2017, Cybercrime and Phishing - Cyber Security Informer

Two Russians Charged in $17M Cryptocurrency Phishing Spree

Krebs on Security

SEPTEMBER 16, 2020

authorities today announced criminal charges and financial sanctions against two Russian men accused of stealing nearly $17 million worth of virtual currencies in a series of phishing attacks throughout 2017 and 2018 that spoofed websites for some of the most popular cryptocurrency exchanges.

Cryptocurrency

Cryptocurrency Phishing Accountability Cybercrime

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

Justice Department today unsealed indictments against four Chinese officers of the People’s Liberation Army (PLA) accused of perpetrating the 2017 hack against consumer credit bureau Equifax that led to the theft of personal data on nearly 150 million Americans. Compounding the confusion, on Sept.

Hacking

Hacking Identity Theft Government Phishing

Feds Target $100M ‘GozNym’ Cybercrime Network

Krebs on Security

MAY 16, 2019

The locations of alleged GozNym cybercrime group members. According to the indictment, the GozNym network exemplified the concept of ‘cybercrime as a service,’ in that the defendants advertised their specialized technical skills and services on underground, Russian-language, online criminal forums. Source: DOJ.

Cybercrime

Cybercrime Banking Small Business Computers and Electronics

Inside ‘Evil Corp,’ a $100M Cybercrime Menace

Krebs on Security

DECEMBER 16, 2019

Justice Department this month offered a $5 million bounty for information leading to the arrest and conviction of a Russian man indicted for allegedly orchestrating a vast, international cybercrime network that called itself “ Evil Corp ” and stole roughly $100 million from businesses and consumers. LOW FRIENDS IN HIGH PLACES.

Cybercrime

Cybercrime Banking Small Business Accountability

Karma Catches Up to Global Phishing Service 16Shop

Krebs on Security

AUGUST 17, 2023

You’ve probably never heard of “ 16Shop ,” but there’s a good chance someone using it has tried to phish you. A 16Shop phishing page spoofing Apple and targeting Japanese users. Image: Akamai.com. The INTERPOL statement says the platform sold hacking tools to compromise more than 70,000 users in 43 countries.

Phishing

Phishing Passwords Internet Internet

Report: Cyberespionage now most popular form of cybercrime in many industries

Tech Republic Security

APRIL 27, 2017

According to Verizon's 2017 Data Breach Investigations Report, espionage-related attacks are growing in popularity, with malware and phishing still go-to tools for hackers as well.

Cybercrime

Cybercrime Data breaches Phishing Malware

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means. ” reads the alert published by the FBI. Pierluigi Paganini.

Cybercrime

Cybercrime Education Accountability Phishing

Microsoft seized 240 sites used by the ONNX phishing service

Security Affairs

NOVEMBER 23, 2024

Microsoft disrupted the ONNX phishing service, seizing 240 sites and naming an Egyptian man as the operator behind the operation. Microsoft announced the disruption of the ONNX phishing service, another success against cybercrime which led to the seizure of 240 sites. ” reads the analysis published by Microsoft.

Phishing

Phishing Cybercrime Financial Services Media

Spam Kingpin Peter Levashov Gets Time Served

Krebs on Security

JULY 20, 2021

.” Over the course of his 15-year cybercriminal career, Severa would emerge as a pivotal figure in the cybercrime underground , serving as the primary moderator of a spam community that spanned multiple top Russian cybercrime forums. Levashov was arrested in 2017 while in Barcelona, Spain with his family.

Antivirus

Antivirus Cybercrime Identity Theft Scams

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

The COVID-19 epidemic has brought a wave of email phishing attacks that try to trick work-at-home employees into giving away credentials needed to remotely access their employers’ networks. The employee phishing page bofaticket[.]com. Image: urlscan.io.

Phishing

Phishing VPN Social Engineering Media

TrickBot indictment reveals the scale and complexity of organized cybercrime

Malwarebytes

JUNE 8, 2021

Sometimes, it’s used even if an attack being discussed is a basic phish, or maybe some very generic malware. A Latvian woman has been charged for their alleged role in a transnational cybercrime organisation. As touched on above, the group hired experts in a variety of cybercrime fields. What happened this week, you ask?

Cybercrime

Cybercrime Malware Banking Phishing

Crooks abuse GitHub platform to host phishing kits

Security Affairs

APRIL 25, 2019

Experts at Proofpoint discovered that free code repositories on GitHub have been abused since at least 2017 to host phishing websites. Researchers at Proofpoint reported that crooks are abusing free code repositories on GitHub to host phishing websites and bypass security defenses. SecurityAffairs – GitHub, cybercrime).

Phishing

Phishing Advertising Accountability Cybercrime

Three cybercrime technology trends to watch in 2023

CyberSecurity Insiders

JANUARY 3, 2023

Already some have used the OpenAI platform to have ChatGPT write phishing emails and insert malicious links. The emails don’t have the usual spelling, grammar, and syntax errors that today’s phishing messages composed by non-native-English speakers tend to contain – errors that serve as a tip-off to recipients.

Technology

Technology Cybercrime Artificial Intelligence Government

‘ValidCC,’ a Major Payment Card Bazaar and Looter of E-Commerce Sites, Shuttered

Krebs on Security

FEBRUARY 2, 2021

ValidCC , a dark web bazaar run by a cybercrime group that for more than six years hacked online merchants and sold stolen payment card data, abruptly closed up shop last week. ValidCC, circa 2017. “UltraRank combined attacks on single targets with supply chain attacks.” We did not take this decision lightly!”

Cybercrime

Cybercrime Media Accountability Hacking

China-based Fangxiao group behind a long-running phishing campaign

Security Affairs

NOVEMBER 17, 2022

A China-based financially motivated group, tracked as Fangxiao, is behind a large-scale phishing campaign dating back as far as 2019. Researchers from Cyjax reported that a China-based financially motivated group, dubbed Fangxiao, orchestrated a large-scale phishing campaign since 2017. SecurityAffairs – hacking, phishing).

Phishing

Phishing Adware Retail Malware

“FudCo” Spam Empire Tied to Pakistani Software Firm

Krebs on Security

SEPTEMBER 6, 2021

In May 2015, KrebsOnSecurity briefly profiled “ The Manipulaters ,” the name chosen by a prolific cybercrime group based in Pakistan that was very publicly selling spam tools and a range of services for crafting, hosting and deploying malicious email. One of several current Fudtools sites run by The Manipulaters.

Software

Software Phishing Cybercrime Accountability

LifeLock Bug Exposed Millions of Customer Email Addresses

Krebs on Security

JULY 25, 2018

The upshot of this weakness is that cyber criminals could harvest the data and use it in targeted phishing campaigns that spoof LifeLock’s brand. According to LifeLock’s marketing literature as of January 2017, the company has more than 4.5 That’s a pretty sharp spear for my spear phishing right there.

Identity Theft

Identity Theft Consumer Protection Phishing Marketing

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Security Affairs

NOVEMBER 16, 2018

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. In 2017-2018 hackers’ interest in cryptocurrency exchanges ramped up. New cybercrime groups are also expected to start operations in Asia and Latin America. Attacks on Crypto.

Cybercrime

Cybercrime Hacking Banking Phishing

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime

Cybercrime Banking Malware Ransomware

FBI: Victims lost nearly $7 billion to cybercrime in 2021

CSO Magazine

MARCH 23, 2022

A new report released by the FBI's Internet Crime Complaint Center (IC3) shows that financial losses due to suspected cybercrime continued to rise sharply over the course of 2021, to a total of $6.9 billion in that year alone, with 847,000 complaints lodged by victims. billion, on 301,580 complaints.

Cybercrime

Cybercrime Internet Internet Phishing

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

Krebs on Security

APRIL 15, 2020

. “The group is also using its web of contacts in internet infrastructure providers to squash garden-variety phishing attacks and another financial crime that is using the fear of COVID-19 or the desire for information on it to trick regular internet users,” wrote Reuters’ Joe Menn. ” SURVIVING THE PANDEMIC.

Cybersecurity

Cybersecurity Cyber threats Government Phishing

Operation Falcon: Group-IB helps INTERPOL identify Nigerian BEC ring members

Security Affairs

NOVEMBER 25, 2020

Group-IB supported an INTERPOL-led operation Falcon targeting business email compromise cybercrime gang from Nigeria, dubbed TMT. Group-IB , a global threat hunting and intelligence company, supported an INTERPOL-led operation Falcon targeting business email compromise (BEC) cybercrime gang from Nigeria, dubbed TMT by Group-IB.

Cybercrime

Cybercrime Phishing Social Engineering Spyware

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Krebs on Security

JULY 24, 2018

Hackers used phishing emails to break into a Virginia bank in two separate cyber intrusions over an eight-month period, making off with more than $2.4 7 and 9, 2017, the hackers modified or removed critical security controls and withdrew the fraudulent credits using hundreds of ATMs. million total. Between Jan. THE LAWSUIT.

Banking

Banking Insurance Computers and Electronics Cyber Insurance

FBI Warns of ‘Unlimited’ ATM Cashout Blitz

Krebs on Security

AUGUST 12, 2018

” Organized cybercrime gangs that coordinate unlimited attacks typically do so by hacking or phishing their way into a bank or payment card processor. million from accounts at the National Bank of Blacksburg in two separate ATM cashouts between May 2016 and January 2017.

Banking

Banking Accountability Retail Phishing

New spear phishing campaign targets Russian dissidents

Malwarebytes

MARCH 29, 2022

We’ve also observed several different wipers and cybercrime groups such as FormBook using the same tactics. These methods include using documents that exploit CVE-2017-0199 and CVE-2021-40444, macro-embedded documents, and executables. Figure 1: Phishing template. Figure 2: Phishing template. Victimology.

Phishing

Phishing Education Telecommunications Technology

Kroll Employee SIM-Swapped for Crypto Investor Data

Krebs on Security

AUGUST 25, 2023

And there are indications that fraudsters may already be exploiting the stolen data in phishing attacks. SIM-swapping groups will often call employees on their mobile devices, pretend to be someone from the company’s IT department, and then try to get the employee to visit a phishing website that mimics the company’s login page.

Mobile

Mobile Cyber Risk Cryptocurrency Data breaches

A Ukrainian man is the third FIN7 member sentenced in the United States

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). Iarmak is the third member of the FIN7 cybercrime group to be sentenced in the U.S. in May 2020.

Cybercrime

Cybercrime Hacking Software Phishing

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are also massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. The user dfyz on Searchengines[.]ru

DDOS

DDOS Internet Internet Government

Most ransomware attacks take place outside the working hours

Security Affairs

MARCH 17, 2020

FireEye compiled the report using data from dozens of ransomware infections that it has investigated from 2017 to 2019. Experts also analyzed initial infection vectors across multiple ransomware incidents, including RDP, phishing attacks, and drive-by-download of malware. SecurityAffairs – ransomware attacks, cybercrime).

Ransomware

Ransomware Advertising Malware Cybercrime

CryptoCore hacker group stole over $200M from cryptocurrency exchanges

Security Affairs

JUNE 24, 2020

. “While the group’s key infiltration vector to the exchange is usually through spear-phishing against the corporate network, the executives’ personal email accounts are the first to be targeted.” Online cryptocurrency exchanges are a privileged target for cybercrime groups and nation-state actors.

Cryptocurrency

Cryptocurrency Phishing Accountability Passwords

RevengeHotels campaign – crooks target the hospitality industry

Security Affairs

NOVEMBER 28, 2019

Security experts at Kaspersky have published a report on a targeted cybercrime malware campaign, tracked as RevengeHotels, that hit hotels, hostels, hospitality and tourism companies. The attackers carried out spear-phishing campaigns using weaponized Word, Excel or PDF documents as attachments.

Cybercrime

Cybercrime Malware Advertising Phishing

Industrial Sector targeted in surgical spear-phishing attacks

Security Affairs

AUGUST 3, 2018

Industrial sector hit by a surgical spear-phishing campaign aimed at installing legitimate remote administration software on victims’ machines. Attackers personalized the content of each phishing email reflecting the activity of the target organization and the type of work performed by the employee to whom the email is sent.

Phishing

Phishing VPN Passwords Software

Security Affairs newsletter Round 451 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 24, 2023

LockBit ransomware gang claims to have breached accountancy firm Xeinadin Mobile virtual network operator Mint Mobile discloses a data breach Akira ransomware gang claims the theft of sensitive data from Nissan Australia Member of Lapsus$ gang sentenced to an indefinite hospital order Real estate agency exposes details of 690k customers ESET fixed (..)

Ransomware

Ransomware Mobile Malware Marketing

FIN8 Hacking Group is back with an improved version of the ShellTea Backdoor

Security Affairs

JUNE 12, 2019

The last time security experts documented the FIN8’s activities was in 2016 and 2017. FireEye documented obfuscation techniques used by the group in June 2017 and the involvement of PUNCHTRACK POS-scraping malware. “It is believed that the malware was deployed as a result of several phishing attempts.”

Hacking

Hacking Malware Advertising Retail

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Security Affairs

OCTOBER 10, 2018

Security firm Group-IB has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 Group-IB, an international company that specializes in preventing cyber attacks, has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 In December 2017, Group-IB published the first report on this group: “MoneyTaker: 1.5

Cyber Attacks

Cyber Attacks Banking Cyber threats Phishing

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Krebs on Security

SEPTEMBER 30, 2024

A California man accused of failing to pay taxes on tens of millions of dollars allegedly earned from cybercrime also paid local police officers hundreds of thousands of dollars to help him extort, intimidate and silence rivals and former business partners, the government alleges. attorney general.

Cryptocurrency

Cryptocurrency Government Internet Internet

Hacker will compensate victims with $1.1 million Bitcoin illegally earned

Security Affairs

AUGUST 24, 2019

Grant West, aka ‘Courvoisier,’ is a hacker that was arrested by the police on September 2017 as result of a two-year-long investigation code-named ‘Operation Draba.’ He predominately used ‘phishing’ email scams to obtain the financial data of tens of thousands of customers. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Scams Cybercrime Phishing

Bitdefender offers mobile security to chats on messaging apps

CyberSecurity Insiders

NOVEMBER 8, 2022

BitDefender Mobile Security feature assists customers in protecting against malware spread and phishing scams. NOTE 2 – Bitdefender has been assisting Europol European Cybercrime Centre in solving cyber crime from the year 2017 and is also assisting Interpol from the year 2020.

Mobile

Mobile Antivirus VPN IoT

Global Hack-for-Hire Service Caught Phishing Hundreds of Organizations

SecureWorld News

JUNE 10, 2020

Clients hired a group of perpetrators to phish and hack their way across an amazing array of industry verticals like banking, education, energy, law, media, government, and more. And just wait until you find out who is accused of running this cybercrime scheme. You could hire Dark Basin to phish up some dirt of your own.

Phishing

Phishing Hacking Cybercrime Passwords

Online market for counterfeit goods in Russia has reached $1,5 billion

Security Affairs

OCTOBER 15, 2018

Group-IB: The online market for counterfeit goods in Russia has reached $1,5 billion, while the number of phishing attacks has surpassed 1,200 daily. billion in 2017, compared to $1.2 Fraudsters use various ways to deceive users: phishing websites, fake mobile apps, accounts and groups on social media. billion in 2016.

Marketing

Marketing Media Phishing Engineering

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Security Affairs

NOVEMBER 15, 2018

Of course, the CBR does not have anything to do with the phishing campaign – the hackers faked the sender’s address. A spear-phishing campaign set up to look like it was carried out by the Central Bank is a relatively widespread vector of attack among cyber criminals; it has been used by groups such as Buhtrap, Anunak , Cobalt , and Lurk.

Banking

Banking Computers and Electronics Phishing Cybercrime

Tedrade banking malware families target users worldwide

Security Affairs

JULY 19, 2020

The Brazilian cybercrime underground is recognized as the most focuses on the development and commercialization of banking trojans. ” Javali has been active since November 2017, it was primarily focusing on the customers of financial institutions located in Brazil and Mexico. . .”

Banking

Banking Malware Phishing Advertising

Security Affairs newsletter Round 318

Security Affairs

JUNE 13, 2021

million customers impacted. million customers impacted.

Data breaches

Data breaches Hacking Ransomware Cryptocurrency

Exposed: the threat actors who are poisoning Facebook

Security Affairs

MAY 26, 2022

phishing scam on its Messenger service that had been doing the rounds since at least 2017. Upon further examination, it turned out that thousands of these phishing links had been distributed, through a devious network sprawling across the back channels of the social media platform.

Scams

Scams Phishing Media Passwords

Two Russians Charged in $17M Cryptocurrency Phishing Spree

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Trending Sources

Feds Target $100M ‘GozNym’ Cybercrime Network

Inside ‘Evil Corp,’ a $100M Cybercrime Menace

Karma Catches Up to Global Phishing Service 16Shop

Report: Cyberespionage now most popular form of cybercrime in many industries

FBI: Compromised US academic credentials available on various cybercrime forums

Microsoft seized 240 sites used by the ONNX phishing service

Spam Kingpin Peter Levashov Gets Time Served

Voice Phishers Targeting Corporate VPNs

TrickBot indictment reveals the scale and complexity of organized cybercrime

Crooks abuse GitHub platform to host phishing kits

Three cybercrime technology trends to watch in 2023

‘ValidCC,’ a Major Payment Card Bazaar and Looter of E-Commerce Sites, Shuttered

China-based Fangxiao group behind a long-running phishing campaign

“FudCo” Spam Empire Tied to Pakistani Software Firm

LifeLock Bug Exposed Millions of Customer Email Addresses

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

FBI: Victims lost nearly $7 billion to cybercrime in 2021

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

Operation Falcon: Group-IB helps INTERPOL identify Nigerian BEC ring members

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

FBI Warns of ‘Unlimited’ ATM Cashout Blitz

New spear phishing campaign targets Russian dissidents

Kroll Employee SIM-Swapped for Crypto Investor Data

A Ukrainian man is the third FIN7 member sentenced in the United States

Stark Industries Solutions: An Iron Hammer in the Cloud

Most ransomware attacks take place outside the working hours

CryptoCore hacker group stole over $200M from cryptocurrency exchanges

RevengeHotels campaign – crooks target the hospitality industry

Industrial Sector targeted in surgical spear-phishing attacks

Security Affairs newsletter Round 451 by Pierluigi Paganini – INTERNATIONAL EDITION

FIN8 Hacking Group is back with an improved version of the ShellTea Backdoor

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Hacker will compensate victims with $1.1 million Bitcoin illegally earned

Bitdefender offers mobile security to chats on messaging apps

Global Hack-for-Hire Service Caught Phishing Hundreds of Organizations

Online market for counterfeit goods in Russia has reached $1,5 billion

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Tedrade banking malware families target users worldwide

Security Affairs newsletter Round 318

Exposed: the threat actors who are poisoning Facebook

Stay Connected