Security Affairs

NOVEMBER 25, 2024

Thai authorities arrested members of two Chinese cybercrime organizations, one of these groups carried out SMS blaster attacks. “This “SMS blasting” attack relies on using technology that impersonates cellular base stations and is capable of transmitting thousands of messages to devices within a close geographical radius.”

Mobile 122

Mobile Scams Technology Telecommunications 122

Security Affairs

DECEMBER 14, 2023

Microsoft’s Digital Crimes Unit seized multiple domains used by cybercrime group Storm-1152 to sell fraudulent Outlook accounts. Microsoft’s Digital Crimes Unit seized multiple domains used by a cybercrime group, tracked as Storm-1152, to sell fraudulent accounts. ” reads the announcement published by Microsoft.

Cybercrime 133

Cybercrime Accountability Media Technology 133

Security Affairs

JANUARY 11, 2025

. “On November 20, 2024, we were notified by a vendor of point-of-sale processing services for some of our retail locations that accounts with their organization had been compromised by an organized cybercrime group.” ” reads the notice of data breach published by the company on its website.

Data breaches 110

Data breaches Retail Cybercrime Government 110

Security Affairs

JUNE 24, 2024

The cybercrime group ExCobalt targeted Russian organizations in multiple sectors with a previously unknown backdoor known as GoRed. Positive Technologies researchers reported that a cybercrime gang called ExCobalt targeted Russian organizations in multiple sectors with a previously unknown Golang-based backdoor known as GoRed.

Cybercrime 116

Cybercrime Telecommunications DNS Technology 116

Security Affairs

AUGUST 22, 2024

Semiconductor manufacturer Microchip Technology announced that its operations were disrupted by a cyberattack. chipmaker Microchip Technology suffered a cyberattack that disrupted operations at several of its manufacturing plants. The company detected potentially suspicious activity involving its IT infrastructure on August 17, 2024.

Technology 132

Technology Manufacturing Hacking Cybersecurity 132

Security Affairs

OCTOBER 28, 2024

Free disclosed a cyber attack over the weekend after a threat actor attempted to sell the stolen data on a popular cybercrime forum. The company is the second-largest ISP in France with over 22.9 million mobile and fixed subscribers.

Cyber Attacks 123

Cyber Attacks Telecommunications Data breaches Banking 123

Security Affairs

DECEMBER 30, 2024

In October 2024, Cisco confirmed that the data posted by the notorious threat actor IntelBroker on a cybercrime forum was stolen from its DevHub environment. DevHub is a platform designed for developers to access resources, tools, and APIs to build and integrate applications with Ciscos technologies.

Data breaches 122

Data breaches Cybercrime Authentication Technology 122

Joseph Steinberg

DECEMBER 11, 2023

Veteran cybersecurity expert witness executive will help strengthen law enforcement capabilities to prevent, investigate, and prosecute information-age crimes. His opinions are frequently cited in books, law journals, security publications, and general interest periodicals; his cybersecurity-related inventions appear in over 500 U.S.

Cybersecurity 278

Cybersecurity Artificial Intelligence CISO Technology 278

Security Affairs

SEPTEMBER 2, 2022

Researchers attribute the Raspberry Robin malware to the Russian cybercrime group known as Evil Corp group. IBM Security X-Force researchers discovered similarities between a component used in the Raspberry Robin malware and a Dridex malware loader, which was part of the malicious operations of the cybercrime gang Evil Corp.

Cybercrime 122

Cybercrime Malware Backups Manufacturing 122

Krebs on Security

SEPTEMBER 30, 2022

Someone has recently created a large number of fake LinkedIn profiles for Chief Information Security Officer (CISO) roles at some of the world’s largest corporations. If you were confused at this point, you might ask Google who it thinks is the current Chief Information Security Officer of Chevron.

CISO 343

CISO Cybercrime Accountability Information Security 343

Security Affairs

FEBRUARY 6, 2025

The investigation began in early 2024 after data stolen from a Madrid business association was leaked on dark web cybercrime forums. The hacker claimed responsibility for the attacks on multiple cybercrime forums under different monikers to avoid being identified. ” continues the press release. ” concludes the statement.

Cybercrime 78

Cybercrime Government Data breaches Information Security 78

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. businesses called #ShieldsUp.

Cybersecurity 214

Cybersecurity Cybercrime Education Government 214

SecureWorld News

JANUARY 6, 2025

I came into IT from the side as a consultant and worked my way through IT infrastructure management before transiting to information security. Using AI, to automate security of connected assets is the only way we can get in front of the risks and expanded attack surface. This year, cybercrime is expected to cost $10.3

Cybersecurity 106

Cybersecurity Cybercrime Healthcare Government 106

Security Boulevard

FEBRUARY 14, 2025

Meanwhile, an informal Tenable poll looks at cloud security challenges. And get the latest on ransomware trends and on cybercrime legislation and prevention! government is urging software makers to adopt secure application-development practices that help prevent buffer overflow attacks.

Banking 64

Banking Cybercrime Cybersecurity Ransomware 64

Security Affairs

JANUARY 27, 2025

UK telecommunications firm TalkTalk disclosed a data breach after a threat actor announced the hack on a cybercrime forum. UK telecommunications company TalkTalk confirmed a data breach after a threat actor claimed responsibility for the cyber attack on a cybercrime forum and offered for sale alleged customer data. “On Jan.

Data breaches 68

Data breaches Telecommunications Cybercrime Hacking 68

Security Affairs

DECEMBER 3, 2024

Securities and Exchange Commission (SEC), the company discovered the attack on November 25. The threat actors had access to the company’s information technology systems and encrypted some of its data files. According to the FORM 8-K report filed with the U.S. ” reads the report filed with SEC.

Ransomware 117

Ransomware Encryption Technology Cybersecurity 117

Security Affairs

NOVEMBER 24, 2024

CISA adds Apple, Oracle Agile PLM bugs to its Known Exploited Vulnerabilities catalog More than 2,000 Palo Alto Networks firewalls hacked exploiting recently patched zero-days Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office US DoJ charges five alleged members of the Scattered Spider cybercrime gang Threat actor (..)

Cybercrime 69

Cybercrime Artificial Intelligence Hacking VPN 69

Security Affairs

FEBRUARY 12, 2025

Unimicron Technology Corporation is a Taiwanese company specializing in the manufacturing of printed circuit boards (PCBs), high-density interconnects (HDI), and IC substrates. The company confirmed that its subsidiary Unimicron Technology (ShenZhen) suffered a ransomware attack on January 30, 2025.

Computers and Electronics 75

Computers and Electronics Ransomware Manufacturing Data breaches 75

Security Affairs

OCTOBER 25, 2024

DLP risk assessments are important because, as with any security strategy, data loss prevention is a continuous process that requires constant refinement to be effective.

Risk 120

Risk Cybersecurity Data breaches Cyber threats 120

Security Affairs

NOVEMBER 11, 2024

The only Amazon information involved was employee work contact information, for example work email addresses, desk phone numbers, and building locations,” Amazon spokesperson Adam Montgomery told TechCrunch. The multinational technology company confirmed that it has patched the vulnerability explored by the threat actors in the attack.

Data breaches 123

Data breaches Hacking Ransomware Technology 123

Security Affairs

DECEMBER 1, 2024

CISA adds Array Networks AG and vxAG ArrayOS flaw to its Known Exploited Vulnerabilities catalog Thai police arrested Chinese hackers involved in SMS blaster attacks Zyxel firewalls targeted in recent ransomware attacks Malware campaign abused flawed Avast Anti-Rootkit driver Russia-linked APT TAG-110 uses targets Europe and Asia Russia-linked threat (..)

Cybercrime 69

Cybercrime Firewall Social Engineering Ransomware 69

Security Affairs

FEBRUARY 9, 2025

US Justice Department says cybercrime forum allegedly affected 17 million Americans Cybercrime is increasingly complex.

Spyware 60

Spyware Cybercrime Scams Social Engineering 60

Krebs on Security

AUGUST 23, 2024

Mike Barlow , information security manager for the City of Memphis, confirmed the Memphis Police’s systems were sharing their Microsoft Windows credentials with the domain, and that the city was working with Caturegli to have the domain transferred to them. .” Caturegli said setting up an email server record for memrtcc.ad

DNS 323

DNS Internet Internet Authentication 323

Security Affairs

MARCH 8, 2025

TB of data allegedly stolen from Tata Technologies New Eleven11bot botnet infected +86K IoT devices Polish Space Agency POLSA disconnected its network following a cyberattack U.S.

Data breaches 66

Data breaches Hacking Artificial Intelligence Cybercrime 66

Security Affairs

JUNE 1, 2023

The BlackCat ransomware gang claims to have hacked the Casepoint legal technology platform used US agencies, including SEC and FBI. Casepoint legal technology platform used by the SEC, USDA and US Courts has allegedly been breached by BlackCat. “We have over 2TB of very sensitive data, lawyers, SEC, DoD, FBI, Police and more.

Technology 98

Technology Hacking Ransomware Manufacturing 98

Security Affairs

SEPTEMBER 11, 2024

The HPS took critical systems offline in response to the security incident. “We have detected unauthorized activity on our technology systems and have taken immediate action to isolate critical systems. At this time, no cybercrime group has claimed responsibility for the attack. Central office will be open.”

Cybercrime 123

Cybercrime Ransomware Education Technology 123

Security Affairs

SEPTEMBER 4, 2021

FIN7 cybercrime gang used weaponized Windows 11 Alpha-themed Word documents to drop malicious payloads, including a JavaScript backdoor. Anomali Threat Research experts have monitored recent spear-phishing attacks conducted by financially motivated threat actor FIN7. ” reads the analysis published by Anomali.

Cybercrime 144

Cybercrime Retail Phishing Hacking 144

Security Affairs

MARCH 24, 2025

The breach was detected in February , leading to notifications to the FBI, Virginia State Police, and the Virginia Information Technologies Agency. Chief Deputy AG Steven Popps called it a sophisticated attack. Investigations are ongoing to assess the impact and source of the attack.

Ransomware 101

Ransomware Hacking Social Engineering VPN 101

Security Affairs

JANUARY 15, 2025

All these technologies rely on the AWS Security Token Service (AWS STS) to issue temporary security credentials that can control access to their AWS resources without distributing or embedding long-term AWS security credentials within an application, whether in code or configuration files.

Encryption 115

Encryption Ransomware Authentication Accountability 115

Security Affairs

OCTOBER 11, 2024

. “CyberAv3nger accounts also asked our models high-level questions about how to obfuscate malicious code, how to use various security tools often associated with post-compromise activity, and for information on both recently disclosed and older vulnerabilities from a range of products.”

Malware 134

Malware Social Engineering Engineering Hacking 134

SC Magazine

MAY 1, 2021

Brian Levine is senior director of product security at Axway, a global security engineering organization delivering training, tools, processes and DevSecOps practices for secure applications and cloud services to the enterprise market. She also served as the deputy chief information officer of the White House.

Computers and Electronics 126

Computers and Electronics Technology Information Security Education 126

The Last Watchdog

OCTOBER 24, 2022

. • Create security awareness for employees. One of the most important ways to protect against data breaches is to increase employee security awareness. Employees are the first line of defense against cybercrime and should understand how to recognize phishing emails and what to do if they suspect them.

Passwords 214

Passwords Security Awareness Data breaches Cybersecurity 214

CyberSecurity Insiders

DECEMBER 9, 2021

Security GPA has grown into a powerful and easy-to-use tool that helps. information security teams understand and communicate risk inside their network. 2 – Threat Landscape: Threat Landscape leverages threat intelligence to help security. Cybercrime Magazine Hot 150. information security.

Risk 140

Risk Information Security Cybersecurity Technology 140

Security Affairs

OCTOBER 18, 2022

An international law enforcement operation led by Europol disrupted a cybercrime ring focused on hacking wireless key fobs to steal cars. “The criminals targeted vehicles with keyless entry and start systems, exploiting the technology to get into the car and drive away.” ” reads the press release published by Europol.

Hacking 119

Hacking Cybercrime Manufacturing Wireless 119

Krebs on Security

MARCH 7, 2022

In 2020, researchers from Athens University School of Information Sciences and Technology in Greece showed (PDF) how ransomware-as-a-service offerings might one day be executed through smart contracts. Before that, Jeffrey Ladish , an information security consultant based in Oakland, Calif.,

Ransomware 267

Ransomware Cryptocurrency DDOS Scams 267

Thales Cloud Protection & Licensing

DECEMBER 17, 2024

Moreover, by uncovering hidden APIs, software developers and security administrators can gain a more accurate insight into how to address potential security issues. API Security Maturity in 2025 Chief Information Security Officers (CISOs) are increasingly aware of the number of APIs within their organizations.

Risk 71

Risk Digital transformation Software Technology 71

eSecurity Planet

SEPTEMBER 21, 2024

Each of these regulations addresses different aspects of cybersecurity and data protection, making it essential for businesses and organizations to stay informed and proactive. Recent updates to HIPAA regulations may address new technologies and evolving threats in the healthcare industry.

Cybersecurity 122

Cybersecurity Computers and Electronics Cyber threats Healthcare 122