Security Affairs

FEBRUARY 10, 2025

The cybercrime group XE Group exploited a VeraCore zero-day to deploy reverse shells, web shells in recent attacks. A recent investigation by researchers from Intezer and Solis Security shed light on the recent operations of the XE Group. ” reads the analysis published by Intezer.

Manufacturing 110

Manufacturing Cybercrime Passwords Authentication 110

Krebs on Security

JUNE 22, 2022

.” The DOJ’s statement doesn’t mention that RSOCKS has been in operation since 2014, when access to the web store for the botnet was first advertised on multiple Russian-language cybercrime forums. A copy of the passport for Denis Kloster, as posted to his Vkontakte page in 2019. info , allproxy[.]info

Advertising 317

Advertising Cybercrime System Administration Hacking 317

Security Affairs

JANUARY 8, 2024

19 individuals worldwide were charged in a transnational cybercrime investigation of the now defunct xDedic marketplace. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, cybercrime)

Cybercrime 132

Cybercrime Identity Theft Government Hacking 132

Krebs on Security

JUNE 18, 2021

In May 2019, KrebsOnSecurity broke the news that the website of mortgage settlement giant First American Financial Corp. Securities and Exchange Commission settled its investigation into the matter after the Fortune 500 company agreed to pay a paltry penalty of less than $500,000. This week, the U.S.

Insurance 330

Insurance Risk Financial Services CISO 330

Krebs on Security

SEPTEMBER 24, 2022

At a court hearing in Bulgaria this month, the accused hacker requested and was granted extradition to the United States, reportedly telling the judge, “America is looking for me because I have enormous information and they need it.” ” A copy of the passport for Denis Kloster, as posted to his Vkontakte page in 2019.

Cybercrime 251

Cybercrime Data breaches Malware Ransomware 251

Security Affairs

JUNE 17, 2021

UNC2465 cybercrime group that is affiliated with the Darkside ransomware gang has infected with malware the website of a CCTV camera vendor. ” The SMOKEDHAM backdoor was associated by FireEye to the activity of the UNC2465 group that dates back to at least April 2019 and is considered a DARKSIDE RaaS affiliate.

Cybercrime 111

Cybercrime Ransomware Software Antivirus 111

Security Affairs

FEBRUARY 24, 2020

The Raccoon stealer was first spotted in April 2019, it was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data. The post Raccoon Malware, a success case in the cybercrime ecosystem appeared first on Security Affairs. Pierluigi Paganini.

Cybercrime 130

Cybercrime Malware Cryptocurrency Advertising 130

Security Affairs

JUNE 8, 2022

“Between December 2018 and June 2019, SSNDOB sent over $100,000 worth of Bitcoin to Joker’s Stash, suggesting the two markets may have had some relationship to one another, including possibly shared ownership.” The post US dismantled and seized SSNDOB cybercrime marketplace appeared first on Security Affairs.

Cybercrime 98

Cybercrime Cryptocurrency Marketing Advertising 98

Security Affairs

NOVEMBER 1, 2020

The Maze ransomware operators are shutting down their operations for more than one year the appeared on the threat landscape in May 2019. The Maze cybercrime gang is shutting down its operations, it was considered one of the most prominent and active ransomware crew since it began operating in May 2019.

Ransomware 145

Ransomware Cybercrime Advertising Software 145

Security Affairs

OCTOBER 27, 2024

Vasinskyi is a REvil ransomware affiliate since at least March 1st, 2019. Vasinskyi (aka Profcomserv, Rabotnik, Rabotnik_New, Yarik45, Yaraslav2468, and Affiliate 22) was arrested on October 8, 2021, while he was trying to enter Poland. Vasinskyi was extradited to the U.S. in March 2022.

Ransomware 142

Ransomware Hacking Malware Cybercrime 142

Security Boulevard

MARCH 18, 2023

Dear blog readers, Did you already grab a copy of my 2019-2023 " Dancho Danchev's Blog - Mind Streams of Information Security Knowledge " Ebook which is 1.7GB compilation for free? The post Who Wants to Fuel Independent and High Quality OSINT/Cybercrime and Threat Intelligence Research? Stay tuned!

Cybercrime 96

Cybercrime Cyber threats Information Security 96

Security Affairs

DECEMBER 20, 2024

The man was held in the Netherlands, and he was charged for his alleged role in the international cybercrime operation known as Raccoon Infostealer. The Raccoon stealer was first spotted in April 2019, it was designed to steal victims credit card data, email credentials, cryptocurrency wallets, and other sensitive data. .

Cryptocurrency 62

Cryptocurrency Cybercrime Identity Theft Malware 62

Security Affairs

OCTOBER 21, 2021

Evil Corp cybercrime gang is using a new ransomware called Macaw Locker to evade US sanctions that prevent victims from paying the ransom. The Evil Corp cybercrime group (aka the Dridex gang Indrik Spider , the Dridex gang, and TA505 ) has been active in cybercrime activities since 2007. In 2019, the U.S.

Ransomware 142

Ransomware Cybercrime Banking Encryption 142

Security Affairs

FEBRUARY 28, 2020

An interesting report published by RiskIQ on 2019 Mobile App Threat Landscape, lists the most dangerous mobile app store online. Mobile users downloaded over 200 billion apps in 2019 and the overall expense in app stores worldwide has been estimated in more than $120 billion. ” reads the report published by RiskIQ.

Mobile 143

Mobile Advertising Cybercrime Phishing 143

Security Affairs

AUGUST 11, 2020

Avaddon ransomware operators, like other cybercrime groups, decided to launch a data leak site where publish data of victims who refuse to pay a ransom demand. The first group to adopt this strategy was the Maze ransomware gang in December 2019, since then other crews adopted the same stratefy, including REvil , Nefilim , and Netwalker.

Ransomware 144

Ransomware Advertising Cybercrime Hacking 144

Security Affairs

AUGUST 29, 2022

The post Nitrokod crypto miner infected systems across 11 countries since 2019 appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, Nitrokod ).

Malware 98

Malware Software Internet Internet 98

Security Affairs

AUGUST 18, 2020

Ukrainian authorities arrested the members of a cybercrime gang who ran 20 cryptocurrency exchanges involved in money laundering. Police in Ukraine announced the arrest of the members of a cybercrime gang composed of three individuals who ran 20 cryptocurrency exchanges used in money laundering activities.

Cryptocurrency 140

Cryptocurrency Computers and Electronics Cybercrime Digital transformation 140

Security Affairs

MARCH 13, 2020

European authorities dismantled two cybercrime organizations responsible for stealing millions through SIM hijacking. European authorities managed to dismantle the operations of two cybercrime gangs responsible for stealing millions through SIM hijacking. SecurityAffairs – SIM Hijacking, cybercrime). million). .

Banking 144

Banking Cybercrime Mobile Accountability 144

Security Affairs

JUNE 7, 2022

Mandiant researchers associate multiple LockBit ransomware attacks with the notorious Evil Corp Cybercrime Group. The researchers also noticed that the group shares numerous overlaps with the cybercrime gang Evil Corp. Treasury in December 2019. ” reads the analysis published by Mandiant.

Ransomware 145

Ransomware Cybercrime Malware Hacking 145

Security Affairs

OCTOBER 27, 2021

The Evil Corp cybercrime group (aka the Dridex gang Indrik Spider , the Dridex gang, and TA505 ) has been active in cybercrime activities since 2007. In 2019, the U.S. Evil Corp has recently launched a new ransomware called Macaw Locker to evade US sanctions that prevent victims from making ransom payments.

Ransomware 139

Ransomware Banking Cybercrime Hacking 139

Security Affairs

JANUARY 2, 2022

In a classified report cited by Chosun, the US National Intelligence Service (DNI) found that North Korea was financing its ‘priority policies’, such as nuclear and missile development, through cybercrime. “Citing the U.S. million in cryptocurrency through this program. 380 billion.

Cryptocurrency 142

Cryptocurrency Cybercrime Media Government 142

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). The man was arrested in Bangkok, Thailand in November 2019 at the request of U.S. in May 2020.

Cybercrime 131

Cybercrime Hacking Software Phishing 131

Security Affairs

APRIL 10, 2020

“Lockheed Martin has made and continues to make significant investments in cybersecurity, and uses industry-leading information security practices to protect sensitive information. Other companies impacted by the security incident did not provide any official communication.

Manufacturing 131

Manufacturing Ransomware Advertising Cybercrime 131

Security Affairs

NOVEMBER 22, 2020

The international cooperation activities were carried out through the EMPACT Cybercrime Attacks Against Information System program and with the support of the Join Action Crime Task Force (J-CAT). ” The Romanian duo had been active in the cybercrime underground at least since 2014 when they launched CyberSeal.

Malware 142

Malware Antivirus Cybercrime Software 142

Security Affairs

NOVEMBER 8, 2021

Clop ransomware gang has been active since February 2019, it targeted many organizations and universities over the years. The post Operation Cyclone targets Clop Ransomware affiliates appeared first on Security Affairs. ” reads the press release published by Interpol. Follow me on Twitter: @securityaffairs and Facebook.

Ransomware 142

Ransomware Cybercrime Malware Hacking 142

Security Affairs

JULY 13, 2024

In October 2022, Swiss police arrested Penchukov in Geneva, also known as Tank, which is one of the leaders of the JabberZeus cybercrime group. In 2012, Vyacheslav Igorevich Penchukov was accused of being a member of a cybercrime gang known as JabberZeus crew. Since May 2019, Penchukov had a prominent role in the Zeus operation.

Cybercrime 127

Cybercrime Banking Malware Hacking 127

Security Affairs

MAY 26, 2021

Last week, French authorities have seized the dark web marketplace Le Monde Parallèle, it is another success of national police in the fight against cybercrime. French authorities seized the dark web marketplace Le Monde Parallèle, the operation is another success of national police in the fight against cybercrime activity in the dark web.

Cybercrime 145

Cybercrime Cryptocurrency Banking Mobile 145

Security Affairs

DECEMBER 21, 2024

The NetWalker ransomware group has been active since 2019, it was operating using the Ransomware-as-a-Service (RaaS) model. .” Romanian authorities arrested Daniel Hulea on July 11, 2023, in Cluj, and extradited him to the U.S. under the U.S.-Romania Romania extradition treaty. million ransom to recover its files.

Ransomware 107

Ransomware Healthcare Government Cryptocurrency 107

Security Affairs

SEPTEMBER 22, 2020

This operation follows the takedown in May of last year of Wall Street Market that took place in May 2019. The Wall Street Market marketplace was considered one of the most important points of aggregation in the cybercrime underground for trading in cocaine, heroin, cannabis and amphetamines as well as digital goods (i.e.

Cybercrime 141

Cybercrime Advertising Marketing Internet 141

Security Affairs

FEBRUARY 16, 2020

Iran-linked attackers targeted Pulse Secure, Fortinet, Palo Alto Networks, and Citrix VPNs to hack into large companies as part of the Fox Kitten Campaign. During the last quarter of 2019, experts from security firm ClearSky uncovered a hacking campaign tracked as Fox Kitten Campaign that is being conducted in the last three years.

VPN 145

VPN Advertising Telecommunications Hacking 145

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. ” reads the report published by Crowdstrike.

Hacking 129

Hacking VPN Advertising Government 129

Security Affairs

SEPTEMBER 17, 2022

“We’re pleased to announce the availability of a new decryptor for LockerGoga, a strain of ransomware that rose to fame in 2019 with the attack of the Norsk Hydro company.” ” reads the announcement published by the security firm. ” continues the announcement. ” continues the announcement.

Ransomware 136

Ransomware Encryption Backups Cybercrime 136

Security Affairs

JULY 14, 2020

The MGM Resorts 2019 data breach is much larger than initially thought, a hacker is offering for sale details of 142 million MGM hotel guests on the dark web. Bad news for the guests of the MGM Resorts, the 2019 data breach suffered by the company is much larger than initially reported. ” reported ZDNet.

Data breaches 145

Data breaches Advertising Hacking Cybercrime 145

Security Affairs

FEBRUARY 16, 2020

OT attacks increased by over 2000 percent in 2019, IBM reports. Safer internet day – Cybercrime facts Infographic. Reading the 2019 Internet Crime Complaint Center (IC3) report. billion malware installs from Third-party stores in 2019. Adobe addresses 42 flaws in its five products. Fix it now!

Cyber Attacks 128

Cyber Attacks Banking Advertising Internet 128

Security Affairs

MARCH 29, 2020

” reads the post published by “This, in turn, would result in the broader proliferation among multiple cybercrime groups, and an eventual surge in attacks.” The Dharma ransomware received numerous updates over the years, in 2019 a new piece of ransomware subbed Phobos emerged online. ” concluded ZDNet.

Ransomware 143

Ransomware Hacking Advertising Malware 143

Security Affairs

OCTOBER 29, 2020

The government agencies receive information about imminent attacks, threat actors are using the TrickBot botnet to deliver the infamous ransomware to the infected systems. “CISA, FBI, and HHS have credible information of an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers.

Healthcare 145

Healthcare Ransomware Cybercrime Advertising 145

Security Affairs

OCTOBER 13, 2021

In October 2019, a joint operation conducted by the Netherlands’ National Criminal Investigation Department and National Cyber Security Center allowed to track down and seize five servers that were composing a cybercrime underground bulletproof hosting service. SecurityAffairs – hacking, cybercrime). and Overheid.nl

DDOS 139

DDOS Cybercrime IoT Hacking 139