Cybercrime, Penetration Testing and System Administration

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime

Cybercrime Banking Malware Ransomware

A member of the FIN7 group was sentenced to 10 years in prison

Security Affairs

APRIL 18, 2021

The Ukrainian national Fedir Hladyr (35), aka “das” or “AronaXus,” was sentenced to 10 years in prison for having served as a manager and systems administrator for the financially motivated group FIN7 , aka Carbanak. Between 2014 and 2016 the group used a new custom malware dubbed Carbanak that is considered a newer version of Anunak.

System Administration

System Administration Penetration Testing Malware Hacking

FireEye experts found source code for CARBANAK malware on VirusTotal?

Security Affairs

APRIL 23, 2019

CARBANAK cybercrime gang was first uncovered in 2014 by Kaspersky Lab that dated its activity back to 2013 when the group leveraged the Anunak malware in targeted attacks on financial institutions and ATM networks. Starting from 2016 the group developed a new custom malware using Cobalt Strike, a legitimate penetration testing framework.

Malware

Malware Penetration Testing Banking System Administration

FIN7 sysadmin behind “billions in damage” gets 10 years

Malwarebytes

APRIL 20, 2021

In 2018 three high-ranking members of a sophisticated international cybercrime group operating out of Eastern Europe were arrested and taken into custody by US authorities. Ukrainian nationals Dmytro Fedorov, Fedir Hladyr, and Andrii Kolpakov, were members of a prolific hacking group widely known as FIN7.

System Administration

System Administration Banking Malware Penetration Testing

Three members of FIN7 (Carbanak) gang charged with stealing 15 million credit cards

Security Affairs

AUGUST 2, 2018

Three members of the cybercrime group tracked as FIN7 and Carbanak have been indicted and charged with 26 felony counts. Three members of the notorious cybercrime gang known as FIN7 and Carbanak have been indicted and charged with 26 felony counts of conspiracy, wire fraud, computer hacking, access device fraud and aggravated identity theft.

Banking

Banking Cybercrime Identity Theft Penetration Testing

FireEye experts found source code for CARBANAK malware on VirusTotal?

Security Affairs

APRIL 23, 2019

CARBANAK cybercrime gang was first uncovered in 2014 by Kaspersky Lab that dated its activity back to 2013 when the group leveraged the Anunak malware in targeted attacks on financial institutions and ATM networks. Starting from 2016 the group developed a new custom malware using Cobalt Strike, a legitimate penetration testing framework.

Malware

Malware Penetration Testing Banking System Administration

Just What Does It Take to Develop a Career in the Cybersecurity Domain?

IT Security Guru

JANUARY 12, 2021

Here’s a brief overlook of the kind of specializations you can earn if you decide to take a plunge into cybersecurity: Penetration testing (or, pentesting). System Administrator (or, sysadmin). Secure Software Development. Secure DevOps. IoT (Internet of Things) Security. Web/Mobile Application security.

Cybersecurity

Cybersecurity Government IoT Penetration Testing

New Linux/DDosMan threat emerged from an evolution of the older Elknot

Security Affairs

APRIL 1, 2019

But let’s see what are the execution binaries and what an administrator will see because this analysis IS for rise the system administration awareness: Code execution: execve("/tmp/upgrade""); // to execute upgrade. This C2 scheme is new , along with the installer / updater. The Elknot DoS ELF dropped is not new.”.

DDOS

DDOS Malware Encryption Penetration Testing

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. Longtime network and system administrator Jack Daniel is a technology community activist, mentor, and storyteller. Brian Krebs | @briankrebs. Denial-of-Suez attack.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Ransomware Operator: 'Start **cking Up the U.S. Public Sector'

SecureWorld News

OCTOBER 26, 2021

So, when people fail to simply patch their systems, or even really just understand what their attack surface looks like, it yields opportunities for bad guys to get in. So using things like sys-internal tools, or legitimate systems, administrators tools, to then proliferate ransomware across an environment for executing it.

Ransomware

Ransomware Backups Government Penetration Testing

Cyber Security Informer

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

A member of the FIN7 group was sentenced to 10 years in prison

Trending Sources

FireEye experts found source code for CARBANAK malware on VirusTotal?

FIN7 sysadmin behind “billions in damage” gets 10 years

Three members of FIN7 (Carbanak) gang charged with stealing 15 million credit cards

FireEye experts found source code for CARBANAK malware on VirusTotal?

Just What Does It Take to Develop a Career in the Cybersecurity Domain?

New Linux/DDosMan threat emerged from an evolution of the older Elknot

Top Cybersecurity Accounts to Follow on Twitter

Ransomware Operator: 'Start **cking Up the U.S. Public Sector'

Stay Connected