Security Affairs

NOVEMBER 21, 2024

Between September 2021 and April 2023, the hackers carried out phishing attacks to steal login credentials from employees of 12 companies and individuals. Victims included gaming, telecom, and cryptocurrency firms, with losses reaching millions in stolen cryptocurrency and data from hundreds of thousands of accounts.

Cybercrime 111

Cybercrime Identity Theft Cryptocurrency Phishing 111

Krebs on Security

AUGUST 25, 2021

In a lawsuit filed in Colorado, Schober said the sudden disappearance of his funds in January 2018 prompted him to spend more than $10,000 hiring experts in the field of tracing cryptocurrency transactions. A copy of the May 2021 complaint is here (PDF). universities). When Schober went to move approximately 16.4

Cryptocurrency 361

Cryptocurrency Malware Mobile Accountability 361

Krebs on Security

JANUARY 6, 2022

Norton 360 , one of the most popular antivirus products on the market today, has installed a cryptocurrency mining program on its customers’ computers. According to the FAQ posted on its site , “ Norton Crypto ” will mine Ethereum (ETH) cryptocurrency while the customer’s computer is idle.

Cryptocurrency 352

Cryptocurrency Computers and Electronics Antivirus Identity Theft 352

Krebs on Security

NOVEMBER 14, 2024

In February, he and Ermakov were arrested on charges of operating a short-lived ransomware affiliate program in 2021 called Sugar (a.k.a. The Moscow native said he recently heard from his ex-wife, who had read last year’s story about him and was suddenly wondering where he’d hidden all of his earnings. “Hi, how are you?”

Retail 258

Retail Advertising Cryptocurrency Marketing 258

The Last Watchdog

DECEMBER 16, 2021

In 2021, law enforcement continued making a tremendous effort to track down, capture and arrest ransomware operators, to take down ransomware infrastructure, and to claw back ransomware payments. Related: The targeting of supply chains. Reconstituted hacker rings. In 2022 we expect to see more aggressive and complex ransomware efforts.

CISO 262

CISO Ransomware Risk Authentication 262

Krebs on Security

JANUARY 10, 2024

A California man who lost $100,000 in a 2021 SIM-swapping attack is suing the unknown holder of a cryptocurrency wallet that harbors his stolen funds. Dellone says the crooks then used his phone number to break into his account at Coinbase and siphon roughly $100,000 worth of cryptocurrencies.

Cryptocurrency 335

Cryptocurrency Government Cybercrime Accountability 335

Security Affairs

APRIL 3, 2021

Code repository hosting service GitHub launched an investigation in a series of attacks aimed at abusing its infrastructure to illicitly mine cryptocurrency. Perdok told The Record that he has identified at least one account responsible for the creation of hundreds of Pull Requests containing malicious code. Pierluigi Paganini.

Cryptocurrency 144

Cryptocurrency Accountability Software Engineering 144

Security Affairs

JANUARY 25, 2021

Indian cryptocurrency exchange Buyucoin suffered a security incident, threat actors leaked sensitive data of 325K users. A new incident involving a cryptocurrency exchange made the headlines, the India-based cryptocurrency exchange suffered a security incident, threat actors leaked sensitive data of 325K users on the Dark Web.

Cryptocurrency 144

Cryptocurrency Hacking InfoSec Data breaches 144

SecureList

FEBRUARY 23, 2022

The year 2021 was eventful in terms of digital threats for organizations and individuals, and financial institutions were no exception. share in 2020 to the second most common in 2021 with 12.2%. The mass change in cybercriminals’ objectives and methods seen in 2020 continued in 2021. Phishing: In 2021, 8.2%

Banking 140

Banking Phishing Cryptocurrency Malware 140

Security Affairs

OCTOBER 30, 2023

A man from Orlando was sentenced to prison for SIM Swapping conspiracy that led to the theft of approximately $1M in cryptocurrency. The man was sentenced for his role in a hacking scheme that led to the theft of approximately $1M worth of cryptocurrency from dozens of victims. ” reads the press release published by DoJ.

Cryptocurrency 136

Cryptocurrency Accountability Hacking Cybercrime 136

Security Affairs

FEBRUARY 3, 2025

Since 2021, the Crazy Evil gang has become a major cybercriminal group, using phishing, identity fraud, and malware to steal cryptocurrency. “Targeting of Cryptocurrency Users and Influencers: Crazy Evil explicitly victimizes the cryptocurrency space with bespoke spearphishing lures.”

Scams 85

Scams Media Cryptocurrency Cybercrime 85

Security Affairs

NOVEMBER 1, 2021

Operators behind the Squid Game cryptocurrency have exit scam making off with an estimated $2.1 Operators behind the Squid Game cryptocurrency have exit scam making off with an estimated $2.1 The following graph shows that the cryptocurrency peaked at a price of $2,861 before dropping to $0 around. ” reported GixModo.

Cryptocurrency 140

Cryptocurrency Scams Cybercrime Advertising 140

SecureWorld News

DECEMBER 3, 2024

His alleged exploits include: The 2021 attack on Washington, D.C.'s In the past, Russia took similar steps against members of the REvil ransomware group, which was responsible for the Colonial Pipeline attack in 2021. indictments and sanctions, Matveev has operated openly in Russia, even mocking attempts to hold him accountable.

Cybercrime 103

Cybercrime Ransomware Healthcare Cryptocurrency 103

Krebs on Security

DECEMBER 19, 2022

conspired to hack into Yahoo email accounts belonging to victims in the United States. From there, the two allegedly would check how many of those Yahoo accounts were associated with Ring accounts, and then target people who used the same password for both accounts. . “ChumLul,” 22, of Racine, Wisc.,

Hacking 329

Hacking Passwords Media Accountability 329

Security Affairs

JULY 19, 2022

FBI has warned of crooks developing malicious cryptocurrency-themed apps to steal crypto assets from the users. Federal Bureau of Investigation (FBI) has warned of crooks creating malicious cryptocurrency-themed apps to steal crypto assets from investors. million from 244 victims between October 4, 2021, and May 13, 2022.

Cryptocurrency 130

Cryptocurrency Mobile Hacking Accountability 130

Krebs on Security

NOVEMBER 5, 2024

At the end of 2023, malicious hackers learned that many large companies had uploaded huge volumes of sensitive customer data to Snowflake accounts that were protected with little more than a username and password (no multi-factor authentication required). million customers. “The rest is just ransom.”

Cybercrime 277

Cybercrime Mobile Media Hacking 277

Security Affairs

APRIL 30, 2023

Threat actors are gaining access to AT&T email accounts in an attempt to hack into the victim’s cryptocurrency exchange accounts. Mail keys are unique credentials that AT&T email users can use to log into their accounts using email apps such as Thunderbird or Outlook , but without having to use their passwords.”

Cryptocurrency 98

Cryptocurrency Accountability Passwords Hacking 98

SecureList

FEBRUARY 10, 2022

Q4 2021 saw the appearance of several new DDoS botnets. The botnet hijacked new devices by exploiting the CVE-2021-22205 vulnerability, which GitLab patched in April 2021, and carried out DDoS attacks of over 1TB/s. A bug designated as CVE-2021-36260 was found in some Hikvision camera models and patched in September 2021.

DDOS 143

DDOS Cryptocurrency Marketing Accountability 143

Security Affairs

DECEMBER 31, 2021

The Have I Been Pwned data breach notification service now includes credentials for 441K accounts that were stolen by RedLine malware. The service now includes credentials for 441K accounts stolen by the popular info-stealer. Internationally sourced data, exfiltrated in Sept and Aug 2021. Pierluigi Paganini.

Accountability 145

Accountability Malware Data breaches Passwords 145

Krebs on Security

JUNE 27, 2023

But O’Connor also pleaded guilty in a separate investigation involving a years-long spree of cyberstalking and cryptocurrency theft enabled by “ SIM swapping ,” a crime wherein fraudsters trick a mobile provider into diverting a customer’s phone calls and text messages to a device they control.

Cryptocurrency 273

Cryptocurrency Accountability Mobile Hacking 273

Security Affairs

NOVEMBER 6, 2021

Threat actors have stolen $55 million worth of cryptocurrency from the bZx decentralized finance (DeFi) platform. The decentralized finance (DeFi) platforms allow users to borrow/loan and speculate on cryptocurrency price variations. Contacted KuCoin to identify the hackers KuCoin account. Pierluigi Paganini.

Cryptocurrency 142

Cryptocurrency Phishing Hacking Accountability 142

Security Affairs

JANUARY 2, 2022

The cyberattacks against the cryptocurrency industry are a profitable business for threat actors, according to the experts, $12.1 billion worth of cryptocurrencies have been stolen in the last decade. In 2021 we observed a spike in crypto heists, $4.25 billion worth of cryptos were stolen by cybercriminals in 2021.

Cryptocurrency 119

Cryptocurrency Scams Marketing Hacking 119

Security Affairs

JANUARY 3, 2022

Which are the cyber attacks of 2021 that had the major impact on organizations worldwide in terms of financial losses and disruption of the operations? Colonial Pipeline ( May 2021 ) – The Colonial Pipeline facility in Pelham, Alabama, was hit by a cybersecurity attack in May and its operators were forced to shut down its systems.

Cyber Attacks 141

Cyber Attacks Ransomware Hacking Insurance 141

SecureList

JANUARY 13, 2022

Also, we have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income. The group is currently active (recent activity was spotted in November 2021).

Cryptocurrency 145

Cryptocurrency Malware Accountability Banking 145

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. The messages said recipients had earned an investment credit at a cryptocurrency trading platform called moonxtrade[.]com. A DIRECT QUOT The domain quot[.]pw

Scams 303

Scams DDOS Cryptocurrency Accountability 303

SecureList

MAY 10, 2021

Q1 2021 saw the appearance of two new botnets. Cybercriminals exploited several critical vulnerabilities in programs installed on victim devices, including the newly discovered CVE-2021-3007. Botnet operators use infected devices to carry out DDoS attacks or mine cryptocurrency. News overview.

DDOS 141

DDOS Cryptocurrency Media Marketing 141

Krebs on Security

SEPTEMBER 30, 2024

Also known as “ Assad Faiq” and “ The Godfather ,” Iza is the 30-something founder of a cryptocurrency investment platform called Zort that advertised the ability to make smart trades based on artificial intelligence technology. cryptocurrency holdings online. They’re active-duty.” attorney general.

Cryptocurrency 313

Cryptocurrency Government Internet Internet 313

Krebs on Security

AUGUST 7, 2024

A partial selfie posted by Puchmade Dev to his Twitter account. That story showed how Punchmade’s social media profiles promoted Punchmade-themed online stores selling bank account and payment card data. Incredibly, Turner acknowledges that PNC told him his account was flagged for attention from law enforcement officials.

Banking 292

Banking Cybercrime Accountability Retail 292

Security Affairs

OCTOBER 28, 2021

Threat actors have stolen $130 million worth of cryptocurrency assets from the Cream Finance decentralized finance (DeFi) platform. Threat actors have stolen $130 million worth of cryptocurrency assets from the decentralized finance (DeFi) platform. — Cream Finance (@CreamdotFinance) October 27, 2021. increase from 2020.

Cryptocurrency 102

Cryptocurrency Marketing Hacking Financial Services 102

CyberSecurity Insiders

MARCH 10, 2022

But here’s a news piece that gives details of a ransomware group that paid $6 million in salaries last year and even tried to develop its cryptocurrency. Information is out that Conti maintains about 255 crypto wallets and has bank accounts in 7 countries, mostly those based in Singapore, Panama, and some parts of Asia, including Sri Lanka.

Cryptocurrency 119

Cryptocurrency Ransomware Banking Hacking 119

Krebs on Security

JANUARY 28, 2022

In December 2021, researchers discovered a new ransomware-as-a-service named ALPHV (a.k.a. uk, where this user claimed ownership over the Telegram account @CookieDays , and said they could be hired to do software and bot development “of any level of complexity.” I AM DUCKERMAN. Sergey DuckerMan’s GitHub profile.

Ransomware 331

Ransomware Accountability Cybercrime Malware 331

Krebs on Security

JANUARY 17, 2024

Images from Punchmade Dev’s Twitter/X account show him displaying bags of cash and wearing a functional diamond-crusted payment card skimmer. The official Punchmadedev account on Instagram links to many of the aforementioned rap videos and tutorials on cybercriming, as well as to Punchmadedev’s other profiles and websites.

Cybercrime 324

Cybercrime Media Banking Accountability 324

Krebs on Security

FEBRUARY 26, 2023

We don’t know much about the source of the November 2021 incident, other than GoDaddy’s statement that it involved a compromised password, and that it took about two months for the company to detect the intrusion. What else do we know about the cause of these incidents?

Hacking 327

Hacking Social Engineering Phishing Scams 327

SecureList

NOVEMBER 8, 2021

Q3 2021 brought two new DDoS attack vectors, potentially posing a serious threat, including for major web resources. — Infosecurity Magazine (@InfosecurityMag) July 26, 2021. In Q3 2021, the European servers of Final Fantasy XIV were hit. Comparative number of DDoS attacks, Q2 and Q3 2021, and Q3 2020. ris botnet.

DDOS 144

DDOS Marketing Cryptocurrency IoT 144

Malwarebytes

AUGUST 26, 2021

In August of 2021, a thief stole about $600 million in cryptocurrencies from The Poly Network. Slightly more than one week later, Japanese cryptocurrency exchange Liquid was hacked and lost $97 million worth of digital coins. They ended up giving it back, but not because they were forced to. I wish I knew. and the same value.

Cryptocurrency 121

Cryptocurrency Banking Hacking Engineering 121

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers. A single bitcoin is trading at around $45,000.

Cryptocurrency 292

Cryptocurrency Cybercrime Computers and Electronics Scams 292

Security Affairs

FEBRUARY 10, 2022

Spanish National Police has arrested eight alleged members of a crime organization who were able to steal money from the bank accounts of the victims through SIM swapping attacks. Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Banking 126

Banking Accountability Mobile Cryptocurrency 126