Security Affairs

NOVEMBER 15, 2024

. “Ilya Lichtenstein was sentenced today to five years in prison for his involvement in a money laundering conspiracy arising from the hack and theft of approximately 120,000 bitcoin from Bitfinex, a global cryptocurrency exchange.” Billion in stolen cryptocurrency stolen during the 2016 hack of Bitfinex.

Cryptocurrency 106

Cryptocurrency Hacking Government Accountability 106

Security Affairs

JANUARY 10, 2025

Check Point researchers discovered a new version of the Banshee macOS infostealer which is distributed through phishing websites and fake GitHub repositories, often masqueraded as popular software. The malicious code was advertised on cybercrime forums for $3,000 per month.

Malware 121

Malware Advertising Antivirus Cybercrime 121

Krebs on Security

MAY 29, 2024

.” The arrest coincided with the seizure of the 911 S5 website and supporting infrastructure, which the government says turned computers running various “free VPN” products into Internet traffic relays that facilitated billions of dollars in online fraud and cybercrime. Cloud Router was previously called 911 S5.

VPN 346

VPN Government Cybercrime Internet 346

Security Affairs

APRIL 2, 2025

Judging by the analysis of transactions, they were able to transfer about $270,000 in various cryptocurrencies to their crypto wallets.” “However, in reality, this amount may be larger; the attackers also targeted Monero, a cryptocurrency that is untraceable.”

Malware 118

Malware Cryptocurrency Mobile Firmware 118

Security Affairs

AUGUST 23, 2024

court for his role in the Karakurt cybercrime gang. court for his role in the Russian Karakurt cybercrime gang. “Among other things, the Russian cybercrime group steals victim data and threatens to release it unless the victim pays ransom in cryptocurrency. . ” reads the press release published by DoJ.

Cybercrime 124

Cybercrime VPN Cryptocurrency Hacking 124

Security Affairs

MARCH 24, 2025

They can also steal personal data, banking details, cryptocurrency info, emails, and passwords by scraping the files the users upload. The FBI Denver Field Office advises staying cautious online, being aware of potential risks, and keeping antivirus software updated to scan files before opening them. The FBI urges reporting to IC3.gov.

Malware 117

Malware Scams Identity Theft Antivirus 117

Malwarebytes

FEBRUARY 19, 2025

Some info stealers dont even require an additional stepthey can take cryptocurrency directly from a victims online accounts. The next Mac malware Malware is malicious software, and just like legitimate software, malware has to be developed for specific operating systems. They are wildly adaptable.

Malware 123

Malware Software Passwords Cryptocurrency 123

Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. A screenshot of a website reviewing PM2BTC.

Cryptocurrency 295

Cryptocurrency Cybercrime Retail Government 295

Krebs on Security

APRIL 4, 2024

A cybercrook who has been setting up websites that mimic the self-destructing message service privnote.com accidentally exposed the breadth of their operations recently when they threatened to sue a software company. co showing the site did indeed swap out any cryptocurrency addresses. However, testing shows tornote[.]io

Phishing 275

Phishing Cryptocurrency DDOS Internet 275

Krebs on Security

JULY 29, 2022

The abrupt closure comes ten days after KrebsOnSecurity published an in-depth look at 911 and its connections to shady pay-per-install affiliate programs that secretly bundled 911’s proxy software with other titles, including “free” utilities and pirated software. A cached copy of flashupdate[.]net

Cybercrime 320

Cybercrime Software VPN Backups 320

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. According to the hacker, their spam software has been in private use until the last few weeks, when it was released as open source code. A DIRECT QUOT The domain quot[.]pw

Scams 303

Scams DDOS Cryptocurrency Accountability 303

Security Affairs

SEPTEMBER 12, 2024

The Singapore Police Force (SPF) has arrested six individuals for their role in the operations of a cybercrime ring in the country. The six men are believed to be linked to a global cybercrime syndicate. A 34-year-old Singaporean man will also face charges for abetting unauthorized access to websites.

Cybercrime 123

Cybercrime Computers and Electronics Mobile Cryptocurrency 123

Krebs on Security

MARCH 28, 2021

“web shells”) that various cybercrime groups worldwide have been using to commandeer any unpatched Exchange servers. I first heard about the domain in December 2020, when a reader told me how his entire network had been hijacked by a cryptocurrency mining botnet that called home to it. Just my Social Security number.

Hacking 363

Hacking Cybercrime DNS Internet 363

Security Affairs

SEPTEMBER 9, 2021

In January 2021, the cybercrime gang launched a new campaign targeting Kubernetes environments with the Hildegard malware. The campaign was very insidious and as of August 30, 2021, many malware samples used by the attacker still have zero detection rate from AV software. ” reads the analysis published by AT&T.

Cybercrime 123

Cybercrime Cryptocurrency Penetration Testing Malware 123

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. 12 blog post , the attackers used their access to Mailchimp employee accounts to steal data from 214 customers involved in cryptocurrency and finance. 9, 2024, U.S.

Social Engineering 357

Social Engineering Mobile Passwords Cybercrime 357

Heimadal Security

FEBRUARY 2, 2023

1,894 web injects (overlays of phishing windows) are for sale on Russian cybercrime forums. The phishing windows are meant to steal credentials from banking, cryptocurrency exchange, and e-commerce apps imitating widely-used software, and they are compatible with various Android banking malware.

Cybercrime 96

Cybercrime Banking Cryptocurrency Phishing 96

Security Affairs

NOVEMBER 15, 2024

Glove Stealer is a.NET-based information stealer that targets browser extensions and locally installed software to steal sensitive data. The malware could harvest a huge trove of data from infected systems, including cookies, autofill, cryptocurrency wallets, 2FA authenticators, password managers, and email client information.

Encryption 117

Encryption Password Management Cryptocurrency Social Engineering 117

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. Super Bowl Sunday watchers are treated to no fewer than a half-dozen commercials for cryptocurrency investing. I will also continue to post on LinkedIn about new stories in 2023. agencies]. .”

Cryptocurrency 292

Cryptocurrency Cybercrime Computers and Electronics Scams 292

Krebs on Security

JANUARY 17, 2024

The rapper and social media personality Punchmade Dev is perhaps best known for his flashy videos singing the praises of a cybercrime lifestyle. But until recently, there wasn’t much to support a conclusion that Punchmade was actually doing the cybercrime things he promotes in his songs. Punchmade Dev’s shop.

Cybercrime 324

Cybercrime Media Banking Accountability 324

Krebs on Security

JANUARY 28, 2022

“ BlackCat “), considered to be the first professional cybercrime group to create and use a ransomware strain written in the Rust programming language. On the cybercrime forum RAMP , the user Binrs says they are a Rust developer who’s been coding for 6 years. ” Meanwhile, the U.S. I AM DUCKERMAN. ”

Ransomware 331

Ransomware Accountability Cybercrime Malware 331

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime 145

Cybercrime Banking Malware Ransomware 145

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Dmitry Yuryevich Khoroshev.

Ransomware 300

Ransomware Cybercrime Accountability Malware 300

Krebs on Security

JUNE 6, 2023

Kopeechka also has multiple affiliate programs, including one that pays app developers for embedding Kopeechka’s API in their software. “There was nothing in the Mastodon software to detect that activity, and the protocol is not designed to handle this.” com site,” the Trend researchers wrote.

Accountability 255

Accountability Scams Cryptocurrency Advertising 255

Security Affairs

APRIL 6, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape CISA Releases Malware Analysis Report on RESURGE Malware Associated with Ivanti Connect Secure Unboxing Anubis: Exploring the Stealthy Tactics of FIN7’s Latest Backdoor Advancements in delivery: Scripting with (..)

Malware 78

Malware Cryptocurrency Hacking Accountability 78

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. Researchers at AT&T Alien Labs say the crooks responsible for maintaining the QakBot botnet have rented their creation to various cybercrime groups over the years.

Hacking 310

Hacking Malware Ransomware Government 310

Security Affairs

NOVEMBER 22, 2022

The attackers used methods to deliver the malware, including phishing websites masquerading as legitimate ones, YouTube videos and fake “free software catalogue” websites. The malware was also able to target 40 cryptocurrency wallets and applications like Telegram. ” reads the analysis by the experts. Pierluigi Paganini.

Cybercrime 98

Cybercrime Malware Cryptocurrency Advertising 98

Krebs on Security

SEPTEMBER 13, 2024

The security firm CrowdStrike dubbed the group “ Scattered Spider ,” a recognition that the MGM hackers came from different hacker cliques scattered across an ocean of Telegram and Discord servers dedicated to financially-oriented cybercrime. ” Beige members were implicated in two stories published here in 2020.

Cybercrime 322

Cybercrime Accountability Mobile Hacking 322

CyberSecurity Insiders

JUNE 19, 2023

While cryptocurrencies have been celebrated for their potential to revolutionize finance, their anonymous nature has also been exploited for illicit activities. From drug dealing and arms trafficking to funding terrorism, black market activities have thrived under the cloak of cryptocurrency’s pseudonymity.

Cryptocurrency 101

Cryptocurrency Technology Banking Cybercrime 101

Security Affairs

APRIL 15, 2022

The cybercrime gang has been active since at least January 2020. The malware is also able to steal details from cryptocurrency wallets and load additional malware to conduct malicious operations. SecurityAffairs – hacking, cybercrime). ”” reads the analysis published by Cisco Talos. To nominate, please visit:?

Cybercrime 98

Cybercrime Malware Cryptocurrency Hacking 98

Security Affairs

JULY 15, 2022

Threat actors behind the campaign used multiple accounts across several social media platforms to advertise password-cracking software for Programmable Logic Controller (PLC), Human-Machine Interface (HMI), and project files. The password cracking software also acts as a dropper for the Sality P2P bot. ” concludes the report.

Passwords 130

Passwords Software Firmware Malware 130

Krebs on Security

NOVEMBER 6, 2018

that has been tracking down individuals engaged in unauthorized “SIM swaps” — a complex form of mobile phone fraud that is often used to steal large amounts of cryptocurrencies and other items of value from victims. Samy Tarazi is a sergeant with the Santa Clara County Sheriff’s office and a REACT supervisor.

Mobile 267

Mobile Cryptocurrency Accountability Passwords 267

Security Affairs

FEBRUARY 4, 2024

Remote desktop software company AnyDesk announced that threat actors compromised its production environment. Remote desktop software company AnyDesk announced on Friday that threat actors had access to its production systems. AnyDesk is a remote desktop software that allows users to connect to a computer or device remotely.

Software 136

Software Passwords Ransomware Cryptocurrency 136

Security Affairs

FEBRUARY 24, 2023

Researchers warn of an evasive cryptojacking malware targeting macOS which spreads through pirated applications Jamf Threat Labs researchers reported that an evasive cryptojacking malware targeting macOS was spotted spreading under the guise of the Apple-developed video editing software, Final Cut Pro. We now had our answer.”

Cryptocurrency 98

Cryptocurrency Malware Software Passwords 98

Security Affairs

AUGUST 18, 2020

Ukrainian authorities arrested the members of a cybercrime gang who ran 20 cryptocurrency exchanges involved in money laundering. Police in Ukraine announced the arrest of the members of a cybercrime gang composed of three individuals who ran 20 cryptocurrency exchanges used in money laundering activities.

Cryptocurrency 140

Cryptocurrency Computers and Electronics Cybercrime Digital transformation 140

Security Affairs

NOVEMBER 16, 2018

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. The attackers’ research vector is now shifting from software vulnerabilities to those located at the hardware and firmware level. Attacks on Crypto. Pierluigi Paganini.

Cybercrime 108

Cybercrime Hacking Banking Phishing 108

Security Affairs

DECEMBER 8, 2024

Hackers stole millions of dollars from Uganda Central Bank International Press Newsletter Cybercrime INTERPOL financial crime operation makes record 5,500 arrests, seizures worth over USD 400 million Hackers Stole $1.49 Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Artificial Intelligence 103

Artificial Intelligence Spyware Hacking Ransomware 103

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular. Cracking down hard on the cybercrime world.

Cryptocurrency 141

Cryptocurrency Banking Ransomware Cybercrime 141