Accountability, Hacking and Scams - Cyber Security Informer

Account Hijacking Site OGUsers Hacked, Again

Krebs on Security

DECEMBER 2, 2020

For at least the third time in its existence, OGUsers — a forum overrun with people looking to buy, sell and trade access to compromised social media accounts — has been hacked. An offer by the apparent hackers of OGUsers, offering to remove account information from the eventual database leak in exchange for payment.

Accountability

Accountability Hacking Scams Media

Sendgrid Under Siege from Hacked Accounts

Krebs on Security

AUGUST 28, 2020

Email service provider Sendgrid is grappling with an unusually large number of customer accounts whose passwords have been cracked, sold to spammers, and abused for sending phishing and email malware attacks. “And I just am not seeing anything this egregious in terms of viruses and spams from the other email service providers.”

Accountability

Accountability Hacking Authentication Marketing

Nigerian man Sentenced to 26+ years in real estate phishing scams

Security Affairs

NOVEMBER 4, 2024

for phishing scams that stole millions by hacking email accounts. A Nigerian national was sentenced to 26 years in prison in the US for stealing millions by compromising the email accounts of real estate businesses. for phishing scams that resulted in the compromise of millions of email accounts.

Scams

Scams Phishing Identity Theft Accountability

The great Google Ads heist: criminals ransack advertiser accounts via fake Google ads

Malwarebytes

JANUARY 15, 2025

Table of contents Overview Criminals impersonate Google Ads Lures hosted on Google Sites Phishing for Google account credentials Victimology Who is behind these campaigns? The scheme consists of stealing as many advertiser accounts as possible by impersonating Google Ads and redirecting victims to fake login pages.

Advertising

Advertising Accountability Phishing Scams

A Day in the Life of a Prolific Voice Phishing Crew

Krebs on Security

JANUARY 7, 2025

Besieged by scammers seeking to phish user accounts over the telephone, Apple and Google frequently caution that they will never reach out unbidden to users this way. The phishers also abused legitimate Google services to send Tony an email from google.com, and to send a Google account recovery prompt to all of his signed-in devices.

Phishing

Phishing Cryptocurrency Accountability Social Engineering

Booking.com Phishers May Leave You With Reservations

Krebs on Security

NOVEMBER 1, 2024

.” “That said, the phishing attacks stem from partners’ machines being compromised with malware, which has enabled them to also gain access to the partners’ accounts and to send the messages that your reader has flagged,” they continued. A scan of social media networks showed this is not an uncommon scam.

Phishing

Phishing Accountability Artificial Intelligence Cybercrime

ClickFix: How to Infect Your PC in Three Easy Steps

Krebs on Security

MARCH 14, 2025

In this scam, dubbed “ ClickFix ,” the visitor to a hacked or malicious website is asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware.

Phishing

Phishing Malware Scams Passwords

Would You Have Fallen for This Phone Scam?

Krebs on Security

APRIL 28, 2020

You may have heard that today’s phone fraudsters like to use use caller ID spoofing services to make their scam calls seem more believable. “After we figured out what was going on, we were left asking ourselves how the crooks had obtained her last three transactions without breaking into her account online. .

Scams

Scams Banking Accountability Financial Services

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Krebs on Security

MARCH 10, 2020

FBI officials last week arrested a Russian computer security researcher on suspicion of operating deer.io , a vast marketplace for buying and selling stolen account credentials for thousands of popular online services and stores. also is a favored marketplace for people involved in selling phony social media accounts.

Accountability

Accountability Advertising Hacking Cybercrime

Why we’re no longer doing April Fools’ Day

Malwarebytes

MARCH 31, 2025

Were forever investigating new scams here at Malwarebytes, and so we get how hard it is to know whator whoto trust online. Theres the scam that takes advantage of grieving people and tricks them into paying for a funeral live stream. How to protect yourself from scams Watch out for a false sense of urgency. No exceptions.

Scams

Scams Passwords Accountability Password Management

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. ” One of the crypto investment scam messages promoted in the spam campaigns on Mastodon this month. . A DIRECT QUOT The domain quot[.]pw A DIRECT QUOT The domain quot[.]pw

Scams

Scams DDOS Cryptocurrency Accountability

Discord Admins Hacked by Malicious Bookmarks

Krebs on Security

MAY 30, 2023

A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised as a Web browser bookmark. Scavuzzo said the administrator’s account was hijacked even though she had multi-factor authentication turned on.

Hacking

Hacking Accountability Scams Cryptocurrency

Twitter Hacking for Profit and the LoLs

Krebs on Security

JULY 22, 2020

The New York Times last week ran an interview with several young men who claimed to have had direct contact with those involved in last week’s epic hack against Twitter. A screenshot of a Discord discussion between the key Twitter hacker “Kirk” and several people seeking to hijack high-value Twitter accounts.

Hacking

Hacking Accountability Scams Media

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Krebs on Security

NOVEMBER 21, 2024

Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. The targeted SMS scams asked employees to click a link and log in at a website that mimicked their employer’s Okta authentication page. .”

Identity Theft

Identity Theft Phishing Cryptocurrency Accountability

The Fake Browser Update Scam Gets a Makeover

Krebs on Security

OCTOBER 18, 2023

One of the oldest malware tricks in the book — hacked websites claiming visitors need to update their Web browser before they can view any content — has roared back to life in the past few months. Previously, the group had stored its malicious update files on Cloudflare, Guard.io

Scams

Scams Malware Cryptocurrency Hacking

Crooks hacked Mandiant X account to push cryptocurrency scam

Security Affairs

JANUARY 4, 2024

The X account of cybersecurity giant Mandiant was hacked, attackers used it to impersonate the Phantom crypto wallet and push a cryptocurrency scam. Crooks hacked the X account of cybersecurity firm Mandiant and used it to impersonate the Phantom crypto platform and share a cryptocurrency scam.

Cryptocurrency

Cryptocurrency Scams Accountability Hacking

FBI warns of malicious free online document converters spreading malware

Security Affairs

MARCH 24, 2025

The FBI warns of a significant increase in scams involving free online document converters to infect users with malware. “The FBI Denver Field Office is warning that agents are increasingly seeing a scam involving free online document converter tools, and we want to encourage victims to report instances of this scam.”

Malware

Malware Scams Identity Theft Antivirus

When Accounts are "Hacked" Due to Poor Passwords, Victims Must Share the Blame

Troy Hunt

NOVEMBER 7, 2018

It's just another day on the internet when the news is full of headlines about accounts being hacked. The second story was about a number of verified Twitter accounts having been "hacked" and then leveraged in Bitcoin scams. And then there's the account holder, the one who chose the password.

Passwords

Passwords Accountability Hacking Education

Two Charged in SIM Swapping, Vishing Scams

Krebs on Security

NOVEMBER 3, 2020

Two young men from the eastern United States have been hit with identity theft and conspiracy charges for allegedly stealing bitcoin and social media accounts by tricking employees at wireless phone companies into giving away credentials needed to remotely access and modify customer account information. Prosecutors say Jordan K.

Scams

Scams Wireless Identity Theft Mobile

When Low-Tech Hacks Cause High-Impact Breaches

Krebs on Security

FEBRUARY 26, 2023

Media coverage understandably focused on GoDaddy’s admission that it suffered three different cyberattacks over as many years at the hands of the same hacking group. “This guy had access to the notes, and knew the number to call,” to make changes to the account, the CEO of Escrow.com told KrebsOnSecurity.

Hacking

Hacking Social Engineering Phishing Scams

Crazy Evil gang runs over 10 highly specialized social media scams

Security Affairs

FEBRUARY 3, 2025

The Russian-speaking Crazy Evil group runs over 10 social media scams, tricking victims into installing StealC, AMOS, and Angel Drainer malware. Security experts identified six Crazy Evil’s subteams, called AVLAND, TYPED, DELAND, ZOOMLAND, DEFI, and KEVLAND, which are running targeted scams for specific victim profiles.

Scams

Scams Media Cryptocurrency Cybercrime

50 Ways to Avoid Getting Scammed on Black Friday

Adam Levin

NOVEMBER 17, 2020

Here are 50 ways to avoid getting scammed on Black Friday — and beyond. Credit cards offer markedly better fraud protections than debit cards , which connect directly to your bank account. Virtual credit cards similarly allow online shoppers to mask their financial accounts. Vary login credentials across accounts.

Scams

Scams Retail Banking Passwords

Election season raises fears for nearly a third of people who worry their vote could be leaked

Malwarebytes

OCTOBER 15, 2024

Political ads could be hiding online scams, many people feel, and the election, they say, will likely fall victim to some type of “cyber interference.” 52% are “very concerned” or “concerned” about “falling prey to a scam when interacting with political messages.” The reasons could be obvious.

Scams

Scams Identity Theft Cybercrime Accountability

A new WhatsApp OTP scam could allow the hijacking of users’ accounts

Security Affairs

MAY 30, 2022

Experts warn of a new ongoing WhatsApp OTP scam that could allow attackers to hijack users’ accounts through phone calls. Recently CloudSEK founder Rahul Sasi warned of an ongoing WhatsApp OTP scam that could allow threat actors to hijack users’ accounts through phone calls. SecurityAffairs – hacking, WhatsApp).

Scams

Scams Accountability Mobile Hacking

Mandiant's Twitter Account Restored After Six-Hour Crypto Scam Hack

The Hacker News

JANUARY 3, 2024

American cybersecurity firm and Google Cloud subsidiary Mandiant had its X (formerly Twitter) account compromised for more than six hours by an unknown attacker to propagate a cryptocurrency scam. As of writing, the account has been restored on the social media platform. It's currently not clear how the account was breached.

Scams

Scams Accountability Hacking Cryptocurrency

Red Cross Hack Linked to Iranian Influence Operation?

Krebs on Security

FEBRUARY 16, 2022

The ICRC said the hacked servers contained data relating to the organization’s Restoring Family Links services, which works to reconnect people separated by war, violence, migration and other causes. .” In their online statement about the hack (updated on Feb. Image: Ke-la.com. and other western audiences. com, sachtimes[.]com,

Hacking

Hacking Ransomware Media Accountability

FBI and DOJ seize $8.2 Million in romance baiting crypto fraud scheme

Security Affairs

MARCH 29, 2025

million in USDT stolen through ‘romance baiting’ scams, where victims are tricked into fake investments promising high returns. in USDT (Tether) linked to a ‘romance baiting’ scam. After convincing them with small returns, the scammer eventually locks accounts and disappears with the funds.

Scams

Scams Cryptocurrency Media Hacking

How to secure your Twitter Account from Hacking

Hacker's King

JANUARY 1, 2025

You may also like to read: Instagram Hacked: Top 5 Ways to Protect Your Account Ways to Secure Your Twitter Account Set a Strong Password - Setting a strong password is the very first step to secure your Twitter account. It enables us to make our accounts more secure. Be cautious with public Wi-Fi.

Accountability

Accountability Hacking Passwords Scams

PoisonSeed Campaign uses stolen email credentials to spread crypto seed scams and and empty wallets

Security Affairs

APRIL 7, 2025

A campaign named PoisonSeed uses stolen CRM and bulk email credentials to send crypto seed scams, aiming to empty victims’ digital wallets. ” The PoisonSeed campaign targets both crypto and non-crypto entities, exploiting compromised CRM and bulk email accounts. ” reads the report published by Silent Push.

Scams

Scams Cryptocurrency Phishing Cybercrime

Mandiant's Twitter account hacked to push cryptocurrency scam

Bleeping Computer

JANUARY 3, 2024

The Twitter account of American cybersecurity firm and Google subsidiary Mandiant was hijacked earlier today to impersonate the Phantom crypto wallet and share a cryptocurrency scam. [.]

Cryptocurrency

Cryptocurrency Scams Accountability Hacking

This Simple Hack Could Tank Your Business

Adam Levin

JULY 24, 2020

Barely a day goes by without news of an elite hacking team creating a more stealth exploit– malware , elaborate spear-phishing attacks, trojans, and a killer array of ransomware that can take factories and other organizations offline, or even hobble entire cities. Cyberattacks are constantly getting more sophisticated.

Hacking

Hacking Phishing Risk Accountability

18-Year-Old Hacker Gets 3 Years in Prison for Massive Twitter 'Bitcoin Scam' Hack

The Hacker News

MARCH 17, 2021

A Florida teen accused of masterminding the hacks of several high-profile Twitter accounts last summer as part of a widespread cryptocurrency scam pled guilty to fraud charges in exchange for a three-year prison sentence. Graham Ivan Clark, 18, will also serve an additional three years on probation.

Scams

Scams Hacking Cryptocurrency Accountability

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

Security Affairs

NOVEMBER 21, 2024

The cybercrime group Scattered Spider is suspected of hacking into hundreds of organizations over the past two years, including Twilio , LastPass , DoorDash , and Mailchimp. Victims included gaming, telecom, and cryptocurrency firms, with losses reaching millions in stolen cryptocurrency and data from hundreds of thousands of accounts.

Cybercrime

Cybercrime Identity Theft Cryptocurrency Phishing

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Gen AI threats and quantum computing exposures must be accounted for. Meanwhile, while business logic hacks, supply chain holes, and cyber extortion continue to loom large. Deepfake scams will escalate, with threat actors using AI to create convincing impersonations of executives, risking personal and corporate brands.

Cyber threats

Cyber threats CISO IoT Phishing

Expect More Spam Calls and SIM-Card Scams: 400 Million Phone Numbers Exposed

Adam Levin

SEPTEMBER 5, 2019

Some of the information out there was granular enough to allow a variety of scams, but the most serious is SIM-card swapping scams, where a criminal, armed with enough information about you, and most crucially your phone number, arranges to have your number moved to a phone in the criminal’s possession. . Monitor your accounts.

Scams

Scams Accountability Financial Services Insurance

Hacker Leaks 270,000 Samsung Customer Records—Stolen Credentials Were Left Unchecked for Years

eSecurity Planet

APRIL 2, 2025

The hack, attributed to a cybercriminal operating under the alias GHNA, occurred when the attacker accessed a system used by Samsungs German customer service. According to cybersecurity firm Hudson Rock, the hack was made possible by a set of stolen credentials compromised in 2021.

Identity Theft

Identity Theft Cybersecurity Scams Accountability

PlugwalkJoe Does the Perp Walk

Krebs on Security

JULY 26, 2021

One day after last summer’s mass-hack of Twitter , KrebsOnSecurity wrote that 22-year-old British citizen Joseph “PlugwalkJoe” O’Connor appeared to have been involved in the incident. From there, the attackers can reset the password for any online account that allows password resets via SMS. When the U.S.

Media

Media Hacking Accountability Scams

The Olympics: a timeline of scams, hacks, and malware

Malwarebytes

JULY 28, 2021

And while actual, measurable cyberrattacks and hacks surrounding The Olympics did not truly get rolling until 2008 in Beijing, The Olympic games have traditionally been quite the target for malicious acts of all kinds, dating back years. It was also the first major Olympics event where organizers braced for hacking related impact.

Scams

Scams Hacking Malware Mobile

SEC X account hacked to hawk crypto-scams

Malwarebytes

JANUARY 10, 2024

We have seen several high-profile accounts that were taken over on X (formerly Twitter) only to be used for cryptocurrency related promotional activities, like expressing the approval of exchange-traded funds (ETFs). The @SECGov X account was compromised, and an unauthorized post was posted. You’re all set.

Accountability

Accountability Scams Hacking Cryptocurrency

We Infiltrated a Counterfeit Check Ring! Now What?

Krebs on Security

JUNE 30, 2021

A counterfeit check image [redacted] that was intended for a person helping this fraud gang print and mail phony checks tied to a raft of email-based scams. the “car wrap” scam ). A few days after the check is deposited, it gets invariably canceled by the organization whose bank account information was on the check.

Scams

Scams Banking Accountability Cybercrime

Incognito Darknet Market Mass-Extorts Buyers, Sellers

Krebs on Security

MARCH 11, 2024

The bold mass extortion attempt comes just days after Incognito Market administrators reportedly pulled an “exit scam” that left users unable to withdraw millions of dollars worth of funds from the platform. 6 that Incognito was exit-scamming its users out of their bitcoins and Monero deposits. ALL of them are Exit Scams.

Marketing

Marketing Scams Cryptocurrency Cybercrime

X Account of leading cybersecurity firm Mandiant was hacked because not adequately protected

Security Affairs

JANUARY 11, 2024

The X account of cybersecurity firm Mandiant was likely hacked through a brute-force password attack, the company revealed. Last week, threat actors hacked the X account of cybersecurity firm Mandiant and used it to impersonate the Phantom crypto platform and share a cryptocurrency scam.

Accountability

Accountability Hacking Cryptocurrency Cybersecurity

Instagram Hacked: Steps to Prevent Data Breaches

Hacker's King

DECEMBER 28, 2024

Data breaches and account hacks are a growing concern for users, especially with the personal and professional information shared on the platform. If youre worried about your Instagram account being hacked , it's essential to take proactive steps to protect your data. Revoke access to any app you no longer use or trust.

Data breaches

Data breaches Hacking Passwords Accountability

Mandiant’s account on X hacked to push cryptocurrency scam

Bleeping Computer

JANUARY 3, 2024

The Twitter account of American cybersecurity firm and Google subsidiary Mandiant was hijacked earlier today to impersonate the Phantom crypto wallet and share a cryptocurrency scam. [.]

Cryptocurrency

Cryptocurrency Scams Accountability Hacking

Account Hijacking Site OGUsers Hacked, Again

Sendgrid Under Siege from Hacked Accounts

Trending Sources

Nigerian man Sentenced to 26+ years in real estate phishing scams

The great Google Ads heist: criminals ransack advertiser accounts via fake Google ads

A Day in the Life of a Prolific Voice Phishing Crew

Booking.com Phishers May Leave You With Reservations

ClickFix: How to Infect Your PC in Three Easy Steps

Would You Have Fallen for This Phone Scam?

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Why we’re no longer doing April Fools’ Day

Interview With a Crypto Scam Investment Spammer

Discord Admins Hacked by Malicious Bookmarks

Twitter Hacking for Profit and the LoLs

Feds Charge Five Men in ‘Scattered Spider’ Roundup

The Fake Browser Update Scam Gets a Makeover

Crooks hacked Mandiant X account to push cryptocurrency scam

FBI warns of malicious free online document converters spreading malware

When Accounts are "Hacked" Due to Poor Passwords, Victims Must Share the Blame

Two Charged in SIM Swapping, Vishing Scams

When Low-Tech Hacks Cause High-Impact Breaches

Crazy Evil gang runs over 10 highly specialized social media scams

50 Ways to Avoid Getting Scammed on Black Friday

Election season raises fears for nearly a third of people who worry their vote could be leaked

A new WhatsApp OTP scam could allow the hijacking of users’ accounts

Mandiant's Twitter Account Restored After Six-Hour Crypto Scam Hack

Red Cross Hack Linked to Iranian Influence Operation?

FBI and DOJ seize $8.2 Million in romance baiting crypto fraud scheme

How to secure your Twitter Account from Hacking

PoisonSeed Campaign uses stolen email credentials to spread crypto seed scams and and empty wallets

Mandiant's Twitter account hacked to push cryptocurrency scam

This Simple Hack Could Tank Your Business

18-Year-Old Hacker Gets 3 Years in Prison for Massive Twitter 'Bitcoin Scam' Hack

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

Expect More Spam Calls and SIM-Card Scams: 400 Million Phone Numbers Exposed

Hacker Leaks 270,000 Samsung Customer Records—Stolen Credentials Were Left Unchecked for Years

PlugwalkJoe Does the Perp Walk

The Olympics: a timeline of scams, hacks, and malware

SEC X account hacked to hawk crypto-scams

We Infiltrated a Counterfeit Check Ring! Now What?

Incognito Darknet Market Mass-Extorts Buyers, Sellers

X Account of leading cybersecurity firm Mandiant was hacked because not adequately protected

Instagram Hacked: Steps to Prevent Data Breaches

Mandiant’s account on X hacked to push cryptocurrency scam

Stay Connected