Cryptocurrency, Data collection and Phishing

LLMs and Phishing

Schneier on Security

APRIL 10, 2023

Here’s an experiment being run by undergraduate computer science students everywhere: Ask ChatGPT to generate phishing emails, and test whether these are better at persuading victims to respond or click on the link than the usual spam. The impersonations in such scams are no longer just princes offering their country’s riches.

Phishing

Phishing Scams Internet Internet

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers. A single bitcoin is trading at around $45,000.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

IT threat evolution Q3 2024

SecureList

NOVEMBER 29, 2024

CloudSorcerer is a sophisticated cyber-espionage tool used for stealth monitoring, data collection and exfiltration via Microsoft, Yandex and Dropbox cloud infrastructures. The campaign, which we dubbed EastWind , used phishing emails with malicious shortcuts attached to deliver malware to target computers.

Energy and Utilities

Energy and Utilities Ransomware Malware Government

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Privacy Roundup: Week 12 of Year 2025

Security Boulevard

MARCH 24, 2025

Android Apps Use Bluetooth and WiFi Scanning to Track Users Without GPS Cyber Insider Researchers found that 86% of apps they analyzed collect sensitive data, including location data stemming from scanning Wi-Fi network details, and collecting device identifiers.

Surveillance

Surveillance Telecommunications Malware Data breaches

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Security Affairs

NOVEMBER 16, 2018

To infiltrate critical infrastructure networks hackers will continue to use phishing as one of their main tools, but the focus of attacks might shift to vulnerable network equipment connecting the network to the Internet. In 2017-2018 hackers’ interest in cryptocurrency exchanges ramped up. Attacks on Crypto.

Cybercrime

Cybercrime Hacking Banking Phishing

Crypto-inspired Magecart skimmer surfaces via digital crime haven

Malwarebytes

JANUARY 9, 2023

Digging further into the skimmer's infrastructure on Russian-based hosting provider DDoS-Guard, we came across a digital crime haven for cryptocurrency scams, Bitcoin mixers, malware distribution sites and much more. We should note that the sites we found injected with this skimmer had nothing to do with cryptocurrencies themselves.

DDOS

DDOS Scams Cryptocurrency Phishing

Good game, well played: an overview of gaming-related cyberthreats in 2022

SecureList

SEPTEMBER 6, 2022

Additionally, we looked at the phishing activity around gaming, specifically that related to cybersports tournaments, bookmakers, gaming marketplaces, and gaming platforms, and found numerous examples of scams that target gamers and esports fans. Launching the malware resulted in decryption and activation of a Trojan-stealer dubbed Taurus.

Mobile

Mobile Passwords Software Accountability

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Security Affairs

OCTOBER 10, 2018

Attacks on bank customers: The decline of Android Trojans and the triumph of phishing. There has been a significant rise in the number of crimes committed using web phishing and fake websites of banks, payment systems, telecoms operators, online stores and famous brands. Using web phishing, criminals have managed to steal $3.7

Cyber Attacks

Cyber Attacks Banking Cyber threats Phishing

What is website security?

SiteLock

AUGUST 27, 2021

Website security protects your visitors from: Stolen data. From email addresses to payment information, cybercriminals frequently go after visitor or customer data stored on a site. Phishing schemes. What do I need to secure my website? An SSL certificate.

Small Business

Small Business Malware DDOS Engineering

Drawing the RedLine – Insider Threats in Cybersecurity

Security Boulevard

MARCH 31, 2022

RedLine is a malware service available for purchase on underground forums that specifically targets the theft of sensitive information: passwords, credit cards, execution environment data, computer name, installed software, and more recently, cryptocurrency wallets and related files. Data collection from FTP clients, IM clients.

Cybersecurity

Cybersecurity Social Engineering Passwords Malware

Advanced threat predictions for 2024

SecureList

NOVEMBER 14, 2023

Solutions like XDR, SIEM, and MDM platforms, apart from traditional anti-virus products, enable centralized data collection, accelerate analysis, and correlate security events from various sources, facilitating swift response to complex incidents.

Hacking

Hacking Energy and Utilities Media Malware

Mystic Stealer

Security Boulevard

JUNE 15, 2023

Stealers" are a kind of malware designed to run on an endpoint post-compromise, while their primary features center on the theft of user data. Key Mystic Stealer functions include its ability to extract data from web browsers and cryptocurrency wallets. All data is encrypted with RC4. But it doesn't stop there.

Cryptocurrency

Cryptocurrency Password Management Malware DNS

Financial cyberthreats in 2022

SecureList

MARCH 29, 2023

However, traditional financial threats – such as banking malware and financial phishing, continue to take up a significant share of such financially-motivated cyberattacks. Meanwhile, cryptocurrency became a prominent target for those seeking monetary gain. In addition to financial malware, we also examined phishing activities.

Banking

Banking Phishing Cryptocurrency Mobile

5,200 Data Breaches Analyzed in Annual Verizon Report

SecureWorld News

JUNE 15, 2023

Verizon has released its 2023 Data Breach Investigations Report (DBIR), the 16th annual publication providing an analysis of real-world data breaches and security incidents. The report often includes recommendations and best practices to mitigate the risks identified in the data. These criminals' methods can be predictable.

Data breaches

Data breaches Social Engineering Engineering Cryptocurrency

Consumer and privacy predictions for 2025

SecureList

NOVEMBER 27, 2024

Kaspersky researchers uncovered phishing schemes targeting Hamster Kombat players, a popular Telegram-based clicker game, where attackers used fraudulent links to steal credentials and gain unauthorized access to user accounts. Just as predicted, the rise of voice deepfakes continued in 2024, fueling scams like vishing (voice phishing).

Artificial Intelligence

Artificial Intelligence Scams Phishing Media

Raccoon Stealer returns with a new bag of tricks

Malwarebytes

JUNE 30, 2022

So much data, so little time. The popular tool, used for data theft, is ubiquitous where stealing credentials is concerned. Cryptocurrency wallets, cookies, passwords, browser autofill data, and credit card data: pretty much anything is up for grabs. The big change up seems to be related to how data is exfiltrated.

Cryptocurrency

Cryptocurrency Malware Data collection Passwords

Spam and phishing in 2022

SecureList

FEBRUARY 16, 2023

Short-lived phishing sites often offered to see the premieres before the eagerly awaited movie or television show was scheduled to hit the screen. These sites referenced public figures and humanitarian groups, offering to accept cash in cryptocurrency, something that should have raised a red flag in itself.

Phishing

Phishing Scams Accountability Energy and Utilities

Security Affairs newsletter Round 513 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 2, 2025

from Bybit, it is the largest cryptocurrency heist ever International Press Newsletter Cybercrime Mining Company NioCorp Loses $500,000 in BEC Hack Inside Black Bastas Exposed Internal Chat Logs: A Firsthand Look The Bleeding Edge of Phishing: darcula-suite 3.0

Cybercrime

Cybercrime Hacking Ransomware Cryptocurrency

Cyber Security Informer

LLMs and Phishing

Happy 13th Birthday, KrebsOnSecurity!

Webinars

Trending Sources

IT threat evolution Q3 2024

Webinars

Privacy Roundup: Week 12 of Year 2025

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Crypto-inspired Magecart skimmer surfaces via digital crime haven

Good game, well played: an overview of gaming-related cyberthreats in 2022

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

What is website security?

Drawing the RedLine – Insider Threats in Cybersecurity

Advanced threat predictions for 2024

Mystic Stealer

Financial cyberthreats in 2022

5,200 Data Breaches Analyzed in Annual Verizon Report

Consumer and privacy predictions for 2025

Raccoon Stealer returns with a new bag of tricks

Spam and phishing in 2022

Security Affairs newsletter Round 513 by Pierluigi Paganini – INTERNATIONAL EDITION

Stay Connected