Security Affairs

OCTOBER 15, 2019

Chinese-speaking cybercrime gang Rocke that carried out several large-scale cryptomining campaigns, has now using news tactics to evade detection. Chinese-speaking cybercrime gang Rocke, that carried out several large-scale cryptomining campaigns in past , has now using news tactics to evade detection. Pierluigi Paganini.

Cybercrime 94

Cybercrime DNS Malware Advertising 94

Krebs on Security

SEPTEMBER 24, 2022

A native of Omsk, Russia, Kloster came into focus after KrebsOnSecurity followed clues from the RSOCKS botnet master’s identity on the cybercrime forums to Kloster’s personal blog , which featured musings on the challenges of running a company that sells “security and anonymity services to customers around the world.”

Cybercrime 228

Cybercrime Data breaches Malware Ransomware 228

Security Affairs

AUGUST 4, 2023

A married couple from New York pleaded guilty this week to laundering billions of dollars stolen from Bitfinex in 2016. The couple pleaded guilty to money laundering charges in connection with the hack of the cryptocurrency stock exchange Bitfinex that took place in 2016. Law enforcement also seized over $3.6

Cryptocurrency 98

Cryptocurrency Hacking Accountability Banking 98

Security Affairs

FEBRUARY 8, 2022

billion worth of cryptocurrency linked to the 2016 Bitfinex cryptocurrency exchange hack. Billion in stolen cryptocurrency stolen during the 2016 hack of Bitfinex. billion worth of cryptocurrency stolen in 2016 Bitfinex hack appeared first on Security Affairs. The law enforcement seized $3.6 Pierluigi Paganini.

Cryptocurrency 98

Cryptocurrency Hacking Accountability Marketing 98

Security Affairs

JANUARY 31, 2023

TrickGate is a shellcode-based packer offered as a service, which is used at least since July 2016, to hide malware from defense programs. TrickGate is a shellcode-based packer offered as a service to malware authors to avoid detection, CheckPoint researchers reported.

Malware 98

Malware Antivirus Manufacturing Healthcare 98

The Last Watchdog

JUNE 21, 2020

The infamous Locky ransomware was first spotted in the wild in February 2016. CryptXXX, another major family discovered in April 2016 and later rebranded as UltraCrypter, relied on exploit kits that used software vulnerabilities to infiltrate systems. The first viable Mac ransomware called KeRanger was spotted in the spring of 2016.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

JULY 11, 2020

A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces. The Russian criminal was arrested in Prague in October 2016 in an international joint operation with the FBI. SecurityAffairs – hacking, cybercrime).

Hacking 118

Hacking Cybercrime Data breaches Advertising 118

Security Affairs

APRIL 12, 2022

The illegal dark web marketplace RaidForums has been shut down and its infrastructure seized as a result of the international law enforcement Operation TOURNIQUET coordinated by Europol’s European Cybercrime Centre. Europol will continue working with its international partners to make cybercrime harder – and riskier –to commit.

Cybercrime 145

Cybercrime Banking Accountability Hacking 145

Security Affairs

OCTOBER 16, 2021

TrickBot operators are back and expand the distribution channels with partnership with cybercrime affiliates. The gang support other cybercrime groups such as known Hive0105, Hive0106 (aka TA551 or Shathak), and Hive0107, supporting them in expanding their malware campaigns. ” reads the post published by IBM X-Force.

Malware 135

Malware Cybercrime DDOS Social Engineering 135

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). Iarmak was involved in FIN7 criminal activities from approximately November 2016 through November 2018.

Cybercrime 133

Cybercrime Hacking Software Phishing 133

Security Affairs

MARCH 29, 2020

The Dharma ransomware first appeared on the threat landscape in February 2016, at the time experts dubbed it Crysis. In November 2016, the master decryption keys for Crysis were released online, victims of CrySis versions 2 and 3 were able to recover their files.

Ransomware 143

Ransomware Hacking Advertising Malware 143

Security Affairs

OCTOBER 29, 2020

The government agencies receive information about imminent attacks, threat actors are using the TrickBot botnet to deliver the infamous ransomware to the infected systems. “CISA, FBI, and HHS have credible information of an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers.

Healthcare 145

Healthcare Ransomware Cybercrime Advertising 145

Security Affairs

NOVEMBER 15, 2024

Bitfinex hacker, Ilya Lichtenstein , who stole 1 billion worth of Bitcoins from Bitfinex in 2016, has been sentenced to five years in prison. Billion in stolen cryptocurrency stolen during the 2016 hack of Bitfinex. ” reads the press release published by DoJ. Law enforcement also seized over $3.6

Cryptocurrency 107

Cryptocurrency Hacking Government Accountability 107

Security Affairs

OCTOBER 18, 2020

QQAAZZ attempted to launder tens of millions stolen from victims starting with 2016 by the world’s foremost cybercriminals. SecurityAffairs – hacking, QQAAZZ cybercrime gang). The post QQAAZZ crime gang charged for laundering money stolen by malware gangs appeared first on Security Affairs. Pierluigi Paganini.

Malware 142

Malware Banking Cryptocurrency Cybercrime 142

Security Affairs

DECEMBER 22, 2022

. “South Korea’s main spy agency, the National Intelligence Service, said North Korea’s capacity to steal digital assets is considered among the best in the world because of the country’s focus on cybercrimes since U.N. sanctions imposed in 2016 and 1017, and the impact on its economy is dramatic. ” reported the AP agency.

Cryptocurrency 141

Cryptocurrency Cybercrime Media Government 141

Security Affairs

DECEMBER 26, 2020

Emotet is back on Christmas Eve, cybercrime operators are sending out spam messages to deliver the infamous Trickbot Trojan. Emotet is back on Christmas Eve, after two months of silence, cybercrime operators are sending out spam messages to deliver the infamous Trickbot Trojan.

Cybercrime 141

Cybercrime Malware Banking Ransomware 141

Security Affairs

MAY 13, 2024

New Jersey’s Cybersecurity and Communications Integration Cell (NJCCIC) reported that since April, threat actors used the the Phorpiex botnet to send millions of phishing emails as part of a LockBit Black ransomware campaign. In December 2021, experts at Check Point Research observed the resurgence of the Phorpiex botnet.

Phishing 134

Phishing Ransomware Security Awareness Authentication 134

Security Affairs

JULY 26, 2021

The “No More Ransom” website is an initiative launched in 2016 by the National High Tech Crime Unit of the Netherlands’ police, Europol’s European Cybercrime Centre, Kaspersky and McAfee to help victims of ransomware retrieve their encrypted data without having to pay the criminals.

Ransomware 132

Ransomware Encryption Cybercrime Hacking 132

Security Affairs

SEPTEMBER 16, 2022

We don’t have an estimate right now as to when full access to tools will be restored, so thank you for bearing with us,” Latha Maripuri, Uber’s chief information security officer, told NYT via email. This is not the first time that the company suffered a security breach.

Hacking 144

Hacking Data breaches Engineering Information Security 144

Security Affairs

APRIL 18, 2021

CARBANAK cybercrime gang was first uncovered in 2014 by Kaspersky Lab that dated its activity back to 2013 when the group leveraged the Anunak malware in targeted attacks on financial institutions and ATM networks. Between 2014 and 2016 the group used a new custom malware dubbed Carbanak that is considered a newer version of Anunak.

System Administration 138

System Administration Penetration Testing Malware Hacking 138

Security Affairs

MARCH 13, 2020

In the last weeks, security experts reported many Coronavirus-themed attacks carried out by cybercrime gangs, now experts warn of similar attacks from nation – s tate actors. ” reads the analysis published by the CheckPoint experts.

Malware 143

Malware Cybercrime Advertising Phishing 143

Security Affairs

SEPTEMBER 11, 2023

governments sanctioned 11 more individuals who were alleged members of the Russia-based TrickBot cybercrime gang. The United States, in coordination with the United Kingdom, sanctioned eleven more individuals who are members of the Russia-based Trickbot cybercrime group. The sanctions were provided by the U.S. Government and U.S.

Cybercrime 131

Cybercrime Government Ransomware Banking 131

Security Affairs

FEBRUARY 14, 2020

In November 2016, Harmon started a partnership with AlphaBay , the popular black market that was seized by authorities in July 2017. SecurityAffairs – Helix mixer, cybercrime). The post Helix Bitcoin Mixer operator charged for laundering over $300M worth of Bitcoin appeared first on Security Affairs. Pierluigi Paganini.

Advertising 135

Advertising Cryptocurrency Cybercrime Engineering 135

Security Affairs

NOVEMBER 28, 2019

Security experts at Kaspersky have published a report on a targeted cybercrime malware campaign, tracked as RevengeHotels, that hit hotels, hostels, hospitality and tourism companies. The files downloaded in the attacks observed in 2016 were divided into two modules, a backdoor and a module to capture screenshots.

Cybercrime 131

Cybercrime Malware Advertising Phishing 131

Security Affairs

DECEMBER 22, 2019

Justice Department announced that three members of the cybercrime group behind the GozNym banking Trojan have been sentenced to prison. Justice Department announced that three members of the cybercrime group behind the GozNym banking Trojan have been sentenced to prison. Brady announced today.”

Computers and Electronics 91

Computers and Electronics Banking Cybercrime Malware 91

Security Affairs

OCTOBER 19, 2020

French authorities accused Vinnik of defrauding more than 100 people in six French cities between 2016 and 2018. SecurityAffairs – hacking, cybercrime). The post Alexander Vinnik, the popular cyber criminal goes on trial in Paris appeared first on Security Affairs. ” reported the AFP news. . Pierluigi Paganini.

Advertising 136

Advertising Hacking Cybercrime Cryptocurrency 136

Security Affairs

MARCH 19, 2021

The Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) warn of ongoing Trickbot attacks despite in October multiple security firms dismantled its C2 infrastructure in a joint operation. ” reads the advisory.

Phishing 120

Phishing Cybercrime Malware Ransomware 120

Security Affairs

APRIL 22, 2024

This is sensitive information that could lead to discrimination, persecution, or otherwise cause harm to individuals by violating their privacy and exposing them to various types of cyberattacks. In June 2016, security researcher Chris Vickery found a copy of the World-Check database dated 2014 that was accidentally exposed online.

Risk 140

Risk Spyware Hacking Accountability 140

Security Affairs

OCTOBER 7, 2019

The StreetEasy data breach took place in the mid-2016 and exposed 988k records that included names, usernames, email addresses and SHA-1 password hashes. The data has been available for sale in the cybercrime underground since February. “In approximately June 2016, the real estate website StreetEasy suffered a data breach.

Data breaches 103

Data breaches Passwords Advertising Cybercrime 103

Security Affairs

JANUARY 20, 2022

. “The FBI has not yet observed Diavol leak victim data, despite ransom notes including threats to leak stolen information.” ” TrickBot is a popular banking Trojan that has been around since October 2016, its authors have continuously upgraded it by implementing new features.

Ransomware 132

Ransomware Banking Malware Encryption 132

Security Affairs

MARCH 18, 2022

Mandiant researchers discovered a new Unix rootkit named Caketap, which is used to steal ATM banking data, while investigating the activity of the LightBasin cybercrime group (aka UNC1945 ). The China-linked hacking group has been active since at least 2016, according to the CrowdStrike researchers it is using a very sophisticated toolset.

Banking 144

Banking Telecommunications System Administration Hacking 144

Security Affairs

SEPTEMBER 6, 2021

TrickBot is a popular banking Trojan that has been around since October 2016, its authors have continuously upgraded it by implementing new features. The man was recruited by the criminal organization in 2016. Operators continue to offer the botnet through a multi-purpose malware-as-a-service (MaaS) model. ” Mr.

Malware 145

Malware Banking Hacking Government 145

Security Affairs

AUGUST 16, 2024

Between July 2016 and May 2021, Kavzharadze listed over 626,100 stolen login credentials on Slilpp and sold more than 297,300 of them. The Russian man was sentenced to 40 months in prison and ordered to pay $1,233,521.47 in restitution. These credentials were linked to $1.2 million in fraudulent transactions.

Banking 127

Banking Accountability Retail Mobile 127

Security Affairs

JANUARY 26, 2024

The Seoul High Court Criminal Division 20 (Chief Judge Jeong Seon-jae Baek Suk-jong Lee Jun-hyun) charged Mr. A for being a developer for the TrickBot gang since 2016. A, this is the pseudonym used to identify the individual, was forced to live in Seoul waiting for the replacement of his passport from the local Russian embassy.

Malware 135

Malware Identity Theft Banking Ransomware 135

Security Affairs

DECEMBER 8, 2020

The French court acquitted Vinnik of charges of extortion and association with a cybercrime organization. French authorities accused Vinnik of defrauding more than 100 people in six French cities between 2016 and 2018. In June, New Zealand police had frozen NZ$140 million (US$90 million) in assets linked to a Russian cyber criminal.

Cryptocurrency 120

Cryptocurrency Hacking Ransomware Cybercrime 120

Security Affairs

APRIL 17, 2022

The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. Upon installing the threat, the bot drops a file in /tmp/.pwned

DDOS 145

DDOS Architecture Malware Cybercrime 145

Security Affairs

DECEMBER 17, 2021

The botnet has been active since at least 2016, but in August the criminal organization behind the Phorpiex botnet have shut down their operations and put the source code of the bot for sale on a cybercrime forum in on a dark web. Experts estimated that in one year it allowed to steal crypto assets worth of 500,000 dollars.

Cryptocurrency 129

Cryptocurrency Cybercrime Malware Hacking 129