Security Affairs

APRIL 7, 2025

Cybercriminals exploit compromised accounts for EDR-as-a-Service (Emergency Data Requests – EDR), targeting major platforms According to a detailed analysis conducted by Meridian Group, an increasingly complex and structured phenomenon, commonly referred to as EDR-as-a-Service, is taking hold in the cybersecurity landscape.

Cybercrime 137

Cybercrime Social Engineering Accountability Government 137

SecureWorld News

NOVEMBER 22, 2024

The attacks have resulted in millions of dollars in theft, including cryptocurrency and sensitive corporate data, showcasing the ongoing threat of organized cybercrime. Scattered Spider has gained infamy for its high-profile cyberattacks, including the ransomware assault on MGM Casino in 2023 , which caused widespread disruption.

Phishing 108

Phishing Identity Theft Cryptocurrency Cybercrime 108

Krebs on Security

JULY 15, 2024

Squarespace bought all assets of Google Domains a year ago, but many customers still haven’t set up their new accounts. Experts say malicious hackers learned they could commandeer any migrated Squarespace accounts that hadn’t yet been registered, merely by supplying an email address tied to an existing domain.

Accountability 328

Accountability Cryptocurrency Passwords DNS 328

Schneier on Security

NOVEMBER 28, 2022

Devices belonging to females were more likely to be snooped on, and that snooping tended to seek more sensitive data, including both sexually revealing and non-sexual pictures, documents, and financial information. […]. All of the laptops were set up with email and gaming accounts and populated with browser history across several weeks.

Antivirus 359

Antivirus Cryptocurrency Accountability Malware 359

Krebs on Security

SEPTEMBER 5, 2023

Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults. “The victim profile remains the most striking thing,” Monahan wrote.

Cryptocurrency 360

Cryptocurrency Passwords Encryption Accountability 360

Krebs on Security

JANUARY 10, 2024

A California man who lost $100,000 in a 2021 SIM-swapping attack is suing the unknown holder of a cryptocurrency wallet that harbors his stolen funds. Dellone says the crooks then used his phone number to break into his account at Coinbase and siphon roughly $100,000 worth of cryptocurrencies.

Cryptocurrency 335

Cryptocurrency Government Cybercrime Accountability 335

Krebs on Security

FEBRUARY 28, 2024

Malicious hackers are targeting people in the cryptocurrency space in attacks that start with a link added to the target’s calendar at Calendly , a popular application for scheduling appointments and meetings. The attackers impersonate established cryptocurrency investors and ask to schedule a video conference call.

Malware 326

Malware Cryptocurrency Software Phishing 326

Security Affairs

SEPTEMBER 20, 2024

The US DoJ arrested two people and charged them with stealing and laundering more than $230 million worth of cryptocurrency. The duo attempted to launder the stolen cryptocurrency through crypto exchanges and mixing services. The duo attempted to launder the stolen cryptocurrency through crypto exchanges and mixing services.

Cryptocurrency 128

Cryptocurrency Hacking Accountability Cybercrime 128

SecureList

JANUARY 13, 2022

Also, we have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income.

Cryptocurrency 145

Cryptocurrency Malware Accountability Banking 145

Krebs on Security

AUGUST 7, 2018

Police in Florida have arrested a 25-year-old man accused of being part of a multi-state cyber fraud ring that hijacked mobile phone numbers in online attacks that siphoned hundreds of thousands of dollars worth of bitcoin and other cryptocurrencies from victims. A WORRIED MOM.

Mobile 246

Mobile Cryptocurrency Computers and Electronics Scams 246

Security Affairs

NOVEMBER 6, 2021

Threat actors have stolen $55 million worth of cryptocurrency from the bZx decentralized finance (DeFi) platform. The decentralized finance (DeFi) platforms allow users to borrow/loan and speculate on cryptocurrency price variations. Contacted KuCoin to identify the hackers KuCoin account. Pierluigi Paganini.

Cryptocurrency 140

Cryptocurrency Phishing Hacking Accountability 140

Security Affairs

JULY 19, 2022

FBI has warned of crooks developing malicious cryptocurrency-themed apps to steal crypto assets from the users. Federal Bureau of Investigation (FBI) has warned of crooks creating malicious cryptocurrency-themed apps to steal crypto assets from investors. ” reads the alert. ” reads the alert. million. .”

Cryptocurrency 127

Cryptocurrency Mobile Hacking Accountability 127

Security Affairs

FEBRUARY 1, 2024

Daniel James Junk (22) of Portland was sentenced to 72 months in federal prison for his role in a scheme that resulted in the theft of millions of dollars of cryptocurrency using a SIM swapping. Once hijacked a SIM, the attacker can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Cryptocurrency 135

Cryptocurrency Computers and Electronics Accountability Scams 135

Security Affairs

OCTOBER 20, 2021

Once hijacked the channel, attackers either sell it to the highest bidder or employ it in cryptocurrency scam scheme. The malware landing page is disguised as a software download URL that was sent via email or a PDF on Google Drive, or via Google documents containing the phishing links. Pierluigi Paganini.

Accountability 144

Accountability Malware Phishing Social Engineering 144

Krebs on Security

NOVEMBER 6, 2018

that has been tracking down individuals engaged in unauthorized “SIM swaps” — a complex form of mobile phone fraud that is often used to steal large amounts of cryptocurrencies and other items of value from victims. SIM swapping attacks primarily target individuals who are visibly active in the cryptocurrency space.

Mobile 269

Mobile Cryptocurrency Accountability Passwords 269

SecureWorld News

FEBRUARY 18, 2021

And the targets in this case are widespread: banks, ATMs, cryptocurrency exchanges, online casinos, movie studios such as Sony Pictures, and theater chains such as AMC. In court documents unsealed this week, the United States Department of Justice revealed its hand to show new evidence. The list goes on. global targets.

Hacking 109

Hacking Cryptocurrency Computers and Electronics Banking 109

Krebs on Security

MARCH 26, 2024

Assuming the user manages not to fat-finger the wrong button on the umpteenth password reset request, the scammers will then call the victim while spoofing Apple support in the caller ID, saying the user’s account is under attack and that Apple support needs to “verify” a one-time code. ” Ken said.

Passwords 357

Passwords Accountability Engineering Phishing 357

Krebs on Security

MARCH 17, 2019

Illegal SIM swaps allow fraudsters to hijack a target’s phone’s number and use it to steal financial data, passwords, cryptocurrencies and other items of value from victims. And there’s nothing anyone can do to stop it except to stop using phone numbers as identity documents.” I went on Yahoo!

Accountability 278

Accountability Passwords Mobile Banking 278

Krebs on Security

AUGUST 7, 2024

A partial selfie posted by Puchmade Dev to his Twitter account. That story showed how Punchmade’s social media profiles promoted Punchmade-themed online stores selling bank account and payment card data. Yes, that is a functioning handheld card skimming device, encrusted in diamonds.

Banking 291

Banking Cybercrime Accountability Retail 291

Security Affairs

SEPTEMBER 20, 2018

billion yen ($60 million) worth of cryptocurrencies from the Japanese digital currency exchange Zaif exchange. a Japanese cryptocurrency firm, hackers have compromised its Zaif exchange and have stolen 6.7 billion yen ($60 million) worth of cryptocurrencies, including Bitcoin, Monacoin, and Bitcoin Cash. Pierluigi Paganini.

Cryptocurrency 109

Cryptocurrency Hacking Advertising Financial Services 109

Krebs on Security

OCTOBER 31, 2022

Justice Department , FBI agents have identified more than 50 million unique credentials and forms of identification (email addresses, bank accounts, cryptocurrency addresses, credit card numbers, etc.) A selfie pulled from Mark Sokolovsky’s iCloud account. Working with investigators in Italy and The Netherlands, U.S.

Malware 337

Malware Identity Theft Cybercrime Accountability 337

Krebs on Security

JULY 21, 2022

“It’s run by a fraud ring of cryptocurrency scammers who mine dating apps and other social media for victims and the scam is becoming alarmingly popular.” Many of these platforms include extensive study materials and tutorials on cryptocurrency investing. com, a scam cryptocurrency platform tied to a pig butchering scheme.

Scams 327

Scams Cryptocurrency Marketing Internet 327

Krebs on Security

APRIL 20, 2023

In many cases, the phony profiles spoofed chief information security officers at major corporations , and some attracted quite a few connections before their accounts were terminated. which owns LinkedIn, said in September 2022 that it had detected a wide range of social engineering campaigns using a proliferation of phony LinkedIn accounts.

Malware 326

Malware Software Technology Accountability 326

Malwarebytes

JULY 19, 2021

We’ve observed a 419-style scam (also known as an advance fee scam) which combines the promise of cryptocurrency riches with WhatsApp conversation. Folks already involved in cryptocurrency would likely have suspicions raised after reading the below. It’s all about that personal touch in the land of cryptocurrency scams.

Accountability 114

Accountability Scams Cryptocurrency Banking 114

SecureWorld News

FEBRUARY 9, 2022

billion in stolen cryptocurrency linked to a 2016 hack of virtual currency exchange platform Bitfinex, making it the largest seizure of its kind. The total amount of cryptocurrency the two were laundering is currently valued at approximately $4.5 based business accounts to legitimize their banking activity.". billion.

Cryptocurrency 98

Cryptocurrency Accountability Hacking Banking 98

Security Boulevard

FEBRUARY 5, 2025

By Kelly Kaoudis and Evan Sultanik This blog post highlights key points from our new white paper Preventing Account Takeovers on Centralized Cryptocurrency Exchanges, which documents ATO-related attack vectors and defenses tailored to CEXes.

Cryptocurrency 59

Cryptocurrency Accountability Passwords Risk 59

Security Affairs

FEBRUARY 10, 2022

Spanish National Police has arrested eight alleged members of a crime organization who were able to steal money from the bank accounts of the victims through SIM swapping attacks. Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Banking 123

Banking Accountability Mobile Cryptocurrency 123

Krebs on Security

AUGUST 25, 2023

Security consulting giant Kroll disclosed today that a SIM-swapping attack against one of its employees led to the theft of user information for multiple cryptocurrency platforms that are relying on Kroll services in their ongoing bankruptcy proceedings. ” A phishing message targeting FTX users that went out en masse today.

Mobile 238

Mobile Cyber Risk Data breaches Cryptocurrency 238

Krebs on Security

SEPTEMBER 14, 2020

“He said we used to use big accounting firms for this but found them to be ineffective,” Nick said. “The company they wanted us to use looked like a real accounting firm, but we couldn’t find any evidence that they were real. Also, we asked to see an investment portfolio.

Scams 352

Scams Cryptocurrency Accountability Technology 352

Malwarebytes

JULY 19, 2022

Together with the Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA), the FBI has released a warning about cybercriminals creating fraudulent cryptocurrency investment apps in order to defraud cryptocurrency investors. Stay safe, everyone!

Cryptocurrency 98

Cryptocurrency Mobile Banking Internet 98

Krebs on Security

SEPTEMBER 17, 2020

Charging documents say the seven men are part of a hacking group known variously as “ APT41 ,” “ Barium ,” “ Winnti ,” “ Wicked Panda ,” and “ Wicked Spider.” Image: FBI.

Antivirus 363

Antivirus Hacking Software Government 363

Security Affairs

DECEMBER 20, 2023

The Kingdom Market was established in March 2021, the offer of the dark web marketplace included drugs, malware, stolen data, and forged documents. Kingdom Market boasted tens of thousands of customer accounts and several hundred registered sellers, featuring a listing that comprised 42,000 items. ” states US court documents.

Marketing 129

Marketing Cryptocurrency Accountability Banking 129

SecureList

MARCH 25, 2025

Key findings Phishing Banks were the most popular lure in 2024, accounting for 42.58% of financial phishing attempts. Cryptocurrency phishing saw an 83.37% year-over-year increase in 2024, with 10.7 Consumers remained the primary target of financial cyberthreats, accounting for 73.69% of attacks. million in 2023.

Phishing 82

Phishing Banking Scams Mobile 82

Security Affairs

FEBRUARY 8, 2022

billion worth of cryptocurrency linked to the 2016 Bitfinex cryptocurrency exchange hack. Billion in stolen cryptocurrency stolen during the 2016 hack of Bitfinex. billion in cryptocurrency linked to that hack. based business accounts to legitimize activity. The law enforcement seized $3.6

Cryptocurrency 98

Cryptocurrency Hacking Accountability Marketing 98

Security Affairs

MAY 28, 2023

Bandit Stealer is a new stealthy information stealer malware that targets numerous web browsers and cryptocurrency wallets. Trend Micro researchers discovered a new info-stealing malware, dubbed Bandit Stealer, which is written in the Go language and targets multiple browsers and cryptocurrency wallets.

Cryptocurrency 98

Cryptocurrency Malware Advertising Phishing 98

SecureWorld News

AUGUST 19, 2021

Department of Justice (DOJ) announced that an Ohio resident, Larry Dean Harmon, pleaded guilty to money laundering through the use of Helix, a Dark Web cryptocurrency laundering service. Court documents say that Helix was associated with "Grams," which is a Dark Web search engine also operated by Harmon.

Cryptocurrency 98

Cryptocurrency Marketing Advertising Engineering 98

Krebs on Security

MARCH 9, 2023

Typically installed by booby-trapped Microsoft Office documents and distributed via email, NetWire is a multi-platform threat that is capable of targeting not only Microsoft Windows machines but also Android , Linux and Mac systems. DNS records for worldwiredlabs[.]com org, which is registered in Mr. Zanco’s name. ” Mr.

DNS 307

DNS Cybercrime Passwords Accountability 307