Security Affairs

MARCH 31, 2025

Morphing Meerkat phishing kits exploit DNS MX records to deliver spoofed login pages, targeting over 100 brands. Threat actors are exploiting DNS techniques to enhance phishing attacks, using MX records to dynamically serve spoofed login pages. “We discovered cyber campaigns that used the phishing kits as early as January 2020.

DNS 79

DNS Phishing Banking Passwords 79

Krebs on Security

APRIL 4, 2024

The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers. A screenshot of the phishing domain privatemessage dot net.

Phishing 271

Phishing Cryptocurrency DDOS Internet 271

Krebs on Security

AUGUST 17, 2023

You’ve probably never heard of “ 16Shop ,” but there’s a good chance someone using it has tried to phish you. A 16Shop phishing page spoofing Apple and targeting Japanese users. Image: Akamai.com. The INTERPOL statement says the platform sold hacking tools to compromise more than 70,000 users in 43 countries.

Phishing 229

Phishing Passwords Internet Internet 229

Krebs on Security

JUNE 15, 2024

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider , a cybercrime group suspected of hacking into Twilio , LastPass , DoorDash , Mailchimp , and nearly 130 other organizations over the past two years. A Scattered Spider phishing lure sent to Twilio employees.

Hacking 333

Hacking Cybercrime Phishing Passwords 333

SC Magazine

MARCH 18, 2021

The FBI’s Internet Crime Complaint Center (IC3) released its annual report Wednesday, showing a sharp increase in cybercrime, both in quantity and cost in 2020. One was the emergence of COVID-19 themed phishing targeting both organizations and individuals. The number of reported attacks also rose in 2020, up 20% from 2019.

Scams 126

Scams Cybercrime Accountability Ransomware 126

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. Secure web- phishing. In the first six months of 2020, CERT-GIB blocked a total of 9 304 phishing web resources, which is an increase of 9 percent compared to the previous year.

Phishing 136

Phishing Ransomware Spyware Banking 136

Security Affairs

AUGUST 14, 2020

The Threat Report Portugal: Q2 2020 compiles data collected on the malicious campaigns that occurred from April to Jun, Q2, of 2020. The Threat Report Portugal: Q2 2020 compiles data collected on the malicious campaigns that occurred from April to Jun, Q2, of 2020. Phishing and Malware Q2 2020.

Threat Reports 145

Threat Reports Phishing Banking Malware 145

Krebs on Security

NOVEMBER 22, 2021

“According to this actor, he had originally intended to send his targets—all senior-level executives—phishing emails to compromise their accounts, but after that was unsuccessful, he pivoted to this ransomware pretext,” Abnormal’s Crane Hassold wrote. Source: FBI/IC3 2020 Internet Crime Report.

Scams 321

Scams Cybercrime Banking Identity Theft 321

Security Affairs

MARCH 22, 2020

In this post, I decided to share the details of the Coronavirus-themed attacks launched from March 15 to March 21, 2020. March 21, 2020 – New Coronavirus-themed attack uses fake WHO chief emails. Day after day the number of COVID19-themed attacks increases, fraudsters have launched a phishing campaign to deliver on users’ PC.

Advertising 140

Advertising Cybercrime Scams Phishing 140

Malwarebytes

JUNE 3, 2021

Since the initial lockdown, we have seen the rise of certain types of cybercrime, including scams and fraud campaigns that either bank on the global COVID-19 pandemic or take advantage of potential victims that adhere to work-from-home measures. Future cybercrimes in the UK and beyond. Organized crime: Online fraud.

Cybercrime 111

Cybercrime Scams Ransomware Phishing 111

Krebs on Security

DECEMBER 29, 2020

With the ongoing disruption to life and livelihood wrought by the Covid-19 pandemic, 2020 has been a fairly horrid year by most accounts. In almost every category — from epic breaches and ransomware to cybercrime justice and increasingly aggressive phishing and social engineering scams — 2020 was a year that truly went to eleven.

Scams 308

Scams Social Engineering Cybercrime Advertising 308

Security Boulevard

AUGUST 23, 2021

Events like the 2020 U.S. The post AI-Fueled Deep Fakes Signal New Era of Cybercrime appeared first on Security Boulevard. The Russians routinely use disinformation tactics to destabilize democracies.

Cybercrime 145

Cybercrime Government Social Engineering Engineering 145

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Cybercrime 145

Cybercrime Education Accountability Phishing 145

Krebs on Security

JULY 29, 2021

TARGETED PHISHING. But the more insidious threat with hacked databases comes not from password re-use but from targeted phishing activity in the early days of a breach, when relatively few ne’er-do-wells have got their hands on a hot new hacked database. The targeted phishing message that went out to classicfootballshirts.co.uk

Passwords 363

Passwords Password Management Phishing Scams 363

Security Affairs

APRIL 5, 2020

In this post, I decided to share the details of the Coronavirus-themed attacks launched from March 29 to April 04, 2020. March 30, 2020 – Your colleague was infected with COVID19, this is the latest phishing lure. Coronavirus-themed attacks March 15 – March 21, 2020. Below a list of attacks detected this week.

Advertising 125

Advertising Malware Phishing Cybercrime 125

Security Affairs

APRIL 19, 2020

This post includes the details of the Coronavirus-themed attacks launched from April 12 to April 18, 2020. PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. Coronavirus-themed attacks April 05 – April 11, 2020. adrotate banner=”9″].

Scams 140

Scams Malware Phishing Surveillance 140

SecureList

AUGUST 23, 2021

billion USD in 2021, which is slightly less than the total revenue in 2020 but still significantly above the pre-pandemic figures. In this report, we cover PC and mobile threats as well as various phishing schemes that capitalize on popular games. Pandemic-related statistics cover the period of January 2020 through June 2021.

Mobile 141

Mobile Adware Malware Phishing 141

Hot for Security

APRIL 5, 2021

But regular consumers are equally affected by cybercrime, directly or indirectly. Bitdefender this week has published its annual Consumer Threat Landscape Report for 2020 underscoring some of the most prevalent cyber threats targeting regular users today. In the ransomware department, 2020 saw a 485% year-over-year increase.

Cybercrime 116

Cybercrime Ransomware Cyber threats Malware 116

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020.

Ransomware 134

Ransomware VPN Cybercrime Advertising 134

Security Affairs

NOVEMBER 11, 2023

The Royal Malaysian Police announced the seizure of the notorious BulletProftLink phishing-as-a-service (PhaaS) platform. The Royal Malaysian Police announced to have dismantled the notorious BulletProftLink phishing-as-a-service (PhaaS) platform. The operation was first documented on OSINT Fans by Gabor Szathmari in October 2020.

Phishing 142

Phishing Cybercrime Advertising Hacking 142

Security Affairs

MARCH 18, 2021

The FBI’s Internet Crime Complaint Center has released its annual report, the 2020 Internet Crime Report , which includes data from 791,790 complaints of suspected cybercrimes. Data that emerged from the report are worrisome, in 2020 the reported losses exceeded $4.2 ” reads 2020 Internet Crime Report.

Internet 119

Internet Internet Scams Identity Theft 119

Krebs on Security

JANUARY 30, 2024

” Group-IB dubbed the gang by a different name — 0ktapus — which was a nod to how the criminal group phished employees for credentials. The missives asked users to click a link and log in at a phishing page that mimicked their employer’s Okta authentication page. On July 28 and again on Aug. According to an Aug.

Social Engineering 356

Social Engineering Mobile Passwords Cybercrime 356

Krebs on Security

JUNE 29, 2023

In March 2020, the DOJ unsealed two criminal hacking indictments against Kislitsin, who was then head of security at Group-IB , a cybersecurity company that was founded in Russia in 2003 and operated there for more than a decade before relocating to Singapore. Nikulin is currently serving a seven-year sentence in the U.S. prison system.

Cybersecurity 298

Cybersecurity Cybercrime Hacking Government 298

Security Affairs

MARCH 28, 2025

Grandoreiro Banking Trojan resurfaces, targeting users in Latin America and Europe in new phishing campaigns. Forcepoint X-Labs researchers warn of new phishing campaigns targeting Latin America and Europe in new phishing campaigns. Attackers also employ encrypted or password-protected files to evade security detection.

Banking 86

Banking Phishing Malware Passwords 86

Security Affairs

MAY 5, 2021

A new cybercrime gang, tracked as UNC2529 , has targeted many organizations in the US and other countries using new sophisticated malware. The group targeted the organization with phishing attacks aimed at spreading at least three new sophisticated malware strains. The post UNC2529, a new sophisticated cybercrime gang that targets U.S.

Cybercrime 134

Cybercrime Malware Manufacturing Retail 134

Security Affairs

SEPTEMBER 20, 2021

Security researchers uncovered a large phishing campaign targeting multiple government departments in APAC and EMEA countries. . Researchers from cybersecurity firm Cyjax uncovered a large phishing campaign targeting multiple government departments in APAC and EMEA countries. . SecurityAffairs – hacking, phishing).

Phishing 116

Phishing Government Cybercrime Hacking 116

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime 145

Cybercrime Banking Malware Ransomware 145

Krebs on Security

FEBRUARY 2, 2021

ValidCC , a dark web bazaar run by a cybercrime group that for more than six years hacked online merchants and sold stolen payment card data, abruptly closed up shop last week. Group-IB believes UltraRank is responsible for a slew of hacks that other security firms previously attributed to at least three distinct cybercrime groups.

Cybercrime 253

Cybercrime Media Accountability Hacking 253

Security Affairs

AUGUST 12, 2021

Microsoft warns of a long-running spear-phishing campaign that has targeted Office 365 customers in multiple attacks since July 2020. Microsoft revealed that a year-long spear-phishing campaign has targeted Office 365 customers in multiple attacks starting with July 2020. SecurityAffairs – hacking, cybercrime).

Phishing 126

Phishing Passwords Encryption Cybercrime 126

Security Affairs

SEPTEMBER 23, 2021

Microsoft uncovered a large-scale phishing-as-a-service operation, dubbed BulletProofLink, that enabled threat actors to easily carry out malicious campaigns. BulletProofLink service was very cheap and allowed threat actors to arrange phishing campaigns without specific technical capabilities. ” concludes Microsoft.

Phishing 113

Phishing Cybercrime Advertising Hacking 113

Krebs on Security

SEPTEMBER 2, 2024

KrebsOnSecurity profiled OTP Agency in a February 2021 story about arrests tied to another phishing-related service based in the U.K. The NCA said it began investigating the service in June 2020. The OTP Agency operators who pleaded guilty to running the service; Aza Siddeeque, Callum Picari, and Vijayasidhurshan Vijayanathan.

Accountability 295

Accountability Banking Passwords Scams 295

SiteLock

AUGUST 27, 2021

According to SiteLock researchers and cybersecurity experts, the threat landscape will only continue to grow in 2020 and will likely bring even more new challenges with it. We’ve analyzed the current state of the industry and packaged up our top five cybersecurity predictions for 2020. Given that over 2.5

Cybersecurity 98

Cybersecurity Phishing Data breaches IoT 98

Security Affairs

JUNE 13, 2021

The Anti-Phishing Working Group (APWG) revealed that the number of phishing websites peaked at record levels in the first quarter of 2021. The Anti-Phishing Working Group (APWG) has published its new Phishing Activity Trends Report related to the first quarter of 2021. Reported Phishing Websites for Q1 2021.

Phishing 123

Phishing Advertising Cryptocurrency Encryption 123

Duo's Security Blog

FEBRUARY 25, 2021

The first known mention of the word “phishing” happened in the America Online (AOL) user group named appropriately “AOHell. Phishing has raised hell ever since. As technology has evolved so has the sophistication of targeted phishing attacks. What is spear-phishing? What happened when a popular company was breached?

Phishing 106

Phishing Social Engineering Engineering Authentication 106

The Last Watchdog

SEPTEMBER 28, 2022

Phishing attacks are nothing new, but scammers are getting savvier with their tactics. Other Iranian-based cyberattacks have included hackers targeting Albanian government systems and spear phishing scams. Here are four new phishing trends keeping businesses on their toes. Spear phishing. Phishing via texting.

Phishing 124

Phishing Scams Cybercrime Passwords 124

Security Boulevard

APRIL 23, 2021

Phishing is today’s most dangerous cyberattack. Google noted a more than 600% spike in phishing attacks in 2020 compared to 2019 with a total of 2,145,013 phishing sites registered as of January 17, 2021, up from 1,690,000 on Jan 19, 2020. Phishing doesn’t discriminate. So did the 2020 Twitter hack.

Phishing 101

Phishing Scams Media Accountability 101

CyberSecurity Insiders

JUNE 26, 2023

In recent months, a cybercrime group known as Blacktail has begun to make headlines as they continue to target organizations around the globe. Two of the most popular tools that have been used by the cybercrime group are LockBit 3.0 is the latest version of the Lockbit ransomware which was developed by the Lockbit group in early 2020.

Cybercrime 100

Cybercrime Ransomware Social Engineering Phishing 100