Krebs on Security

DECEMBER 16, 2021

A 24-year-old New York man who bragged about helping to steal more than $20 million worth of cryptocurrency from a technology executive has pleaded guilty to conspiracy to commit wire fraud. In May 2019, the jury awarded Terpin a $75.8 million judgment against Truglia. Reached for comment, Terpin said his assailant got off easy.

Cryptocurrency 363

Cryptocurrency Mobile Accountability Scams 363

Adam Levin

JANUARY 2, 2019

2019 will be the year consumers start thinking more about cyber hygiene , and the year Congress becomes more proactive in the areas of privacy and cybersecurity. SIM-jacking or SIM swap fraud will increase: This sophisticated attack allows a hacker to steal your cell phone number and with that, any account associated with it.

Cybersecurity 157

Cybersecurity Identity Theft Passwords Password Management 157

Krebs on Security

AUGUST 25, 2021

In a lawsuit filed in Colorado, Schober said the sudden disappearance of his funds in January 2018 prompted him to spend more than $10,000 hiring experts in the field of tracing cryptocurrency transactions. universities). When Schober went to move approximately 16.4 When Schober went to move approximately 16.4 Image: Complaint, Schober v.

Cryptocurrency 361

Cryptocurrency Malware Mobile Accountability 361

Krebs on Security

NOVEMBER 3, 2020

Two young men from the eastern United States have been hit with identity theft and conspiracy charges for allegedly stealing bitcoin and social media accounts by tricking employees at wireless phone companies into giving away credentials needed to remotely access and modify customer account information. Prosecutors say Jordan K.

Scams 342

Scams Wireless Identity Theft Mobile 342

Krebs on Security

JANUARY 8, 2022

which was renamed to NortonLifeLock in 2019. For example, it doesn’t specify how much NortonLifeLock gets out of the deal (NortonLifeLock keeps 15 percent of any cryptocurrency mined by Norton Crypto). Even with compatible hardware, mining cryptocurrencies on your own can be less rewarding. -based NortonLifeLock Inc.,

Antivirus 362

Antivirus Cryptocurrency Identity Theft Software 362

Security Affairs

FEBRUARY 28, 2021

The New Zealand-based cryptocurrency exchange Cryptopia suffered a new cyber heist while it is in liquidation due to a 2019 security breach. In 2019, the New Zealand-based cryptocurrency exchange Cryptopia discloses a cyber attack that took place on January 14th. According to the local news site Stuff , a creditor, U.S.

Cryptocurrency 120

Cryptocurrency Hacking Cyber Attacks Accountability 120

Security Affairs

MARCH 30, 2019

A new cyber heist made the headlines, the victim is Bithumb, the South Korea-based cryptocurrency exchange and hackers stole $19 Million. Hackers have stolen nearly $19 million worth of cryptocurrency from Bithumb, the South Korea-based cryptocurrency exchange. million) worth of cryptocurrency between June 19 and June 20.

Cryptocurrency 111

Cryptocurrency Hacking Advertising Accountability 111

Security Affairs

MARCH 3, 2020

The Department of Justice has charged the two Chinese nationals for laundering cryptocurrency for North Korea-linked APT groups. for helping North Korea-linked hackers in laundering cryptocurrency. The cryptocurrency have been stolen by the APT groups from two cryptocurrency exchanges. and Li Jiadong (???),

Cryptocurrency 140

Cryptocurrency Banking Hacking Accountability 140

Krebs on Security

OCTOBER 9, 2024

The parents of a 19-year-old Connecticut honors student accused of taking part in a $243 million cryptocurrency heist in August were carjacked a week later — while out house-hunting in a brand new Lamborghini. ’s son was loaded with cryptocurrency? ” What made the Miami men so convinced R.C.

Cryptocurrency 289

Cryptocurrency Social Engineering Accountability Mobile 289

Krebs on Security

MARCH 26, 2024

Assuming the user manages not to fat-finger the wrong button on the umpteenth password reset request, the scammers will then call the victim while spoofing Apple support in the caller ID, saying the user’s account is under attack and that Apple support needs to “verify” a one-time code. ” Ken said.

Passwords 359

Passwords Accountability Engineering Phishing 359

Krebs on Security

JUNE 27, 2023

But O’Connor also pleaded guilty in a separate investigation involving a years-long spree of cyberstalking and cryptocurrency theft enabled by “ SIM swapping ,” a crime wherein fraudsters trick a mobile provider into diverting a customer’s phone calls and text messages to a device they control.

Cryptocurrency 273

Cryptocurrency Accountability Mobile Hacking 273

Security Affairs

FEBRUARY 1, 2024

Daniel James Junk (22) of Portland was sentenced to 72 months in federal prison for his role in a scheme that resulted in the theft of millions of dollars of cryptocurrency using a SIM swapping. Once hijacked a SIM, the attacker can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Cryptocurrency 138

Cryptocurrency Computers and Electronics Accountability Scams 138

Krebs on Security

NOVEMBER 5, 2024

At the end of 2023, malicious hackers learned that many large companies had uploaded huge volumes of sensitive customer data to Snowflake accounts that were protected with little more than a username and password (no multi-factor authentication required). “The rest is just ransom.” banks, ISPs, and mobile phone providers.

Cybercrime 277

Cybercrime Mobile Media Hacking 277

Security Affairs

OCTOBER 20, 2021

Financially motivated threat actors are using Cookie Theft malware in phishing attacks against YouTube creators since late 2019. Once hijacked the channel, attackers either sell it to the highest bidder or employ it in cryptocurrency scam scheme. Hijacked channels ranged from $3 USD to $4,000 USD depending on the number of subscribers.

Accountability 145

Accountability Malware Phishing Social Engineering 145

Krebs on Security

JULY 26, 2021

02, 2020, pitching him as a trustworthy cryptocurrency expert and advisor. All of those come into play in the case of the Snapchat account of actor Bella Thorne , who was allegedly targeted by PlugwalkJoe and associates in June 2019. In this case, the SIM swap was done to wrest control over Thorne’s Snapchat account.

Media 351

Media Hacking Accountability Scams 351

Krebs on Security

APRIL 4, 2024

The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers. co showing the site did indeed swap out any cryptocurrency addresses.

Phishing 275

Phishing Cryptocurrency DDOS Internet 275

Krebs on Security

MAY 19, 2020

In January 2019, dozens of media outlets raised the alarm about a new “megabreach” involving the release of some 773 million stolen usernames and passwords that was breathlessly labeled “the largest collection of stolen data in history.” For more on this dynamic, please see The Value of a Hacked Email Account.

Passwords 362

Passwords Accountability Hacking Password Management 362

Security Affairs

JUNE 27, 2019

Another cryptocurrency exchange announced to have suffered a theft, this time is the victim is the Singapore-based Bitrue. It has happened again, crooks stole funds from another cryptocurrency exchange, this time the victim is the Singapore-based Bitrue. — Bitrue (@BitrueOfficial) June 27, 2019. Pierluigi Paganini.

Cryptocurrency 103

Cryptocurrency Advertising Hacking Insurance 103

Krebs on Security

MAY 13, 2024

According to Constella, this email address was used in 2010 to register an account for a Dmitry Yurievich Khoroshev from Voronezh, Russia at the hosting provider firstvds.ru. NeroWolfe seems to have abandoned all of his forum accounts sometime in 2016. DomainTools reports that stairwell.ru Image: Shutterstock. Image: Ke-la.com.

Ransomware 300

Ransomware Cybercrime Accountability Malware 300

Krebs on Security

SEPTEMBER 26, 2024

The government also indicted and sanctioned a top Russian cybercriminal known as Taleon , whose cryptocurrency exchange Cryptex has evolved into one of Russia’s most active money laundering networks. Sergey “Taleon” Ivanov (right) in 2019 in his helicopter with the woman he lives with, flying over a lake north of St.

Cryptocurrency 295

Cryptocurrency Cybercrime Retail Government 295

The Hacker News

OCTOBER 21, 2021

Since at least late 2019, a network of hackers-for-hire have been hijacking the channels of YouTube creators, luring them with bogus collaboration opportunities to broadcast cryptocurrency scams or sell the accounts to the highest bidder.

Accountability 106

Accountability Cryptocurrency Scams Phishing 106

Krebs on Security

OCTOBER 31, 2022

Attorney for the Western District of Texas unsealed an indictment last week that named Mark Sokolvsky as the core developer for the Raccoon Infostealer business, which was marketed on several Russian-language cybercrime forums beginning in 2019. A selfie pulled from Mark Sokolovsky’s iCloud account. According to the U.S.

Malware 340

Malware Identity Theft Cybercrime Accountability 340

Krebs on Security

DECEMBER 19, 2022

conspired to hack into Yahoo email accounts belonging to victims in the United States. From there, the two allegedly would check how many of those Yahoo accounts were associated with Ring accounts, and then target people who used the same password for both accounts. . “ChumLul,” 22, of Racine, Wisc.,

Hacking 329

Hacking Passwords Media Accountability 329

Security Affairs

JULY 7, 2019

Yesterday, July 6, 2019, hackers breached the GitHub account of Canonical Ltd., On July 6, 2019, hackers have breached the GitHub account of Canonical Ltd., Hackers at least created 11 new GitHub repositories in compromised Canonical account. the company behind the Ubuntu Linux distribution. Pierluigi Paganini.

Accountability 111

Accountability Advertising Cryptocurrency Hacking 111

Security Affairs

NOVEMBER 22, 2022

Two Estonian citizens were arrested in Tallinn for allegedly running a $575 million cryptocurrency fraud scheme. Two Estonian nationals were arrested in Tallinn, Estonia, after being indicted in the US for running a fraudulent cryptocurrency Ponzi scheme that caused more than $575 million in losses. Pierluigi Paganini.

Cryptocurrency 98

Cryptocurrency Banking Marketing Hacking 98

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers. A single bitcoin is trading at around $45,000.

Cryptocurrency 292

Cryptocurrency Cybercrime Computers and Electronics Scams 292

Krebs on Security

DECEMBER 8, 2021

There is a now-dormant Myspace account for a Matthew Philbert from Orleans, a suburb of Ottawa, Ontario. The information tied to the Myspace account matches the age and town of the defendant. The Myspace account was registered under the nickname “ Darkcloudowner ,” and to the email address dark_cl0ud6@hotmail.com.

Cybercrime 333

Cybercrime Ransomware Accountability Advertising 333

Krebs on Security

JULY 22, 2020

As first reported here on July 16, prior to bitcoin scam messages being blasted out from such high-profile Twitter accounts @barackobama, @joebiden, @elonmusk and @billgates, several highly desirable short-character Twitter account names changed hands, including @L, @6 and @W. They would take a cut from each transaction.”

Hacking 331

Hacking Accountability Scams Media 331

Security Affairs

AUGUST 30, 2020

US DoJ filed a civil forfeiture complaint to seize 280 Bitcoin (BTC) and Ethereum (ETH) accounts containing funds allegedly stolen by North Korea-linked hackers. The complaint did not name the hacked exchanges, it only reports two attacks that took place in July 1, 2019, and September 25, 2019.

Cryptocurrency 128

Cryptocurrency Hacking Advertising Accountability 128

Krebs on Security

FEBRUARY 27, 2019

com , a cryptocurrency mining service that has been heavily abused to force hacked Web sites to mine virtual currency. Once a key was invalidated, Coinhive would simply cut out the middleman and proceed to keep 100 percent of the cryptocurrency mined by sites tied to that account from then on.

Cryptocurrency 222

Cryptocurrency Hacking Accountability Internet 222

Security Boulevard

FEBRUARY 12, 2021

A SIM, or Subscriber Identity Module, is the little chip that goes inside a phone and ties that phone to a particular account at a particular mobile provider. If the phone provider believes you have a new phone, they can tell their system, this is the new SIM number that should be linked to your account. Sorry, couldn't resist!)

Cryptocurrency 119

Cryptocurrency Accountability Scams Social Engineering 119

Security Affairs

DECEMBER 20, 2024

The Raccoon stealer was first spotted in April 2019, it was designed to steal victims credit card data, email credentials, cryptocurrency wallets, and other sensitive data. My office will not stop in its efforts to hold cybercriminals accountable for their misdeeds.” in the stolen data.

Cryptocurrency 63

Cryptocurrency Cybercrime Identity Theft Malware 63

Security Affairs

AUGUST 18, 2020

Ukrainian authorities arrested the members of a cybercrime gang who ran 20 cryptocurrency exchanges involved in money laundering. Police in Ukraine announced the arrest of the members of a cybercrime gang composed of three individuals who ran 20 cryptocurrency exchanges used in money laundering activities.

Cryptocurrency 140

Cryptocurrency Computers and Electronics Cybercrime Digital transformation 140

Krebs on Security

NOVEMBER 9, 2018

In May 2018, ZDNet ran a story about the discovery of a glaring vulnerability in the Web site for wireless provider T-Mobile that let anyone look up customer home addresses and account PINs. The Twitter account @phobia, a.k.a. Ryan Stevenson. Likewise, AT&T has recognized Stevenson for reporting security holes in its services.

Mobile 228

Mobile Accountability Cryptocurrency Media 228

Krebs on Security

JULY 8, 2019

The crooks behind an affiliate program that paid cybercriminals to install the destructive and wildly successful GandCrab ransomware strain announced on May 31, 2019 they were terminating the program after allegedly having earned more than $2 billion in extortion payouts from victims. The GandCrab identity on Exploit[.]in HEAVY METALL.

Ransomware 277

Ransomware Accountability Cybercrime Passwords 277

Krebs on Security

MARCH 14, 2023

Both are alleged to be part of a larger criminal organization that specializes in using fake emergency data requests from compromised police and government email accounts to publicly threaten and extort their victims. Drug Enforcement Agency (DEA) online portal that taps into 16 different federal law enforcement databases.

Hacking 302

Hacking Government Media Accountability 302

SecureList

JUNE 5, 2023

Satacom downloader, also known as LegionLoader, is a renowned malware family that emerged in 2019. The main purpose of the malware that is dropped by the Satacom downloader is to steal BTC from the victim’s account by performing web injections into targeted cryptocurrency websites.

Cryptocurrency 113

Cryptocurrency DNS Malware Encryption 113