2018, Cybercrime and Data collection - Cyber Security Informer

New LightSpy spyware variant comes with enhanced data collection features targeting social media platforms

Security Affairs

FEBRUARY 26, 2025

Researchers found an updated LightSpy spyware with enhanced data collection features targeting social media platforms like Facebook and Instagram. have found an updated version of the LightSpy spyware that supports an expanded set of data collection features to target social media platforms like Facebook and Instagram.

Data collection

Data collection Spyware Media Surveillance

Over 120,000 Computers Compromised by Info Stealers Linked to Users of Cybercrime Forums

The Hacker News

AUGUST 15, 2023

A "staggering" 120,000 computers infected by stealer malware have credentials associated with cybercrime forums, many of them belonging to malicious actors. The findings come from Hudson Rock, which analyzed data collected from computers compromised between 2018 to 2023.

Cybercrime

Cybercrime Data collection Malware Software

Over 100,000 Hackers Exposed in Data from Top Cybercrime Forums

SecureWorld News

AUGUST 16, 2023

Recent research conducted by Hudson Rock has shed light on the extensive compromise of computers and the exposure of hackers within cybercrime forums. Hudson Rock's research delved deep into the underbelly of the cyber world, focusing on the top 100 cybercrime forums.

Cybercrime

Cybercrime Passwords Data collection Data breaches

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Security Affairs

NOVEMBER 16, 2018

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. In 2017-2018 hackers’ interest in cryptocurrency exchanges ramped up. In 2018 the direct financial losses from these attacks amounted to almost $20 million. Attacks on Crypto.

Cybercrime

Cybercrime Hacking Banking Phishing

A Deep Dive Into the Residential Proxy Service ‘911’

Krebs on Security

JULY 18, 2022

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. FORUM ACTIVITY? su between 2016 and 2019.

VPN

VPN Computers and Electronics Antivirus Software

Hackers targeted the US Census Bureau network, DHS report warns

Security Affairs

OCTOBER 11, 2020

Data collected by the agency is used by the federal government to allocate over $675 billion in federal funds to tribal, local, and state governments every year. The HTA report warns of an intensification of malicious activities conducted by both nation-states and cybercrime groups. critical infrastructure.

Government

Government Advertising Hacking Data collection

Hundreds of C-level executives credentials available for $100 to $1500 per account

Security Affairs

NOVEMBER 28, 2020

The news reported by ZDnet is not surprising, I have discovered several times such kind of offer, but it is important to raise awareness on the cybercrime-as-a-service model that could rapidly enable threat actors to carry out malicious activities. Exploit.in

Accountability

Accountability Cybercrime Hacking Retail

Power Generator in South Africa hit with DroxiDat and Cobalt Strike

Security Affairs

AUGUST 11, 2023

The SystemBC platform has been offered for sale on various underground forums at least since 2018 as a “malware as a service,” or MaaS. ” reads the report published by Data collected related to multiple incidents analyzed by Kaspersky suggest the attack was conducted by the Russian-speaking RaaS cybercrime Pistachio Tempest or FIN12.

Malware

Malware Data collection Healthcare Cybercrime

New set of Pakistani banks’ card dumps goes on sale on the dark web

Security Affairs

NOVEMBER 17, 2018

According to the head of the Federal Investigation Agency’s (FIA) cybercrime wing.almost all Pakistani banks were affected by a recent security breach. Group-IB experts discovered another large set of compromised payment cards details that was put on sale on Joker’s Stash, one of the most popular underground hubs of stolen card data, on Nov.

Banking

Banking Cybercrime Advertising Data collection

Payment data of thousands of customers of UK and US online stores could have been compromised

Security Affairs

MARCH 14, 2019

In the course of further research it was revealed that GMO JS Sniffer has presumably been collecting customer payment data since November 2018. Typically, after customer data is stolen, it is usually resold on underground cardshops. Group-IB’s Threat Intelligence team discovered that GMO has been active since May 2018.

eCommerce

eCommerce Marketing Data breaches Advertising

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Security Affairs

OCTOBER 10, 2018

Security firm Group-IB has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 Group-IB, an international company that specializes in preventing cyber attacks, has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 million (2.96 billion rubles) of damage to Russia’s financial sector. million (2.96 million (2.96

Cyber Attacks

Cyber Attacks Banking Cyber threats Phishing

Operation Night Fury: Group-IB helps take down a cybergang behind the infection of hundreds of websites all over the world

Security Affairs

JANUARY 27, 2020

This successful operation is just one example of how law enforcement are working with industry partners, adapting and applying new technologies to aid investigations and ultimately reduce the global impact of cybercrime,» concluded Mr Jones.” INTERPOL’s Director of Cybercrime. ” Craig Jones. ” Idam Wasiadi.

Cybercrime

Cybercrime Marketing eCommerce Advertising

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Security Affairs

NOVEMBER 15, 2018

According to Group-IB’s report published in September 2018, Silence gang members presumably were or are legally employed as pentesters and reverse engineers. The report “Silence: Moving into the darkside” was published in September 2018 and was the first to describe the group’s tactics and tools. About MoneyTaker. Pierluigi Paganini.

Banking

Banking Computers and Electronics Phishing Cybercrime

Online market for counterfeit goods in Russia has reached $1,5 billion

Security Affairs

OCTOBER 15, 2018

This information was first made public by experts from Group-IB’s Brand Protection team at the CyberCrimeCon 2018 international cybersecurity conference. GIB Threat Intelligence cyber threats data collection system has been named one of the best in class by Gartner, Forrester, and IDC. billion in 2017, compared to $1.2

Marketing

Marketing Media Phishing Engineering

Protonmail hacked …. a very strange scam attempt

Security Affairs

NOVEMBER 17, 2018

link ) was posted on Pastebin , the hacker claims to have compromised user’s email and also accused ProtonMail of sending user’s decrypted data to American servers. AmFearLiathMor also wrote that ProtonMail hasn’t configured the mandatory Subresource Integrity ( SRI ) allowing tampering and data collection.

Scams

Scams Hacking Data collection Advertising

Ransomware Revival: Troldesh becomes a leader by the number of attacks

Security Affairs

NOVEMBER 19, 2019

CERT-GIB’s report is based on data collected and analyzed by the Threat Detection System (TDS) Polygon as part of operations to prevent and detect threats distributed online in H1 2019 in more than 60 countries. In 2018, their number grew to 3.6%, while in H1 2019 saw an unusual rise of up to 27.8%. The revival of ransomware.

Ransomware

Ransomware Antivirus Malware Banking

Prilex: the pricey prickle credit card complex

SecureList

SEPTEMBER 28, 2022

As we noted in 2018, there are many similarities between their ATM and PoS versions. These cryptograms will then be used in a fraudulent transaction through one of the cybercrime tools whose output log can be seen below. The table above shows the data collected from the malware. START GHOST] _. 80CA9F17 | 9F1701039000 |.

Malware

Malware Banking Software Encryption

Financial cyberthreats in 2022

SecureList

MARCH 29, 2023

It presents a continuation of our previous annual financial threat reports ( 2018 , 2019 , 2020 , 2021 ), which provide an overview of the latest trends across the threat landscape. To gain insights into the financial threat landscape, we analyzed data on malicious activities on the devices of Kaspersky security product users.

Banking

Banking Phishing Cryptocurrency Mobile

Secret Service Investigates Breach at U.S. Govt IT Contractor

Krebs on Security

SEPTEMBER 9, 2019

Secret Service is investigating a breach at a Virginia-based government technology contractor that saw access to several of its systems put up for sale in the cybercrime underground, KrebsOnSecurity has learned. In mid-August, a member of a popular Russian-language cybercrime forum offered to sell access to the internal network of a U.S.

Cybercrime

Cybercrime Government Data collection Internet

Who is the Network Access Broker ‘Wazawaka?’

Krebs on Security

JANUARY 11, 2022

This post examines some of the clues left behind by “ Wazawaka ,” the hacker handle chosen by a major access broker in the Russian-speaking cybercrime scene. Wazawaka has been a highly active member of multiple cybercrime forums over the past decade, but his favorite is the Russian-language community Exploit.

DDOS

DDOS Accountability Cybercrime Ransomware

APT trends report Q2 2024

SecureList

AUGUST 13, 2024

Other interesting discoveries We discovered a new modular malware framework, which we dubbed “Aniseed Vodka”, on a system in East Africa: the system was infected in 2018. The framework consists of a main module, a JSON-formatted configuration file, and a set of plug-ins.

Social Engineering

Social Engineering Malware Government Engineering

Indictment, Lawsuits Revive Trump-Alfa Bank Story

Krebs on Security

SEPTEMBER 23, 2021

In October 2016, media outlets reported that data collected by some of the world’s most renowned cybersecurity experts had identified frequent and unexplained communications between an email server used by the Trump Organization and Alfa Bank , one of Russia’s largest financial institutions. In 2018, U.S.

Banking

Banking DNS Internet Internet

Cyber Security Informer

New LightSpy spyware variant comes with enhanced data collection features targeting social media platforms

Over 120,000 Computers Compromised by Info Stealers Linked to Users of Cybercrime Forums

Trending Sources

Over 100,000 Hackers Exposed in Data from Top Cybercrime Forums

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

A Deep Dive Into the Residential Proxy Service ‘911’

Hackers targeted the US Census Bureau network, DHS report warns

Hundreds of C-level executives credentials available for $100 to $1500 per account

Power Generator in South Africa hit with DroxiDat and Cobalt Strike

New set of Pakistani banks’ card dumps goes on sale on the dark web

Payment data of thousands of customers of UK and US online stores could have been compromised

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Operation Night Fury: Group-IB helps take down a cybergang behind the infection of hundreds of websites all over the world

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Online market for counterfeit goods in Russia has reached $1,5 billion

Protonmail hacked …. a very strange scam attempt

Ransomware Revival: Troldesh becomes a leader by the number of attacks

Prilex: the pricey prickle credit card complex

Financial cyberthreats in 2022

Secret Service Investigates Breach at U.S. Govt IT Contractor

Who is the Network Access Broker ‘Wazawaka?’

APT trends report Q2 2024

Indictment, Lawsuits Revive Trump-Alfa Bank Story

Stay Connected