Cryptocurrency, Cybersecurity and Web Fraud

Cryptocurrency

Cybersecurity

Web Fraud

A Day in the Life of a Prolific Voice Phishing Crew

Krebs on Security

JANUARY 7, 2025

KrebsOnSecurity recently told the saga of a cryptocurrency investor named Tony who was robbed of more than $4.7 million in cryptocurrencies from Tony was verify-trezor[.]io. Federal Communications Commission (FCC), as well as those working at the cryptocurrency exchanges Coinbase and Binance. Image: Shutterstock, iHaMoo.

Phishing

Phishing Cryptocurrency Accountability Social Engineering

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Krebs on Security

NOVEMBER 21, 2020

Fraudsters redirected email and web traffic destined for several cryptocurrency trading platforms over the past week. And in May of this year, GoDaddy disclosed that 28,000 of its customers’ web hosting accounts were compromised following a security incident in Oct. 2019 that wasn’t discovered until April 2020.

Cryptocurrency

Cryptocurrency VPN Scams Social Engineering

Join 28,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Trending Sources

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

Donahue said 60 technology companies are now routing all law enforcement data requests through Kodex, including an increasing number of financial institutions and cryptocurrency platforms. “A lot of global police agencies don’t have stringent cybersecurity hygiene, but even U.S. dot-gov emails get hacked. ”

Hacking

Hacking Accountability Government Social Engineering

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Krebs on Security

SEPTEMBER 5, 2023

Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults. “The victim profile remains the most striking thing,” Monahan wrote.

Cryptocurrency

Cryptocurrency Passwords Encryption Accountability

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Krebs on Security

SEPTEMBER 26, 2024

The government also indicted and sanctioned a top Russian cybercriminal known as Taleon , whose cryptocurrency exchange Cryptex has evolved into one of Russia’s most active money laundering networks. Alex Holden is founder of the Milwaukee-based cybersecurity firm Hold Security. The links have been redacted.

Cryptocurrency

Cryptocurrency Cybercrime Retail Government

Battle with Bots Prompts Mass Purge of Amazon, Apple Employee Accounts on LinkedIn

Krebs on Security

OCTOBER 20, 2022

Cybersecurity firm Mandiant (recently acquired by Google ) told Bloomberg that hackers working for the North Korean government have been copying resumes and profiles from leading job listing platforms LinkedIn and Indeed , as part of an elaborate scheme to land jobs at cryptocurrency firms. Up until Sept.

Accountability

Accountability Cryptocurrency Scams CISO

How Coinbase Phishers Steal One-Time Passwords

Krebs on Security

OCTOBER 13, 2021

Coinbase is the world’s second-largest cryptocurrency exchange, with roughly 68 million users from over 100 countries. And it was fairly successful, according to Alex Holden , founder of Milwaukee-based cybersecurity firm Hold Security. The now-defunct phishing domain at issue — coinbase.com.password-reset[.]com

Passwords

Passwords Phishing Accountability Mobile

Discord Admins Hacked by Malicious Bookmarks

Krebs on Security

MAY 30, 2023

A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised as a Web browser bookmark. On May 9, MetrixCoin reported that its Discord server was hacked, with fake airdrop details pushed to all users.

Hacking

Hacking Accountability Scams Cryptocurrency

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. 12 blog post , the attackers used their access to Mailchimp employee accounts to steal data from 214 customers involved in cryptocurrency and finance.

Social Engineering

Social Engineering Mobile Passwords Cybercrime

When Efforts to Contain a Data Breach Backfire

Krebs on Security

AUGUST 16, 2022

Earlier this month, the administrator of the cybercrime forum Breached received a cease-and-desist letter from a cybersecurity firm. But this history was either overlooked or ignored by Group-IB , the Singapore-based cybersecurity firm apparently hired by Banorte to help respond to the data breach.

Data breaches

Data breaches Banking Cybercrime Marketing

Glut of Fake LinkedIn Profiles Pits HR Against the Bots

Krebs on Security

OCTOBER 5, 2022

Cybersecurity firm Mandiant (recently acquired by Google ) told Bloomberg that hackers working for the North Korean government have been copying resumes and profiles from leading job listing platforms LinkedIn and Indeed, as part of an elaborate scheme to land jobs at cryptocurrency firms.

Accountability

Accountability Scams Artificial Intelligence Cryptocurrency

Fake CISO Profiles on LinkedIn Target Fortune 500s

Krebs on Security

SEPTEMBER 30, 2022

“This is dangerous, Apollo.io, Signalhire, and Cybersecurity Ventures.” “It’s interesting the downstream sources that repeat LinkedIn bogus content as truth,” Mason said. None of the profiles listed here responded to requests for comment (or to become a connection). of spam and scam.”

CISO

CISO Cybercrime Accountability Information Security

The Dark Nexus Between Harm Groups and ‘The Com’

Krebs on Security

SEPTEMBER 13, 2024

In November 2020, intruders thought to be associated with the Beige Group tricked a GoDaddy employee into installing malicious software, and with that access they were able to redirect the web and email traffic for multiple cryptocurrency trading platforms. ViLE In June 2024, two American men pleaded guilty to hacking into a U.S.

Cybercrime

Cybercrime Accountability Mobile Hacking

Cyber Security Informer

A Day in the Life of a Prolific Voice Phishing Crew

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Webinars

Trending Sources

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Webinars

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Battle with Bots Prompts Mass Purge of Amazon, Apple Employee Accounts on LinkedIn

How Coinbase Phishers Steal One-Time Passwords

Discord Admins Hacked by Malicious Bookmarks

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

When Efforts to Contain a Data Breach Backfire

Glut of Fake LinkedIn Profiles Pits HR Against the Bots

Fake CISO Profiles on LinkedIn Target Fortune 500s

The Dark Nexus Between Harm Groups and ‘The Com’

Stay Connected