Security Affairs

NOVEMBER 21, 2024

Between September 2021 and April 2023, the hackers carried out phishing attacks to steal login credentials from employees of 12 companies and individuals. Victims included gaming, telecom, and cryptocurrency firms, with losses reaching millions in stolen cryptocurrency and data from hundreds of thousands of accounts.

Cybercrime 110

Cybercrime Identity Theft Cryptocurrency Phishing 110

Krebs on Security

AUGUST 25, 2021

In a lawsuit filed in Colorado, Schober said the sudden disappearance of his funds in January 2018 prompted him to spend more than $10,000 hiring experts in the field of tracing cryptocurrency transactions. A copy of the May 2021 complaint is here (PDF). universities). When Schober went to move approximately 16.4

Cryptocurrency 361

Cryptocurrency Malware Mobile Accountability 361

Krebs on Security

JANUARY 6, 2022

Norton 360 , one of the most popular antivirus products on the market today, has installed a cryptocurrency mining program on its customers’ computers. According to the FAQ posted on its site , “ Norton Crypto ” will mine Ethereum (ETH) cryptocurrency while the customer’s computer is idle.

Cryptocurrency 348

Cryptocurrency Computers and Electronics Antivirus Identity Theft 348

Krebs on Security

NOVEMBER 14, 2024

In February, he and Ermakov were arrested on charges of operating a short-lived ransomware affiliate program in 2021 called Sugar (a.k.a. The Moscow native said he recently heard from his ex-wife, who had read last year’s story about him and was suddenly wondering where he’d hidden all of his earnings. “Hi, how are you?”

Retail 258

Retail Advertising Cryptocurrency Cybercrime 258

The Last Watchdog

DECEMBER 16, 2021

In 2021, law enforcement continued making a tremendous effort to track down, capture and arrest ransomware operators, to take down ransomware infrastructure, and to claw back ransomware payments. Related: The targeting of supply chains. Reconstituted hacker rings. In 2022 we expect to see more aggressive and complex ransomware efforts.

CISO 262

CISO Ransomware Risk Authentication 262

Krebs on Security

JANUARY 10, 2024

A California man who lost $100,000 in a 2021 SIM-swapping attack is suing the unknown holder of a cryptocurrency wallet that harbors his stolen funds. Dellone says the crooks then used his phone number to break into his account at Coinbase and siphon roughly $100,000 worth of cryptocurrencies.

Cryptocurrency 335

Cryptocurrency Government Cybercrime Accountability 335

Security Affairs

APRIL 3, 2021

Code repository hosting service GitHub launched an investigation in a series of attacks aimed at abusing its infrastructure to illicitly mine cryptocurrency. Perdok told The Record that he has identified at least one account responsible for the creation of hundreds of Pull Requests containing malicious code. Pierluigi Paganini.

Cryptocurrency 144

Cryptocurrency Accountability Software Engineering 144

Security Affairs

JANUARY 25, 2021

Indian cryptocurrency exchange Buyucoin suffered a security incident, threat actors leaked sensitive data of 325K users. A new incident involving a cryptocurrency exchange made the headlines, the India-based cryptocurrency exchange suffered a security incident, threat actors leaked sensitive data of 325K users on the Dark Web.

Cryptocurrency 144

Cryptocurrency Hacking InfoSec Data breaches 144

SecureList

FEBRUARY 23, 2022

The year 2021 was eventful in terms of digital threats for organizations and individuals, and financial institutions were no exception. share in 2020 to the second most common in 2021 with 12.2%. The mass change in cybercriminals’ objectives and methods seen in 2020 continued in 2021. Phishing: In 2021, 8.2%

Banking 141

Banking Phishing Cryptocurrency Malware 141

Security Affairs

OCTOBER 30, 2023

A man from Orlando was sentenced to prison for SIM Swapping conspiracy that led to the theft of approximately $1M in cryptocurrency. The man was sentenced for his role in a hacking scheme that led to the theft of approximately $1M worth of cryptocurrency from dozens of victims. ” reads the press release published by DoJ.

Cryptocurrency 136

Cryptocurrency Accountability Hacking Cybercrime 136

Security Affairs

FEBRUARY 3, 2025

Since 2021, the Crazy Evil gang has become a major cybercriminal group, using phishing, identity fraud, and malware to steal cryptocurrency. “Targeting of Cryptocurrency Users and Influencers: Crazy Evil explicitly victimizes the cryptocurrency space with bespoke spearphishing lures.”

Scams 84

Scams Media Cryptocurrency Cybercrime 84

SecureWorld News

DECEMBER 3, 2024

His alleged exploits include: The 2021 attack on Washington, D.C.'s In the past, Russia took similar steps against members of the REvil ransomware group, which was responsible for the Colonial Pipeline attack in 2021. indictments and sanctions, Matveev has operated openly in Russia, even mocking attempts to hold him accountable.

Cybercrime 104

Cybercrime Ransomware Healthcare Cryptocurrency 104

Security Affairs

NOVEMBER 1, 2021

Operators behind the Squid Game cryptocurrency have exit scam making off with an estimated $2.1 Operators behind the Squid Game cryptocurrency have exit scam making off with an estimated $2.1 The following graph shows that the cryptocurrency peaked at a price of $2,861 before dropping to $0 around. ” reported GixModo.

Cryptocurrency 139

Cryptocurrency Scams Cybercrime Advertising 139

Security Affairs

JULY 19, 2022

FBI has warned of crooks developing malicious cryptocurrency-themed apps to steal crypto assets from the users. Federal Bureau of Investigation (FBI) has warned of crooks creating malicious cryptocurrency-themed apps to steal crypto assets from investors. million from 244 victims between October 4, 2021, and May 13, 2022.

Cryptocurrency 129

Cryptocurrency Mobile Hacking Accountability 129

Security Affairs

APRIL 30, 2023

Threat actors are gaining access to AT&T email accounts in an attempt to hack into the victim’s cryptocurrency exchange accounts. Mail keys are unique credentials that AT&T email users can use to log into their accounts using email apps such as Thunderbird or Outlook , but without having to use their passwords.”

Cryptocurrency 98

Cryptocurrency Accountability Passwords Hacking 98

Security Affairs

DECEMBER 31, 2021

The Have I Been Pwned data breach notification service now includes credentials for 441K accounts that were stolen by RedLine malware. The service now includes credentials for 441K accounts stolen by the popular info-stealer. Internationally sourced data, exfiltrated in Sept and Aug 2021. Pierluigi Paganini.

Accountability 145

Accountability Malware Data breaches Passwords 145

Krebs on Security

JUNE 27, 2023

But O’Connor also pleaded guilty in a separate investigation involving a years-long spree of cyberstalking and cryptocurrency theft enabled by “ SIM swapping ,” a crime wherein fraudsters trick a mobile provider into diverting a customer’s phone calls and text messages to a device they control.

Cryptocurrency 271

Cryptocurrency Accountability Mobile Hacking 271

Security Affairs

NOVEMBER 6, 2021

Threat actors have stolen $55 million worth of cryptocurrency from the bZx decentralized finance (DeFi) platform. The decentralized finance (DeFi) platforms allow users to borrow/loan and speculate on cryptocurrency price variations. Contacted KuCoin to identify the hackers KuCoin account. Pierluigi Paganini.

Cryptocurrency 141

Cryptocurrency Phishing Hacking Accountability 141

Security Affairs

JANUARY 2, 2022

The cyberattacks against the cryptocurrency industry are a profitable business for threat actors, according to the experts, $12.1 billion worth of cryptocurrencies have been stolen in the last decade. In 2021 we observed a spike in crypto heists, $4.25 billion worth of cryptos were stolen by cybercriminals in 2021.

Cryptocurrency 118

Cryptocurrency Scams Marketing Hacking 118

Security Affairs

JANUARY 3, 2022

Which are the cyber attacks of 2021 that had the major impact on organizations worldwide in terms of financial losses and disruption of the operations? Colonial Pipeline ( May 2021 ) – The Colonial Pipeline facility in Pelham, Alabama, was hit by a cybersecurity attack in May and its operators were forced to shut down its systems.

Cyber Attacks 141

Cyber Attacks Ransomware Hacking Insurance 141

SecureList

JANUARY 13, 2022

Also, we have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income. The group is currently active (recent activity was spotted in November 2021).

Cryptocurrency 145

Cryptocurrency Malware Accountability Banking 145

Security Affairs

OCTOBER 28, 2021

Threat actors have stolen $130 million worth of cryptocurrency assets from the Cream Finance decentralized finance (DeFi) platform. Threat actors have stolen $130 million worth of cryptocurrency assets from the decentralized finance (DeFi) platform. — Cream Finance (@CreamdotFinance) October 27, 2021. increase from 2020.

Cryptocurrency 102

Cryptocurrency Marketing Hacking Financial Services 102

Krebs on Security

AUGUST 7, 2024

A partial selfie posted by Puchmade Dev to his Twitter account. That story showed how Punchmade’s social media profiles promoted Punchmade-themed online stores selling bank account and payment card data. Incredibly, Turner acknowledges that PNC told him his account was flagged for attention from law enforcement officials.

Banking 291

Banking Cybercrime Accountability Retail 291

CyberSecurity Insiders

MARCH 10, 2022

But here’s a news piece that gives details of a ransomware group that paid $6 million in salaries last year and even tried to develop its cryptocurrency. Information is out that Conti maintains about 255 crypto wallets and has bank accounts in 7 countries, mostly those based in Singapore, Panama, and some parts of Asia, including Sri Lanka.

Cryptocurrency 119

Cryptocurrency Ransomware Banking Hacking 119

Krebs on Security

JANUARY 28, 2022

In December 2021, researchers discovered a new ransomware-as-a-service named ALPHV (a.k.a. uk, where this user claimed ownership over the Telegram account @CookieDays , and said they could be hired to do software and bot development “of any level of complexity.” I AM DUCKERMAN. Sergey DuckerMan’s GitHub profile.

Ransomware 329

Ransomware Accountability Cybercrime Malware 329

Malwarebytes

AUGUST 26, 2021

In August of 2021, a thief stole about $600 million in cryptocurrencies from The Poly Network. Slightly more than one week later, Japanese cryptocurrency exchange Liquid was hacked and lost $97 million worth of digital coins. They ended up giving it back, but not because they were forced to. I wish I knew. and the same value.

Cryptocurrency 124

Cryptocurrency Banking Hacking Engineering 124

Krebs on Security

JANUARY 17, 2024

Images from Punchmade Dev’s Twitter/X account show him displaying bags of cash and wearing a functional diamond-crusted payment card skimmer. The official Punchmadedev account on Instagram links to many of the aforementioned rap videos and tutorials on cybercriming, as well as to Punchmadedev’s other profiles and websites.

Cybercrime 322

Cybercrime Media Banking Accountability 322

Krebs on Security

FEBRUARY 26, 2023

We don’t know much about the source of the November 2021 incident, other than GoDaddy’s statement that it involved a compromised password, and that it took about two months for the company to detect the intrusion. What else do we know about the cause of these incidents?

Hacking 324

Hacking Social Engineering Phishing Scams 324

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers. A single bitcoin is trading at around $45,000.

Cryptocurrency 291

Cryptocurrency Cybercrime Computers and Electronics Scams 291

Security Affairs

FEBRUARY 10, 2022

Spanish National Police has arrested eight alleged members of a crime organization who were able to steal money from the bank accounts of the victims through SIM swapping attacks. Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Banking 126

Banking Accountability Mobile Cryptocurrency 126

Krebs on Security

AUGUST 30, 2022

In a blog post earlier this month, Cloudflare said it detected the account takeovers and that no Cloudflare systems were compromised. 4 it became aware of unauthorized access to information related to a limited number of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials.

Mobile 337

Mobile Phishing Authentication Accountability 337

Krebs on Security

JULY 21, 2022

“It’s run by a fraud ring of cryptocurrency scammers who mine dating apps and other social media for victims and the scam is becoming alarmingly popular.” Many of these platforms include extensive study materials and tutorials on cryptocurrency investing. com, a scam cryptocurrency platform tied to a pig butchering scheme.

Scams 327

Scams Cryptocurrency Marketing Internet 327

SecureList

AUGUST 23, 2021

billion USD in 2021, which is slightly less than the total revenue in 2020 but still significantly above the pre-pandemic figures. Analysts predict that mobile gaming will account for $90.7 billion to $120 billion of the revenue in 2021, which is more than half of the estimated gaming industry value.

Mobile 139

Mobile Adware Malware Phishing 139

Krebs on Security

JANUARY 18, 2021

Joker’s Stash , by some accounts the largest underground shop for selling stolen credit card and identity data, says it’s closing up shop effective mid-February 2021. 15, 2021. Those “partner” customers will be given the opportunity to cash out their accounts. 15 or forfeit those funds.

Marketing 301

Marketing Cybercrime Accountability Cryptocurrency 301

Malwarebytes

AUGUST 13, 2021

A fair few cryptocurrency scams have been doing the rounds across 2021. Scammers set up fake customer support style accounts, then direct potential victims to phishing pages hosted elsewhere. Fake Elon Musk cryptocurrency scams. Another social media shenanigan involving cryptocurrency? Recovery code theft.

Scams 114

Scams Cryptocurrency Social Engineering Media 114

Security Affairs

FEBRUARY 10, 2022

The FBI reported that US citizens have lost more than $68 million to SIM swapping attacks in 2021, the number of complaints since 2018 and associated losses have increased almost fivefold. In 2021, IC3 received 1,611 SIM swapping complaints with adjusted losses of more than $68 million.”

Mobile 104

Mobile Cryptocurrency Accountability Passwords 104

Krebs on Security

NOVEMBER 8, 2021

million in cryptocurrency sent to another REvil affiliate, and that the U.S. Prosecutors say Vasinskyi was involved in a number of REvil ransomware attacks, including the July 2021 attack against Kaseya , Miami-based company whose products help system administrators manage large networks remotely. The DOJ also said it had seized $6.1

Ransomware 346

Ransomware Cybercrime System Administration Passwords 346