Security Affairs

JUNE 18, 2022

Malibot is a new Android malware targeting online banking and cryptocurrency wallet customers in Spain and Italy. F5 Labs researchers spotted a new strain of Android malware, named Malibot, that is targeting online banking and cryptocurrency wallet customers in Spain and Italy. ” concludes the report.

Banking 145

Banking Cryptocurrency Malware Mobile 145

Krebs on Security

AUGUST 25, 2021

After several years of working with investigators, Schober says he’s confident he has located two young men in the United Kingdom responsible for using a clever piece of digital clipboard-stealing malware that let them siphon his crypto holdings. universities). When Schober went to move approximately 16.4

Cryptocurrency 361

Cryptocurrency Malware Mobile Accountability 361

Malwarebytes

FEBRUARY 19, 2025

These findings come from the 2025 State of Malware report. The threat of info stealers Info stealers are a type of malware that do exactly as they saythey steal information from peoples devices. But the variety of information that these pieces of malware can steal makes them particularly dangerous.

Malware 127

Malware Software Passwords Cryptocurrency 127

Krebs on Security

NOVEMBER 9, 2024

Donahue said 60 technology companies are now routing all law enforcement data requests through Kodex, including an increasing number of financial institutions and cryptocurrency platforms. Donahue said it’s still mostly email-based phishing, and credentials that are stolen by opportunistic malware infections and sold on the dark web.

Hacking 276

Hacking Accountability Government Social Engineering 276

Security Affairs

NOVEMBER 15, 2021

Security researchers from Cleafy discovered a new Android banking trojan, named SharkBot, that is targeting banks in Europe. At the end of October, researchers from cyber security firms Cleafy and ThreatFabric have discovered a new Android banking trojan named SharkBot. ” reads the analysis published by the researchers.

Banking 144

Banking Mobile Social Engineering Malware 144

Security Affairs

AUGUST 29, 2020

Cyber Command (USCYBERCOM) North Korea-linked APT group BeagleBoyz was very active since February 2020 targeting banks across the world. The BeagleBoyz APT group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. To differentiate methods from other North Korean malicious cyber activity, the U.S.

Banking 143

Banking Malware Advertising Hacking 143

Security Affairs

AUGUST 21, 2022

A new Grandoreiro banking malware campaign is targeting organizations in Mexico and Spain, Zscaler reported. Zscaler ThreatLabz researchers observed a Grandoreiro banking malware campaign targeting organizations in the Spanish-speaking nations of Mexico and Spain. ” reads the post published by Zscaler.

Banking 108

Banking Malware Antivirus Phishing 108

Security Affairs

NOVEMBER 3, 2024

Chinese threat actors use Quad7 botnet in password-spray attacks FBI arrested former Disney World employee for hacking computer menus and mislabeling allergy info Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide PTZOptics cameras zero-days actively exploited in the wild New LightSpy spyware (..)

Cryptocurrency 109

Cryptocurrency Hacking Phishing Cyber Attacks 109

Security Affairs

FEBRUARY 21, 2022

Xenomorph Android trojan has been observed distributed via the official Google Play Store targeting 56 European banks. Researchers from ThreatFabric have spotted a new Android banking trojan, dubbed Xenomorph , distributed via the official Google Play Store that has over 50,000 installations.

Banking 138

Banking Malware Marketing Hacking 138

Security Affairs

FEBRUARY 3, 2025

The Russian-speaking Crazy Evil group runs over 10 social media scams, tricking victims into installing StealC, AMOS, and Angel Drainer malware. Since 2021, the Crazy Evil gang has become a major cybercriminal group, using phishing, identity fraud, and malware to steal cryptocurrency.

Scams 84

Scams Media Cryptocurrency Cybercrime 84

Security Affairs

MARCH 3, 2020

The Department of Justice has charged the two Chinese nationals for laundering cryptocurrency for North Korea-linked APT groups. for helping North Korea-linked hackers in laundering cryptocurrency. The cryptocurrency have been stolen by the APT groups from two cryptocurrency exchanges. and Li Jiadong (???),

Cryptocurrency 139

Cryptocurrency Banking Hacking Accountability 139

Security Affairs

JANUARY 2, 2022

North Korea-linked threat actors are behind some of the largest cyberattacks against cryptocurrency exchanges. North Korea-linked APT groups are suspected to be behind some of the largest cyberattacks against cryptocurrency exchanges. billion (2 trillion won) worth of cryptocurrency from multiple exchanges during the past five years.

Cryptocurrency 142

Cryptocurrency Cybercrime Media Government 142

Security Boulevard

SEPTEMBER 22, 2021

Cryptocurrency is best thought of as a digital currency that only exists on computers. It is transferred between peers (there is no middleman like a bank). Cryptocurrency Main Features. Cryptocurrency Main Features. Let’s dig into how cryptocurrency works. Cryptocurrencies are decentralized and distributed.

Cryptocurrency 115

Cryptocurrency Banking Encryption Education 115

Security Affairs

MAY 27, 2022

A new version of the ERMAC Android banking trojan is able to target an increased number of apps. The ERMAC Android banking trojan version 2.0 ERMAC was first spotted by researchers from Threatfabric in July 2021, it is based on the popular banking trojan Cerberus. A new #Android banker ERMAC 2.0 already has an active campaign.

Banking 145

Banking Malware Cybercrime Phishing 145

Security Affairs

SEPTEMBER 11, 2021

SOVA is a new Android banking trojan that targets banking applications, cryptocurrency wallets, and shopping apps from the U.S. The malware allows attacker to gather sensitive data from infected devices, including banking credentials and PII. SecurityAffairs – hacking, banking Trojan). Pierluigi Paganini.

Banking 113

Banking DDOS Cryptocurrency Mobile 113

CSO Magazine

MARCH 24, 2023

Italian cybersecurity firm Cleafy has found “Nexus”, a new Android Trojan capable of hijacking online accounts and siphoning funds from them, to be targeting customers from 450 banks and cryptocurrency services worldwide.

Banking 104

Banking Malware Cryptocurrency Accountability 104

Tech Republic Security

MARCH 3, 2020

Drug cartels are using cryptocurrency and partnering with hackers to scam Latin American banks.

Cryptocurrency 168

Cryptocurrency Scams Banking Malware 168

Malwarebytes

SEPTEMBER 27, 2023

Cryptocurrency owners should take heed of warnings related to Xenomorph malware—Bleeping Computer reports that the most recent version of Xenomorph now targets various cryptocurrency wallets using fake browser update messaging as bait. This on its own is already very malicious behaviour.

Cryptocurrency 123

Cryptocurrency Malware Scams Banking 123

Trend Micro

AUGUST 8, 2021

The malicious application abused sideloading vulnerabilities to load and start the Cinobi banking trojan. We found a new social engineering-based malvertising campaign targeting Japan that delivered a malicious application.

Banking 123

Banking Social Engineering Cryptocurrency Engineering 123

Security Affairs

SEPTEMBER 24, 2020

Security researchers spotted a new strain of Android malware, dubbed Alien, that implements multiple features allowing it to steal credentials from 226 apps. Alien first appeared in the threat landscape early this year, its model of sale is Malware-as-a-Service (MaaS) and is advertised on several underground hacking forums.

Banking 110

Banking Malware Advertising Architecture 110

Security Affairs

JANUARY 25, 2021

Indian cryptocurrency exchange Buyucoin suffered a security incident, threat actors leaked sensitive data of 325K users. A new incident involving a cryptocurrency exchange made the headlines, the India-based cryptocurrency exchange suffered a security incident, threat actors leaked sensitive data of 325K users on the Dark Web.

Cryptocurrency 144

Cryptocurrency Hacking InfoSec Data breaches 144

Security Affairs

OCTOBER 18, 2020

Multiple members of QQAAZZ multinational cybercriminal gang were charged for providing money-laundering services to high-profile malware operations. According to law enforcement bodies, the gang provides services to multiple malware operations, including Dridex , GozNym , and Trickbot. ” states the DoJ. ” states the DoJ.

Malware 141

Malware Banking Cryptocurrency Cybercrime 141

SecureList

JANUARY 13, 2022

BlueNoroff is the name of an APT group coined by Kaspersky researchers while investigating the notorious attack on Bangladesh’s Central Bank back in 2016. See our earlier publication about BlueNoroff attacks on the banking sector. See our earlier publication about BlueNoroff attacks on the banking sector.

Cryptocurrency 145

Cryptocurrency Malware Accountability Banking 145

eSecurity Planet

DECEMBER 21, 2021

Cryptocurrency Fuels Ransomware. One constant in all this will be cryptocurrency, the coin of the realm when it comes to ransomware. Cryptocurrency really is fueling this in a sense. … If you were to take cryptocurrency away from that, they don’t have a convenient digital platform.

Cryptocurrency 140

Cryptocurrency Ransomware Cybercrime Social Engineering 140

Bleeping Computer

APRIL 17, 2023

A new Android trojan called 'Chameleon' has been targeting users in Australia and Poland since the start of the year, mimicking the CoinSpot cryptocurrency exchange, an Australian government agency, and the IKO bank. [.]

Banking 109

Banking Cryptocurrency Malware Government 109

Security Affairs

APRIL 5, 2019

A few days ago, the researchers of ZLab Yoroi-Cybaze dissected another attack wave of the infamous Ursnif malware, also known as Gozi ISFB , an offspring of the original Gozi which source code was leaked in 2014. Ursnif/Gozi is active from over a decade and was one of the most active malware listed in 2017 and 2018.

Banking 109

Banking Malware Cryptocurrency Advertising 109

Krebs on Security

SEPTEMBER 5, 2023

Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults. “The victim profile remains the most striking thing,” Monahan wrote.

Cryptocurrency 361

Cryptocurrency Passwords Encryption Accountability 361

Malwarebytes

NOVEMBER 16, 2021

Researchers have discovered and analyzed a new Android banking Trojan that allows attackers to steal sensitive banking information such as user credentials, personal information, current balance, and even to perform gestures on the infected device. Once installed, the malware downloads an additional module from the C2.

Banking 124

Banking Financial Services Encryption Malware 124

Security Affairs

JULY 16, 2020

Researchers spotted a new Android banking trojan dubbed BlackRock malware that steals credentials and credit card data from hundreds of apps. Security experts from ThreatFabric have discovered a new Android banking trojan dubbed BlackRock that steals credentials and credit card data from a list of 337 apps.

Malware 129

Malware Banking Mobile Advertising 129

Bleeping Computer

DECEMBER 21, 2022

An Android banking malware named 'Godfather' has been targeting users in 16 countries, attempting to steal account credentials for over 400 online banking sites and cryptocurrency exchanges. [.].

Banking 81

Banking Malware Cryptocurrency Accountability 81

Penetration Testing

NOVEMBER 7, 2024

The GodFather malware has expanded its scope, now targeting over 500 banking and cryptocurrency applications across various regions worldwide, according to a report by Cyble Research and Intelligence Labs (CRIL)....

Banking 73

Banking Malware Cryptocurrency Cybersecurity 73

Security Affairs

AUGUST 19, 2020

According to the Guardicore Labs researchers, the malware already infected over 500 servers in the U.S. The malware keeps track of the available blobs by storing them in a map together with each blob’s hash value.” The commands themselves are transmitted to the malware through a series of hoops designed to avoid detection.

Cryptocurrency 145

Cryptocurrency Malware Advertising Encryption 145

Security Affairs

NOVEMBER 8, 2023

The North Korea-linked APT BlueNoroff used a new strain of macOS malware strain dubbed ObjCShellz, Jamf Threat Labs reported. Researchers from Jamf Threat Labs discovered a new macOS malware strain dubbed ObjCShellz and attributed it to North Korea-linked APT BlueNoroff. ” concludes the report.

Malware 134

Malware Cryptocurrency Social Engineering Engineering 134

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. Emerging in 2007 as a banking trojan, QakBot (a.k.a. Qakbot/Qbot was once again the top malware loader observed in the wild in the first six months of 2023.

Hacking 307

Hacking Malware Ransomware Government 307

Security Affairs

AUGUST 27, 2020

Microsoft warned of a recently uncovered piece of malware, tracked as Anubis that was designed to steal information from infected systems. This week, Microsoft warned of a recently uncovered piece of malware, tracked as Anubis, that was distributed in the wild to steal information from infected systems. Pierluigi Paganini.

Malware 138

Malware Advertising Cryptocurrency Cybercrime 138

SecureList

SEPTEMBER 28, 2023

Introduction As long as cybercriminals want to make money, they’ll keep making malware, and as long as they keep making malware, we’ll keep analyzing it, publishing reports and providing protection. Last month we covered a wide range of cybercrime topics. This blog post contains excerpts from those reports.

Banking 135

Banking Malware Cybercrime Encryption 135

Heimadal Security

DECEMBER 15, 2021

In a recent malware operation, the Anubis Android banking malware is targeting clients of approximately 400 banking institutions. The cybercriminals are attacking financial institutions, cryptocurrency wallets, and digital payment systems by posing as an Orange S.A. More on […].

Malware 112

Malware Banking Cryptocurrency Passwords 112