Schneier on Security

SEPTEMBER 6, 2023

The cryptocurrency fintech startup Prime Trust lost the encryption key to its hardware wallet—and the recovery key—and therefore $38.9 It is now in bankruptcy. I can’t understand why anyone thinks these technologies are a good idea.

Cryptocurrency 334

Cryptocurrency Encryption Technology 334

Schneier on Security

MARCH 3, 2023

Nicholas Weaver wrote an excellent paper on the problems of cryptocurrencies and the need to regulate the space—with all existing regulations. As such, the cryptocurrency space has grown over the past decade with very little regulatory oversight. When regulating cryptocurrencies, the best starting point is history.

Cryptocurrency 274

Cryptocurrency Risk Marketing 274

Schneier on Security

JUNE 24, 2022

Earlier this month, I and others wrote a letter to Congress, basically saying that cryptocurrencies are an complete and total disaster, and urging them to regulate the space. Green writes: “I have no problem with the idea of legislators (intelligently) passing laws to regulate cryptocurrency. ” I have yet to see one.

Cryptocurrency 364

Cryptocurrency Technology Scams Government 364

Krebs on Security

NOVEMBER 21, 2020

Fraudsters redirected email and web traffic destined for several cryptocurrency trading platforms over the past week. 13, with an attack on cryptocurrency trading platform liquid.com. The attacks were facilitated by scams targeting employees at GoDaddy , the world’s largest domain name registrar, KrebsOnSecurity has learned.

Cryptocurrency 363

Cryptocurrency VPN Scams Social Engineering 363

Joseph Steinberg

JUNE 9, 2021

The post How The FBI Seized Bitcoin from Colonial Pipeline Hackers – Does Law Enforcement Have More Control Over Cryptocurrencies Than People Believe? Seizing can also be done through other methods – all of which typically require knowing the private key of the origination address.).

Cryptocurrency 362

Cryptocurrency Artificial Intelligence Government Hacking 362

Schneier on Security

SEPTEMBER 9, 2022

Stewart Baker discusses why the industry-norm responsible disclosure for software vulnerabilities fails for cryptocurrency software. Why can’t the cryptocurrency industry solve the problem the way the software and hardware industries do, by patching and updating security as flaws are found?

Cryptocurrency 233

Cryptocurrency Software Engineering Passwords 233

Schneier on Security

NOVEMBER 22, 2021

I have long been annoyed that the word “crypto” has been co-opted by the blockchain people, and no longer refers to “cryptography.” ” I’m not the only one.

Cryptocurrency 338

Cryptocurrency 338

Schneier on Security

APRIL 4, 2023

News : Researchers at Russian cybersecurity firm Kaspersky today revealed that they identified a small number of cryptocurrency-focused firms as at least some of the victims of the 3CX software supply-chain attack that’s unfolded over the past week.

Cryptocurrency 221

Cryptocurrency Hacking Software Cybersecurity 221

Schneier on Security

SEPTEMBER 18, 2023

Remember last November, when hackers broke into the network for LastPass—a password database—and stole password vaults with both encrypted and plaintext data for over 25 million users? Well, they’re now using that data break into crypto wallets and drain them: $35 million and counting, all going into a single wallet.

Cryptocurrency 315

Cryptocurrency Hacking Passwords Encryption 315

Tech Republic Security

FEBRUARY 16, 2023

The post Cryptocurrency users in the US hit by ransomware and Clipper malware appeared first on TechRepublic. Learn how to protect your business and staff from the MortalKombat ransomware and Laplas Clipper malware.

Cryptocurrency 215

Cryptocurrency Malware Ransomware Phishing 215

Schneier on Security

JULY 26, 2021

This is where the suggestion to ban cryptocurrencies as a way to “solve” ransomware comes from. In this light, banning cryptocurrencies like bitcoin is an obvious solution. We suggest an easier alternative: merely disrupt the cryptocurrency markets. The second is a safe way of collecting ransoms: bitcoin.

Ransomware 363

Ransomware Cryptocurrency Banking Accountability 363

Penetration Testing

NOVEMBER 29, 2024

Cybersecurity researchers at ReversingLabs have uncovered a stealthy supply chain attack targeting cryptocurrency wallets via the PyPI repository.

Cryptocurrency 107

Cryptocurrency Cybersecurity Malware 107

The Hacker News

DECEMBER 5, 2024

As many as 77 banking institutions, cryptocurrency exchanges, and national organizations have become the target of a newly discovered Android remote access trojan (RAT) called DroidBot.

Cryptocurrency 135

Cryptocurrency Banking Spyware 135

Malwarebytes

AUGUST 2, 2024

The Federal Bureau of Investigation (FBI) issued a public service announcement warning the public about scammers impersonating cryptocurrency exchange employees to steal funds. With cryptocurrency exchanges, this is often not true. Some crypto-related scams often deploy imposter websites which are hard to discern from the real ones.

Cryptocurrency 137

Cryptocurrency Scams Accountability Identity Theft 137

The Hacker News

JULY 18, 2024

Indian cryptocurrency exchange WazirX has confirmed that it was the target of a security breach that led to the theft of $230 million in cryptocurrency assets. "A A cyber attack occurred in one of our [multi-signature] wallets involving a loss of funds exceeding $230 million," the company said in a statement.

Cryptocurrency 143

Cryptocurrency Cyber Attacks 143

The Hacker News

SEPTEMBER 17, 2024

Cryptocurrency exchange Binance is warning of an "ongoing" global threat that's targeting cryptocurrency users with clipper malware with the goal of facilitating financial fraud.

Cryptocurrency 138

Cryptocurrency Malware 138

Schneier on Security

AUGUST 10, 2023

Cryptographic flaws still matter. Here’s a flaw in the random-number generator used to create private keys. The seed has only 32 bits of entropy. Seems like this flaw is being exploited in the wild.

Cryptocurrency 222

Cryptocurrency 222

Krebs on Security

JANUARY 6, 2022

Norton 360 , one of the most popular antivirus products on the market today, has installed a cryptocurrency mining program on its customers’ computers. According to the FAQ posted on its site , “ Norton Crypto ” will mine Ethereum (ETH) cryptocurrency while the customer’s computer is idle.

Cryptocurrency 357

Cryptocurrency Computers and Electronics Antivirus Identity Theft 357

The Hacker News

SEPTEMBER 12, 2024

Cybersecurity researchers have uncovered a new malware campaign targeting Linux environments to conduct illicit cryptocurrency mining. The activity, which specifically singles out the Oracle Weblogic server, is designed to deliver malware dubbed Hadooken, according to cloud security firm Aqua.

Cryptocurrency 144

Cryptocurrency Malware Cybersecurity 144

The Hacker News

JUNE 18, 2024

Cybersecurity researchers have uncovered a new malware campaign that targets publicly exposed Docket API endpoints with the aim of delivering cryptocurrency miners and other payloads.

Cryptocurrency 140

Cryptocurrency Malware Cybersecurity 140

The Hacker News

JULY 9, 2024

Cybersecurity researchers have found that it's possible for attackers to weaponize improperly configured Jenkins Script Console instances to further criminal activities such as cryptocurrency mining.

Cryptocurrency 139

Cryptocurrency Authentication Cybersecurity 139

Security Affairs

SEPTEMBER 20, 2024

The US DoJ arrested two people and charged them with stealing and laundering more than $230 million worth of cryptocurrency. The duo attempted to launder the stolen cryptocurrency through crypto exchanges and mixing services. The duo attempted to launder the stolen cryptocurrency through crypto exchanges and mixing services.

Cryptocurrency 136

Cryptocurrency Hacking Accountability Cybercrime 136

Schneier on Security

FEBRUARY 10, 2021

Analyzing cryptocurrency data, a research group has estimated a lower-bound on 2020 ransomware revenue: $350 million, four times more than in 2019.

Ransomware 335

Ransomware Cryptocurrency 335

Schneier on Security

SEPTEMBER 10, 2024

According to Microsoft researchers, North Korean hackers have been using a Chrome zero-day exploit to steal cryptocurrency.

Cryptocurrency 270

Cryptocurrency 270

The Hacker News

OCTOBER 3, 2024

Linux servers are the target of an ongoing campaign that delivers a stealthy malware dubbed perfctl with the primary aim of running a cryptocurrency miner and proxyjacking software.

Cryptocurrency 141

Cryptocurrency Malware Software 141

The Hacker News

MAY 28, 2024

over charges of stealing more than $37 million by setting up a website that impersonated the Coinbase cryptocurrency exchange platform. An Indian national has pleaded guilty in the U.S. Chirag Tomar, 30, pleaded guilty to wire fraud conspiracy, which carries a maximum sentence of 20 years in prison and a $250,000 fine.

Cryptocurrency 136

Cryptocurrency 136

Security Affairs

OCTOBER 6, 2024

A man from Indiana pleaded guilty to stealing over $37M in cryptocurrency from 571 victims during a 2022 cyberattack. In February 2022, Light participated in a cyber attack on an investment firm in Sioux Falls, South Dakota, stealing over $37,000,000 worth of cryptocurrency from 571 victims.

Cryptocurrency 127

Cryptocurrency Cyber Attacks Hacking Accountability 127

The Hacker News

NOVEMBER 8, 2024

The 36-year-old founder of the Bitcoin Fog cryptocurrency mixer has been sentenced to 12 years and six months in prison for facilitating money laundering activities between 2011 and 2021.

Cryptocurrency 137

Cryptocurrency 137

The Hacker News

JUNE 28, 2024

Security researchers have shed more light on the cryptocurrency mining operation conducted by the 8220 Gang by exploiting known security flaws in the Oracle WebLogic Server.

Cryptocurrency 132

Cryptocurrency Malware 132

Krebs on Security

SEPTEMBER 5, 2023

Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults. “The victim profile remains the most striking thing,” Monahan wrote.

Cryptocurrency 362

Cryptocurrency Passwords Encryption Accountability 362

Krebs on Security

AUGUST 25, 2021

In a lawsuit filed in Colorado, Schober said the sudden disappearance of his funds in January 2018 prompted him to spend more than $10,000 hiring experts in the field of tracing cryptocurrency transactions. universities). When Schober went to move approximately 16.4 When Schober went to move approximately 16.4

Cryptocurrency 349

Cryptocurrency Malware Mobile Accountability 349

Krebs on Security

JANUARY 8, 2022

For example, it doesn’t specify how much NortonLifeLock gets out of the deal (NortonLifeLock keeps 15 percent of any cryptocurrency mined by Norton Crypto). “Avira Crypto allows you to use your computer’s idle time to mine the cryptocurrency Ethereum (ETH),” the FAQ explains.

Antivirus 362

Antivirus Cryptocurrency Identity Theft Software 362

Penetration Testing

AUGUST 22, 2024

” On... The post McDonald’s Falls Victim to Cyberattack: Instagram Hijacked to Promote Grimace Cryptocurrency appeared first on Cybersecurity News.

Cryptocurrency 128

Cryptocurrency Accountability Cybersecurity 128

Schneier on Security

NOVEMBER 16, 2021

After the mark is convinced, the scammer will have them get cash (sometimes out of investment or retirement accounts), and head to an ATM that sells cryptocurrencies and supports reading QR codes. With wire transfers, you have to fill out a form, and you may give that form to an actual person (who could potentially vibe check you).

Scams 309

Scams Cryptocurrency Banking Internet 309

Krebs on Security

AUGUST 13, 2021

A new dark web service is marketing to cybercriminals who are curious to see how their various cryptocurrency holdings and transactions may be linked to known criminal activity. “The likes of ransomware and darknet markets rely on payments being made in Bitcoin and other cryptocurrencies. ” That may not be entirely true.

Cryptocurrency 340

Cryptocurrency Marketing Ransomware Financial Services 340

Schneier on Security

OCTOBER 14, 2024

The researchers are calling the malware Perfctl, the name of a malicious component that surreptitiously mines cryptocurrency. Besides using the machine resources to mine cryptocurrency, Perfctl also turns the machine into a profit-making proxy that paying customers use to relay their Internet traffic.

Malware 234

Malware Cryptocurrency Internet Internet 234

Krebs on Security

DECEMBER 16, 2021

A 24-year-old New York man who bragged about helping to steal more than $20 million worth of cryptocurrency from a technology executive has pleaded guilty to conspiracy to commit wire fraud. Following the theft, Terpin filed a civil lawsuit against Truglia with the Los Angeles Superior court.

Cryptocurrency 354

Cryptocurrency Mobile Accountability Scams 354