Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. The answer involved Bitcoin, but also Taleon’s new service.

Cryptocurrency 279

Cryptocurrency Cybercrime Retail Government 279

Krebs on Security

APRIL 12, 2022

Department of Justice (DOJ) said today it seized the website and user database for RaidForums , an extremely popular English-language cybercrime forum that sold access to more than 10 billion consumer records stolen in some of the world’s largest data breaches since 2015.

Government 254

Government Identity Theft Mobile Data breaches 254

Krebs on Security

FEBRUARY 28, 2023

In each case, the goal of the attackers was the same: Phish T-Mobile employees for access to internal company tools, and then convert that access into a cybercrime service that could be hired to divert any T-Mobile user’s text messages and phone calls to another device.

Mobile 336

Mobile Phishing Authentication Advertising 336

Krebs on Security

JANUARY 25, 2023

The tip about the Experian weakness came from Jenya Kushnir , a security researcher living in Ukraine who said he discovered the method being used by identity thieves after spending time on Telegram chat channels dedicated to cybercrime.

Cybercrime 332

Cybercrime Web Fraud Data breaches 332

Security Boulevard

AUGUST 16, 2022

Earlier this month, the administrator of the cybercrime forum Breached received a cease-and-desist letter from a cybersecurity firm. The missive alleged that an auction on the site for data stolen from 10 million customers of Mexico’s second-largest bank was fake news and harming the bank’s reputation.

Data breaches 52

Data breaches Banking Cybercrime Cybersecurity 52

Krebs on Security

AUGUST 17, 2023

Constella Intelligence , a data breach and threat actor research platform, now allows users to cross-reference popular cybercrime websites and denizens of these forums with inadvertent malware infections by information-stealing trojans.

Phishing 222

Phishing Passwords Internet Internet 222

Krebs on Security

MARCH 14, 2023

.” Indeed, a screenshot of the ViLE group website includes the group’s official roster, which lists KT at the top, followed by Weep and Ominus. A screenshot of the website for the cybercriminal group “ViLE.” ” Image: USDOJ.

Hacking 291

Hacking Government Media Accountability 291

Krebs on Security

JUNE 28, 2022

Constella Intelligence , a security firm that indexes passwords and other personal information exposed in past data breaches, revealed dozens of variations on email addresses used by Alexander I. Ukraincki ,” whose personal information also is included in the domains tpos[.]ru ru and alphadisplay[.]ru, Ukraincki over the years.

Passwords 290

Passwords Malware Internet Internet 290

Security Boulevard

APRIL 12, 2022

Department of Justice (DOJ) said today it seized the website and user database for RaidForums, an extremely popular English-language cybercrime forum that sold access to more than 10 billion consumer records stolen in some of the world's largest data breaches since 2015.

Identity Theft 52

Identity Theft Data breaches Cybercrime Web Fraud 52

Security Boulevard

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum.

Hacking 59

Hacking Cybercrime Accountability Web Fraud 59

Krebs on Security

SEPTEMBER 13, 2024

The security firm CrowdStrike dubbed the group “ Scattered Spider ,” a recognition that the MGM hackers came from different hacker cliques scattered across an ocean of Telegram and Discord servers dedicated to financially-oriented cybercrime. ” Beige members were implicated in two stories published here in 2020.

Cybercrime 308

Cybercrime Accountability Mobile Hacking 308

Krebs on Security

JULY 16, 2019

For at least the past decade, a computer crook variously known as “ Yalishanda ,” “ Downlow ” and “ Stas_vl ” has run one of the most popular “bulletproof” Web hosting services catering to a vast array of phishing sites, cybercrime forums and malware download servers.

Cybercrime 209

Cybercrime Phishing Banking Malware 209

Krebs on Security

OCTOBER 15, 2019

All of the card data stolen from BriansClub was shared with multiple sources who work closely with financial institutions to identify and monitor or reissue cards that show up for sale in the cybercrime underground. The leaked data shows that in 2015, BriansClub added just 1.7 THE TARGET BREACH OF THE UNDERGROUND?

Hacking 245

Hacking Cybercrime Marketing Banking 245

Krebs on Security

MARCH 22, 2023

” On March 3, 2023, a denizen of the now-defunct cybercrime community BreachForums posted a thread which noted that a unique component of the malicious app code highlighted by DarkNavy also was found in the ecommerce application whose name was apparently redacted from the DarkNavy analysis: Pinduoduo.

Malware 310

Malware eCommerce Mobile Media 310

Krebs on Security

FEBRUARY 25, 2021

in cybercrime forums, Telegram channels throughout 2020. “There’s been a real shift in the market from data-centric identity verification to verifying through something you have and something you are, like a phone or face or ID,” he said. protections. Mentions of id.me Source: Flashpoint-intel.com.

Scams 333

Scams Insurance DDOS Authentication 333