Schneier on Security

JANUARY 31, 2023

Chainalysis reports that worldwide ransomware payments were down in 2022. million from victims in 2022, down from $765.6 Ransomware attackers extorted at least $456.8 million the year before.

Ransomware 306

Ransomware Cryptocurrency Cybercrime 306

Krebs on Security

MAY 29, 2024

.” The arrest coincided with the seizure of the 911 S5 website and supporting infrastructure, which the government says turned computers running various “free VPN” products into Internet traffic relays that facilitated billions of dollars in online fraud and cybercrime. The prices page for 911 S5, circa July 2022. $28

VPN 317

VPN Government Cybercrime Internet 317

Krebs on Security

SEPTEMBER 30, 2024

A California man accused of failing to pay taxes on tens of millions of dollars allegedly earned from cybercrime also paid local police officers hundreds of thousands of dollars to help him extort, intimidate and silence rivals and former business partners, the government alleges. cryptocurrency holdings online. We know what E.Z.

Cryptocurrency 290

Cryptocurrency Government Internet Internet 290

SecureList

NOVEMBER 23, 2021

Finally, we will make some forecasts about financial attacks in 2022. The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular.

Cryptocurrency 142

Cryptocurrency Banking Cybercrime Ransomware 142

Krebs on Security

OCTOBER 31, 2022

A 26-year-old Ukrainian man is awaiting extradition from The Netherlands to the United States on charges that he acted as a core developer for Raccoon , a popular “malware-as-a-service” offering that helped paying customers steal passwords and financial data from millions of cybercrime victims. According to the U.S.

Malware 329

Malware Identity Theft Cybercrime Accountability 329

Security Affairs

DECEMBER 22, 2022

billion worth of cryptocurrency and other virtual assets in the past five years. billion) in cryptocurrency and other virtual assets in the past five years. Cyber security and intelligence experts believe that attacks aimed at the cryptocurrency industry will continue to increase next year. trillion won ($1.2 Citing the U.S.

Cryptocurrency 143

Cryptocurrency Cybercrime Media Government 143

Security Affairs

JULY 4, 2022

The hacker is offering the database on a popular cybercrime forum for 10 bitcoins. The Chief Executive Officer of cryptocurrency exchange Binance , Zhao Changpeng, on July 3rd, announced that the threat intelligence team of his company has detected 1 billion resident records available for sale in a cybercrime forum.

Cybercrime 145

Cybercrime Data breaches Internet Internet 145

Heimadal Security

JANUARY 16, 2023

Authorities from Bulgaria, Cyprus, Germany, and Serbia, with help from Europol and Eurojust, worked together to break up a cybercrime ring that was involved in online investment fraud. Since June 2022, when German authorities first asked for help, the European police have supported this investigation.

Cybercrime 81

Cybercrime Cryptocurrency Scams Advertising 81

Security Affairs

OCTOBER 6, 2024

A man from Indiana pleaded guilty to stealing over $37M in cryptocurrency from 571 victims during a 2022 cyberattack. In February 2022, Light participated in a cyber attack on an investment firm in Sioux Falls, South Dakota, stealing over $37,000,000 worth of cryptocurrency from 571 victims.

Cryptocurrency 127

Cryptocurrency Cyber Attacks Hacking Accountability 127

eSecurity Planet

DECEMBER 21, 2021

There are few guarantees in the IT industry, but one certainty is that as the world steps into 2022, ransomware will continue to be a primary cyberthreat. Cryptocurrency Fuels Ransomware. One constant in all this will be cryptocurrency, the coin of the realm when it comes to ransomware. It is because of the cash cow.

Cryptocurrency 138

Cryptocurrency Ransomware Cybercrime Social Engineering 138

Krebs on Security

DECEMBER 29, 2022

Thanks to your readership and support, I was able to spend more time in 2022 on some deep, meaty investigative stories — the really satisfying kind with the potential to affect positive change. Some of that work is highlighted in the 2022 Year in Review review below. agencies].

Cryptocurrency 270

Cryptocurrency Cybercrime Computers and Electronics Scams 270

Security Affairs

OCTOBER 30, 2023

A man from Orlando was sentenced to prison for SIM Swapping conspiracy that led to the theft of approximately $1M in cryptocurrency. The man was sentenced for his role in a hacking scheme that led to the theft of approximately $1M worth of cryptocurrency from dozens of victims. ” reads the press release published by DoJ.

Cryptocurrency 140

Cryptocurrency Accountability Hacking Cybercrime 140

Krebs on Security

APRIL 4, 2024

The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers. co showing the site did indeed swap out any cryptocurrency addresses.

Phishing 255

Phishing Cryptocurrency DDOS Internet 255

SecureList

NOVEMBER 10, 2022

Cryptocurrency prices were dropping from the end of 2021 and throughout the first half of 2022. Apart from cryptocurrency theft they extort digital money or illicitly mine it using victim’s devices instead of their own. Cybercriminals pay neither for equipment, nor for electricity, which is rather expensive in 2022.

Cryptocurrency 142

Cryptocurrency Malware Software Ransomware 142

Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. Taleon set up his service to facilitate transfers between Moscow, St.

Cryptocurrency 260

Cryptocurrency Cybercrime Retail Government 260

Krebs on Security

NOVEMBER 21, 2024

In August 2022, multiple security firms gained access to the server that was receiving data from that Telegram bot, which on several occasions leaked the Telegram ID and handle of its developer, who used the nickname “ Joeleoli.” Click to enlarge. The group then used their access to Twilio to attack at least 163 of its customers.

Identity Theft 228

Identity Theft Phishing Cryptocurrency Accountability 228

Security Affairs

FEBRUARY 1, 2024

Daniel James Junk (22) of Portland was sentenced to 72 months in federal prison for his role in a scheme that resulted in the theft of millions of dollars of cryptocurrency using a SIM swapping. Once hijacked a SIM, the attacker can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Cryptocurrency 141

Cryptocurrency Computers and Electronics Accountability Scams 141

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. Researchers at AT&T Alien Labs say the crooks responsible for maintaining the QakBot botnet have rented their creation to various cybercrime groups over the years.

Hacking 294

Hacking Malware Ransomware Government 294

Security Affairs

NOVEMBER 22, 2022

Aurora Stealer is an info-stealing malware that was first advertised on Russian-speaking underground forums in April 2022. In October and November 2022, the researchers analyzed several hundreds of collected samples and identified dozens of active C2 servers. . ” reads the analysis by the experts. ” concludes the report.

Cybercrime 98

Cybercrime Malware Cryptocurrency Advertising 98

Krebs on Security

NOVEMBER 14, 2024

Shefel claims the true mastermind behind the Target and other retail breaches was Dmitri Golubov , an infamous Ukrainian hacker known as the co-founder of Carderplanet, among the earliest Russian-language cybercrime forums focused on payment card fraud. “I’m also godfather of his second son.” “Hi, how are you?”

Retail 235

Retail Advertising Cryptocurrency Marketing 235

SecureList

MARCH 29, 2023

In 2022, we saw a major upgrade of the notorious Emotet botnet as well as the launch of massive campaigns by Emotet operators throughout the year. For instance, malicious spam campaigns targeting organizations grew 10-fold in April 2022, spreading Qbot and Emotet malware. of all phishing attacks in 2022.

Banking 110

Banking Phishing Cryptocurrency Mobile 110

Krebs on Security

JULY 29, 2022

The 911 service as it existed until July 28, 2022. These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source.

Cybercrime 302

Cybercrime Software VPN Backups 302

Security Affairs

JANUARY 15, 2023

An international police operation led by Europol led to the arrest of cryptocurrency scammers targeting users all over the world. The European police have supported this investigation since June 2022 following an initial request from German authorities. SecurityAffairs – hacking, cryptocurrency). Pierluigi Paganini.

Cryptocurrency 98

Cryptocurrency Computers and Electronics Advertising Backups 98

Security Affairs

NOVEMBER 21, 2024

Justice Department charged five suspects linked to the Scattered Spider cybercrime gang with wire fraud conspiracy. Justice Department charged five alleged members of the cybercrime gang Scattered Spider (also known as UNC3944 , 0ktapus ) with conspiracy to commit wire fraud. ” reads the press release published by DoJ. .

Cybercrime 73

Cybercrime Identity Theft Cryptocurrency Phishing 73

Krebs on Security

MAY 9, 2023

Ten of the domains are reincarnations of DDoS-for-hire services the FBI seized in December 2022, when it charged six U.S. They accept payment via PayPal, Google Wallet, and/or cryptocurrencies, and subscriptions can range in price from just a few dollars to several hundred per month. This is the third in a series of U.S.

DDOS 254

DDOS Cybercrime Internet Internet 254

Krebs on Security

AUGUST 16, 2022

Earlier this month, the administrator of the cybercrime forum Breached received a cease-and-desist letter from a cybersecurity firm. Such responses generally accomplish nothing, except unnecessarily upping the stakes for everyone involved while displaying a dangerous naiveté about how the cybercrime underground works.

Data breaches 302

Data breaches Banking Cybercrime Marketing 302

SecureList

MAY 27, 2022

IT threat evolution in Q1 2022. IT threat evolution in Q1 2022. IT threat evolution in Q1 2022. In January, we reported a malicious campaign targeting companies that work with cryptocurrencies, smart contracts, decentralized finance and blockchain technology: the attackers are interested in fintech in general.

Phishing 141

Phishing Spyware Firmware Malware 141

Krebs on Security

MAY 4, 2023

government this week put a $10 million bounty on the head of a Russian man who for the past 18 years operated Try2Check , one of the cybercrime underground’s most trusted services for checking the validity of stolen credit card data. In 2017, U.S. In Kulkov’s case, it no doubt was critical to U.S.

Marketing 275

Marketing Cybercrime Accountability Cryptocurrency 275

Security Affairs

APRIL 15, 2022

The cybercrime gang has been active since at least January 2020. The malware is also able to steal details from cryptocurrency wallets and load additional malware to conduct malicious operations. SecurityAffairs – hacking, cybercrime). ”” reads the analysis published by Cisco Talos. To nominate, please visit:?

Cybercrime 98

Cybercrime Malware Cryptocurrency Hacking 98

Security Affairs

JANUARY 31, 2022

Threat actors stole $80M worth of cryptocurrency from the Qubit DeFi platform by exploiting a flaw in the smart contract code used in an Ethereum bridge. The DeFi platform Qubit Finance was victim of a cyber heist, threat actors stole around $80 million in cryptocurrency last week. million), 767 BTC-B ($28.5 million), approximately $9.5

Cryptocurrency 98

Cryptocurrency Hacking Accountability Ransomware 98

Security Affairs

JUNE 8, 2022

On June 7, 2022, seizure orders allowed to seize four domains used by the operators of the SSNDOB Marketplace ( ssndob.ws , ssndob.vip , ssndob.club , and blackjob.biz ), shutting down the website’s operation. “Most funds sent to SSNDOB have come from centralized and P2P cryptocurrency exchanges, as well as other services.

Cybercrime 98

Cybercrime Cryptocurrency Marketing Advertising 98

Krebs on Security

JULY 21, 2022

“The fraud is named for the way scammers feed their victims with promises of romance and riches before cutting them off and taking all their money,” the Federal Bureau of Investigation (FBI) warned in April 2022. Many of these platforms include extensive study materials and tutorials on cryptocurrency investing.

Scams 339

Scams Cryptocurrency Marketing Internet 339

Malwarebytes

DECEMBER 5, 2022

In January of 2022 the Malwarebytes Intelligence Team uncovered a campaign where Lazarus conducted spear phishing attacks weaponized with malicious documents that used a familiar job opportunities theme. One of the group's preferred tactics is to use trojanized cryptocurrency related apps, like AppleJeus. The new campaign. Second wave.

Cryptocurrency 97

Cryptocurrency Malware Scams Cybercrime 97

Krebs on Security

DECEMBER 5, 2022

The defendants, who initially pursued a strategy of counter suing Google for interfering in their sprawling cybercrime business, later brazenly offered to dismantle the botnet in exchange for payment from Google. 2022 by Google researcher Luca Nagy. Another slide from Google researcher Luca Nagy’s September 2022 talk on Glupteba.

Cybercrime 275

Cybercrime Malware Internet Internet 275

Security Affairs

DECEMBER 27, 2022

The BTC.com cryptocurrency platform was the victim of a cyberattack that resulted in the theft of $3 million worth of crypto assets. “BIT Mining Limited, a leading technology-driven cryptocurrency mining company, today announced that the Company’s subsidiary, BTC.com, experienced a cyberattack on December 3, 2022.

Cryptocurrency 98

Cryptocurrency Technology Hacking Cybercrime 98

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. The messages said recipients had earned an investment credit at a cryptocurrency trading platform called moonxtrade[.]com. A DIRECT QUOT The domain quot[.]pw billion last year.

Scams 284

Scams DDOS Cryptocurrency Accountability 284

Krebs on Security

MARCH 7, 2022

This final post on the Conti conversations explores different schemes that Conti pursued to invest in and steal cryptocurrencies. This wealth allowed Conti to do things that regular investors couldn’t — such as moving the price of cryptocurrencies in one direction or the other. “Cryptocurrency article contest!

Ransomware 247

Ransomware Cryptocurrency DDOS Scams 247