Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. 12 blog post , the attackers used their access to Mailchimp employee accounts to steal data from 214 customers involved in cryptocurrency and finance. 9, 2024, U.S.

Social Engineering 356

Social Engineering Mobile Passwords Cybercrime 356

SecureList

JANUARY 13, 2022

Also, we have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income. Note, this is no proof that the companies listed were compromised.

Cryptocurrency 145

Cryptocurrency Malware Accountability Banking 145

eSecurity Planet

NOVEMBER 18, 2022

This involved using an “unsecured group email account as the root user to access confidential private keys and critically sensitive data for the FTX Group companies around the world…” About $740 million in cryptocurrency has been placed into new cold wallets. One way is through hijacking computer resources to mine cryptocurrencies.

Risk 143

Risk Cybersecurity Cryptocurrency Social Engineering 143

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. Based on the risk score, CryptoIns experts have calculated insurance rates for cryptocurrency exchange users who can now insure their accounts against cyber threats.

Insurance 95

Insurance Cryptocurrency Cyber threats Marketing 95

Security Through Education

NOVEMBER 19, 2024

Social engineering scams frequently exploit our desire to help by using themes of sympathy and assistance to manipulate us. The victim is asked to wire money, transfer cryptocurrency, or share sensitive information like credit card details, to “help” them in their current situation.

Social Engineering 52

Social Engineering Engineering Scams Cryptocurrency 52

Security Through Education

NOVEMBER 19, 2024

Social engineering scams frequently exploit our desire to help by using themes of sympathy and assistance to manipulate us. The victim is asked to wire money, transfer cryptocurrency, or share sensitive information like credit card details, to “help” them in their current situation.

Social Engineering 52

Social Engineering Engineering Scams Cryptocurrency 52

CyberSecurity Insiders

MAY 3, 2023

By: Daron Hartvigsen , Managing Director, StoneTurn and Luke Tenery , Partner, StoneTurn When insider threat or insider risk is discussed in a corporate context, often the relevant topics include misconduct , fraud, misuse, or even the idea that insiders can be unwitting accomplices to social engineering exploitation.

Risk 120

Risk Cyber threats Marketing Engineering 120

Security Boulevard

AUGUST 2, 2022

Current threat actor activity is incentivized by a broad attack surface represented through high volumes of users and systems, and high potential profits represented through the variety of cryptocurrency offerings. It is easy to detect and block things like malicious cryptocurrency apps or crypto-phishing websites.

Cryptocurrency 98

Cryptocurrency Ransomware Government Risk 98

Identity IQ

JUNE 1, 2023

The Rise of AI Social Engineering Scams IdentityIQ In today’s digital age, social engineering scams have become an increasingly prevalent threat. Social engineering scams leverage psychological manipulation to deceive individuals and exploit the victims’ trust.

Social Engineering 52

Social Engineering Scams Engineering Identity Theft 52

Malwarebytes

OCTOBER 27, 2023

Octo Tempest is believed to be a group of native English speaking cybercriminals that uses social engineering campaigns to compromise organizations all over the world. This can be done in a number of ways, but the most common ones involve social engineering attacks on the victim's carrier.

Social Engineering 122

Social Engineering Engineering Ransomware Backups 122

The Last Watchdog

APRIL 14, 2022

The email specifies that the HR manager should include the codes associated with each card, which the scammer behind the scenes then sells online for cash or cryptocurrency. An HR benefits manager receives an email from the department VP asking him to purchase gift cards for a new employee rewards program. Scenario 3.

Phishing 247

Phishing Accountability Scams Social Engineering 247

Responsible Cyber

JULY 13, 2024

Introduction Cryptocurrency represents a groundbreaking innovation in the financial sector, offering decentralized, peer-to-peer digital transactions through blockchain technology. However, the allure of these digital assets also attracts malicious actors, making cryptocurrency security paramount.

Cryptocurrency 52

Cryptocurrency Cyber Attacks Social Engineering Scams 52

SecureWorld News

FEBRUARY 14, 2025

Use secure payment methods Avoid wire transfers, prepaid gift cards, or cryptocurrency for online purchases for Valentine's Day. Protect your personal information Valentine's Day scammers take advantage of social engineering and people letting their guard down around February 14th.

Scams 74

Scams Cybercrime Social Engineering Phishing 74

SecureWorld News

DECEMBER 10, 2024

The research , released this morning, reveals how attackers are leveraging advanced social engineering, obfuscation techniques, and device exploitation to steal credentials and compromise financial and corporate applications. Key features include: Credential Theft: Targets banking, cryptocurrency, and financial apps.

Mobile 109

Mobile Social Engineering Banking Phishing 109

Krebs on Security

AUGUST 30, 2022

4 it became aware of unauthorized access to information related to a limited number of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials. On that last date, Twilio disclosed that on Aug. ” On July 28 and again on Aug. According to an Aug. In an Aug.

Mobile 337

Mobile Phishing Authentication Accountability 337

Malwarebytes

MARCH 19, 2024

SIM swapping can be done in a number of ways, but perhaps the most common involves a social engineering attack on the victim’s carrier. However, if you have a telecoms manager on your payroll then there’s no need for social engineering—they can just do the SIM swap for you. Katz pleaded guilty before Chief U.S.

Social Engineering 142

Social Engineering Computers and Electronics Mobile Identity Theft 142

SecureList

JULY 5, 2023

The higher the global popularity of cryptocurrencies and the more new ways of storing them, the wider the arsenal of tools used by malicious actors who are after digital money. This story covers two fundamentally different methods of email attacks on the two most popular ways of storing cryptocurrency: hot and cold wallets.

Scams 130

Scams Phishing Cryptocurrency Social Engineering 130

Webroot

FEBRUARY 13, 2024

These scams don’t just harm individuals financially and emotionally; they can also pose significant risks to businesses. Rise in Cryptocurrency Payments : Fraudsters are increasingly asking for payments in cryptocurrency, exploiting its semi-anonymous nature.

Scams 122

Scams Cryptocurrency Media Education 122

Malwarebytes

DECEMBER 6, 2022

Nicholas Truglia (25) from Florida was sentenced to 18 months on Thursday for his involvement in a digital heist that cost Michael Terpin ( @michaelterpin ), a renowned personality in the cryptocurrency space, $23.8M. According to El Reg , Terpin's cryptocurrency of choice was TRIG, which was worth $7 then.

Cryptocurrency 98

Cryptocurrency Social Engineering Accountability Media 98

Malwarebytes

JANUARY 20, 2023

The unauthorized actor conducted a social engineering attack on Mailchimp employees and contractors, and obtained access to select Mailchimp accounts using employee credentials compromised in that attack." We don't just report on threats—we remove them Cybersecurity risks should never spread beyond a headline.

Social Engineering 98

Social Engineering Accountability Cryptocurrency Engineering 98

Security Affairs

JANUARY 12, 2025

CISA adds Oracle WebLogic Server and Mitel MiCollab flaws to its Known Exploited Vulnerabilities catalog Threat actors breached the Argentinas airport security police (PSA) payroll Moxa router flaws pose serious risks to industrial environmets US adds Tencent to the list of companies supporting Chinese military Eagerbee backdoor targets govt entities (..)

Data breaches 61

Data breaches Phishing Social Engineering Engineering 61

Security Boulevard

JULY 16, 2024

DeFAIL: Cryptocurrency fans lose their worthless tokens via phishing attacks on decen­tral­ized finance sites. The post Squarespace Hacked — DeFi Wallets Drained (Imaginary Money Stolen) appeared first on Security Boulevard.

Hacking 131

Hacking Cryptocurrency Phishing Social Engineering 131

Security Boulevard

AUGUST 23, 2024

Oink, oink, FAIL—you’re in jail: Kansas bank chief exec Shan Hanes stole money from investors, a church and others to buy cryptocurrency to feed a scam. The post Pig Butchering at Heart of Bank Failure — CEO Gets 24 Years in Jail appeared first on Security Boulevard.

Banking 133

Banking Scams Cryptocurrency Digital transformation 133

Security Affairs

OCTOBER 20, 2021

Once hijacked the channel, attackers either sell it to the highest bidder or employ it in cryptocurrency scam scheme. The hackers used fake collaboration opportunities (i.e. a demo for anti-virus software, VPN, music players, photo editing or online games) to hijack the channel of YouTube creators.

Accountability 144

Accountability Malware Phishing Social Engineering 144

Approachable Cyber Threats

JULY 7, 2022

Risk Level. It also serves as an easy access point for more advanced hackers and scammers to target specific organizations, or even harvest cryptocurrency. DropBox and social engineering. You can avoid this by understanding and recognizing social engineering, and not clicking on links from people you don’t know or trust.

Social Engineering 97

Social Engineering Cryptocurrency Malware Antivirus 97

Security Affairs

OCTOBER 18, 2018

Group-IB, an international company that specializes in preventing cyber attacks, has estimated that cryptocurrency exchanges suffered a total loss of $882 million due to targeted attacks in 2017 and in the first three quarters of 2018. At the beginning of 2018 hackers’ interest in cryptocurrency exchanges ramped up.

Cyber Attacks 110

Cyber Attacks Cryptocurrency Phishing Social Engineering 110

Security Boulevard

MARCH 16, 2023

Ben is disappointed: FBI reports huge rise in cryptocurrency investment scams. Why am I not surprised? The post Scams Lost US $10 BILLION in 2022 — Crypto Fraud Grows Fast appeared first on Security Boulevard.

Scams 140

Scams Cryptocurrency Social Engineering Internet 140

SecureWorld News

AUGUST 29, 2023

Kroll, a leading provider of risk management and financial consulting services, finds itself in the midst of dealing with the consequences of a recent and alarming security breach. The objective was to collect users' seed phrases, the keys to their cryptocurrency wallets, and to potentially empty these wallets.

Cryptocurrency 104

Cryptocurrency Phishing Social Engineering Accountability 104

Malwarebytes

JANUARY 3, 2024

The social engineering techniques used by fraudsters are growing in complexity. Popular investment opportunities offered by the criminals include stocks, cryptocurrencies, and pension funds. The most reported investment fraud products in the EU are cryptocurrencies. Make sure to read the fine print.

Scams 120

Scams Cryptocurrency Social Engineering Internet 120

Security Affairs

JUNE 11, 2023

Gox exchange and operating BTC-e Japanese Pharmaceutical giant Eisai hit by a ransomware attack Clop ransomware gang was testing MOVEit Transfer bug since 2021 Stealth Soldier backdoor used is targeted espionage attacks in Libya Researchers published PoC exploit code for actively exploited Windows elevation of privilege issue Experts detail a new Kimsuky (..)

Social Engineering 98

Social Engineering Data breaches Ransomware Cybercrime 98

Security Boulevard

JANUARY 28, 2022

Cryptocurrency scammers love social media—especially Meta’s platforms. Hundreds of millions of dollars were scammed from U.S. consumers in 2021. The post Fake Cash Scams Thrive on Facebook and Insta—FTC appeared first on Security Boulevard.

Scams 128

Scams Cryptocurrency Media Social Engineering 128

Krebs on Security

JULY 22, 2020

Voku’s cooperation with authorities led them to bust up a conspiracy involving at least nine individuals who stole millions of dollars worth of cryptocurrency and other items of value from their targets. “can u edit that comment out, @tankska is a gaming twitter of mine and i dont want it to be on ogu :D’,” lol wrote.

Hacking 335

Hacking Accountability Scams Media 335

Security Boulevard

DECEMBER 3, 2021

Schadenfreude: This week saw a pair of high-profile cryptocurrency thefts, totalling over $150 million. The post $150M Stolen in ‘Imaginary Money’ Crypto/DeFi Hacks appeared first on Security Boulevard.

Hacking 126

Hacking Cryptocurrency Social Engineering Engineering 126

Security Boulevard

AUGUST 2, 2022

Cryptocurrency startup Nomad claimed its “optimistic bridging” protocol would “would keep users’ funds safe.” We take a closer look. The post FAIL: Nomad DeFi Bridge ‘Loses’ $190M of Worthless Tokens appeared first on Security Boulevard.

Cryptocurrency 124

Cryptocurrency Social Engineering Engineering Risk 124

Appknox

JUNE 23, 2022

The risks to the privacy of Australian customers are at an all-time high, as the nation has reported the highest percentage of mobile threats globally, standing at 26.9%. The Australian population is at most risk if you consider the statistics on a per-device basis. Australian Mobile Cybersecurity in 2022.

Social Engineering 92

Social Engineering Mobile Scams Engineering 92

Malwarebytes

SEPTEMBER 11, 2023

Once active, the malware can be used for several malicious activities like remote access, cryptocurrency mining, keylogging, clipboard stealing, and information stealing. The message content aimed to social engineer the recipients into downloading and opening a malicious file hosted remotely.”

Malware 136

Malware Social Engineering Cryptocurrency Cybercrime 136

SecureWorld News

SEPTEMBER 11, 2024

The campaign represents a significant evolution in the Lazarus Group's strategy, moving beyond its traditional focus on cryptocurrency and financial institutions. North Korea tends to be a relatively easy adversary to track and anticipate due to its consistent use of overlapping Tactics, Techniques, and Procedures (TTPs)."

Scams 109

Scams Social Engineering Cyber threats Cryptocurrency 109