Krebs on Security

APRIL 6, 2022

“They would just keep jamming a few individuals to get [remote] access, read some onboarding documents, enroll a new 2FA [two-factor authentication method] and exfiltrate code or secrets, like a smash-and-grab,” the CXO said. ” Like LAPSUS$, these vishers just kept up their social engineering attacks until they succeeded.

Social Engineering 287

Social Engineering Phishing Engineering Accountability 287

SecureWorld News

APRIL 21, 2022

Treasury Department warning of a North Korean state-sponsored advanced persistent threat (APT) known as the Lazarus Group targeting cryptocurrency and blockchain companies. The threat actors use social engineering to encourage individuals to download trojanized cryptocurrency applications on Windows or macOS operating systems.

Cryptocurrency 98

Cryptocurrency Computers and Electronics Social Engineering System Administration 98

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. As documented by Group-IB, the group pivoted from its access to Twilio to attack at least 163 of its customers. 9, 2024, U.S. Twilio disclosed in Aug.

Social Engineering 356

Social Engineering Mobile Passwords Cybercrime 356

Krebs on Security

APRIL 20, 2023

Mandiant , Proofpoint and other experts say Lazarus has long used these bogus LinkedIn profiles to lure targets into opening a malware-laced document that is often disguised as a job offer. The malware was found inside of a document that offered an employment contract at the multinational bank HSBC. Microsoft Corp.

Malware 326

Malware Software Technology Accountability 326

Malwarebytes

JULY 19, 2022

Together with the Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA), the FBI has released a warning about cybercriminals creating fraudulent cryptocurrency investment apps in order to defraud cryptocurrency investors. Stay safe, everyone!

Cryptocurrency 98

Cryptocurrency Mobile Banking Internet 98

SecureList

MARCH 25, 2025

Cryptocurrency phishing saw an 83.37% year-over-year increase in 2024, with 10.7 The attackers employed social engineering techniques to trick victims into sharing their financial data or making a payment on a fake page. As cryptocurrencies continue to grow, this number is only ever going to get larger. million in 2023.

Phishing 82

Phishing Banking Scams Mobile 82

SecureList

AUGUST 10, 2022

In late August 2020, we published an overview of DeathStalker’s profile and malicious activities, including their Janicab, Evilnum and PowerSing campaigns ( PowerPepper was later documented in 2020). Malicious DOCX social engineering message.

Cryptocurrency 117

Cryptocurrency Encryption Social Engineering Passwords 117

Krebs on Security

NOVEMBER 6, 2018

that has been tracking down individuals engaged in unauthorized “SIM swaps” — a complex form of mobile phone fraud that is often used to steal large amounts of cryptocurrencies and other items of value from victims. SIM swapping attacks primarily target individuals who are visibly active in the cryptocurrency space.

Mobile 268

Mobile Cryptocurrency Accountability Passwords 268

Hacker Combat

AUGUST 8, 2022

North Korean hackers use phoney Coinbase job offers to target cryptocurrency professionals. The renowned North Korean hacking outfit Lazarus has uncovered a new social engineering scheme in which the hackers pose as Coinbase to lure workers into the fintech sector. Lazarus hackers go after cryptocurrency.

Social Engineering 105

Social Engineering Cryptocurrency Engineering Malware 105

SecureWorld News

DECEMBER 10, 2024

The research , released this morning, reveals how attackers are leveraging advanced social engineering, obfuscation techniques, and device exploitation to steal credentials and compromise financial and corporate applications. Key features include: Credential Theft: Targets banking, cryptocurrency, and financial apps.

Mobile 110

Mobile Social Engineering Banking Phishing 110

SecureWorld News

JULY 11, 2022

Axie Infinity, a video game that utilizes NFTs and Ethereum-based cryptocurrencies, lost $540 million in March of this year after a senior engineer was tricked into opening a PDF of a fake job application, according to a story from The Block. The employee who fell for the social engineering scheme no longer works for Sky Mavis.

Social Engineering 98

Social Engineering Hacking Cryptocurrency Cybercrime 98

Security Affairs

JANUARY 18, 2022

According to the security firm, the group is financially motivated, its cyberespionage campaign hit high value targets such as government and educational institutions, religious movements, pro-democracy and human rights organisations in Hong Kong, Covid-19 research organisations, gambling and cryptocurrency companies, and the media.

Cryptocurrency 135

Cryptocurrency Media Social Engineering Phishing 135

Malwarebytes

JULY 19, 2022

The data it’s after includes government documents like passport, as well as selfie photos. It also encourages victims to upload official government documents, such as a passport, driver’s license, or national ID, to secure the account. ” Phishing, in general, has come a long way. .

Phishing 116

Phishing Social Engineering Accountability Engineering 116

Security Affairs

OCTOBER 20, 2021

Once hijacked the channel, attackers either sell it to the highest bidder or employ it in cryptocurrency scam scheme. The malware landing page is disguised as a software download URL that was sent via email or a PDF on Google Drive, or via Google documents containing the phishing links.

Accountability 144

Accountability Malware Phishing Social Engineering 144

Security Affairs

NOVEMBER 26, 2018

“Nicholas Truglia, 21, lifted the $1 million from Ross’ two cryptocurrency accounts, according to a felony complaint filed this month in California state court. Police raided the Truglia’s house under a warrant and able to recover $300,000 worth of cryptocurrency from his hardware wallet. ” reads a CNBC report.

Cryptocurrency 107

Cryptocurrency Identity Theft Social Engineering Advertising 107

Security Affairs

OCTOBER 18, 2018

Group-IB, an international company that specializes in preventing cyber attacks, has estimated that cryptocurrency exchanges suffered a total loss of $882 million due to targeted attacks in 2017 and in the first three quarters of 2018. At the beginning of 2018 hackers’ interest in cryptocurrency exchanges ramped up.

Cyber Attacks 110

Cyber Attacks Cryptocurrency Phishing Social Engineering 110

SecureWorld News

AUGUST 2, 2021

Robinhood is an increasingly popular trading app where you can buy and sell stocks, as well as cryptocurrency. Phishing attempts come via email where scammers use different social engineering tactics to pose as a reputable sender like the IRS, your bank or brokerage firm. Be especially wary of.zip,exe,doc files.

Phishing 98

Phishing Social Engineering Scams Identity Theft 98

Malwarebytes

SEPTEMBER 11, 2023

Once active, the malware can be used for several malicious activities like remote access, cryptocurrency mining, keylogging, clipboard stealing, and information stealing. The message content aimed to social engineer the recipients into downloading and opening a malicious file hosted remotely.” exe and a bundled script.

Malware 134

Malware Social Engineering Cryptocurrency Cybercrime 134

Malwarebytes

JULY 19, 2021

We’ve observed a 419-style scam (also known as an advance fee scam) which combines the promise of cryptocurrency riches with WhatsApp conversation. Folks already involved in cryptocurrency would likely have suspicions raised after reading the below. It’s all about that personal touch in the land of cryptocurrency scams.

Accountability 114

Accountability Scams Cryptocurrency Banking 114

SecureList

NOVEMBER 29, 2024

The email contains a link in the body of the message that is also contained in the attached file, which appears to be a PDF or Word document. Victims are tricked into clicking the link to retrieve documents related to the lawsuit. These documents are in fact password-protected ZIP or other archives.

Energy and Utilities 105

Energy and Utilities Ransomware Malware Government 105

Security Affairs

SEPTEMBER 2, 2018

The Loki Bot attacks started in July and aimed at stealing passwords from browsers, messaging applications, mail and FTP clients, and cryptocurrency wallets. Loki Bot operators employ various social engineering technique to trick victims into opening weaponized attachments that would deploy the Loki Bot stealer.

Social Engineering 75

Social Engineering Cryptocurrency Advertising Malware 75

IT Security Guru

SEPTEMBER 28, 2023

Perpetrators utilise ransomware as a means to extort funds from their targets, typically requesting payment in cryptocurrencies, in exchange for a decryption key or as a condition to prevent the exposure of sensitive information on the dark web or public internet.

Ransomware 134

Ransomware Encryption Backups Social Engineering 134

Security Affairs

JULY 19, 2019

.” Both macro builders allow crooks to easily create malicious Office documents that are usually involved in hacking campaigns as a first-stage loader for other malware. It allows crooks to generate a malicious payload for social-engineering spam campaigns, the author was offering it as a service for a three-month license of $120.

Malware 98

Malware Social Engineering Advertising Antivirus 98

SecureWorld News

MAY 11, 2023

RELATED: Famous Twitter Accounts Hacked: Insider Threat or Social Engineering Attack? ] Court documents revealed that O'Connor conspired to gain unauthorized access to various social media accounts belonging to Twitter. Now, the U.S. Department of Justice has announced that Joseph James O'Connor, a 23-year-old U.K.

Accountability 98

Accountability Social Engineering Media Hacking 98

SecureList

DECEMBER 6, 2022

Phishers primarily seek to extract confidential information from victims, such as credentials or bank card details, while scammers deploy social engineering to persuade targets to transfer money on their own accord. Recently, many channels have appeared on Telegram promising prizes or get-rich cryptocurrency investment schemes.

Scams 133

Scams Phishing Social Engineering Banking 133

SecureList

MAY 27, 2022

In January, we reported a malicious campaign targeting companies that work with cryptocurrencies, smart contracts, decentralized finance and blockchain technology: the attackers are interested in fintech in general. The campaign has two goals: gathering information and stealing cryptocurrency. Roaming Mantis reaches Europe.

Phishing 133

Phishing Spyware Firmware Malware 133

Security Boulevard

MARCH 31, 2022

RedLine is a malware service available for purchase on underground forums that specifically targets the theft of sensitive information: passwords, credit cards, execution environment data, computer name, installed software, and more recently, cryptocurrency wallets and related files. Regular employee training. Email filtering.

Cybersecurity 98

Cybersecurity Social Engineering Passwords Malware 98

Security Affairs

JANUARY 3, 2024

This involves specifying the credentials, as well as the IBAN and BIC codes that will be used for the ‘swapping’ or spoofing process in the documents. Recognition of specific objects and targets through text processing and document analysis. Utilizing AI-driven bots for advanced social engineering techniques.

Artificial Intelligence 134

Artificial Intelligence Banking Scams Cybercrime 134

SecureList

JULY 28, 2022

We observed artefacts related to a new wave of spear-phishing attacks against targets in Russia that use information about the crisis in Ukraine to lure victims into opening a malicious document. Based on our telemetry, the actor initiated the attack by sending a spear-phishing email containing a macro-embedded Word document.

Malware 145

Malware Firmware Phishing Cryptocurrency 145

CyberSecurity Insiders

MAY 3, 2023

By: Daron Hartvigsen , Managing Director, StoneTurn and Luke Tenery , Partner, StoneTurn When insider threat or insider risk is discussed in a corporate context, often the relevant topics include misconduct , fraud, misuse, or even the idea that insiders can be unwitting accomplices to social engineering exploitation.

Risk 120

Risk Cyber threats Marketing Engineering 120

SecureList

JUNE 7, 2023

Mobile statistics Targeted attacks BlueNoroff introduces new methods bypassing MotW At the close of 2022, we reported the recent activities of BlueNoroff , a financially motivated threat actor known for stealing cryptocurrency. The threat actor typically exploits Word documents, using shortcut files for the initial intrusion.

DNS 105

DNS Malware Cryptocurrency Retail 105

SecureList

NOVEMBER 18, 2022

Later that year, we documented the PowerPepper campaign. VileRAT is a Python implant, part of an evasive and highly intricate attack campaign against foreign exchange and cryptocurrency trading companies. First, the threat actor sends a spear-phishing email to the potential victim with a lure to download additional documents.

Malware 122

Malware Computers and Electronics Adware Cryptocurrency 122

Webroot

FEBRUARY 11, 2021

As we mentioned in a previous blog , hackers come in many forms, but their methods can generally be classified into three distinct types of cybercriminals: The Impersonator – Hackers that pretend to be others, often using social engineering and human psychology to trick users.

Scams 119

Scams Phishing Firewall Social Engineering 119

Security Affairs

JANUARY 27, 2022

Other affected businesses include Chip, a UK-based savings app boasting 400,000 users; Hoolah, a shopping app with over 100,000 installs ; Mode, a cryptocurrency app with over 50,000 installs ; and Greenwheels, a car-sharing service with over 50,000 installs. Threat actors can abuse PII to conduct phishing and social engineering attacks.

Identity Theft 98

Identity Theft Accountability Data breaches Social Engineering 98

SecureList

NOVEMBER 9, 2022

In 2023, we might see a slight decline in ransomware attacks, reflecting the slowdown of the cryptocurrency markets. Since 2020, therefore, forms of spear phishing, social engineering and CEO fraud, as well as ransomware, become increasingly prevalent and will continue to be of considerable importance in 2023. DDOS Botnets.

Cybersecurity 144

Cybersecurity Cyber Insurance Cybercrime IoT 144

SecureWorld News

NOVEMBER 11, 2021

Exploitation and Actions on the Objective – Typically, the exploited vulnerability is a human, someone who can be tricked through social engineering rather than malware. The payouts of the scam include financial gains through wire transfers, gift cards, and cryptocurrency, as well as information for use in other activities.

Scams 98

Scams Social Engineering Accountability Ransomware 98

Security Affairs

NOVEMBER 19, 2019

The first half of 2019 saw a 10-fold increase in the number of password-protected objects, such as documents and archive files, being used to deliver malware. Cybercriminals use social engineering techniques to convince users to click on malicious links or extract archives. Financial departments at high risk.

Ransomware 98

Ransomware Antivirus Malware Banking 98