Security Boulevard

AUGUST 3, 2022

The usual purpose of cybercrime is either to make money or defame a business; none is acceptable. But DDoS attacks are often executed to make a statement, harm a competitor, or in some cases, shut down operations while installing malware or ransomware. The number of DDoS attacks is on the rise lately; thus, companies must […].

DDOS 105

DDOS Cybercrime Ransomware Malware 105

Krebs on Security

MARCH 20, 2020

This week, security researchers said they spotted that same vulnerability being exploited by a new variant of Mirai , a malware strain that targets vulnerable Internet of Things (IoT) devices for use in large-scale attacks and as proxies for other cybercrime activity. which boasts some 100 million devices deployed worldwide.

IoT 266

IoT DDOS VPN Firewall 266

Heimadal Security

MARCH 8, 2021

There seem to be no boundaries for ransomware innovation as cybercrime gangs, such as REvil Ransomware (aka Sodinokibi), are always looking for new ways to make crypto-locking malware even more profitable.

DDOS 97

DDOS Ransomware Cybercrime Malware 97

Malwarebytes

SEPTEMBER 15, 2023

The report follows the Internet Organized Crime Assessment (IOCTA), Europol’s assessment of the cybercrime landscape and how it has changed over the last 24 months. Ransomware is named as the most prominent threat with a broad reach and a significant financial impact on industry.

Cybercrime 138

Cybercrime Ransomware DDOS Backups 138

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. Image: SentinelOne.com.

DDOS 305

DDOS Internet Internet Government 305

Security Affairs

MAY 16, 2021

Avaddon ransomware gang has breached the France-based financial consultancy firm Acer Finance. Avaddon ransomware gang made the headlines again, the cybercrime gang has breached the France-based financial consultancy firm Acer Finance. Acer Finance operates as an investment management company. Pierluigi Paganini.

Hacking 144

Hacking Ransomware DDOS Manufacturing 144

Security Affairs

JUNE 17, 2023

Polish police, as part of the international law enforcement operation PowerOFF, dismantled a DDoS-for-hire service that has been active since at least 2013. An international operation codenamed PowerOff led to the shutdown of a DDoS-for-hire service that has been active since at least 2013. Viewer discretion is advised.

DDOS 98

DDOS Computers and Electronics Cybercrime Cryptocurrency 98

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime 145

Cybercrime Banking Malware Ransomware 145

Security Affairs

JANUARY 14, 2022

Ukrainian police arrested members of a ransomware gang that targeted at least 50 companies in the U.S. Ukrainian police arrested members of a ransomware affiliate group that is responsible for attacking at least 50 companies in the U.S. The gang was distributing the LockerGoga and MegaCortex ransomware families. and Europe.

Ransomware 142

Ransomware DDOS Telecommunications Malware 142

Security Affairs

APRIL 23, 2021

The Darkside ransomware gang is enhancing its extortion tactics to interfere with the valuation of stocks of companies that are listed on NASDAQ or other stock markets. The Darkside ransomware operators are stepping up their extortion tactics targeting companies that are listed on NASDAQ or other stock markets with a new technique.

Ransomware 144

Ransomware Marketing DDOS Cybercrime 144

Security Affairs

JULY 8, 2022

Since February, the Conti ransomware group has taken over TrickBot malware operation and also planned to replace it with BazarBackdoor malware. ” The campaign resulted in the theft of sensitive data and the deployment of ransomware to damage Ukrainian’s economy. ” concludes IBM. Pierluigi Paganini.

Cybercrime 124

Cybercrime Malware DDOS Ransomware 124

Security Boulevard

MAY 21, 2021

Just a week after announcing it would no longer cover ransomware payments in France, global insurance company AXA has been hit with a targeted ransomware attack. The post Avaddon Targets Insurer AXA with Ransomware | Avast appeared first on Security Boulevard.

Insurance 138

Insurance Ransomware DDOS Banking 138

Malwarebytes

MAY 11, 2021

Both the Australian Cyber Security Centre (ACSC) and the US Federal Bureau of Investigation (FBI) have issued warnings about an ongoing cybercrime campaign that is using Avaddon ransomware. In a separate advisory (pdf) , the ACSC says it is also aware of an ongoing ransomware campaign using the Avaddon Ransomware malware.

Ransomware 135

Ransomware VPN Encryption DDOS 135

Malwarebytes

MARCH 27, 2023

The “online criminal marketplace” has been disrupted via several fake Distributed Denial of Service (DDoS) tools, according to an announcement from The British National Crime Agency (NCA). This is the case with DDoS tools. Not everyone on an underground forum is up to no good. Instead, their data is collected by the NCA.

DDOS 98

DDOS Cybercrime Marketing Ransomware 98

Malwarebytes

FEBRUARY 10, 2023

At the end of January, the Health Sector Cybersecurity Coordination Center warned that the KillNet group is actively targeting the US healthcare sector with distributed denial-of-service (DDoS) attacks. The Cybersecurity and Infrastructure Security Agency (CISA) says it helped dozens of hospitals respond to these DDoS incidents.

DDOS 98

DDOS Healthcare Computers and Electronics Government 98

Security Affairs

APRIL 3, 2021

The Avaddon ransomware operators updated their malware after security researchers released a public decryptor in February 2021. The Avaddon ransomware family first appeared in the threat landscape in February 2020, and its authors started offering it with a Ransomware-as-a-Service (RaaS) model in June, 2020.

Ransomware 140

Ransomware Encryption Malware Cybercrime 140

Security Boulevard

AUGUST 1, 2022

The post This was H1 2022 – Part 1 – The Fight Against Cybercrime appeared first on Radware Blog. The post This was H1 2022 – Part 1 – The Fight Against Cybercrime appeared first on Security Boulevard. To make matters worse, there was a lack of skilled security professionals who could […].

Cybercrime 119

Cybercrime Architecture Technology DDOS 119

Security Affairs

OCTOBER 16, 2021

TrickBot operators are back and expand the distribution channels with partnership with cybercrime affiliates. The operators behind the infamous TrickBot (ITG23 and Wizard Spider) malware have resurfaced with new distribution channels to deliver malicious payloads, such as Conti ransomware. ” concludes the report.

Malware 140

Malware Cybercrime DDOS Social Engineering 140

Security Affairs

MARCH 27, 2021

Clop ransomware operators now email victim’s customers and ask them to demand a ransom payment to protect their privacy to force victims into paying the ransom. ” Clop ransomware operators invited the victim’s customer to contact the victim and ask it protect their privacy by paying the ransomware. .

Ransomware 142

Ransomware DDOS Banking Hacking 142

Security Affairs

JUNE 19, 2023

Cado researchers recently detected an interesting attack pattern linked to an emerging cybercrime group tracked as Diicot (formerly, “Mexals”) and described in analyses published by Akamai and Bitdefender. Evidence collected by Cado suggests the deployment of a botnet having DDoS capabilities.

Cybercrime 98

Cybercrime DDOS Internet Internet 98

SecureList

MAY 12, 2021

As the world marks the second Anti-Ransomware Day, there’s no way to deny it: ransomware has become the buzzword in the security community. Yet, much of the media attention ransomware gets is focused on chronicling which companies fall prey to it. Part I: Three preconceived ideas about ransomware.

Ransomware 143

Ransomware Encryption Malware Cybercrime 143

Security Affairs

OCTOBER 11, 2020

FONIX is a new Ransomware as a Service available in the threat landscape that was analyzed by SentinelLabs researchers. FONIX is a relatively new Ransomware as a Service (RaaS) analyzed by researchers from Sentinel Labs, its operators were previously specialized in the developers of binary crypters/packers. Pierluigi Paganini.

Ransomware 136

Ransomware Encryption Advertising DDOS 136

SecureList

MAY 11, 2022

Ahead of the Anti-Ransomware Day, we summarized the tendencies that characterize ransomware landscape in 2022. This year, ransomware is no less active than before: cybercriminals continue to threaten nationwide retailers and enterprises , old variants of malware return while the new ones develop.

Ransomware 144

Ransomware Encryption Malware Cybercrime 144

Security Affairs

MARCH 23, 2024

An operation conducted by the Federal Criminal Police Office in Germany (BKA) and the Frankfurt cybercrime combating unit (ZIT) led to the seizure of the infrastructure of the darknet marketplace Nemesis Market in Germany and Lithuania. Crimemarket was a prominent platform for trading illegal drugs, narcotics, and cybercrime services.

Marketing 138

Marketing Cybercrime DDOS Internet 138

Digital Shadows

NOVEMBER 10, 2020

Ransomware operations have undoubtedly dominated the 2020 cyber threat landscape thanks to multi-million-dollar heists and new malware variants popping up. The post Work Smarter, Not Harder: The Evolution of DDoS Activity in 2020 first appeared on Digital Shadows.

DDOS 98

DDOS Cyber threats Ransomware Malware 98

Malwarebytes

OCTOBER 14, 2024

Last week on ThreatDown: Hands-on-keyboard (HOK) attacks: How ransomware gangs attack in real-time Ransomware insurance is funding cybercrime, says White House official 5 tools IT admins should block right now Stay safe! Our business solutions remove all remnants of ransomware and prevent you from getting reinfected.

Data breaches 135

Data breaches Surveillance Insurance DDOS 135

CSO Magazine

FEBRUARY 25, 2022

The infamous cybercriminal group behind the Conti ransomware has publicly announced its full support for the Russian government while the country's army is invading Ukraine and threatened to strike the critical infrastructure of anyone launching cyberattacks or war actions against Russia.

Government 132

Government DDOS Cybercrime Ransomware 132

Security Affairs

DECEMBER 15, 2021

While investigating a data breach suffered by a healthcare organization, FBI accidentally revealed that it believes that the HelloKitty ransomware gang operates out of Ukraine. In November, the US FBI has published a flash alert warning private organizations of the evolution of the HelloKitty ransomware (aka FiveHands).

Ransomware 120

Ransomware Data breaches DDOS Healthcare 120

Security Affairs

MAY 15, 2022

Researchers at cybersecurity firm Cyble analyzed a Tor website named named ‘Eternity Project’ that offers for sale a broad range of malware, including stealers, miners, ransomware, and DDoS Bots. The post Eternity Project: You can pay $260 for a stealer and $490 for a ransomware appeared first on Security Affairs.

Ransomware 98

Ransomware DDOS Cybercrime Malware 98

Dark Reading

SEPTEMBER 9, 2022

A sweeping effort to prevent a raft of targeted cybercrime groups from posting ransomware victims' data publicly is hampering their operations, causing outages.

Ransomware 80

Ransomware DDOS Cybercrime 80

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. Advanced threat actors from countries placed under economic sanctions may rely more on ransomware imitating cybercriminal activity. Analysis of forecasts for 2021.

Cryptocurrency 143

Cryptocurrency Banking Cybercrime Ransomware 143

Security Affairs

NOVEMBER 2, 2023

Rapid7 identified exploitation attempts of the CVE-2023-46604 flaw to deploy HelloKitty ransomware in two different customer environments. “In both instances, the adversary attempted to deploy ransomware binaries on target systems in an effort to ransom the victim organizations. ” reads the report published by Rapid7.

Ransomware 139

Ransomware Cybercrime Software Encryption 139

Security Affairs

SEPTEMBER 10, 2023

US CISA added critical Apache RocketMQ flaw to its Known Exploited Vulnerabilities catalog Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital North Korea-linked threat actors target cybersecurity experts with a zero-day Zero-day in Cisco ASA and FTD is actively exploited in ransomware attacks Nation-state actors (..)

DDOS 138

DDOS VPN Data breaches Cybercrime 138

Security Affairs

NOVEMBER 11, 2023

Police seized BulletProftLink phishing-as-a-service (PhaaS) platform Serbian pleads guilty to running ‘Monopoly’ dark web drug market McLaren Health Care revealed that a data breach impacted 2.2 Virtual Kidnapping: AI Tools Are Enabling IRL Extortion Scams How a ‘Refund Fraud’ Gang Stole $700,000 From Amazon Info from 5.6

DDOS 136

DDOS Data breaches Ransomware Marketing 136

SecureList

NOVEMBER 9, 2022

Supply-chain will become more of a sweet spot for targeted ransomware and state-sponsored espionage campaigns. Businesses will still be mostly concerned with ransomware. We can therefore expect that cybercrime groups from either block will feel safe to attack companies from the opposing side.

Cybersecurity 145

Cybersecurity Cyber Insurance Cybercrime IoT 145

Security Affairs

NOVEMBER 27, 2022

Data from 5.4M Data from 5.4M Data from 5.4M Follow me on Twitter: @securityaffairs and Facebook and Mastodon. Pierluigi Paganini. SecurityAffairs – hacking, newsletter ).

DDOS 135

DDOS Cybercrime Ransomware Cryptocurrency 135

Security Affairs

OCTOBER 15, 2023

The Alphv ransomware group added the Morrison Community Hospital to its dark web leak site. The ALPHV/BlackCat ransomware group claims to have hacked the Morrison Community Hospital and added it to its dark web Tor leak site. Other ransomware attacks recently hit US hospitals. Threat actors continue to target hospitals.

Ransomware 145

Ransomware Healthcare Data breaches Cyber Attacks 145