploited Vulnerabilities catalog

Why Malware Crypting Services Deserve More Scrutiny

Operator of Codeshop Cybercrime Marketplace Sentenced to 90 months in prison

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

This Simple Hack Could Tank Your Business

Chinese-speaking cybercrime gang Rocke changes tactics

Stay Connected