Security Affairs

NOVEMBER 24, 2024

seized the stolen credit card marketplace PopeyeTools and charged its operators, this is a major success against cybercrime. PopeyeTools was a dark web marketplace specializing in selling stolen credit cards and cybercrime tools, facilitating fraud and illicit online activities since 2016.

Cybercrime 130

Cybercrime Cryptocurrency Banking Accountability 130

Security Affairs

MARCH 1, 2025

These individuals are members of a global cybercrime ring tracked as Storm-2139 by Microsoft. Members speculated on identities, exchanged blame, and leaked information, highlighting the lawsuit’s impact. The case demonstrates legal actions power in dismantling cybercrime networks. ” concludes the announcement.

Cybercrime 76

Cybercrime Technology Hacking Accountability 76

Security Affairs

JANUARY 30, 2025

An international law enforcement operation targeted several major cybercrime websites, including Cracked, Nulled, Sellix, and StarkRDP. An international law enforcement operation led by Europol, code-named Operation Talent, dismantled several major cybercrime sites, including Cracked, Nulled, Sellix, and StarkRDP. and Nulled.to.”

Cybercrime 60

Cybercrime Cryptocurrency Hacking Phishing 60

Security Affairs

OCTOBER 14, 2024

Dutch police dismantled Bohemia/Cannabia, two major dark web markets for illegal goods, drugs, and cybercrime services. These are two of the largest and longest-running dark web platforms for the trade of illegal goods, drugs, and cybercrime services.

Marketing 126

Marketing Cybercrime DDOS Cryptocurrency 126

Security Affairs

OCTOBER 25, 2024

“Change Healthcare can confirm we are experiencing a cybersecurity issue perpetrated by a cybercrime threat actor who has represented itself to us as ALPHV/Blackcat.” However, after a $22 million transaction, an affiliate publicly complained on a Russian cybercrime forum, alleging that BlackCat did not pay their fee.

Data breaches 128

Data breaches Healthcare Cybercrime Insurance 128

Krebs on Security

NOVEMBER 2, 2021

22 on RAMP , a new and fairly exclusive Russian-language darknet cybercrime forum. But it seems more likely the credentials were posted to garner the attention of security researchers and journalists. Triggering the directors of information security companies. We f**k the supply chain of the information security office.”

Ransomware 322

Ransomware Cybercrime VPN Media 322

Security Affairs

DECEMBER 12, 2024

Law enforcement globally targets these services to combat cybercrime. The police are taking tough action against cybercrime, in whatever form. Booter and stresser services are platforms that enable Distributed Denial-of-Service (DDoS) attacks by overwhelming targets with traffic. The police are also present on the web.”

DDOS 109

DDOS Cybercrime Marketing Hacking 109

Security Affairs

APRIL 2, 2025

FIN7 cybercrime group has been linked to Anubis, a Python-based backdoor that provides remote access to compromised Windows systems. The threat actor FIN7 , also known as Savage Ladybug, has developed a new Python-based malware, named Anubis Backdoor, which allows attackers to gain full remote control over infected Windows systems.

Antivirus 127

Antivirus Cybercrime Malware Encryption 127

Security Affairs

JANUARY 20, 2025

Last week, the notorious threat actor IntelBroker announced on a popular cybercrime forum the sale of data allegedly stolen from HPE. ” reads the announcement published on the cybercrime forum. HPE is probing claims by the threat actor IntelBroker who is offering to sell alleged stolen source code and data from the company.

Hacking 117

Hacking Cybercrime Data breaches Information Security 117

Security Affairs

JANUARY 26, 2025

Change Healthcare can confirm we are experiencing a cybersecurity issue perpetrated by a cybercrime threat actor who has represented itself to us as ALPHV/Blackcat. However, after a $22 million transaction, an affiliate publicly complained on a Russian cybercrime forum, alleging that BlackCat did not pay their fee.

Healthcare 128

Healthcare Data breaches Insurance Cybercrime 128

Security Affairs

OCTOBER 20, 2024

CISA adds Fortinet products and Ivanti CSA bugs to its Known Exploited Vulnerabilities catalog Nation-state actor exploited three Ivanti CSA zero-days Dutch police dismantled dual dark web market ‘Bohemia/Cannabia’ macOS HM Surf flaw in TCC allows bypass Safari privacy settings Iran-linked actors target critical infrastructure organizations (..)

Data breaches 117

Data breaches Cybercrime Cyber Insurance Marketing 117

Security Affairs

DECEMBER 4, 2024

The operation was carried out by Public Prosecutor’s Office in Frankfurt am Main, the Central Office for Combating Cybercrime (ZIT), and the Federal Criminal Police Office (BKA). Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, cybercrime) Now in custody.

Cybercrime 113

Cybercrime Cryptocurrency Hacking Internet 113

Security Affairs

JANUARY 11, 2025

. “On November 20, 2024, we were notified by a vendor of point-of-sale processing services for some of our retail locations that accounts with their organization had been compromised by an organized cybercrime group.” ” reads the notice of data breach published by the company on its website.

Data breaches 112

Data breaches Retail Cybercrime Government 112

Krebs on Security

JANUARY 24, 2023

The plea comes just months after Emelyantsev was extradited from Bulgaria, where he told investigators, “America is looking for me because I have enormous information and they need it.” “Thanks to you, we are now developing in the field of information security and anonymity! But that action did not name any defendants.

Cybercrime 284

Cybercrime Advertising IoT Malware 284

Security Affairs

APRIL 7, 2025

Microsoft credited controversial actor EncryptHub, a lone actor with ties to cybercrime, for reporting two Windows flaws. In 2024, he shifted to cybercrime, starting with low-level roles in vishing and ransomware, later moving into malware and vulnerability research that drew wide attention.

Cybercrime 71

Cybercrime Malware Hacking VPN 71

Security Affairs

JANUARY 15, 2025

A previously unknown threat actor released config files and VPN passwords for Fortinet FortiGate devices on a popular cybercrime forum. A previously unknown threat actor named Belsen Group published configuration files and VPN passwords for over 15,000 Fortinet FortiGate appliances. “2025 will be a fortunate year for the world.

VPN 129

VPN Passwords Firewall Firmware 129

Security Affairs

NOVEMBER 27, 2024

From multi-level marketing scams to credit card fraud on an industrial scale, the increasing volume and sophistication of cybercrime attacks is of serious concern.” Angola dismantled a virtual casino targeting Brazilian and Nigerian gamblers, arresting 150 and seizing 200 computers and 100 phones.

Scams 119

Scams Cybercrime Ransomware Cyber threats 119

Security Affairs

FEBRUARY 6, 2025

The investigation began in early 2024 after data stolen from a Madrid business association was leaked on dark web cybercrime forums. The hacker claimed responsibility for the attacks on multiple cybercrime forums under different monikers to avoid being identified. ” continues the press release. ” concludes the statement.

Cybercrime 79

Cybercrime Government Data breaches Information Security 79

Krebs on Security

OCTOBER 8, 2020

There’s an old adage in information security: “Every company gets penetration tested, whether or not they pay someone for the pleasure.” ” Many organizations that do hire professionals to test their network security posture unfortunately tend to focus on fixing vulnerabilities hackers could use to break in.

Cybercrime 354

Cybercrime Malware VPN Ransomware 354

Krebs on Security

SEPTEMBER 30, 2022

Someone has recently created a large number of fake LinkedIn profiles for Chief Information Security Officer (CISO) roles at some of the world’s largest corporations. If you were confused at this point, you might ask Google who it thinks is the current Chief Information Security Officer of Chevron.

CISO 347

CISO Cybercrime Accountability Information Security 347

Security Affairs

MARCH 28, 2025

” The authorities linked the three suspects to over 300 cybercrimes, the police seized servers, computers, storage devices, and bank cards. Once a device was infected, the perpetrators could use SMS banking services to transfer money from victims’ bank cards to mobile operator accounts and electronic wallets under their control.”

Banking 114

Banking Computers and Electronics Mobile Malware 114

Security Affairs

JANUARY 10, 2025

The malicious code was advertised on cybercrime forums for $3,000 per month. The malware can collect cookies, logins and browsing history, but from Safari only cookies can be collected. Elastic researchers noticed that regarding Safari, only the cookies are collected by the AppleScript script for the current version.

Malware 120

Malware Advertising Antivirus Cybercrime 120

Security Affairs

OCTOBER 28, 2024

Free disclosed a cyber attack over the weekend after a threat actor attempted to sell the stolen data on a popular cybercrime forum. The company is the second-largest ISP in France with over 22.9 million mobile and fixed subscribers.

Cyber Attacks 125

Cyber Attacks Telecommunications Data breaches Banking 125

Security Affairs

JANUARY 11, 2025

The indictment and arrests announced today, which follow the earlier takedown of the defendants criminal infrastructure, yet again demonstrate the value of our international partnerships in countering the global threat from cybercrime. were allegedly used for laundering funds from ransomware and cybercrimes. Blender.io and Sinbad.io

Cybercrime 72

Cybercrime Cryptocurrency Hacking Ransomware 72

Security Affairs

DECEMBER 2, 2024

The borderless nature of cybercrime means international police cooperation is essential, and the success of this operation supported by INTERPOL shows what results can be achieved when countries work together. ” said INTERPOL Secretary General Valdecy Urquiza.

Cryptocurrency 126

Cryptocurrency Phishing Scams Cybercrime 126

Security Affairs

FEBRUARY 17, 2025

In 2023, Zservers leased infrastructure, including a Russian IP address, to a Lockbit affiliate” Bulletproof hosting services enable global cybercrime by providing safe havens for threat actors. The law enforcement revealed that Zservers’ servers were in Amsterdam, and cybercrime groups like Conti and LockBit used the platform.

Cybercrime 71

Cybercrime Ransomware Hacking Advertising 71

Security Affairs

NOVEMBER 23, 2024

Microsoft announced the disruption of the ONNX phishing service, another success against cybercrime which led to the seizure of 240 sites. Microsoft disrupted the ONNX phishing service, seizing 240 sites and naming an Egyptian man as the operator behind the operation.

Phishing 72

Phishing Cybercrime Financial Services Media 72

Security Affairs

OCTOBER 13, 2024

CISA adds Synacor Zimbra Collaboration flaw to its Known Exploited Vulnerabilities catalog China-linked group Salt Typhoon hacked US broadband providers and breached wiretap systems Google Pixel 9 supports new security features to mitigate baseband attacks International Press – Newsletter Cybercrime Indiana Man Pleads Guilty to Conspiracies Involving (..)

Data breaches 116

Data breaches Cryptocurrency Artificial Intelligence Cybercrime 116

Security Affairs

FEBRUARY 3, 2025

The cybercrime gang focused on targeting the Web3 and decentralized finance industry. The group maintains a strong presence on dark web forums and collaborates with other cybercrime gangs and malware developers. This structured approach demonstrates the gang’s effort to maintain a well-trained and efficient network of traffers.

Scams 83

Scams Media Cryptocurrency Cybercrime 83

Krebs on Security

SEPTEMBER 24, 2022

A native of Omsk, Russia, Kloster came into focus after KrebsOnSecurity followed clues from the RSOCKS botnet master’s identity on the cybercrime forums to Kloster’s personal blog , which featured musings on the challenges of running a company that sells “security and anonymity services to customers around the world.”

Cybercrime 257

Cybercrime Data breaches Malware Ransomware 257

Security Boulevard

FEBRUARY 14, 2025

Meanwhile, an informal Tenable poll looks at cloud security challenges. And get the latest on ransomware trends and on cybercrime legislation and prevention! government is urging software makers to adopt secure application-development practices that help prevent buffer overflow attacks.

Banking 64

Banking Cybercrime Cybersecurity Ransomware 64

Security Affairs

OCTOBER 29, 2024

Authorities from the Netherlands, the United States, Belgium, Portugal, the United Kingdom and Australia took part in the operation. The following authorities participated in the Operation Magnus.

Identity Theft 124

Identity Theft Passwords Malware Banking 124

Security Affairs

NOVEMBER 5, 2024

UNC5537 is systematically compromising Snowflake customer instances using stolen customer credentials, advertising victim data for sale on cybercrime forums, and attempting to extort many of the victims.” ” UNC5537 used stolen credentials obtained via infostealer malware.

Unstructured Data 120

Unstructured Data Media Cybercrime Hacking 120

Security Affairs

MARCH 21, 2025

Strategic Cyber Warfare In geopolitical conflicts, access to Telegram accounts and devices could provide military and intelligence advantages, such as intercepting sensitive communications, and identifying informants. Gaining access without cooperation from Telegram itself could be highly valuable.

Government 144

Government Surveillance Mobile Hacking 144

Krebs on Security

NOVEMBER 16, 2023

In a 2,200-page report, Finnish authorities laid out how they connected the extortion spree to Kivimäki, a notorious hacker who was convicted in 2015 of perpetrating tens of thousands of cybercrimes, including data breaches, payment fraud, operating a botnet and calling in bomb threats.

Cybercrime 275

Cybercrime Hacking Data breaches Banking 275

Joseph Steinberg

DECEMBER 11, 2023

Veteran cybersecurity expert witness executive will help strengthen law enforcement capabilities to prevent, investigate, and prosecute information-age crimes. His opinions are frequently cited in books, law journals, security publications, and general interest periodicals; his cybersecurity-related inventions appear in over 500 U.S.

Cybersecurity 278

Cybersecurity Artificial Intelligence CISO Technology 278

Krebs on Security

APRIL 27, 2023

This misconfigured Salesforce Community site from the state of Vermont was leaking pandemic assistance loan application data, including names, SSNs, email address and bank account information. That data later wound up for sale on a top cybercrime forum. Huntington Bank has disabled the leaky TCF Bank Salesforce website. ”

Banking 346

Banking Government Information Security Authentication 346