Cybercrime and Education - Cyber Security Informer

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

Russian Phobos ransomware operator Evgenii Ptitsyn, accused of managing attacks, was extradited from South Korea to the US to face cybercrime charges. Russian Phobos ransomware operator Evgenii Ptitsyn, suspected of playing a key role in the ransomware operations, was extradited from South Korea to the US to face cybercrime charges.

Cybercrime

Cybercrime Ransomware Healthcare Education

Pennsylvania State Education Association data breach impacts 500,000 individuals

Security Affairs

MARCH 20, 2025

A data breach at the Pennsylvania State Education Association exposed the personal information of over 500,000 individuals. The Pennsylvania State Education Association (PSEA) suffered a data breach that impacted 517,487 individuals. PSEA is affiliated with the National Education Association (NEA).

Education

Education Data breaches Identity Theft Insurance

Inside ‘Evil Corp,’ a $100M Cybercrime Menace

Krebs on Security

DECEMBER 16, 2019

Justice Department this month offered a $5 million bounty for information leading to the arrest and conviction of a Russian man indicted for allegedly orchestrating a vast, international cybercrime network that called itself “ Evil Corp ” and stole roughly $100 million from businesses and consumers. LOW FRIENDS IN HIGH PLACES.

Cybercrime

Cybercrime Banking Small Business Accountability

Cryptocurrencies and cybercrime: A critical intermingling

Security Affairs

APRIL 26, 2024

As cryptocurrencies have grown in popularity, there has also been growing concern about cybercrime involvement in this sector Cryptocurrencies have revolutionized the financial world, offering new investment opportunities and decentralized transactions.

Cryptocurrency

Cryptocurrency Cybercrime Education Scams

Operation Heart Blocker: International Police Disrupt Phishing Network

SecureWorld News

FEBRUARY 3, 2025

In a significant victory against cybercrime, U.S. Cybercrime as a service: an evolving threat As cybercriminals continue to develop more sophisticated and accessible tools, law enforcement agencies worldwide are struggling to keep pace. For every criminal group disrupted, multiple others remain active or emerge to take their place."

Phishing

Phishing Cybercrime Scams Authentication

Alabama State Department of Education suffered a data breach following a blocked attack

Security Affairs

JULY 7, 2024

Alabama’s education superintendent disclosed a data breach following a hacking attempt on the Alabama State Department of Education. The Alabama State Department of Education announced it had thwarted a ransomware attack on June 17, however, threat actors accessed some data and disrupted services before the attack was stopped.

Education

Education Data breaches Banking Hacking

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. The FBI has observed incidents of stolen higher education credential information posted on publically accessible online forums or listed for sale on criminal marketplaces.

Cybercrime

Cybercrime Education Accountability Phishing

Top-Ranked New Jersey School District Cancels Final Exams Following Ransomware Cyberattack

Joseph Steinberg

JUNE 9, 2022

When it comes to cybercrimes, state and local law enforcement officials are rarely a match for cybercriminals; Tenafly’s police chief himself admitted that handling the investigation of the ransomware attack is “way above our capabilities.”

Ransomware

Ransomware Artificial Intelligence Education Cybercrime

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

Krebs on Security

MAY 14, 2021

“Servers were seized (country not named), money of advertisers and founders was transferred to an unknown account,” reads a message from a cybercrime forum reposted to the Russian OSINT Telegram channel. Affiliates also will be required to get approval before infecting victims.

Ransomware

Ransomware Cryptocurrency Cybercrime Healthcare

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum. Pompompurin has been a thorn in the side of the FBI for years.

Hacking

Hacking Energy and Utilities Cybercrime Accountability

Gmail Under Siege: FBI Warns of Unusual AI-Driven Phishing Attacks

eSecurity Planet

FEBRUARY 10, 2025

This surge highlights a broader trend toward automation in cybercrime and signals that no email platform is immune. Since early 2022, there has been a 49 percent rise in phishing attempts capable of evading filters, with AI-generated threats accounting for nearly 5 percent of these attacks.

Phishing

Phishing Artificial Intelligence Password Management Accountability

Arrest in ‘Ransom Your Employer’ Email Scheme

Krebs on Security

NOVEMBER 22, 2021

The investigator — we’ll call him “George” — said the 23-year-old Medayedupin lives with his extended family in an extremely impoverished home, and that the young man told investigators he’d just graduated from college but turned to cybercrime at first with ambitions of merely scamming the scammers.

Scams

Scams Cybercrime Banking Identity Theft

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

Security Affairs

NOVEMBER 21, 2023

Experts warn of a surge in NetSupport RAT attacks against education, government, and business services sectors. The most impacted sectors are education, government, and business services. NetSupport RAT is a remote control and desktop management software developed by NetSupport Ltd.

Education

Education Government Business Services Software

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

OCTOBER 13, 2024

CISA adds Synacor Zimbra Collaboration flaw to its Known Exploited Vulnerabilities catalog China-linked group Salt Typhoon hacked US broadband providers and breached wiretap systems Google Pixel 9 supports new security features to mitigate baseband attacks International Press – Newsletter Cybercrime Indiana Man Pleads Guilty to Conspiracies Involving (..)

Data breaches

Data breaches Cryptocurrency Artificial Intelligence Cybercrime

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. Conclusion: cybersecurity and cybercrime have matured.

Cybercrime

Cybercrime Banking Malware Ransomware

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. businesses called #ShieldsUp.

Cybersecurity

Cybersecurity Cybercrime Education Government

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Security Affairs

AUGUST 6, 2023

The Colorado Department of Higher Education (CDHE) finally disclosed a data breach impacting students, past students, and teachers after the June attack. In June a ransomware attack hit the Colorado Department of Higher Education (CDHE), now the organization disclosed a data breach.

Education

Education Data breaches Ransomware Hacking

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Security Affairs

MAY 12, 2023

CISA and FBI warned of attacks conducted by the Bl00dy Ransomware Gang against the education sector in the country. The FBI and CISA issued a joint advisory warning that the Bl00dy Ransomware group is actively targeting the education sector by exploiting the PaperCut remote-code execution vulnerability CVE-2023-27350.

Education

Education Ransomware Encryption Malware

Law enforcement seized the Genesis Market cybercrime marketplace

Security Affairs

APRIL 5, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Genesis Market) The post Law enforcement seized the Genesis Market cybercrime marketplace appeared first on Security Affairs.

Marketing

Marketing Cybercrime Accountability Education

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

The Last Watchdog

MAY 30, 2022

Arguably, one of the most critical changes needed will be to adapt hiring practices to help candidates without a traditional college education enter into these critical roles. About the essayist: Jack Koziol is the founder, SVP and GM of Infosec Institute , a cybersecurity education company.

Cybersecurity

Cybersecurity InfoSec Education Government

Cybercrime group exploits Windows zero-day in ransomware attacks

Security Affairs

APRIL 11, 2023

The experts pointed out that while the majority of zero-days they have discovered in the past were used by APT groups, this zero-day was exploited by a sophisticated cybercrime group. This group is known to have used similar CLFS driver exploits in the past that were likely developed by the same author.

Cybercrime

Cybercrime Ransomware Education Media

MUT-1244 Campaign Steals Hundreds of Thousands of WordPress Credentials and More

SecureWorld News

DECEMBER 17, 2024

Researchers at Datadog Security Labs have uncovered a year-long, large-scale cybercrime campaign by a threat actor tracked as MUT-1244. Educate Security Teams : Train red teams and researchers to recognize phishing attempts, especially those exploiting operational needs like kernel upgrades.

Phishing

Phishing Threat Detection Social Engineering Cybercrime

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

Krebs on Security

MARCH 31, 2022

police and government email accounts, including a police department in India; a government ministry of the United Arab Emirates; the Brazilian Secretariat of Education; and Saudi Arabia’s Ministry of Education. 30, Bug posted a sales thread to the cybercrime forum Breached[.]co

Government

Government Accountability Education Media

Canada Releases 2025 National Cyber Security Strategy

SecureWorld News

FEBRUARY 12, 2025

With cybercrime, state-sponsored attacks, and digital risks evolving rapidly, the strategy aims to modernize Canada's cyber defenses through enhanced collaboration, industry leadership, and proactive threat mitigation. Detecting and disrupting cyber threat actors Cybercrime, ransomware, and state-sponsored attacks remain top concerns.

Cyber threats

Cyber threats Cybercrime Cybersecurity Government

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

Security Boulevard

FEBRUARY 14, 2025

And get the latest on ransomware trends and on cybercrime legislation and prevention! Thats a key takeaway from Cybercrime: A Multifaceted National Security Threat, a report releaesd this week by Googles Threat Intelligence Group. bill seeks tougher punishments for cybercrimes A bill introduced by two U.S.

Banking

Banking Cybercrime Cybersecurity Ransomware

How “professional” ransomware variants boost cybercrime groups

SecureList

AUGUST 1, 2024

They are also very explicit about what types of organizations affiliates should infect: no less than $10 million in revenue and no hospitals or educational institutions. Interestingly, the group only wants to do business with Russian-speaking affiliates and not with English-speaking ones, they do not welcome novices as well.

Ransomware

Ransomware Cybercrime Education Malware

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Security Affairs

FEBRUARY 6, 2025

The investigation began in early 2024 after data stolen from a Madrid business association was leaked on dark web cybercrime forums. The hacker claimed responsibility for the attacks on multiple cybercrime forums under different monikers to avoid being identified. ” reads the press release published by the Spanish Police.

Cybercrime

Cybercrime Government Data breaches Information Security

Cybersecurity, why a hotline number could be important?

Security Affairs

OCTOBER 6, 2023

The creation of a dedicated emergency number for cybersecurity could provide an effective solution to this rapidly growing challenge The growing threat of cybercrime is calling for new and innovative defense strategies. No less important, an emergency cybersecurity number would encourage the spread of digital education.

Cybersecurity

Cybersecurity Cybercrime Computers and Electronics Education

The Vanilla Tempest cybercrime gang used INC ransomware for the first time in attacks on the healthcare sector

Security Affairs

SEPTEMBER 20, 2024

The threat actor has been active since July 2022, it was observed targeting organizations in the education, healthcare, IT, and manufacturing sectors. Microsoft observed the financially motivated threat actor tracked as Vanilla Tempest using INC ransomware for the first time to target the healthcare sector in the United States.

Healthcare

Healthcare Ransomware Cybercrime Manufacturing

Akira ransomware gang used an unsecured webcam to bypass EDR

Security Affairs

MARCH 8, 2025

.” The Akira ransomware has been active since March 2023, the threat actors behind the malware claim to have already hacked multiple organizations in multiple industries, including education, finance, and real estate. Like other ransomware gangs, the group hasdeveloped a Linux encryptorto target VMware ESXi servers.

Ransomware

Ransomware IoT Encryption Passwords

Who Is the Network Access Broker ‘Babam’?

Krebs on Security

DECEMBER 3, 2021

Since the beginning of 2020, Babam has set up numerous auctions on the Russian-language cybercrime forum Exploit , mainly selling virtual private networking (VPN) credentials stolen from various companies. Babam has authored more than 270 posts since joining Exploit in 2015, including dozens of sales threads. com and wwwpexpay[.]com.

Ransomware

Ransomware Passwords Accountability Cybercrime

Thinking of Hiring or Running a Booter Service? Think Again.

Krebs on Security

JANUARY 17, 2023

Proprietors of these so-called “booter” or “stresser” services — designed to knock websites and users offline — have long operated in a legally murky area of cybercrime law. In 2018, the feds seized 15 stresser sites, and levied cybercrime charges against three men for their operation of booter services.

DDOS

DDOS Cybercrime Engineering Government

GUEST ESSAY: The rise of ‘PhaaS’ — and a roadmap to mitigate ‘Phishing-as-a-Service’

The Last Watchdog

SEPTEMBER 21, 2022

Cybersecurity experts are discussing a new trend in the cybercrime community called phishing-as-a-service. In a PhaaS transaction, cybercriminals or cybercrime gangs are called vendors, and they sell access to various attack tools and technical knowledge to help customers carry out their crimes. Phishing-as-a-Service (PhaaS).

Phishing

Phishing Artificial Intelligence Cybercrime Social Engineering

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

Security Affairs

APRIL 24, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, PaperCut ) The post Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws appeared first on Security Affairs.

Cybercrime

Cybercrime Software Education Ransomware

Understanding the Deepfake Threat

SecureWorld News

FEBRUARY 13, 2025

Improve employee and customer awareness Cybersecurity awareness training: Organizations must educate employees about deepfake threats, including red flags to watch for, such as unnatural facial movements, voice inconsistencies, or requests for urgent financial transactions.

Social Engineering

Social Engineering Authentication Identity Theft Education

Security Affairs newsletter Round 510 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 9, 2025

US Justice Department says cybercrime forum allegedly affected 17 million Americans Cybercrime is increasingly complex.

Spyware

Spyware Cybercrime Scams Social Engineering

International Association of Chiefs of Police (IACP) Appoints CyberSecurity Expert Witness Joseph Steinberg To Computer Crime & Digital Evidence Committee

Joseph Steinberg

DECEMBER 11, 2023

The IACP is the publisher of The Police Chief magazine, the leading periodical for law enforcement executives, and the host of the IACP Annual Conference, the largest police educational and technology exposition in the world.

Cybersecurity

Cybersecurity Artificial Intelligence CISO Technology

Researchers Uncover Thriving Phishing Kit Market on Telegram Channels

The Hacker News

APRIL 7, 2023

In yet another sign that Telegram is increasingly becoming a thriving hub for cybercrime, researchers have found that threat actors are using the messaging platform to peddle phishing kits and help set up phishing campaigns. "To

Phishing

Phishing Marketing Education Cybercrime

REvil Ransomware Gang Starts Auctioning Victim Data

Krebs on Security

JUNE 2, 2020

Lawrence Abrams , editor of the computer help and news Web site BleepingComputer , said while some ransomware groups have a history of selling victim data on cybercrime forums, this latest move by REvil may be just another tactic used by criminals to force victims to negotiate a ransom payment.

Ransomware

Ransomware Backups Encryption Internet

GUEST ESSAY: ‘Cybersecurity specialist’ tops list of work-from-home IT jobs that need filling

The Last Watchdog

MARCH 29, 2021

That makes fighting cybercrime a definite growth industry. The level of education you have is not a critical factor; training and ability are the keys. The educational requirements are variable, from high school completion through a bachelor’s degree, depending on the employer. The median pay for web developers is $35.46/hr.

Cybersecurity

Cybersecurity Education Internet Internet

Highline Public Schools school district suspended its activities following a cyberattack

Security Affairs

SEPTEMBER 11, 2024

At this time, no cybercrime group has claimed responsibility for the attack. Unfortunately, school districts are privileged targets of cybercrime groups due to the huge amount of date they manage. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Education)

Cybercrime

Cybercrime Ransomware Education Technology

Protecting People, Not Just Data

Javvad Malik

JULY 5, 2024

Oliver’s story brings into sharp focus the real-world consequences of cybercrime – the stress, the uncertainty, and the potential health complications that can arise from delayed medical procedures. We must educate ourselves about the risks and take steps to protect our own data and devices.

Healthcare

Healthcare Data breaches Cybersecurity Cybercrime

News alert: INE Security launches initiatives in support of aspiring cybersecurity professionals

The Last Watchdog

AUGUST 22, 2024

22, 2024, CyberNewsWire — INE Security , a global cybersecurity training and certification provider, recently launched initiatives with several higher education institutions in an ongoing campaign to invest in the education of aspiring cybersecurity professionals. Cary, NC, Aug.

Cybersecurity

Cybersecurity Education Cyber threats Artificial Intelligence

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

Webroot

MARCH 3, 2025

March is a time for leprechauns and four-leaf clovers, and as luck would have it, its also a time to learn how to protect your private data from cybercrime. During this time, many government agencies and consumer protection organizations come together to help educate consumers on how to keep their personal and financial information secure.

Consumer Protection

Consumer Protection Identity Theft Scams Social Engineering

Russian Phobos ransomware operator faces cybercrime charges

Pennsylvania State Education Association data breach impacts 500,000 individuals

Trending Sources

Inside ‘Evil Corp,’ a $100M Cybercrime Menace

Cryptocurrencies and cybercrime: A critical intermingling

Operation Heart Blocker: International Police Disrupt Phishing Network

Alabama State Department of Education suffered a data breach following a blocked attack

FBI: Compromised US academic credentials available on various cybercrime forums

Top-Ranked New Jersey School District Cancels Final Exams Following Ransomware Cyberattack

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Gmail Under Siege: FBI Warns of Unusual AI-Driven Phishing Attacks

Arrest in ‘Ransom Your Employer’ Email Scheme

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

Security Affairs newsletter Round 493 by Pierluigi Paganini – INTERNATIONAL EDITION

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Law enforcement seized the Genesis Market cybercrime marketplace

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

Cybercrime group exploits Windows zero-day in ransomware attacks

MUT-1244 Campaign Steals Hundreds of Thousands of WordPress Credentials and More

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

Canada Releases 2025 National Cyber Security Strategy

Cybersecurity Snapshot: CISA Calls for Stamping Out Buffer Overflow Vulnerabilities, as Europol Tells Banks To Prep For Quantum Threat

How “professional” ransomware variants boost cybercrime groups

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Cybersecurity, why a hotline number could be important?

The Vanilla Tempest cybercrime gang used INC ransomware for the first time in attacks on the healthcare sector

Akira ransomware gang used an unsecured webcam to bypass EDR

Who Is the Network Access Broker ‘Babam’?

Thinking of Hiring or Running a Booter Service? Think Again.

GUEST ESSAY: The rise of ‘PhaaS’ — and a roadmap to mitigate ‘Phishing-as-a-Service’

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

Understanding the Deepfake Threat

Security Affairs newsletter Round 510 by Pierluigi Paganini – INTERNATIONAL EDITION

International Association of Chiefs of Police (IACP) Appoints CyberSecurity Expert Witness Joseph Steinberg To Computer Crime & Digital Evidence Committee

Researchers Uncover Thriving Phishing Kit Market on Telegram Channels

REvil Ransomware Gang Starts Auctioning Victim Data

GUEST ESSAY: ‘Cybersecurity specialist’ tops list of work-from-home IT jobs that need filling

Highline Public Schools school district suspended its activities following a cyberattack

Protecting People, Not Just Data

News alert: INE Security launches initiatives in support of aspiring cybersecurity professionals

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

Stay Connected