SecureWorld News

JULY 11, 2022

Axie Infinity, a video game that utilizes NFTs and Ethereum-based cryptocurrencies, lost $540 million in March of this year after a senior engineer was tricked into opening a PDF of a fake job application, according to a story from The Block. So, what exactly happened with Axie Infinity?

Social Engineering 96

Social Engineering Hacking Cryptocurrency Cybercrime 96

Security Affairs

FEBRUARY 25, 2024

Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S.

Spyware 130

Spyware Cyber Insurance Hacking Advertising 130

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 98

Spyware Hacking Malware Social Engineering 98

SecureList

FEBRUARY 5, 2025

This is the first known case of an app infected with OCR spyware being found in Apple’s official app marketplace. That being said, we have insufficient data to attribute the campaign to a known cybercrime gang. For instance, ComeCome for iOS was infected in the same way as its Android version.

Malware 137

Malware Encryption Mobile Cryptocurrency 137

SecureList

MAY 27, 2022

In January, we reported a malicious campaign targeting companies that work with cryptocurrencies, smart contracts, decentralized finance and blockchain technology: the attackers are interested in fintech in general. The campaign has two goals: gathering information and stealing cryptocurrency. Other malware.

Phishing 134

Phishing Spyware Firmware Malware 134

Security Affairs

JUNE 11, 2023

Gox exchange and operating BTC-e Japanese Pharmaceutical giant Eisai hit by a ransomware attack Clop ransomware gang was testing MOVEit Transfer bug since 2021 Stealth Soldier backdoor used is targeted espionage attacks in Libya Researchers published PoC exploit code for actively exploited Windows elevation of privilege issue Experts detail a new Kimsuky (..)

Social Engineering 98

Social Engineering Data breaches Ransomware Cybercrime 98

Malwarebytes

MAY 16, 2022

Almost all forms of business suffered—even illegal ones like cybercrime. Cryptocurrency values soared in 2021 and, to nobody’s surprise, detections of malware that mines cryptocurrencies increased more than 300 precent.

Malware 98

Malware Adware Cryptocurrency Cybercrime 98

SecureList

NOVEMBER 22, 2022

Cryptocurrency targeted attacks. The cryptocurrency business continues to grow, and people continue to invest their money in this market because it’s a digital asset and all transactions occur online. These are attractive aspects that cybercrime groups will be unable to resist. It also offers anonymity to users.

Cryptocurrency 107

Cryptocurrency Mobile Ransomware Banking 107

Security Affairs

SEPTEMBER 23, 2018

New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms. NSO mobile Pegasus Spyware used in operations in 45 countries. Magecart cybercrime group stole customers credit cards from Newegg electronics retailer. Hackers stole $60 Million worth of cryptocurrencies from Japanese Zaif exchange.

Computers and Electronics 85

Computers and Electronics Cryptocurrency Data breaches Advertising 85

Security Affairs

OCTOBER 2, 2018

The Gazorp builder allows generating for free the malicious code to steal passwords, payment information, cryptocurrency wallet data and more. Security researchers from Checkpoint have discovered in the Dark Web an online builder, dubbed Gazorp, that allows crooks to easily create customized binaries for the Azorult info-stealing malware.

Malware 109

Malware Advertising Spyware Passwords 109

Security Boulevard

JANUARY 25, 2022

Folks, Who wants to dive deep into some of my latest commercially available research and stay on the top of their OSINT/cybercrime research and threat intelligence gathering game that also includes their team and organization? Dancho Danchev’s “Intell on the Criminal Underground – Who’s Who in Cybercrime for ” Presentation – [PDF].

Cybercrime 96

Cybercrime Hacking Scams Ransomware 96

Security Affairs

JANUARY 23, 2022

Pay attention to Log4j attacks, Dutch National Cybersecurity Centre (NCSC) warns Vulnerabilities in Control Web Panel potentially expose Linux Servers to hack US Treasury Department sanctions 4 Ukrainian officials for working with Russian intelligence A bug in McAfee Agent allows running code with Windows SYSTEM privileges Experts warn of anomalous (..)

VPN 111

VPN Ransomware Spyware Hacking 111

Webroot

OCTOBER 4, 2024

Spyware : Secretly monitors your online behavior and shares your personal information. Cryptojacking : Hides on your device and steals its computing resources to mine cryptocurrencies like Bitcoin. So how do we protect ourselves from this type of cybercrime?

Malware 102

Malware Backups Adware Ransomware 102

Security Affairs

NOVEMBER 17, 2019

TA505 Cybercrime targets system integrator companies. Two men arrested for stealing $550,000 in cryptocurrency with Sim Swapping. WhatsApp flaw CVE-2019-11931 could be exploited to install spyware. Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure.

DDOS 75

DDOS Spyware Advertising Ransomware 75

Webroot

MAY 12, 2021

Since cryptocurrencies were, are and will continue to be impactful technologies, surely NFTs are a topic worth exploring. NFTs use the same blockchain ledger technology to verify uniqueness that cryptocurrencies rely on to prove ownership. NFT theft and a new brand of cybercrime. “What Bitcoin was to 2011, NFTs are to 2021.”.

Cryptocurrency 99

Cryptocurrency Marketing Phishing Authentication 99

Security Affairs

NOVEMBER 10, 2020

The Brazilian cybercrime underground is recognized as the most focuses on the development and commercialization of banking trojans. Ghimob was designed to target financial apps from banks, fintech companies, exchanges, and cryptocurrencies in Brazil, Paraguay, Peru, Portugal, Germany, Angola, and Mozambique.

Banking 109

Banking Mobile Malware Spyware 109

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 98

Data breaches Malware Mobile Spyware 98

Security Affairs

FEBRUARY 13, 2022

US seizes $3.6 to replace Chinese equipment Hackers breached a server of National Games of China days before the event Russian Gamaredon APT is targeting Ukraine since October Israeli surveillance firm QuaDream emerges from the dark Argo CD flaw could allow stealing sensitive data from Kubernetes Apps.

Spyware 98

Spyware Ransomware Surveillance Hacking 98

Security Affairs

APRIL 5, 2019

The malware has evolved over time and has added functionality, in fact, apart from collecting banking credentials it is also able to collect keystrokes, cryptocurrencies, screenshots, webmail, integrating spyware features together with banking Trojans features. SecurityAffairs – Ursnif Trojan, cybercrime). Pierluigi Paganini.

Banking 109

Banking Malware Cryptocurrency Advertising 109

SecureWorld News

AUGUST 8, 2022

Cybercriminals often use malware to gain access to a computer or mobile device to deploy viruses, worms, Trojans, ransomware, spyware, and rootkits. It has been sold on underground hacker forums for stealing browser data, user credentials, and cryptocurrency information. AZORult's developers are constantly updating its capabilities.

Malware 98

Malware Banking Penetration Testing Healthcare 98

Security Affairs

AUGUST 4, 2018

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency 58

Cryptocurrency Data breaches Spyware Advertising 58

Security Affairs

NOVEMBER 14, 2021

Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server GravityRAT returns disguised as an end-to-end encrypted chat app Intel and AMD address high severity vulnerabilities in products and drivers New evolving Abcbot DDoS botnet targets Linux systems Retail giant Costco discloses data breach, payment card data exposed (..)

Spyware 55

Spyware Data breaches Ransomware Hacking 55

SecureList

AUGUST 30, 2023

While investigating an infection of a cryptocurrency company in Southeast Asia, we found Gopuram coexisting on target computers with AppleJeus , a backdoor attributed to the Lazarus. The threat actor specifically targeted cryptocurrency companies. We observed that they have a specific interest in cryptocurrency companies.

Malware 97

Malware Spyware Government Cryptocurrency 97

SecureList

FEBRUARY 5, 2025

This is the first known case of an app infected with OCR spyware being found in Apple’s official app marketplace. That being said, we have insufficient data to attribute the campaign to a known cybercrime gang. For instance, ComeCome for iOS was infected in the same way as its Android version.

Malware 135

Malware Encryption Mobile Cryptocurrency 135

Security Affairs

MARCH 19, 2019

We expect that that other APTs like Silence , MoneyTaker , and Cobalt will stage multiple attacks on cryptocurrency exchanges in the near future,” – says Dmitry Volkov. Cybercriminals steal user accounts’ data using special spyware aimed at obtaining users’ authentication data. Have you been pwned?

Banking 108

Banking Government Passwords Marketing 108

Security Affairs

MARCH 27, 2023

Lower.exe, a sample of “GCleaner” spyware, historically, this piece of malware was initially faking CCleaner to drop additional malware ( link ). Brg.exe, a common RacconStealer with its command and control server hosted by VDSina, a Russian cloud provider. The module also exfiltrates 2FA secrets from Twilio’s Authy local storage.

Malware 98

Malware Social Engineering Encryption Marketing 98

Security Affairs

DECEMBER 8, 2024

Hackers stole millions of dollars from Uganda Central Bank International Press Newsletter Cybercrime INTERPOL financial crime operation makes record 5,500 arrests, seizures worth over USD 400 million Hackers Stole $1.49 warn of PRC-linked cyber espionage targeting telecom networks U.S.

Artificial Intelligence 103

Artificial Intelligence Spyware Hacking Ransomware 103

Security Affairs

NOVEMBER 17, 2024

CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices China-linked threat actors compromised multiple telecos and spied on a limited number of U.S.

Cryptocurrency 111

Cryptocurrency Malware Hacking Ransomware 111

Security Affairs

JANUARY 19, 2025

CISA adds Fortinet FortiOS flaw to its Known Exploited Vulnerabilities catalog Codefinger ransomware gang uses compromised AWS keys to encrypt S3 bucket CVE-2024-44243 macOS flaw allows persistent malware installation FBI deleted China-linked PlugX malware from over 4,200 US computers Russia-linked APT UAC-0063 target Kazakhstan in with HATVIBE malware (..)

Spyware 70

Spyware Data breaches DNS Artificial Intelligence 70

Security Affairs

FEBRUARY 23, 2025

from Bybit, it is the largest cryptocurrency heist ever Apple removes iCloud encryption in UK following backdoor demand B1acks Stash released 1 Million credit cards U.S. Every week the best security articles from Security Affairs are free in your email box. Lazarus APT stole $1.5B

Scams 66

Scams Malware Encryption Phishing 66

Security Affairs

APRIL 28, 2024

Hackers may have accessed thousands of accounts on the California state welfare platform Brokewell Android malware supports an extensive set of Device Takeover capabilities Experts warn of an ongoing malware campaign targeting WP-Automatic plugin Cryptocurrencies and cybercrime: A critical intermingling Kaiser Permanente data breach may have impacted (..)

Cybercrime 126

Cybercrime Spyware Data breaches Antivirus 126

Security Affairs

DECEMBER 2, 2023

Researchers devised an attack technique to extract ChatGPT training data Fortune-telling website WeMystic exposes 13M+ user records Expert warns of Turtle macOS ransomware US govt sanctioned North Korea-linked APT Kimsuky Black Basta Ransomware gang accumulated at least $107 million in Bitcoin ransom payments since early 2022 Apple addressed 2 new (..)

Ransomware 126

Ransomware Hacking Spyware Cybercrime 126

Security Affairs

JULY 24, 2022

released in Dark Web – malicious shortcut-based attacks are on the rise Tor Browser 11.5 is optimized to automatically bypass censorship A massive cyberattack hit Albania Watch out for the CVE-2022-30136 Windows NFS Remote Code Execution flaw Graff paid a $7.5M released in Dark Web – malicious shortcut-based attacks are on the rise Tor Browser 11.5

Spyware 108

Spyware Surveillance Insurance Malware 108

Security Affairs

MAY 8, 2020

H2 2019 has proved the tendency of past several years: mail remains the main method of delivering ransomware, spyware, backdoors and other malware, being used by cyber crooks in 94 percent of cases. They, in turn, let spyware and backdoors move ahead and become the second most popular malware with a 35-percent share. Balance of power.

Phishing 87

Phishing Spyware Banking Malware 87

Security Affairs

MARCH 4, 2023

stolen credit/debit cards Pegasus spyware used to spy on a Polish mayor Hundreds of thousands of websites hacked as part of redirection campaign MQsTTang, a new backdoor used by Mustang Panda APT against European entities Trusted Platform Module (TPM) 2.0 FiXS, a new ATM malware that is targeting Mexican banks BidenCash leaks 2.1M

Data breaches 98

Data breaches Spyware Ransomware Retail 98

eSecurity Planet

OCTOBER 21, 2022

From ransomware attacks locking businesses out of their data until they pay potentially millions of dollars to spyware tracking users’ every move through their infected device, the effects of malware can be devastating. This note will provide instructions on how to pay the ransom, usually through difficult-to-trace means like cryptocurrency.

Malware 75

Malware Adware Spyware Antivirus 75

Security Affairs

SEPTEMBER 2, 2018

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Banking 60

Banking Spyware Data breaches Advertising 60