Krebs on Security

NOVEMBER 9, 2024

based technology companies. Donahue said 60 technology companies are now routing all law enforcement data requests through Kodex, including an increasing number of financial institutions and cryptocurrency platforms. “Unfortunately, a lot of this is phishing or malware campaigns,” Donahue said.

Hacking 280

Hacking Accountability Government Social Engineering 280

Krebs on Security

NOVEMBER 26, 2018

Maybe you were once advised to “look for the padlock” as a means of telling legitimate e-commerce sites from phishing or malware traps. New research indicates that half of all phishing scams are now hosted on Web sites whose Internet address includes the padlock and begins with “[link].

Phishing 279

Phishing Scams Cryptocurrency Internet 279

The Last Watchdog

DECEMBER 18, 2024

To wrap up our 2024 year-end roundtable, we turn our attention to new technologies and trends that are emerging to help bridge the gaps. Dooley Doug Dooley , COO, Data Theorem In 2025, cybersecurity threats will escalate across APIs, cloud setups, supply chains, and cryptocurrency.

Risk 173

Risk Threat Detection Technology Phishing 173

Security Affairs

JUNE 7, 2021

Cybercriminals in Russian underground forums have been invited to take part in competitions for hacking cryptocurrency and NFT. Several Russian underground forums have launched competitions for hacking cryptocurrency schema and Non-fungible token (NFT). SecurityAffairs – hacking, cryptocurrency hack). Pierluigi Paganini.

Cryptocurrency 144

Cryptocurrency Cybercrime Hacking Technology 144

Krebs on Security

FEBRUARY 28, 2024

Malicious hackers are targeting people in the cryptocurrency space in attacks that start with a link added to the target’s calendar at Calendly , a popular application for scheduling appointments and meetings. The attackers impersonate established cryptocurrency investors and ask to schedule a video conference call.

Malware 326

Malware Cryptocurrency Software Phishing 326

CyberSecurity Insiders

JANUARY 17, 2022

North Korea, the nation that is being led by Kim Jong UN is back into news headlines for stealing cryptocurrency worth millions through cyber attacks. The post North Korea steals $400m cryptocurrency through Cyber Attacks appeared first on Cybersecurity Insiders.

Cryptocurrency 135

Cryptocurrency Cyber Attacks Social Engineering Banking 135

Security Affairs

APRIL 26, 2024

As cryptocurrencies have grown in popularity, there has also been growing concern about cybercrime involvement in this sector Cryptocurrencies have revolutionized the financial world, offering new investment opportunities and decentralized transactions.

Cryptocurrency 130

Cryptocurrency Cybercrime Education Scams 130

IT Security Guru

APRIL 25, 2025

With the rapid expansion of technological advancements, there have been many great innovations across various industries that have had a positive impact on the world. However, these advancements also mean the latest technologies may not always be used for legal or ethical activities, making being online a very risky business these days.

Scams 44

Scams Phishing Cryptocurrency Cyber threats 44

Krebs on Security

AUGUST 30, 2022

Phishers are enjoying remarkable success using text messages to steal remote access credentials and one-time passcodes from employees at some of the world’s largest technology companies and customer support firms. Those who submitted credentials were then prompted to provide the one-time password needed for multi-factor authentication.

Mobile 337

Mobile Phishing Authentication Accountability 337

Krebs on Security

DECEMBER 16, 2021

A 24-year-old New York man who bragged about helping to steal more than $20 million worth of cryptocurrency from a technology executive has pleaded guilty to conspiracy to commit wire fraud. Following the theft, Terpin filed a civil lawsuit against Truglia with the Los Angeles Superior court.

Cryptocurrency 363

Cryptocurrency Mobile Accountability Scams 363

Krebs on Security

AUGUST 19, 2020

The COVID-19 epidemic has brought a wave of email phishing attacks that try to trick work-at-home employees into giving away credentials needed to remotely access their employers’ networks. The employee phishing page bofaticket[.]com. Image: urlscan.io.

Phishing 363

Phishing VPN Social Engineering Media 363

Security Affairs

JUNE 4, 2024

Resecurity uncovered a cybercriminal group that is providing a sophisticated phishing kit, named V3B, to target banking customers in the EU. “Currently, it is estimated that hundreds of cybercriminals are using this kit to commit fraud, leaving victims with empty bank accounts.

Banking 129

Banking Phishing Social Engineering Engineering 129

SecureList

MARCH 25, 2025

Key findings Phishing Banks were the most popular lure in 2024, accounting for 42.58% of financial phishing attempts. Amazon Online Shopping was mimicked by 33.19% of all phishing and scam pages targeting online store users in 2024. Cryptocurrency phishing saw an 83.37% year-over-year increase in 2024, with 10.7

Phishing 83

Phishing Banking Scams Mobile 83

SecureList

JULY 5, 2023

The higher the global popularity of cryptocurrencies and the more new ways of storing them, the wider the arsenal of tools used by malicious actors who are after digital money. This story covers two fundamentally different methods of email attacks on the two most popular ways of storing cryptocurrency: hot and cold wallets.

Scams 130

Scams Phishing Cryptocurrency Social Engineering 130

SecureList

JUNE 10, 2024

This article examines methods that rely on social engineering, where attackers manipulate the victim into giving away the OTP, and tools that they use to automate the manipulations: so-called OTP bots and administration panels to control phishing kits. The bot accepts payments in cryptocurrency only. What is an OTP bot?

Phishing 145

Phishing Banking Social Engineering Accountability 145

Krebs on Security

JULY 29, 2021

. “You hand that over to a person who used to mine Ethereum or Bitcoin, and if they have a large enough dictionary [of pre-computed hashes] then you can essentially break 60-70 percent of the hashed passwords in a day or two,” said Fabian Wosar , chief technology officer at security firm Emsisoft. TARGETED PHISHING.

Passwords 363

Passwords Password Management Phishing Scams 363

Security Boulevard

APRIL 30, 2021

Are you investing in cryptocurrency or thinking about it? Be sure to listen or watch our April monthly show for our top 3 ways to keep your cryptocurrency safe! ** Links mentioned on the show ** 10 Ways to Keep Your Cryptocurrency Safe [link] Beware of These Top Bitcoin Scams [link] 9 Best Crypto Wallets […].

Cryptocurrency 116

Cryptocurrency Scams Social Engineering Engineering 116

SecureList

JANUARY 13, 2022

Also, we have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income. tmp 2>&1″ Stealing cryptocurrency. Malware infection.

Cryptocurrency 145

Cryptocurrency Malware Accountability Banking 145

SecureList

DECEMBER 6, 2022

There are two main types of online fraud aimed at stealing user data and money: phishing and scams. The history of scams and phishing. The term “phishing” was coined back in 1996, when cybercriminals attacked users of America Online (AOL), the largest internet provider at that time. Phishing site with chat support.

Scams 133

Scams Phishing Social Engineering Banking 133

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. technology companies during the summer of 2022. 7, several employees at email delivery firm Mailchimp provided their remote access credentials to this phishing group.

Social Engineering 356

Social Engineering Mobile Passwords Cybercrime 356

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers. Chipmaker NVIDIA says a cyberattack led to theft of information on more than 71,000 employees.

Cryptocurrency 291

Cryptocurrency Cybercrime Computers and Electronics Scams 291

Appknox

APRIL 13, 2021

Over time technologies evolved and now things that seemed to be not possible several years ago become the reality. Along with wireless payments like Google or Apple pay (that still require assigning a banking account or card i.e. physical currency), the cryptocurrencies like Bitcoin are getting widely used.

Cryptocurrency 105

Cryptocurrency Wireless Hacking Banking 105

Centraleyes

DECEMBER 16, 2024

As we approach 2025, the cybersecurity landscape is evolving rapidly, shaped by technological advancements, regulatory shifts, and emerging threats. By 2027, 75% of employees are expected to acquire or modify technology outside of ITs control, up from 41% in 2022. To keep up, organizations must stay ahead of these developments.

Cybersecurity 98

Cybersecurity Insurance Cyber Insurance Technology 98

Schneier on Security

JUNE 4, 2019

Several new cybercrimes are significant enough to mention, including business email compromise and crimes involving cryptocurrencies. The move to the cloud means that system misconfiguration may now be responsible for as many breaches as phishing. Richard Clayton gave a presentation on this yesterday at WEIS.

Cybercrime 245

Cybercrime Scams Cryptocurrency Antivirus 245

Digital Shadows

MARCH 12, 2025

Figure 1: Top attack techniques in true-positive customer incidents for the hospitality and recreation sector compared to all sectors, September 1, 2024February 28, 2025 Threat actors exploited stolen or brute-forced credentials, often obtained through phishing, data leaks, or purchased from Initial Access Brokers (IABs).

Cyber threats 65

Cyber threats Cryptocurrency IoT Ransomware 65

Krebs on Security

APRIL 6, 2022

Since surfacing in late 2021, LAPSUS$ has gained access to the networks or contractors for some of the world’s largest technology companies, including Microsoft , NVIDIA , Okta and Samsung. “Someone was trying to phish employee credentials, and they were good at it,” Wired reported. “voice phishing” a.k.a.

Social Engineering 288

Social Engineering Phishing Engineering Accountability 288

Security Affairs

MAY 10, 2022

“Frappo” acts as a Phishing-as-a-Service and enables cybercriminals the ability to host and generate high-quality phishing pages which impersonate major online banking, e-commerce, popular retailers, and online-services to steal customer data.

Phishing 102

Phishing Banking Retail Financial Services 102

Krebs on Security

MAY 30, 2023

A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised as a Web browser bookmark.

Hacking 341

Hacking Accountability Scams Cryptocurrency 341

Heimadal Security

APRIL 14, 2021

Ledger SAS, and Ledger Technologies Inc., with the plaintiffs claiming that several users lost their cryptocurrency in phishing campaigns due to their personal data being leaked in a data breach that took place in […]. On the 6th of April two plaintiffs, John Chu and Edward Baton, filed a lawsuit against Shopify Inc.,

Data breaches 130

Data breaches Cryptocurrency Phishing Technology 130

Security Boulevard

APRIL 24, 2025

Gone are the days of mass phishing campaigns. Evolving phishing trends to watch in 2025ThreatLabz uncovered many significant evolving trends in phishing attacks, with attackers adopting advanced tactics to bypass defenses and exploit human trust.

Phishing 71

Phishing Scams Cryptocurrency Authentication 71

Krebs on Security

DECEMBER 27, 2019

20 warned against the dangers of phishing-based cyberattacks, less than three days prior to their (apparently phishing-based) Sodinokibi ransomware infestation. The company has nearly a thousand employees and brought in more than $100 million in revenue in the past year, according to their Web site.

Ransomware 228

Ransomware Media Financial Services Retail 228

SecureList

APRIL 21, 2025

Primary infection vectors include phishing emails with malicious attachments or links, as well as trojanized legitimate applications. Fake Telegram channels for pirated content and cryptocurrencies. These deceptive tactics trick users into executing the malware, which runs silently in the background harvesting valuable data.

Malware 88

Malware Cryptocurrency Software Phishing 88

Security Affairs

NOVEMBER 20, 2023

The economically motivated APT group used specially crafted archives in phishing attacks against forum users through online trading forum posts. “DarkCasino is an APT threat actor with strong technical and learning ability, who is good at integrating various popular APT attack technologies into its attack process.

Phishing 145

Phishing Financial Services Cryptocurrency Technology 145

SecureList

FEBRUARY 23, 2022

We look at phishing threats commonly encountered by users and companies as well as the prevalence of various Windows and Android-based financial malware. Phishing: In 2021, 8.2% of users were hit by phishing. E-commerce-related phishing continued to exceed banking-related phishing, as it did in 2020, making up 17.6%

Banking 141

Banking Phishing Cryptocurrency Malware 141

The Last Watchdog

SEPTEMBER 6, 2023

Over time, Bitcoin has become the most widely used cryptocurrency in the world. As the use of Bitcoin has grown, so have the number of phishing and malware attempts that prey on naïve users. About the essayist: Ronin Ashford is a passionate tech enthusiast and a dedicated cryptocurrency investor. Ashford Be wary of fraud.

Cryptocurrency 100

Cryptocurrency Backups Passwords Software 100

SecureList

MAY 6, 2024

A significant share of scam, phishing and malware attacks is about money. Methodology In this report, we present an analysis of financial cyberthreats in 2023, focusing on banking Trojans and phishing pages that target online banking, shopping accounts, cryptocurrency wallets and other financial assets. million in 2022.

Phishing 133

Phishing Banking Mobile Scams 133

SecureList

FEBRUARY 21, 2025

Technical details Initial attack vector The initial attack vector used by Angry Likho consists of standardized spear-phishing emails with various attachments. Contents of spear-phishing email inviting the victim to join a videoconference The archive includes two malicious LNK files and a legitimate bait file.

Phishing 91

Phishing Encryption Banking Malware 91