Krebs on Security

NOVEMBER 9, 2024

For example, in its most recent transparency report (PDF) Verizon said it received more than 127,000 law enforcement demands for customer data in the second half of 2023 — including more than 36,000 EDRs — and that the company provided records in response to approximately 90 percent of requests.

Hacking 278

Hacking Accountability Government Social Engineering 278

SecureWorld News

NOVEMBER 22, 2024

The United States Department of Justice (DOJ) has unsealed charges against five individuals accused of orchestrating sophisticated phishing campaigns tied to the notorious Scattered Spider cybercrime group. If something about the text or email you received or website you're viewing seems off, it probably is." "The

Phishing 102

Phishing Identity Theft Cryptocurrency Cybercrime 102

Krebs on Security

JUNE 15, 2024

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider , a cybercrime group suspected of hacking into Twilio , LastPass , DoorDash , Mailchimp , and nearly 130 other organizations over the past two years. man arrested was a SIM-swapper who went by the alias “ Tyler.”

Hacking 333

Hacking Cybercrime Phishing Passwords 333

Security Affairs

NOVEMBER 15, 2024

. “Ilya Lichtenstein was sentenced today to five years in prison for his involvement in a money laundering conspiracy arising from the hack and theft of approximately 120,000 bitcoin from Bitfinex, a global cryptocurrency exchange.” Billion in stolen cryptocurrency stolen during the 2016 hack of Bitfinex.

Cryptocurrency 105

Cryptocurrency Hacking Government Accountability 105

Krebs on Security

JANUARY 10, 2024

A California man who lost $100,000 in a 2021 SIM-swapping attack is suing the unknown holder of a cryptocurrency wallet that harbors his stolen funds. Dellone says the crooks then used his phone number to break into his account at Coinbase and siphon roughly $100,000 worth of cryptocurrencies.

Cryptocurrency 332

Cryptocurrency Government Cybercrime Accountability 332

Security Affairs

OCTOBER 3, 2023

Zscaler ThreatLabz researchers discovered a new malware-as-a-service (MaaS) that is called BunnyLoader, which has been advertised for sale in multiple cybercrime forums since September 4, 2023. On September 15, 2023 the authors released BunnyLoader v1.7 Sept 15, 2023 Implemented additional AV evasion BunnyLoader v1.8

Advertising 138

Advertising Cybercrime Malware Cryptocurrency 138

Bleeping Computer

JANUARY 1, 2024

In 2023, we saw numerous law enforcement operations targeting cybercrime operations, including cryptocurrency scams, phishing attacks, credential theft, malware development, and ransomware attacks. [.]

Cybercrime 92

Cybercrime Cryptocurrency Scams Phishing 92

Security Affairs

AUGUST 23, 2024

court for his role in the Karakurt cybercrime gang. court for his role in the Russian Karakurt cybercrime gang. The man was arrested in Georgia in December 2023 and recently extradited to the U.S. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, cybercrime)

Cybercrime 122

Cybercrime VPN Cryptocurrency Hacking 122

Security Affairs

MARCH 15, 2024

US DoJ sentenced a Moldovan national (31) to 42 months in federal prison for operating the E-Root cybercrime marketplace. Diaconu was operating the E-Root cybercrime marketplace. Diaconu pleaded guilty on December 1, 2023. ” reads the press release published by DoJ. The authorities also seized the exchange platform.

Cybercrime 132

Cybercrime Cryptocurrency Advertising Passwords 132

SecureList

MAY 6, 2024

Methodology In this report, we present an analysis of financial cyberthreats in 2023, focusing on banking Trojans and phishing pages that target online banking, shopping accounts, cryptocurrency wallets and other financial assets. Cryptocurrency phishing saw a 16% year-on-year increase in 2023, with 5.84 million in 2022.

Phishing 134

Phishing Banking Mobile Scams 134

Krebs on Security

APRIL 4, 2024

The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers. co showing the site did indeed swap out any cryptocurrency addresses.

Phishing 271

Phishing Cryptocurrency DDOS Internet 271

Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. A screenshot of a website reviewing PM2BTC.

Cryptocurrency 292

Cryptocurrency Cybercrime Retail Government 292

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. stole at least $800,000 from at least five victims between August 2022 and March 2023. 9, 2024, U.S. technology companies during the summer of 2022.

Social Engineering 356

Social Engineering Mobile Passwords Cybercrime 356

Security Affairs

OCTOBER 30, 2023

A man from Orlando was sentenced to prison for SIM Swapping conspiracy that led to the theft of approximately $1M in cryptocurrency. The man was sentenced for his role in a hacking scheme that led to the theft of approximately $1M worth of cryptocurrency from dozens of victims. ” reads the press release published by DoJ.

Cryptocurrency 135

Cryptocurrency Accountability Hacking Cybercrime 135

SecureList

NOVEMBER 9, 2022

What cyberthreats for business will be the greatest in 2023? The ongoing geopolitical storm brings not only classical cyberthreats for business, but also unpredictable risks and ‘black swans’ The main problem for 2023 will be supply-chain stability and cybersecurity. Threat modeling approaches will be changed in 2023.

Cybersecurity 145

Cybersecurity Cyber Insurance Cybercrime IoT 145

Malwarebytes

FEBRUARY 19, 2025

Some info stealers dont even require an additional stepthey can take cryptocurrency directly from a victims online accounts. But in the world of cybercrime, malware features only mean so much. Another important piece of cybercrime is getting malware onto a device to begin with. They are wildly adaptable.

Malware 128

Malware Software Passwords Cryptocurrency 128

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. Qakbot/Qbot was once again the top malware loader observed in the wild in the first six months of 2023. Source: Reliaquest.com.

Hacking 308

Hacking Malware Ransomware Government 308

SecureList

MARCH 25, 2025

Note that for mobile banking malware, we retrospectively revised the 2023 numbers to provide more accurate statistics. We also changed the methodology for PC banking malware by removing obsolete families that no longer use Trojan banker functionality, hence the sharp drop in numbers against 2023. million in 2023.

Phishing 71

Phishing Banking Scams Mobile 71

Krebs on Security

SEPTEMBER 13, 2024

A cyberattack that shut down two of the top casinos in Las Vegas last year quickly became one of the most riveting security stories of 2023: It was the first known case of native English-speaking hackers in the United States and Britain teaming up with ransomware gangs based in Russia. Image: Shutterstock.

Cybercrime 319

Cybercrime Accountability Mobile Hacking 319

Security Affairs

MARCH 3, 2025

authorities have recovered $31 million in cryptocurrency stolen during the 2021 cyberattacks on Uranium Finance. authorities recovered $31 million in cryptocurrency stolen in 2021 cyberattacks on Uranium Finance, which is a decentralized finance (DeFi) protocol built on Binances BNB Chain.

Cryptocurrency 64

Cryptocurrency Hacking Cyber Attacks Marketing 64

Krebs on Security

DECEMBER 29, 2022

I will also continue to post on LinkedIn about new stories in 2023. Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. Super Bowl Sunday watchers are treated to no fewer than a half-dozen commercials for cryptocurrency investing. agencies]. .”

Cryptocurrency 288

Cryptocurrency Cybercrime Computers and Electronics Scams 288

Tech Republic Security

JULY 21, 2023

The Europol report also reported on cybercriminals' use of cryptocurrencies and how their techniques are more sophisticated. However, there was good cybersecurity news, too.

Cryptocurrency 148

Cryptocurrency Cybersecurity Cybercrime Ransomware 148

SecureList

NOVEMBER 22, 2022

A look back on the year 2022 and what to expect in 2023. This report assesses how accurately we predicted the developments in the financial threats landscape in 2022 and ponder at what to expect in 2023. Cryptocurrency targeted attacks. These are attractive aspects that cybercrime groups will be unable to resist.

Cryptocurrency 107

Cryptocurrency Mobile Ransomware Banking 107

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. Chaput said that on May 4, 2023, someone unleashed a spam torrent targeting users on these Mastodon communities via “private mentions,” a kind of direct messaging on the platform.

Scams 300

Scams DDOS Cryptocurrency Accountability 300

Krebs on Security

FEBRUARY 20, 2024

In May 2023, U.S. In January 2022, KrebsOnSecurity published Who is the Network Access Broker ‘Wazawaka,’ which followed clues from Wazawaka’s many pseudonyms and contact details on the Russian-language cybercrime forums back to a 31-year-old Mikhail Matveev from Abaza, RU. An FBI wanted poster for Matveev.

Ransomware 326

Ransomware Cybercrime Encryption Insurance 326

CyberSecurity Insiders

JUNE 19, 2023

While cryptocurrencies have been celebrated for their potential to revolutionize finance, their anonymous nature has also been exploited for illicit activities. From drug dealing and arms trafficking to funding terrorism, black market activities have thrived under the cloak of cryptocurrency’s pseudonymity.

Cryptocurrency 101

Cryptocurrency Technology Banking Cybercrime 101

Security Affairs

SEPTEMBER 21, 2024

Cybercriminals stole more than $44 million worth of cryptocurrency from the Singaporean crypto platform BingX. Threat actors stole over $44 million worth of cryptocurrency. Additionally, the median theft size increased by one-and-a-half times from 2023. Singaporean crypto platform BingX reported a cyberattack on Friday.

Cryptocurrency 139

Cryptocurrency Hacking Cybercrime Media 139

Security Affairs

JANUARY 3, 2024

Crypto platform Orbit Chain suffered a cyberattack, threat actors have stolen more than $81 million worth of cryptocurrency. Orbit Chain has suffered a security breach that has resulted in the theft of more than $81 million worth of cryptocurrency. The unauthorized transactions began on December 31, 2023.

Cryptocurrency 141

Cryptocurrency Internet Internet Cybercrime 141

Krebs on Security

AUGUST 25, 2023

Security consulting giant Kroll disclosed today that a SIM-swapping attack against one of its employees led to the theft of user information for multiple cryptocurrency platforms that are relying on Kroll services in their ongoing bankruptcy proceedings. ” T-Mobile has not yet responded to requests for comment.

Mobile 233

Mobile Cyber Risk Data breaches Cryptocurrency 233

Security Affairs

MARCH 15, 2023

CrowdStrike researchers discovered the first-ever cryptocurrency mining campaign aimed at Dero mining since February 2023. It claims to offer improved privacy, anonymity and higher monetary rewards compared to other cryptocurrencies. The campaign started in February 2023 and originated from three servers based in the U.S.

Cryptocurrency 98

Cryptocurrency Internet Internet Hacking 98

Security Affairs

OCTOBER 8, 2023

North Korea-linked APT group Lazarus has laundered $900 million worth of cryptocurrency, Elliptic researchers reported. North Korea-linked Lazarus Group laundered $900 Million in cryptocurrency between July 2022 and July 2023. ” reads the report published by Elliptic. ” reads the report published by Elliptic.

Cryptocurrency 140

Cryptocurrency Cybercrime Scams Hacking 140

Krebs on Security

NOVEMBER 2, 2023

One of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. Services like SWAT are known as “Drops for stuff” on cybercrime forums. The login page for the criminal reshipping service SWAT USA Drop.

Cybercrime 327

Cybercrime Marketing Scams Retail 327

Security Affairs

DECEMBER 21, 2024

” Romanian authorities arrested Daniel Hulea on July 11, 2023, in Cluj, and extradited him to the U.S. in cryptocurrency obtained from ransom payments. .” reads the press release published by DoJ. “He was also ordered to pay $14,991,580.01 in restitution.” under the U.S.-Romania Romania extradition treaty.

Ransomware 107

Ransomware Healthcare Government Cryptocurrency 107

Security Affairs

JANUARY 14, 2024

million) worth of cryptocurrencies via mining activities. million) in cryptocurrencies.” million) in cryptocurrencies.” In cryptojacking scheme, threat actors gain unauthorized access to a cloud environment and abuse its computational power to mine cryptocurrencies. ” continues the press release.

Cryptocurrency 134

Cryptocurrency Cybercrime Accountability Authentication 134

Security Affairs

MARCH 23, 2024

An operation conducted by the Federal Criminal Police Office in Germany (BKA) and the Frankfurt cybercrime combating unit (ZIT) led to the seizure of the infrastructure of the darknet marketplace Nemesis Market in Germany and Lithuania. The law enforcement confiscated about 94,000 euros worth of cryptocurrencies.

Marketing 131

Marketing Cybercrime DDOS Internet 131

Security Boulevard

MARCH 9, 2025

Details here British Library Cyberattack: A Wake-Up Call In October 2023, the British Library suffered a significant ransomware attack by the Rhysida group, leading to the theft of approximately 600GB of data. The attack disrupted services, delayed payments to authors, and highlighted vulnerabilities in cultural institutions.

Cybersecurity 59

Cybersecurity Engineering Big data Software 59

Security Affairs

FEBRUARY 6, 2024

A Belarusian and Cypriot national linked with the cryptocurrency exchange BTC-e is facing charges that can lead maximum penalty of 25 years in prison. BTC-e was popular in the cybercrime ecosystem, it was an illegal platform because it was not registered as a money services business with the U.S. million withdrawn.

Cryptocurrency 128

Cryptocurrency Spyware Cybercrime Hacking 128