Malwarebytes

JUNE 8, 2021

A Latvian woman has been charged for their alleged role in a transnational cybercrime organisation. Money mules and spear phishing are thrown into the mix alongside social engineering and international theft of money, personal, and confidential information. What happened this week, you ask? Peeling back the TrickBot onion.

Cybercrime 124

Cybercrime Malware Banking Phishing 124

The Last Watchdog

JUNE 21, 2020

RaaS rollout 2015 – 2018. The GandCrab RaaS that appeared in early 2018 was one of the last high-profile threats targeting individuals on a large scale. It vanished from the radar in June 2018, when the ransomware plague took another sharp turn. Targeting enterprises Late 2018 – present day.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Malwarebytes

APRIL 19, 2022

These days, financial cybercrimes often involve Bitcoin and other cryptocurrencies. Since 2018, one of the Lazarus Group’s tactics has been to disguse AppleJeus malware as cryptocurrency trading platforms for both Windows and Mac. Educate users on social engineering attacks like spearphishing.

Cryptocurrency 139

Cryptocurrency Social Engineering Computers and Electronics Engineering 139

CSO Magazine

MARCH 29, 2023

However, another team that security researchers call APT43, Kimsuky, or Thallium has been carrying out cyberespionage and cybercrime operations at the behest of the North Korean government since at least 2018.

Social Engineering 108

Social Engineering Cybercrime Government Banking 108

Krebs on Security

JULY 22, 2020

The hacked forum database shows a user “tankska” registered on OGUsers back in July 2018, but only made one post asking about the price of an older Twitter account for sale. youth whose mom turned him in to the local police in February 2018 when she overheard him talking on the phone and pretending to be an AT&T employee.

Hacking 335

Hacking Accountability Scams Media 335

Hot for Security

APRIL 19, 2021

Notorious FIN7 gang stole payment card details from retailers around the world Cybercrime gang posed as penetration testing firm to recruit hackers. A key member of the FIN7 cybercrime gang – which is said to have caused over one billion dollars worth of damage around the world – has been sentenced to 10 years in jail.

Penetration Testing 144

Penetration Testing Retail Cybersecurity Social Engineering 144

Hot for Security

JUNE 25, 2021

In a typical attack, boobytrapped emails would be sent to targeted companies posing as legitimate communications through cunning use of social engineering. Earlier this year, another member of FIN7 was sentenced to 10 years in jail for his involvement in the cybercrime gang’s activities. million dollars.

Hacking 137

Hacking Penetration Testing Social Engineering Retail 137

CyberSecurity Insiders

APRIL 5, 2023

North Korea has established a hacking group named APT43 to fund its cybercrime activities, aimed at advancing Pyongyang’s geopolitical interests.

Hacking 105

Hacking Social Engineering Cryptocurrency Manufacturing 105

SecureWorld News

JULY 7, 2022

Marriott International has confirmed that it was victim to another data breach, its third since 2018, as an anonymous group of threat actors says it was able to successfully exfiltrate 20 GB of data, which includes credit card and other confidential information. Social engineering. Fool me three times and, well.

Data breaches 97

Data breaches Social Engineering Engineering CISO 97

Krebs on Security

NOVEMBER 6, 2018

In late September 2018, the REACT Task Force spearheaded an investigation that led to the arrest of two Missouri men — both in their early 20s — who are accused of conducting SIM swaps to steal $14 million from a cryptocurrency company based in San Jose, Calif. million customers.

Mobile 269

Mobile Cryptocurrency Accountability Passwords 269

Krebs on Security

OCTOBER 25, 2018

According to the most recent statistics from the FBI ‘s Internet Crime Complaint Center , the most costly form of cybercrime stems from a complex type of fraud known as the “ B usiness E mail C ompromise” or BEC scam. The FBI says BEC scams netted thieves more than $12 billion between 2013 and 2018.

Scams 228

Scams Accountability Media Banking 228

Security Affairs

OCTOBER 10, 2018

Security firm Group-IB has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 Group-IB, an international company that specializes in preventing cyber attacks, has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 million (2.96 billion rubles) of damage to Russia’s financial sector. million (2.96 million (2.96

Cyber Attacks 108

Cyber Attacks Banking Cyber threats Phishing 108

Malwarebytes

FEBRUARY 9, 2022

Other cybercrimes that specifically target accounts are spear phishing, social engineering attacks, and password sprays —basic password attack tactics that nation-states carry out against target companies and governments. For example, from January to December 2021, Microsoft detected a jaw-dropping 25.6

Authentication 90

Authentication Social Engineering Passwords Accountability 90

Security Affairs

AUGUST 13, 2020

The APT group RedCurl, discovered by Group-IB Threat Intelligence experts, has been active since at least 2018. The earliest known RedCurl attack dates back to May 2018. From Russia to Canada. Group-IB specialists contacted each of them. Currently, some of the companies affected continue to respond to the incidents.

Phishing 145

Phishing Social Engineering Banking Advertising 145

Security Affairs

JANUARY 28, 2023

The recent Hive infrastructure takedown as well as other major gangs dissolution such as Conti in 2022, is making room in the cybercrime business The Lockbit locker leaked a few months ago in the underground, is increasing its popularity and adoption among micro-criminal actors.

Ransomware 98

Ransomware Penetration Testing Firewall Social Engineering 98

Security Affairs

AUGUST 18, 2018

billion data records have been exposed in data breached in the first half of 2018. According to a new report titled “ Mid-Year 2018 Data Breach QuickView ” published by the cyber threat intelligence company Risk Based Security some 2.6. billion data records have been exposed in the first half of 2018. billion records.

Data breaches 75

Data breaches Social Engineering Cyber threats Phishing 75

Security Affairs

NOVEMBER 19, 2019

The second half of 2018 saw a drop in the number of malicious programs downloaded via browsers reaching its minimum at less than 5%, while in the first half of 2019 only every 19 th download was initiated via means other than email. In 2018, their number grew to 3.6%, while in H1 2019 saw an unusual rise of up to 27.8%.

Ransomware 99

Ransomware Antivirus Malware Banking 99

Security Affairs

OCTOBER 3, 2021

The TA544 group leverages phishing and social engineering techniques to lure victims into enabling macro included in weaponized documents. Since 2018, attackers have employed very sophisticated techniques in their attacks. Upon enabling the macro, the infection process will start. ” Martire told me.

Malware 111

Malware Banking Social Engineering Retail 111

Adam Levin

MARCH 16, 2020

“The scam is frequently carried out when a subject compromises legitimate business email accounts through social engineering or computer intrusion techniques to conduct unauthorized transfers of funds.” In September 2019, the Bureau announced that the losses from BEC scams had doubled between May 2018 and July 2019.

Scams 130

Scams Identity Theft Accountability Phishing 130

Security Affairs

MAY 24, 2019

When PhishLabs published findings from its most recent report , it revealed that phishing attacks in 2018 went up by 40.9%. Instead, they use social engineering to pose as a person or company that the victim knows and responds to without question. Security Affairs – Paycheck, cybercrime). Plus, in 83.9%

Phishing 111

Phishing Accountability Banking Social Engineering 111

SecureWorld News

NOVEMBER 4, 2021

In the digital world, bad actors are using social engineering methods to hack on behalf of the Iranian government, even threatening the 2020 U.S. The evolution of Iran's cybercrime objectives. Traditionally, these attacks put an emphasis on social engineering, finding innovative new ways to defraud end-users.

Social Engineering 98

Social Engineering Government DDOS Engineering 98

Security Affairs

NOVEMBER 6, 2018

According to Group-IB’s annual “ 2018 H i-Tech Crime Trends ” report, the estimated damage caused by targeted attacks on cryptocurrency exchanges in 2017 and the first three quarters of 2018 amounted to $877 million. Going forward, the list of exchanges where users are eligible for insurance is expected to expand.

Insurance 95

Insurance Cryptocurrency Cyber threats Marketing 95

Security Affairs

JULY 19, 2019

The Rubella Macro Builder crimeware kit appeared in the threat landscape on April 2018 and rapidly gained popularity in the cybercriminal underground. It allows crooks to generate a malicious payload for social-engineering spam campaigns, the author was offering it as a service for a three-month license of $120.

Malware 98

Malware Social Engineering Advertising Antivirus 98

Security Affairs

FEBRUARY 15, 2019

At the end of 2018, employees of the Moscow Department of Internal Affairs came across the trail of a group of telephone scammers who had long been involved in fraud, extracting large sums of money from Russian elderly people. SecurityAffairs – phone scammers, cybercrime). It’s rare for one of their victims to escape unscathed.”

Banking 108

Banking Scams Social Engineering Advertising 108

The Last Watchdog

MAY 11, 2020

These developments would have, over the next decade or so, steadily and materially reduced society’s general exposure to cybercrime and online privacy abuses. What’s more the FBI reports that Business Email Compromise (BEC) accounted for an estimated $26 billion in cybercrime-related losses over a three year period.

Computers and Electronics 113

Computers and Electronics Data privacy Encryption Media 113

SC Magazine

JULY 9, 2021

According to Sensity , the number of deepfake videos online has nearly doubled every six months since 2018, and more than 85,000 deepfake videos have been detected as of December 2020. Considering that there’s been a significant rise in global searches for “deepfake” since the beginning of 2021, this number has likely grown even higher now.

Social Engineering 77

Social Engineering Scams Technology Phishing 77

Hot for Security

JUNE 25, 2021

In a typical attack, boobytrapped emails would be sent to targeted companies posing as legitimate communications through cunning use of social engineering. Earlier this year, another member of FIN7 was sentenced to 10 years in jail for his involvement in the cybercrime gang’s activities. million dollars.

Hacking 52

Hacking Penetration Testing Social Engineering Retail 52

SecureList

APRIL 27, 2021

The group’s operations were exposed in 2018, showing that it was conducting surveillance attacks against individuals in the Middle East. Moreover, the malware mentioned by Google matched ThreatNeedle – malware that we have been tracking since 2018. Domestic Kitten is a threat group mainly known for its mobile backdoors.

Malware 145

Malware Government Spyware Social Engineering 145

Malwarebytes

MARCH 24, 2021

Although this company was incorporated in 2018, the scammers have been active since at least 2015 and used several different domain names and identities. Both individuals are registered as directors of a company in New Delhi called Lucro Soft pvt located at 14/28, F/F SUBHASH NAGAR NEW DELHI West Delhi DL 110027.

Software 145

Software Scams Passwords Banking 145

SecureList

NOVEMBER 1, 2022

Kaspersky first discovered this malware in 2018, together with the CVE-2018-8453 vulnerability. The malware has been used to compromise at least a dozen organizations, starting in April 2021 at the latest, with most still compromised in late June 2022. SoleDragon is complex malware used by the SilentBreak threat group. Final thoughts.

Malware 145

Malware Ransomware Spyware Encryption 145

SecureList

SEPTEMBER 28, 2022

As we noted in 2018, there are many similarities between their ATM and PoS versions. It is highly targeted and is usually delivered through social engineering, e.g., a target business may receive a call from a “technician” who insists that the company needs to update its PoS software. Initial infection vector.

Malware 139

Malware Banking Software Encryption 139

SecureList

MAY 27, 2022

The attackers study their victims carefully and use the information they find to frame social engineering attacks. Since 2018, we have been tracking Roaming Mantis – a threat actor that targets Android devices. When opened, this document eventually downloads a backdoor. Roaming Mantis reaches Europe. Lapsus$ group hacks Okta.

Phishing 133

Phishing Spyware Firmware Malware 133

Cisco Security

MARCH 4, 2021

Without knowing much about me, she was very responsive and shared trust, insights, and tips in the right direction with me that contributed to my success and towards winning the social engineering capture-the-flag contest at DEF CON. AlienVault was acquired by AT&T in 2018, and it was rebranded “AT&T Cybersecurity.”

Cybersecurity 138

Cybersecurity Engineering Technology Education 138

Veracode Security

NOVEMBER 19, 2020

credible information of an increased and imminent cybercrime threat to U.S. Ryuk, which first made a splash in 2018 as an offshoot of Hermes 2.1 Social engineering and phishing are combined with the exploitation of both known and application vulnerabilities until the attack gets the high-value data they are looking for???,

Healthcare 52

Healthcare Ransomware Phishing Social Engineering 52

Security Boulevard

JUNE 26, 2023

Unfortunately, the increasing reliance on digital systems and capabilities has also attracted an ever-growing number of malicious actors seeking to defraud businesses through phishing , social engineering , or ransomware attacks. The end result of these types of cyber attacks are often highly public and damaging data breaches.

Data breaches 52

Data breaches Healthcare Telecommunications Financial Services 52

eSecurity Planet

DECEMBER 3, 2021

Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. — Jack Daniel (@jack_daniel) October 10, 2018. jaysonstreet) March 3, 2018. — Kevin Mitnick (@kevinmitnick) January 20, 2018. Brian Krebs | @briankrebs.

Accountability 139

Accountability Cybersecurity Penetration Testing InfoSec 139

CyberSecurity Insiders

OCTOBER 14, 2021

This gang of cybercriminals targets individuals within an organization with social engineering tactics designed to fool them into opening a document from a ZIP file attached to an email. How do hackers use social engineering? Social engineering schemes range from covert to obvious. OnePercent Group attacks.

Ransomware 133

Ransomware Social Engineering Engineering Phishing 133