Security Affairs

NOVEMBER 24, 2024

A cyberattack on gambling giant IGT disrupted portions of its IT systems China-linked APT Gelsemium uses a new Linux backdoor dubbed WolfsBane Microsoft seized 240 sites used by the ONNX phishing service U.S.

Cybercrime 70

Cybercrime Artificial Intelligence Hacking VPN 70

Security Affairs

MARCH 16, 2025

CISA adds Apple products and Juniper Junos OS flaws to its Known Exploited Vulnerabilities catalog GitLab addressed critical auth bypass flaws in CE and EE North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy Experts warn of a coordinated surge in the exploitation attempts of SSRF vulnerabilities Meta warns of actively exploited (..)

Spyware 72

Spyware Cybercrime Ransomware IoT 72

Security Affairs

JULY 21, 2021

FormBook is a data-stealing malware that is used in cyber espionage campaigns, like other spyware it is capable of extracting data from HTTP sessions, keystroke logging, stealing clipboard contents. The post XLoader, a $49 spyware that could target both Windows and macOS devices appeared first on Security Affairs. Pierluigi Paganini.

Spyware 112

Spyware Malware Cybercrime Advertising 112

CyberSecurity Insiders

MARCH 16, 2023

But after the spread of the Covid-19 pandemic, the focus of hackers has shifted more towards the smart phones with more phishing and social engineering attacks recorded in a 2nd quarter of 2022. trillion by 2025, and among the guestimate, half of the amount is expected to be made through phishing targeting mobiles and tablets.

Cybercrime 94

Cybercrime Social Engineering Mobile Spyware 94

Webroot

FEBRUARY 21, 2025

Phishing scams, ransomware attacks, data breaches, and identity theft are part of a growing list of online dangers that are a daily reality. It combines multiple security capabilities into one easy-to-use package that includes: Antivirus protection Detects and neutralizes viruses, malware , spyware , and ransomware.

Antivirus 74

Antivirus Identity Theft Cyber threats Phishing 74

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime 135

Cybercrime Computers and Electronics Hacking Banking 135

Security Affairs

NOVEMBER 25, 2020

Group-IB supported an INTERPOL-led operation Falcon targeting business email compromise cybercrime gang from Nigeria, dubbed TMT. Group-IB , a global threat hunting and intelligence company, supported an INTERPOL-led operation Falcon targeting business email compromise (BEC) cybercrime gang from Nigeria, dubbed TMT by Group-IB.

Cybercrime 137

Cybercrime Phishing Social Engineering Spyware 137

Security Affairs

FEBRUARY 15, 2025

CISA adds Microsoft Windows, Zyxel device flaws to its Known Exploited Vulnerabilities catalog Microsoft Patch Tuesday security updates for February 2025 ficed 2 actively exploited bugs Hacking Attackers exploit a new zero-day to hijack Fortinet firewalls Security OpenSSL patched high-severity flaw CVE-2024-12797 Progress Software fixed multiple high-severity (..)

Spyware 68

Spyware Firewall Artificial Intelligence Malware 68

Security Affairs

JANUARY 19, 2025

CISA adds BeyondTrust PRA and RS and Qlik Sense flaws to its Known Exploited Vulnerabilities catalog Inexperienced actors developed the FunkSec ransomware using AI tools Credit Card Skimmer campaign targets WordPress via database injection Microsoft took legal action against crooks who developed a tool to abuse its AI-based services Pro-Russia hackers (..)

Spyware 68

Spyware Data breaches DNS Artificial Intelligence 68

Security Affairs

OCTOBER 23, 2018

The latest version of the Azorult was delivered through the RIG exploit kit as well as other sources, previous variants were mainly distributed via weaponized Office documents as attachment of phishing messages. is available in the cybercrime underground market appeared first on Security Affairs. Pierluigi Paganini.

Marketing 105

Marketing Cybercrime Cryptocurrency Advertising 105

Security Affairs

AUGUST 4, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Spyware 123

Spyware Phishing Malware Ransomware 123

Security Affairs

MARCH 10, 2024

Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp Cybercrime BlackCat Ransomware Affiliate TTPs American Express credit cards EXPOSED in third-party vendor data breach – account numbers and names among details accessed in hack LockBit 3.0’S

Spyware 126

Spyware Data breaches Hacking Ransomware 126

Security Affairs

FEBRUARY 23, 2025

CISA adds SonicWall SonicOS and Palo Alto PAN-OS flaws to its Known Exploited Vulnerabilities catalog Juniper Networks fixed a critical flaw in Session Smart Routers China-linked APT group Winnti targets Japanese organizations since March 2024 Xerox VersaLink C7025 Multifunction printer flaws may expose Windows Active Directory credentials to attackers (..)

Malware 65

Malware Scams Encryption Phishing 65

SecureList

NOVEMBER 23, 2021

For instance, we see a new trend emerging in the criminal ecosystem of spyware-based authentication data theft, with each individual attack being directed at a very small number of targets (from single digits to several dozen). Such attacks are likely to comprise an even larger portion of the threat landscape next year.

Spyware 138

Spyware Phishing Cybercrime Energy and Utilities 138

Security Affairs

APRIL 20, 2025

infrastructure International Press Newsletter Cybercrime Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks Threat actors misuse Node.js

Data breaches 60

Data breaches Malware Phishing Hacking 60

Security Affairs

JULY 28, 2024

CISA adds Adobe Commerce and Magento, SolarWinds Serv-U, and VMware vCenter Server bugs to its Known Exploited Vulnerabilities catalog International Press – Newsletter Cybercrime Walsall teenager arrested in joint West Midlands Police and FBI operation Treasury Sanctions Leader and Primary Member of the Cyber Army of Russia Reborn Three arrested for (..)

Spyware 121

Spyware Data breaches Cybercrime Banking 121

Security Affairs

MAY 8, 2020

Group-IB, a Singapore-based cybersecurity company, observed the growth of the lifespan of phishing attacks in the second half of 2019. Figure 1 The distribution of web-phishing among target categories . CERT-GIB’s findings indicate that phishing attack perpetrators have revised their so-called target pool. Target reshuffle.

Phishing 87

Phishing Spyware Banking Malware 87

SecureList

MAY 27, 2022

The group uses various malware families, including Wroba, and attack methods that include phishing, mining, smishing and DNS poisoning. While it’s not clear how the threat actor tricked the victims into executing the Trojanized app, we suspect they sent a spear-phishing email or contacted them via social media. Other malware.

Phishing 133

Phishing Spyware Firmware Malware 133

Security Affairs

JUNE 2, 2024

Ticketmaster confirms data breach impacting 560 million customers Critical Apache Log4j2 flaw still threatens global finance Crooks stole more than $300M worth of Bitcoin from the exchange DMM Bitcoin ShinyHunters is selling data of 30 million Santander customers Over 600,000 SOHO routers were destroyed by Chalubo malware in 72 hours LilacSquid APT (..)

Data breaches 123

Data breaches VPN Cloud Migration Malware 123

Security Affairs

AUGUST 21, 2024

The Computer Emergency Response Team of Ukraine (CERT-UA) warned of new phishing attacks, carried out by the Vermin group, distributing a malware. The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign conducted by the Vermin group that distributed malware.

Malware 127

Malware Spyware Phishing Cyber threats 127

SecureList

JANUARY 19, 2022

Kaspersky ICS CERT has uncovered a number of spyware campaigns targeting industrial enterprises. The attackers use off-the-shelf spyware, but limit the scope and lifetime of each sample to the bare minimum. The attackers use off-the-shelf spyware, but limit the scope and lifetime of each sample to the bare minimum.

Spyware 105

Spyware Accountability VPN Malware 105

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 98

Spyware Hacking Malware Social Engineering 98

Security Affairs

APRIL 21, 2024

carmaker with phishing attacks Law enforcement operation dismantled phishing-as-a-service platform LabHost Previously unknown Kapeka backdoor linked to Russian Sandworm APT Cisco warns of a command injection escalation flaw in its IMC.

Data breaches 130

Data breaches Ransomware Phishing Malware 130

Malwarebytes

FEBRUARY 16, 2021

When COVID-19 cases first began spiking in several countries, cybercriminals preyed upon people’s fears mercilessly, with an avalanche of coronavirus phishing emails and scams. If 2020 taught us anything, it’s that cybercrime stops for nothing. As you can see from these findings, 2020 proved to be a tumultuous year.

Malware 131

Malware Scams Spyware Healthcare 131

Security Affairs

SEPTEMBER 3, 2023

ransomware builder used by multiple threat actors Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS software Cybercrime Unpacking the MOVEit Breach: Statistics and Analysis Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown U.S.

Social Engineering 124

Social Engineering Data breaches Spyware Malware 124

Security Affairs

JULY 4, 2023

. “The campaign employs a multi-stage attack strategy, starting with targeted SMS phishing messages distributed across Spain and other countries, using Sender IDs (SIDs) to create an illusion of authenticity and mimicking reputable financial institutions to deceive victims.” ” Thill explained.

Banking 98

Banking Phishing Social Engineering Authentication 98

Security Affairs

SEPTEMBER 1, 2024

CISA adds Apache OFBiz bug to its Known Exploited Vulnerabilities catalog Critical flaw in WPML WordPress plugin impacts 1M websites China-linked APT Volt Typhoon exploited a zero-day in Versa Director Researchers unmasked the notorious threat actor USDoD The Dutch Data Protection Authority (DPA) has fined Uber a record €290M Google addressed the tenth (..)

Malware 118

Malware Surveillance Firewall Phishing 118

Security Affairs

NOVEMBER 11, 2023

Police seized BulletProftLink phishing-as-a-service (PhaaS) platform Serbian pleads guilty to running ‘Monopoly’ dark web drug market McLaren Health Care revealed that a data breach impacted 2.2 Every week the best security articles from Security Affairs are free for you in your email box.

DDOS 127

DDOS Data breaches Ransomware Marketing 127

Malwarebytes

JANUARY 25, 2024

The impact is expected to grow for several reasons: AI already helps cybercriminals to compose more effective phishing emails. Currently only state sponsored groups, professional spyware vendors, and the large criminal operations have access to, and know how to use advanced AI tools to increase the effectivity of their attacks.

Ransomware 99

Ransomware Government Social Engineering Spyware 99

CyberSecurity Insiders

MARCH 21, 2021

Make sure all devices and computers at your office have installed anti-virus, and anti-spyware as these are connected to the network, offering a gateway to hackers. There are different kinds of cyber attacks that are faced by small businesses, including malware, phishing, SQL injection, DNS tunneling, and more.

Small Business 145

Small Business Cyber Attacks VPN Backups 145

Security Affairs

DECEMBER 11, 2018

According to Group-IB experts, cyber criminals stole user accounts’ data using special spyware – form grabbers, keyloggers, such as Pony Formgrabber, AZORult and Qbot ( Qakbot ). Phishing emails were sent to personal and corporate email accounts. Security Affairs – leaked credentials, cybercrime). Pierluigi Paganini.

Government 111

Government Cybercrime Accountability Advertising 111

Security Boulevard

DECEMBER 30, 2021

Banking trojans have a significant role in the cybercrime scene in Latin America. As a spyware, it gathers classified information from infected systems without the consent of the user and sends gathered information to remote threat actors. Phishing: Spearphishing Attachment. Phishing: Spearphishing Link. framework.

Banking 111

Banking Malware Spyware Phishing 111

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Spyware 98

Spyware Ransomware Malware Data breaches 98

Security Affairs

FEBRUARY 10, 2023

The TA886 hacking group targets organizations in the United States and Germany with new spyware tracked as Screenshotter. The attack chain starts with an phishing emails containing a malicious URL or malicious attachment that lead to deployment of WasabiSeed and Screenshotter malware. ” reads the post published by Proofpoint.

Malware 98

Malware Phishing Spyware Cybercrime 98

Security Boulevard

JANUARY 25, 2022

Folks, Who wants to dive deep into some of my latest commercially available research and stay on the top of their OSINT/cybercrime research and threat intelligence gathering game that also includes their team and organization? Dancho Danchev’s “Intell on the Criminal Underground – Who’s Who in Cybercrime for ” Presentation – [PDF].

Cybercrime 96

Cybercrime Hacking Scams Ransomware 96

Security Affairs

NOVEMBER 8, 2021

Government experts state that the group uses multiple mechanisms to compromise networks of the victims, including phishing emails with malicious attachments to gain access and Remote Desktop Protocol (RDP) to move laterally once on the network. The Hive ransomware adds the.hive extension to the filename of encrypted files.

Computers and Electronics 133

Computers and Electronics Ransomware Retail Spyware 133

BH Consulting

OCTOBER 6, 2022

Is it just us, or is phishing everywhere right now? Social engineering techniques, such as phishing, target not the systems but the people using them. Social engineering techniques, such as phishing, target not the systems but the people using them. An emotional phish .

Security Awareness 52

Security Awareness Phishing Scams Social Engineering 52