Krebs on Security

AUGUST 16, 2022

Earlier this month, the administrator of the cybercrime forum Breached received a cease-and-desist letter from a cybersecurity firm. Such responses generally accomplish nothing, except unnecessarily upping the stakes for everyone involved while displaying a dangerous naiveté about how the cybercrime underground works.

Data breaches 302

Data breaches Banking Cybercrime Marketing 302

Krebs on Security

JANUARY 17, 2024

The rapper and social media personality Punchmade Dev is perhaps best known for his flashy videos singing the praises of a cybercrime lifestyle. But until recently, there wasn’t much to support a conclusion that Punchmade was actually doing the cybercrime things he promotes in his songs. Punchmade Dev’s shop.

Cybercrime 303

Cybercrime Media Banking Accountability 303

Krebs on Security

JULY 21, 2022

The now-defunct homepage of xtb-market[.]com, Nolan’s mentor had her create an account website xtb-market[.]com Platinum plans on xtb-market promised a whopping 45 percent ROI, with a minimum investment of $265,000. The now-defunct xtb-market[.]com. When those generated hefty returns, Nolan made bigger deposits.

Scams 339

Scams Cryptocurrency Marketing Internet 339

Krebs on Security

OCTOBER 15, 2019

All of the card data stolen from BriansClub was shared with multiple sources who work closely with financial institutions to identify and monitor or reissue cards that show up for sale in the cybercrime underground. The black market value, impact to consumers and banks, and liability associated with different types of card fraud.

Hacking 232

Hacking Cybercrime Marketing Banking 232

Krebs on Security

JULY 29, 2022

re is was one of the original “residential proxy” networks, which allow someone to rent a residential IP address to use as a relay for his/her Internet communications, providing anonymity and the advantage of being perceived as a residential user surfing the web.

Cybercrime 302

Cybercrime Software VPN Backups 302

Krebs on Security

NOVEMBER 1, 2024

We’ll also explore an array of cybercrime services aimed at phishers who target hotels that rely on the world’s most visited travel website. According to the market share website statista.com , booking.com is by far the Internet’s busiest travel service, with nearly 550 million visits in September.

Phishing 239

Phishing Accountability Artificial Intelligence Cybercrime 239

Krebs on Security

APRIL 18, 2023

And in March 2023, Faceless started marketing a service for looking up Social Security Numbers (SSNs) that claims to provide access to “the largest SSN database on the market with a very high hit rate.” MrMurza’s Faceless advertised on the Russian-language cybercrime forum ProCrd. Image: Darkbeast/Ke-la.com.

Malware 274

Malware Passwords Accountability Advertising 274

Krebs on Security

AUGUST 2, 2022

The underground cybercrime forums are now awash in pleas from people who are desperately seeking a new supplier of abundant, cheap, and reliably clean proxies to restart their businesses. Last week, a seven-year-old proxy service called 911[.]re “Everybody is looking for an alternative, bro,” wrote a BlackHatForums user on Aug.

Malware 298

Malware Cybercrime Internet Internet 298

Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. The answer involved Bitcoin, but also Taleon’s new service.

Cryptocurrency 260

Cryptocurrency Cybercrime Retail Government 260

Krebs on Security

SEPTEMBER 18, 2024

These so-called “stealer logs” are mostly generated by opportunistic infections from information-stealing trojans that are sold on cybercrime markets.

Scams 65

Scams DNS Internet Internet 65

Krebs on Security

DECEMBER 8, 2022

” While CLOP as a money making collective is a fairly young organization, security experts say CLOP members hail from a group of Threat Actors (TA) known as “TA505,” which MITRE’s ATT&CK database says is a financially motivated cybercrime group that has been active since at least 2014.

Healthcare 306

Healthcare Backups Ransomware Insurance 306

Krebs on Security

JULY 25, 2023

And a great many of these “proxy” networks are marketed primarily to cybercriminals seeking to anonymize their traffic by routing it through an infected PC, router or mobile device. KrebsOnSecurity briefly visited SocksEscort last year and promised a follow-up on the history and possible identity of its proprietors. com , segate[.]org

Malware 211

Malware VPN Internet Internet 211

Krebs on Security

FEBRUARY 4, 2021

Like most cybercrime forums, OGUsers is overrun with shady characters who are there mainly to rip off other members. Among the top seller accounts targeted in the ban wave was the Instagram account belonging to Ryan Zanelli ( @zanelli ), a 22-year-old self-described “ social media marketing specialist ” from Melbourne, Australia.

Accountability 337

Accountability Hacking Media Mobile 337

Krebs on Security

APRIL 12, 2022

Department of Justice (DOJ) said today it seized the website and user database for RaidForums , an extremely popular English-language cybercrime forum that sold access to more than 10 billion consumer records stolen in some of the world’s largest data breaches since 2015.

Government 243

Government Identity Theft Mobile Data breaches 243

Digital Shadows

MAY 3, 2021

Any Product Marketing professional worth their salt will have read the seminal “Crossing the Chasm” book, which highlights how technology. The post The Technology Adoption Lifecycle of Genesis Market first appeared on Digital Shadows.

Marketing 59

Marketing Technology Web Fraud Cybercrime 59

Krebs on Security

SEPTEMBER 2, 2021

Here’s the story of a cybercrime group that compromises up to 100,000 email inboxes per day, and apparently does little else with this access except siphon gift card and customer loyalty program data that can be resold online. .

Accountability 326

Accountability Authentication Passwords Hacking 326

Security Boulevard

JANUARY 21, 2022

Up for the "Most Meta Cybercrime Offering" award this year is Accountz Club, a new cybercrime store that sells access to purloined accounts at services built for cybercriminals, including shops peddling stolen payment cards and identities, spamming tools, email and phone bombing services, and those selling authentication cookies for a slew of popular (..)

Hacking 69

Hacking Cybercrime Authentication Accountability 69

Krebs on Security

SEPTEMBER 13, 2024

The security firm CrowdStrike dubbed the group “ Scattered Spider ,” a recognition that the MGM hackers came from different hacker cliques scattered across an ocean of Telegram and Discord servers dedicated to financially-oriented cybercrime.

Cybercrime 301

Cybercrime Accountability Mobile Hacking 301

Krebs on Security

AUGUST 9, 2021

Also, this greenhorn criminal clearly had bought into BriansClub’s advertising, which uses my name and likeness in a series of ads that run on all the top cybercrime forums. com was hosted at a company in Moscow with just a handful of other domains phishing popular cybercrime stores, including Jstashbazar[.]com, com, vclub[.]cards,

Phishing 363

Phishing Cybercrime Accountability Advertising 363

Krebs on Security

JULY 18, 2022

But new research shows the proxy service has a long history of purchasing installations via shady “pay-per-install” affiliate marketing schemes, some of which 911 operated on its own. 911 says its network is made up entirely of users who voluntarily install its “free VPN” software. in the British Virgin Islands.

VPN 326

VPN Computers and Electronics Antivirus Software 326

Krebs on Security

MARCH 22, 2023

” On March 3, 2023, a denizen of the now-defunct cybercrime community BreachForums posted a thread which noted that a unique component of the malicious app code highlighted by DarkNavy also was found in the ecommerce application whose name was apparently redacted from the DarkNavy analysis: Pinduoduo.

Malware 304

Malware eCommerce Mobile Media 304

Krebs on Security

JULY 16, 2019

For at least the past decade, a computer crook variously known as “ Yalishanda ,” “ Downlow ” and “ Stas_vl ” has run one of the most popular “bulletproof” Web hosting services catering to a vast array of phishing sites, cybercrime forums and malware download servers.

Cybercrime 205

Cybercrime Phishing Banking Malware 205

Krebs on Security

OCTOBER 17, 2024

AnonSudan ), a cybercrime business known for launching powerful distributed denial-of-service (DDoS) attacks against a range of targets, including dozens of hospitals, news websites and cloud providers. government on Wednesday announced the arrest and charging of two Sudanese brothers accused of running Anonymous Sudan (a.k.a.

DDOS 230

DDOS Government Internet Internet 230

Krebs on Security

DECEMBER 11, 2024

A financial firm registered in Canada has emerged as the payment processor for dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services aimed at Russian-speaking customers, new research finds. wtf, and PQHosting ; -sites selling aged email, financial, or social media accounts, such as verif[.]work com and rdp[.]monster;

Cryptocurrency 247

Cryptocurrency Banking Cybercrime Advertising 247

Krebs on Security

FEBRUARY 25, 2021

in cybercrime forums, Telegram channels throughout 2020. “There’s been a real shift in the market from data-centric identity verification to verifying through something you have and something you are, like a phone or face or ID,” he said. protections. Mentions of id.me Source: Flashpoint-intel.com.

Scams 346

Scams Insurance DDOS Authentication 346

Krebs on Security

FEBRUARY 9, 2022

The crackdown — the second closure of major card fraud shops by Russian authorities in as many weeks — comes closely behind Russia’s arrest of 14 alleged affiliates of the REvil ransomware gang , and has many in the cybercrime underground asking who might be next. K’s message for Trump’s Dumps users.

Cybercrime 278

Cybercrime Marketing Identity Theft Retail 278