Security Affairs

JUNE 24, 2024

The cybercrime group ExCobalt targeted Russian organizations in multiple sectors with a previously unknown backdoor known as GoRed. Positive Technologies researchers reported that a cybercrime gang called ExCobalt targeted Russian organizations in multiple sectors with a previously unknown Golang-based backdoor known as GoRed.

Cybercrime 118

Cybercrime Telecommunications DNS Technology 118

Krebs on Security

OCTOBER 8, 2020

There’s an old adage in information security: “Every company gets penetration tested, whether or not they pay someone for the pleasure.” ” Many organizations that do hire professionals to test their network security posture unfortunately tend to focus on fixing vulnerabilities hackers could use to break in.

Cybercrime 354

Cybercrime VPN Malware Ransomware 354

Security Affairs

JANUARY 10, 2025

Check Point researchers discovered a new version of the Banshee macOS infostealer which is distributed through phishing websites and fake GitHub repositories, often masqueraded as popular software. The malicious code was advertised on cybercrime forums for $3,000 per month.

Malware 120

Malware Advertising Antivirus Cybercrime 120

Security Affairs

NOVEMBER 3, 2021

Experts warn of the availability in the cybercrime underground of offers for initial access to networks of players in global supply chains. based transportation management and trucking software supplier and a U.S.-based In August 2021 , an affiliate of the Conti ransomware gang claimed access to corporate networks belonging to a U.S.-based

Cybercrime 133

Cybercrime VPN Ransomware Hacking 133

Security Affairs

FEBRUARY 13, 2025

A November 2024 RA World ransomware attack on an Asian software firm used a tool linked to China-linked threat actors. Broadcom researchers reported that threat actors behind an RA World ransomware attack against an Asian software and services firm employed a tool that was explosively associated in the past with China-linked APT groups.

Ransomware 118

Ransomware Software Cybercrime Encryption 118

Security Affairs

DECEMBER 30, 2024

In October 2024, Cisco confirmed that the data posted by the notorious threat actor IntelBroker on a cybercrime forum was stolen from its DevHub environment. We have analyzed the post data, and it aligns with the known data set from October 14, 2024.” ” reads the update published by Cisco. for customers to use as needed.

Data breaches 123

Data breaches Cybercrime Authentication Technology 123

Security Affairs

JULY 25, 2022

Operators behind the Amadey Bot malware use the SmokeLoader to distribute a new variant via software cracks and keygen sites. The malware is available for sale in illegal forums, in the past, it was used by cybercrime gangs like TA505 to install GandCrab ransomware or the FlawedAmmyy RAT. ” concludes the report.

Software 132

Software Malware Cybercrime VPN 132

Security Boulevard

FEBRUARY 14, 2025

Meanwhile, an informal Tenable poll looks at cloud security challenges. And get the latest on ransomware trends and on cybercrime legislation and prevention! government is urging software makers to adopt secure application-development practices that help prevent buffer overflow attacks.

Banking 64

Banking Cybercrime Cybersecurity Ransomware 64

Security Affairs

FEBRUARY 10, 2025

The cybercrime group XE Group exploited a VeraCore zero-day to deploy reverse shells, web shells in recent attacks. A recent investigation by researchers from Intezer and Solis Security shed light on the recent operations of the XE Group. ” reads the analysis published by Intezer.

Manufacturing 110

Manufacturing Cybercrime Passwords Authentication 110

Security Affairs

MARCH 30, 2025

This week, Cl0p ransomware group listed Sams Club among the victims of its December Cleo software exploit , accusing it of ignoring security. “We are aware of reports regarding a potential security incident and are actively investigating the matter,” a company spokesperson told BleepingComputer.

Ransomware 115

Ransomware Data breaches Software Hacking 115

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. businesses called #ShieldsUp. The efficacy of hygiene.

Cybersecurity 214

Cybersecurity Cybercrime Education Government 214

Krebs on Security

APRIL 27, 2023

Salesforce Community is a widely-used cloud-based software product that makes it easy for organizations to quickly create websites. This misconfigured Salesforce Community site from the state of Vermont was leaking pandemic assistance loan application data, including names, SSNs, email address and bank account information. ”

Banking 346

Banking Government Information Security Authentication 346

Security Affairs

FEBRUARY 4, 2024

Remote desktop software company AnyDesk announced that threat actors compromised its production environment. Remote desktop software company AnyDesk announced on Friday that threat actors had access to its production systems. AnyDesk is a remote desktop software that allows users to connect to a computer or device remotely.

Software 135

Software Passwords Ransomware Cryptocurrency 135

Security Affairs

DECEMBER 25, 2024

.” The agencies discovered that in March 2024, a North Korea-linked threat actor posed as a LinkedIn recruiter and targeted an employee of the Japan-based enterprise cryptocurrency wallet software company Ginco, then compromised them via a malicious Python script shared masqueraded as a “pre-employment test.” BTC ($308M).

Cryptocurrency 122

Cryptocurrency Social Engineering Hacking Cybercrime 122

Security Affairs

NOVEMBER 24, 2024

CISA adds Apple, Oracle Agile PLM bugs to its Known Exploited Vulnerabilities catalog More than 2,000 Palo Alto Networks firewalls hacked exploiting recently patched zero-days Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office US DoJ charges five alleged members of the Scattered Spider cybercrime gang Threat actor (..)

Cybercrime 71

Cybercrime Artificial Intelligence Hacking VPN 71

Security Affairs

APRIL 2, 2025

The Triada Trojan makes use of the Zygote parent process to implement its code in the context of all software on the device, this means that the threat is able to run in each application. The experts who investigated the issue discovered that a software developer from Shanghai was responsible for the infection.

Malware 116

Malware Cryptocurrency Mobile Firmware 116

Security Affairs

DECEMBER 1, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime 71

Cybercrime Firewall Social Engineering Ransomware 71

Security Affairs

JULY 15, 2022

Threat actors behind the campaign used multiple accounts across several social media platforms to advertise password-cracking software for Programmable Logic Controller (PLC), Human-Machine Interface (HMI), and project files. The password cracking software also acts as a dropper for the Sality P2P bot. ” concludes the report.

Passwords 128

Passwords Software Firmware Malware 128

Krebs on Security

JULY 25, 2023

Proxy services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they make it difficult to trace malicious traffic to its original source. Usually, these users have no idea their systems are compromised.

Malware 238

Malware VPN Internet Internet 238

Security Affairs

MARCH 24, 2025

The FBI Denver Field Office advises staying cautious online, being aware of potential risks, and keeping antivirus software updated to scan files before opening them. If users fall victim to this scam, immediately contact their financial institutions, secure their accounts, and change all passwords using a trusted device.

Malware 116

Malware Scams Identity Theft Antivirus 116

Security Affairs

DECEMBER 8, 2024

Hackers stole millions of dollars from Uganda Central Bank International Press Newsletter Cybercrime INTERPOL financial crime operation makes record 5,500 arrests, seizures worth over USD 400 million Hackers Stole $1.49 Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Artificial Intelligence 102

Artificial Intelligence Spyware Hacking Ransomware 102

Security Affairs

OCTOBER 18, 2022

An international law enforcement operation led by Europol disrupted a cybercrime ring focused on hacking wireless key fobs to steal cars. The gang was composed of software developers, resellers, and car thieves who used the tool created by the gang to steal the vehicles. ” reads the announcement published by EuroJust.

Hacking 120

Hacking Cybercrime Manufacturing Wireless 120

Security Affairs

MARCH 16, 2025

Every week the best security articles from Security Affairs are free in your email box. New MassJacker clipper targets pirated software seekers Cisco IOS XR flaw allows attackers to crash BGP process on routers LockBit ransomware developer Rostislav Panev was extradited from Israel to the U.S.

Spyware 72

Spyware Cybercrime Ransomware IoT 72

Security Affairs

FEBRUARY 13, 2025

. “The builds containing the suspected malware have been removed from Steam, but we strongly encourage you to run a full-system scan using an anti-virus product that you trust or use regularly, and inspect your system for unexpected or newly installed software. Valve have removed the game two days ago.

Malware 109

Malware Antivirus Accountability Software 109

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). Iarmak is the third member of the FIN7 cybercrime group to be sentenced in the U.S. in May 2020.

Cybercrime 131

Cybercrime Hacking Software Phishing 131

Security Affairs

DECEMBER 18, 2023

Info stealers, also known as information stealers, are a type of malicious software (malware) designed to covertly collect sensitive and personal information from a victim’s computer or network. It violates privacy and security regulations, and individuals involved in such activities can face severe legal consequences.

Banking 133

Banking Cybercrime Malware Accountability 133

Security Affairs

AUGUST 28, 2024

million for information leading to the arrest and/or conviction in any country of Volodymyr Kadariya for his alleged participation in a significant malware organization.” Department of State is offering a reward of up to $2.5 ” reads the announcement published by US Department of State. ” reads the notice.

Malware 130

Malware Computers and Electronics Cybercrime Internet 130

Webroot

MARCH 3, 2025

March is a time for leprechauns and four-leaf clovers, and as luck would have it, its also a time to learn how to protect your private data from cybercrime. During this time, many government agencies and consumer protection organizations come together to help educate consumers on how to keep their personal and financial information secure.

Consumer Protection 88

Consumer Protection Identity Theft Scams Social Engineering 88

Security Affairs

FEBRUARY 28, 2025

The malicious code acts as a backdoor allowing attackers to download and install third-party software secretly. Users may also mistakenly believe TV boxes are more secure than smartphones and are less likely to install antivirus software, increasing their risk when downloading third-party apps or unofficial firmware.

Antivirus 64

Antivirus Firmware Encryption Manufacturing 64

Security Affairs

APRIL 6, 2025

Its the second cybersecurity breach that the software company has acknowledged to clients in the last month.” . “Oracle Corp. has told customers that a hacker broke into a computer system and stole old client log-in credentials, according to two people familiar with the matter. ” reported Bloomberg.

Data breaches 125

Data breaches Encryption Hacking Passwords 125

Security Affairs

NOVEMBER 15, 2024

The duo used fake identities to set up online accounts and software to automate transactions, exchanged part of stolen funds into gold coins and other crypto assets, and used mixing services like ChipMixer. Lichtenstein also managed to cover his tracks by deleting access credentials and other log files.

Cryptocurrency 105

Cryptocurrency Hacking Government Accountability 105

Security Affairs

OCTOBER 11, 2024

.” Beyond previous reports on this threat actor’s focus on ICS and PLCs, the prompts observed during this campaign provide precious information on other technologies and software the state-sponsored hackers may target.

Malware 136

Malware Social Engineering Engineering Hacking 136

Security Affairs

JANUARY 16, 2025

On December 9, reports of active exploitation targeting Cleo file transfer software began circulating among cybersecurity community. Security firm Huntress publicly disclosed ongoing exploitation involving three different Cleo products. reads the post published by Huntress. reads the post published by Huntress. are still exploitable.

Ransomware 71

Ransomware Software Hacking Cybersecurity 71

Security Affairs

OCTOBER 8, 2021

A broad explanation of this threat is included in the Cyber Security Assessment Netherlands (CSBN) 2021, which was shared with the Chamber in June by the Minister of Justice and Security. Security Security Agenda (NCSA) and the integrated approach to cybercrime.” ” continues the letter.

Ransomware 139

Ransomware Cybercrime Government Cyber Attacks 139

Thales Cloud Protection & Licensing

DECEMBER 17, 2024

Moreover, by uncovering hidden APIs, software developers and security administrators can gain a more accurate insight into how to address potential security issues. API Security Maturity in 2025 Chief Information Security Officers (CISOs) are increasingly aware of the number of APIs within their organizations.

Risk 71

Risk Digital transformation Software Technology 71

Security Affairs

JULY 28, 2024

Ukraine’s cyber operation shut down the ATM services of major Russian banks A bug in Chrome Password Manager caused user credentials to disappear BIND updates fix four high-severity DoS bugs in the DNS software suite Terrorist Activity is Accelerating in Cyberspace – Risk Precursor to Summer Olympics and Elections Progress Software fixed (..)

Spyware 122

Spyware Data breaches Cybercrime Banking 122

Security Affairs

OCTOBER 18, 2023

The researchers reported that several cybercrime groups began exploiting the flaw in early 2023, when the bug was still a zero-day. These recent campaigns exploiting the WinRAR bug underscore the importance of patching and that there is still work to be done to make it easy for users to keep their software secure and up-to-date.

Cybercrime 139

Cybercrime Malware Software Hacking 139