CyberSecurity Insiders

JUNE 26, 2023

In recent months, a cybercrime group known as Blacktail has begun to make headlines as they continue to target organizations around the globe. Two of the most popular tools that have been used by the cybercrime group are LockBit 3.0 Babuk is a ransomware that was first discovered in early 2021. Both LockBit 3.0

Cybercrime 100

Cybercrime Ransomware Social Engineering Phishing 100

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime 135

Cybercrime Computers and Electronics Hacking Banking 135

Security Affairs

JULY 12, 2022

Microsoft experts believe that the AiTM phishing campaign was used to target more than 10,000 organizations since September 2021. “By combining the two values, the succeeding phishing landing page automatically filled out the sign-in page with the user’s email address, thus enhancing its social engineering lure.

Phishing 144

Phishing Authentication Social Engineering Passwords 144

Security Affairs

OCTOBER 30, 2021

INTERPOL published the African Cyberthreat Assessment Report 2021, a report that analyzes evolution of cybercrime in Africa. A new report published by INTERPOL, titled the African Cyberthreat Assessment Report 2021 , sheds the light on cybercrime in Africa. of the overall number.

Cybercrime 88

Cybercrime Scams DDOS Banking 88

Security Affairs

DECEMBER 10, 2024

This social engineering scheme has been amplified by targeted phishing, smishing, and vishing activities, with a noticeable increase around the winter holidays. billion (equal to USD 326 million) between 2021 and 2023.

Social Engineering 111

Social Engineering Phishing Banking DNS 111

SecureList

AUGUST 23, 2021

The video game industry is soaring, not in the least thanks to the lockdowns, which forced people to look for new ways to entertain themselves and socialize. billion USD in 2021, which is slightly less than the total revenue in 2020 but still significantly above the pre-pandemic figures. billion in the first half of 2021.

Mobile 139

Mobile Adware Malware Phishing 139

Security Affairs

OCTOBER 16, 2021

TrickBot operators are back and expand the distribution channels with partnership with cybercrime affiliates. The gang support other cybercrime groups such as known Hive0105, Hive0106 (aka TA551 or Shathak), and Hive0107, supporting them in expanding their malware campaigns. ” reads the post published by IBM X-Force.

Malware 133

Malware Cybercrime DDOS Social Engineering 133

Security Boulevard

FEBRUARY 24, 2021

When the pandemic struck, online bad actors took it as an opportunity to double-down on their attacks through ransomware, malware, and social engineering. Fortunately, emerging trends in the financial technology sector may have the potential to turn the tide of cybercrime and keep our financial data safe. .

Cybersecurity 105

Cybersecurity Artificial Intelligence Risk Cybercrime 105

The Last Watchdog

JULY 13, 2023

The economic impact of cybercrime on business across the globe continues to reach new levels, with the cost predicted to reach US$10.5 The perceived threat of cyber risk to global business leaders peaked in 2021 (34%) and over the past two years, the risk perception has dropped (27%). trillion by 2025, a 300% increase since 2015 1.

Cyber Risk 189

Cyber Risk Risk Insurance Energy and Utilities 189

Security Affairs

FEBRUARY 20, 2022

The Threat Report Portugal: Q4 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q4, of 2021. 0xSI_f33d is part of the official VirusTotal ingestors since July 2021 allowing the community to verify threats worldwide provided by this feed. Phishing and Malware Q4 2021.

Threat Reports 98

Threat Reports Phishing Malware Banking 98

SecureList

APRIL 27, 2021

This is our latest installment, focusing on activities that we observed during Q1 2021. In parallel, Volexity also reported the same Exchange zero-days being in use in early 2021. Use of CVE-2021-1732 peaked between June and July 2020, but the overall campaign is still ongoing. The most remarkable findings.

Malware 145

Malware Government Spyware Social Engineering 145

SecureList

JUNE 26, 2023

According to a report by the Barracuda cybersecurity company, in 2021, businesses with fewer than 100 employees experienced far more social engineering attacks than larger ones. That same year saw one of the worst ransomware incidents in history, the Kaseya VSA supply-chain attack. Scammers often reach employees by e-mail.

Cybercrime 122

Cybercrime Phishing Banking Malware 122

CSO Magazine

MARCH 29, 2023

However, another team that security researchers call APT43, Kimsuky, or Thallium has been carrying out cyberespionage and cybercrime operations at the behest of the North Korean government since at least 2018.

Social Engineering 108

Social Engineering Cybercrime Government Banking 108

Anton on Security

APRIL 20, 2023

The famous Mandiant 2023 M-Trends (NOT G-Trends, mind you…) report is out, and here are some of the things that I found to be surprising and NOT surprising :-) Mandiant M-Trends 2023 Detection by Source SURPRISING “Mandiant experts note a decrease in the percentage of global intrusions involving ransomware between 2021 and 2022. Good news?!]

Social Engineering 130

Social Engineering Ransomware Cybercrime Cyber Attacks 130

SecureWorld News

JULY 11, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) issued a warning in April that the group was targeting cryptocurrency and blockchain companies and that it was using social engineering schemes to gain access to the victim's network. This was discontinued in December 2021, but the allowlist access was not revoked.

Social Engineering 98

Social Engineering Hacking Cryptocurrency Cybercrime 98

SecureWorld News

FEBRUARY 7, 2022

Cyberattacks targeting cryptocurrency exchanges were on a roll in 2021 and have continued into 2022. billion was outright stolen from decentralized finance (DeFi) platforms in 2021. Chainalysis reported that approximately $2.2 The DPRK being the Democratic People's Republic of North Korea.

Cryptocurrency 98

Cryptocurrency Cybercrime Social Engineering Engineering 98

Security Affairs

NOVEMBER 4, 2022

This is the 10 th edition of the annual report and analyzes events that took place between July 2021 and July 2022. Malware: 66 disclosures of zero-day vulnerabilities observed in 2021. Supply chain targeting : Third-party incidents account for 17% of the intrusions in 2021 compared to less than 1% in 2020. Cybercrime actors.

Cyber threats 141

Cyber threats Phishing Social Engineering Ransomware 141

Thales Cloud Protection & Licensing

DECEMBER 16, 2021

Thu, 12/16/2021 - 10:36. Criminals tweaked existing forms of cybercrime to fit the pandemic narrative, abused the uncertainty of the situation and the public’s need for reliable information. These reports were released either in the second half of 2020 or during the first few months of 2021.

Social Engineering 126

Social Engineering Ransomware Engineering Phishing 126

SC Magazine

MAY 1, 2021

For 2021, the judges took on a record number of submissions, identifying which products, people and companies stood out during a tumultuous year. Click here to see the full list of 2021 SC Award finalists. His expertise is in social engineering, technology, security algorithms and business.

Computers and Electronics 126

Computers and Electronics Technology Information Security Education 126

SecureList

MAY 25, 2022

” Social engineering became an overwhelming problem this past year, highlighting the surge in repeated cybercrime tactics — 1. Several things stand out in the 2022 report: Ransomware challenges continue to mount — “Ransomware’s heyday continues, and is present in almost 70% of malware breaches this year.”

Social Engineering 122

Social Engineering Cybercrime Ransomware IoT 122

CyberSecurity Insiders

APRIL 5, 2023

North Korea has established a hacking group named APT43 to fund its cybercrime activities, aimed at advancing Pyongyang’s geopolitical interests. Since September 2021, the group of cyber criminals has shifted its focus to the healthcare and pharmaceutical industries.

Hacking 105

Hacking Social Engineering Cryptocurrency Manufacturing 105

Security Affairs

SEPTEMBER 3, 2024

Cybercriminals paid a monthly subscription fee to OTP.Agency, which provided tools for socially engineering victims and tricked them into revealing one-time passcodes or personal information. The Telegram group was deleted after Krebs on Security published an article in 2021. ” reads the press release published by the NCA.

Banking 122

Banking Social Engineering Accountability Authentication 122

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. 24, Russia invades Ukraine, and fault lines quickly begin to appear in the cybercrime underground. I will also continue to post on LinkedIn about new stories in 2023.

Cryptocurrency 291

Cryptocurrency Cybercrime Computers and Electronics Scams 291

eSecurity Planet

AUGUST 23, 2021

Seeing an actor attempt to use basic social engineering techniques to convince an internal target to be complicit in an attack against their employer was notable.”. million ransomware attacks in the first six months of 2021, compared with 121.5 Evolving Ransomware Scene. There were 304.7 But this is just the start.”.

Ransomware 127

Ransomware Social Engineering Engineering VPN 127

Security Affairs

NOVEMBER 25, 2021

The campaign was first spotted in mid-September 2021 by ShadowChasing. aspx pic.twitter.com/fHsgAshCNc — Shadow Chaser Group (@ShadowChasing1) September 15, 2021. Surprisingly, the usage of exploits for the infection is quite unique to Iranian threat actors which in most cases heavily rely on social engineering tricks.”

Surveillance 111

Surveillance Social Engineering Ransomware Cybercrime 111

Security Affairs

JUNE 11, 2023

Gox exchange and operating BTC-e Japanese Pharmaceutical giant Eisai hit by a ransomware attack Clop ransomware gang was testing MOVEit Transfer bug since 2021 Stealth Soldier backdoor used is targeted espionage attacks in Libya Researchers published PoC exploit code for actively exploited Windows elevation of privilege issue Experts detail a new Kimsuky (..)

Social Engineering 98

Social Engineering Data breaches Ransomware Cybercrime 98

Digital Shadows

OCTOBER 23, 2024

The attacker gained initial access to two employee accounts by carrying out social engineering attacks on the organization’s help desk twice. Leveraging its English proficiency, the collective uses social engineering for initial access. Within six hours, the attacker began encrypting the organization’s systems.

Social Engineering 122

Social Engineering Engineering Accountability Backups 122

eSecurity Planet

SEPTEMBER 14, 2022

Cybercrime is a growth industry like no other. According to statistics from the FBI’s 2021 Internet Crime Report , complaints to the Internet Crime Complaint Center (IC3) have been rising since 2017. In 2021 alone, IC3 received 847,376 complaints which amounted to $6.9 billion in reported losses. since Q3 of 2007.

Social Engineering 120

Social Engineering Energy and Utilities Phishing Internet 120

Security Affairs

MARCH 19, 2022

Initial access brokers play an essential role in the cybercrime ecosystem, they provide access to previously compromised organizations to threat actors. Exotic Lily was first spotted on September 2021, at the time it was observed spreading human-operated Conti and Diavol ransomware. ” reads the post published by Google TAG.

Cybercrime 100

Cybercrime Social Engineering Ransomware Engineering 100

SecureWorld News

DECEMBER 14, 2022

Frank Abagnale, one of the world's most respected authorities on forgery, embezzlement, secure documents, cybercrime, and scams—and subject of the 2002 movie Catch Me If You Can — kicked off Vision 2023: Looking Ahead at Cyber Threats , a half-day educational event held live and recorded on December 13th.

Social Engineering 97

Social Engineering CISO Education Cybercrime 97

Webroot

JANUARY 7, 2022

2020 may have been the year of establishing remote connectivity and addressing the cybersecurity skills gap, but 2021 presented security experts, government officials and businesses with a series of unpresented challenges. Threats abound in 2021. Malware made leaps and bounds in 2021. Ransomware.

Cybercrime 116

Cybercrime Ransomware Phishing Cryptocurrency 116

Malwarebytes

MARCH 18, 2022

Because Exotic Lily’s methods involved a lot of detail, they are believed to require a level of human interaction that is rather unusual for cybercrime groups focused on large scale operations. Social engineering. Among these interested parties TAG found the Conti and Diavol ransomware groups. Initial access broker.

Ransomware 117

Ransomware Malware Social Engineering Media 117

eSecurity Planet

MAY 3, 2022

From Q1 2021 to Q1 2022, the team discovered 399,200 exposed databases due to those efforts. According to Group-IB, the likelihood of the database systems being used in cybercrime and security breaches is high. days was required for an exposed database owner to resolve a security issue in the first quarter of 2021.

Social Engineering 128

Social Engineering Internet Internet Risk 128

Security Affairs

JANUARY 24, 2022

Both routines use social engineering techniques to trick users into enabling document macros and automate malware execution. “We observed Emotet spam campaigns using hexadecimal and octal representations of IP addresses, likely to evade detection via pattern matching. ” reported Trend Micro.

Malware 140

Malware Social Engineering Ransomware Banking 140

Security Affairs

NOVEMBER 7, 2021

uk” domain, which was updated in April 2021. Clicking on the Google and Office 365 buttons led the victims to specially crafted Google and Microsoft phising pages that asked for the victim’s credentials. The phishing pages were hosted on the “greenleafproperties[.]co[.]uk” The URL has currently redirected to ‘cvgproperties[.]co[.]uk.’.

Phishing 140

Phishing Social Engineering Accountability Engineering 140

Security Affairs

SEPTEMBER 8, 2024

Head Mare hacktivist group targets Russia and Belarus Zyxel fixed critical OS command injection flaw in multiple routers VMware fixed a code execution flaw in Fusion hypervisor U.S.

Data breaches 122

Data breaches Artificial Intelligence Social Engineering Hacking 122

Security Affairs

APRIL 28, 2022

Cybercrime gang FIN7’s badUSB attacks serve as a reminder of two key vulnerabilities present among all organizations. The seemingly benign device further alleviates any potential suspicion, especially since USB usage increased by 30% in 2021, making it a commonly used device. It is unlikely one would question its integrity.

Social Engineering 98

Social Engineering Engineering Insurance DDOS 98