Krebs on Security

JUNE 1, 2023

This post is a deep dive on “ Megatraffer ,” a veteran Russian hacker who has practically cornered the underground market for malware focused code-signing certificates since 2015. One of Megatraffer’s ads on an English-language cybercrime forum. “Antivirus software trusts signed programs more.

Malware 304

Malware Cybercrime Software Accountability 304

Krebs on Security

OCTOBER 1, 2019

A Slovenian man convicted of authoring the destructive and once-prolific Mariposa botnet and running the infamous Darkode cybercrime forum has been arrested in Germany on request from prosecutors in the United States, who’ve recently re-indicted him on related charges. issued international arrest warrant for his extradition.

Cybercrime 45

Cybercrime Malware Antivirus Banking 45

Krebs on Security

DECEMBER 13, 2021

31, 2021, the HSE’s antivirus software detected the execution of two software tools commonly used by ransomware groups — Cobalt Strike and Mimikatz — on the Patient Zero Workstation. But the antivirus software was set to monitor mode, so it did not block the malicious commands.”

Healthcare 328

Healthcare Ransomware Antivirus Hacking 328

Security Boulevard

FEBRUARY 23, 2023

Basic solutions like antivirus deployments are certainly still important, but they are reactionary measures. While antivirus software is an essential tool for protecting against malware and other cyber threats, it does not protect against these attacks. In this new environment, the bare minimum is no longer good enough.

Antivirus 98

Antivirus DNS Threat Detection Small Business 98

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Dmitry Yuryevich Khoroshev.

Ransomware 300

Ransomware Cybercrime Accountability Malware 300

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. This bold about-face dumbfounded many longtime Norton users because antivirus firms had spent years broadly classifying all cryptomining programs as malware.

Cryptocurrency 292

Cryptocurrency Cybercrime Computers and Electronics Scams 292

Krebs on Security

JULY 8, 2019

But GandCrab far eclipsed the success of competing ransomware affiliate programs largely because its authors worked assiduously to update the malware so that it could evade antivirus and other security defenses. ru , a site which marketed dedicated Web servers to individuals involved in various cybercrime projects. Vpn-service[.]us

Ransomware 277

Ransomware Accountability Cybercrime Passwords 277

Security Affairs

JULY 18, 2024

The cybercrime group FIN7 is advertising a security evasion tool in multiple underground forums, cybersecurity company SentinelOne warns. “New evidence shows FIN7 is using multiple pseudonyms to mask the group’s true identity and sustain its criminal operations in the underground market” reads the report published by SentinelLabs.

Advertising 98

Advertising Cybercrime Hacking Ransomware 98

Security Affairs

MARCH 26, 2025

While only one sample is currently detected by antivirus tools, many others remain undetected. “Nevertheless, where compromised, hosts remain vulnerable to the delivery of any payload the operators choose to deliver, whether of their own or sold as Pay-Per-Install or Malware-as-a-Service on underground markets.”

Malware 71

Malware Adware Antivirus Marketing 71

Security Affairs

DECEMBER 18, 2023

They may use various tactics to evade antivirus and other security measures. Trade on the dark web Our research team explored some Telegram channels and Dark Web markets and found some info stealers for sale. Aspiring cybercriminals no longer require the technical skills to use info stealers and conduct cybercrime.

Banking 133

Banking Cybercrime Malware Accountability 133

SiteLock

AUGUST 27, 2021

After all, how else could you get the goods to market? And if you think that simply relying on antivirus software will get you through safely, there’s some more bad news. Some reports have suggested that today’s antivirus software can detect very few of the most dangerous types of malware – the stuff you really want to avoid.

Cybercrime 87

Cybercrime Small Business Antivirus Malware 87

Krebs on Security

MARCH 2, 2022

In July 2021, Mango told Stern that the group was placing ads on several Russian-language cybercrime forums to hire more workers. They also show with terrifying precision how adeptly a large, organized cybercrime group can pivot from a single compromised PC to completely owning a Fortune 500 company.

Ransomware 238

Ransomware Antivirus Malware Cybercrime 238

Security Affairs

MARCH 31, 2025

“The main module implements numerous techniques to evade detection by antivirus (AV) and Endpoint Detection and Response (EDRs) including call stack spoofing, sleep obfuscation, and leveraging Windows fibers.” “CoffeeLoader joins a crowded market of malware loaders. ” continues the report.

Malware 79

Malware Encryption Antivirus Marketing 79

Krebs on Security

SEPTEMBER 30, 2023

The government says Snatch used a customized ransomware variant notable for rebooting Microsoft Windows devices into Safe Mode — enabling the ransomware to circumvent detection by antivirus or endpoint protection — and then encrypting files when few services are running. cc is essentially a data market,” they continued.

Ransomware 277

Ransomware Accountability Cybercrime Backups 277

Krebs on Security

JULY 28, 2022

” Abhishek Gupta is the PR and marketing manager for Microleaves, which he said in the process of being rebranded to “ Shifter.io.” io solution, developed using the Ethereum blockchain, aims at disrupting the digital advertising market valued at more than $1 trillion USD,” Alexandru enthused. “Online[.]io

Advertising 273

Advertising Software Computers and Electronics Internet 273

Security Affairs

SEPTEMBER 29, 2022

The Brute Ratel post-exploitation toolkit has been cracked and now is available in the underground hacking and cybercrime communities. Threat actors have cracked the Brute Ratel C4 (BRC4) post-exploitation toolkit and leaked it for free in the cybercrime underground. reads the description of the tool on its website. . in, and Xss[.]is,

Hacking 117

Hacking Cybercrime Ransomware Antivirus 117

Security Boulevard

JUNE 11, 2021

As a freelancer in any industry, you are likely more susceptible to hackers and cybercrime than many other professions. Start by installing antivirus software and use it to scan your system every week for malware and viruses. Article by Beau Peters.

Cybersecurity 136

Cybersecurity Scams Backups Passwords 136

Security Affairs

APRIL 14, 2019

The crooks used malicious emails purporting to be legitimate from such entities as Western Union, Norton AntiVirus and the IRS to spread the malware. SecurityAffairs – Romanian Duo, cybercrime). The spam messages used an attached file that once executed installed onto their computer. Pierluigi Paganini.

Cryptocurrency 111

Cryptocurrency Identity Theft Advertising Accountability 111

Security Affairs

NOVEMBER 26, 2021

Threat actors are attempting to exploit the booming market for NFTs and crypto games. Babadeda is able to bypass antivirus solutions. Morphisec researchers spotted a new crypto-malware strain, tracked as Babadeda, targeting cryptocurrency, non-fungible token (NFT), and DeFi passionates through Discord channels.

Cryptocurrency 143

Cryptocurrency Malware Antivirus Phishing 143

Security Affairs

SEPTEMBER 16, 2019

Experts at ReversingLabs spotted a threat actor buying digital certificates by impersonating legitimate entities and then selling them on the black market. Researchers at ReversingLabs have identified a new threat actor that is buying digital certificates by impersonating company executives, and then selling them on the black market.

Adware 105

Adware Advertising Marketing Antivirus 105

Security Affairs

NOVEMBER 28, 2020

The news reported by ZDnet is not surprising, I have discovered several times such kind of offer, but it is important to raise awareness on the cybercrime-as-a-service model that could rapidly enable threat actors to carry out malicious activities. Exploit.in

Accountability 116

Accountability Cybercrime Hacking Retail 116

SecureWorld News

JULY 15, 2024

One of the things cybersecurity professionals should be aware of is the origin company of whatever antivirus software they are using for the organization," said Burton Kelso , TEDx and Cybersecurity Technology Speaker. Cybersecurity professionals should read the terms of service for any antivirus, VPN, or firewall software they are using.

Cybersecurity 112

Cybersecurity Antivirus Government Software 112

Security Affairs

JANUARY 7, 2021

The experts also traced significant volumes of bitcoin moving from the laundering service to Binance, Huobi, and crime markets. “Enterprises that suffer from ransomware aren’t infected because they lack up to date antivirus software or because they chose the blue vendor instead of the red vendor.”

Ransomware 145

Ransomware Cryptocurrency Antivirus Banking 145

SecureWorld News

FEBRUARY 27, 2022

The rise of cybercrime has only been exacerbated by the COVID-19 pandemic, with Interpol describing the advance of cyberattacks coming at "an alarming pace." Cybercrime has evolved—and so has cybersecurity. It was once the case that the majority of businesses could rely on a good firewall and antivirus solution.

Cybersecurity 98

Cybersecurity Cybercrime Antivirus Firewall 98

Security Affairs

APRIL 9, 2022

Experts discovered malicious Android apps on the Google Play Store masqueraded as antivirus solutions spreading the SharkBot Trojan. Some of the applications linked to these accounts were removed from Google Play, but still exist in unofficial markets.

Banking 98

Banking Antivirus Malware Accountability 98

Malwarebytes

MARCH 22, 2021

The PRODAFT Threat Intelligence Team has published a report (pdf) that gives an unusually clear look at the size and structure of organized cybercrime. EvilCorp is the name of a vast, international cybercrime network. It also found evidence of WastedLocker malware and other TTPs that matched with both EvilCorp and SolarWinds.

Cybercrime 136

Cybercrime Malware Social Engineering Marketing 136

Security Affairs

MAY 2, 2021

A new cryptocurrency stealer dubbed WeSteal is available on the cybercrime underground, unlike other commodity cryptocurrency stealers, its author doesn’t masquerade its purpose and promises “the leading way to make money in 2021.”. Experts pointed out that ComplexCodes had been selling a “WeSupply Crypto Stealer” since May 2020.,

Cryptocurrency 116

Cryptocurrency Malware Advertising System Administration 116

Security Affairs

JULY 3, 2023

Researchers spotted a new Windows information stealer called Meduza Stealer, the authors employ sophisticated marketing strategies to promote it. “But the real game-changer in their marketing strategy has been the pricing model and the added control provided to subscribers.”

Password Management 98

Password Management Passwords Malware Marketing 98

The Last Watchdog

FEBRUARY 17, 2020

Related :Promise vs. pitfalls of IoT For small- and mid-sized businesses, firewalls, antivirus suites and access management systems represent the entry stakes for participating in today’s digital economy. Botnets at the time were just emerging; they’ve since become entrenched as the engine that drives all of cybercrime.

Digital transformation 179

Digital transformation Internet Internet Firewall 179

Security Affairs

JULY 28, 2020

The purpose of this report is to deliver a devastating blow to cybercrime by uncovering key organizations sponsoring pirates and exposing the entire criminal structure of online piracy. The shutdown of two major CDNs — Moonwalk and HDGO— in 2019, and the subsequent drop of the Russian piracy market from $87 million to $63.5

Marketing 102

Marketing Banking Advertising Cybercrime 102

SiteLock

AUGUST 27, 2021

Yet in a recent report by Nationwide , only 13% of small business owners said they’d been targeted by a cyberattack, but when they saw specific examples of cybercrime — from phishing to ransomware — that number shot up to 58%. Unfortunately, this rise in cybercrime shows no signs of slowing down.

Malware 98

Malware Small Business Computers and Electronics Adware 98

Security Affairs

MAY 19, 2023

The Lemon Group cybercrime ring has reportedly pre-installed malware known as Guerilla on almost 9 million Android devices. A cybercrime group tracked has Lemon Group has reportedly pre-installed malware known as Guerilla on almost 9 million Android devices. 231 banking malware. ” reads the analysis published by Trend Micro.

Mobile 98

Mobile Advertising Malware Cybercrime 98

SecureWorld News

OCTOBER 22, 2023

Expanding your startup into new overseas markets is a tremendously exciting milestone for many ambitious business owners. You shouldn't ignore these challenges in favor of what your new markets appear like through rose-tinted glasses. So, how exactly are these challenges exacerbated when moving your operations beyond borders?

Penetration Testing 102

Penetration Testing Risk Cyber threats Marketing 102

Vipre

FEBRUARY 22, 2021

With so many endpoint security products on the market, selecting one with the optimal blend of protection, ease of use and affordability can be a challenge. We are thrilled to announce that VIPRE Endpoint Security Cloud achieved the Expert Insights Top 10 Best Antivirus Software for SMBs. Profile: Expert Insights Award Protocol.

Antivirus 45

Antivirus Marketing Cybercrime Education 45

Spinone

OCTOBER 10, 2019

Their main focus is on cybercrime investigations. Being updated with IoT security news becomes more and more important, as the global IoT market is constantly growing. According to Forbes, the IoT market may double by 2021, reaching $520 billion. Antivirus Software 2019 The primary focus of this blog is antivirus software.

Cybersecurity 56

Cybersecurity IoT Antivirus Education 56

Security Affairs

JUNE 23, 2020

Fxmsp gained worldwide fame in May 2019, after it was reported that the networks belonging to leading antivirus software companies had been compromised. Fxmsp took his first steps in the cybercrime scene in September 2016 when he registered on an underground forum, fuckav[.]ru. Geography and victims. First steps. The big fish.

Antivirus 104

Antivirus Advertising Hacking Banking 104

SecureList

APRIL 10, 2023

It’s a whole underground world with its own rules, market prices, and reputational institutions, an overview of which we present in this report. It is also clear of alerts from Google Protect and built-in antivirus on devices from different vendors. If it is possible, uninstall the app, and scan the device with an antivirus.

Malware 135

Malware Encryption Mobile Accountability 135