Cybercrime and Technology - Cyber Security Informer

Why Phishers Love New TLDs Like.shop,top and.xyz

Krebs on Security

DECEMBER 3, 2024

A study on phishing data released by Interisle Consulting finds that new gTLDs introduced in the last few years command just 11 percent of the market for new domains, but accounted for roughly 37 percent of cybercrime domains reported between September 2023 and August 2024. The top 5 new gTLDs, ranked by cybercrime domains reported.

Cybercrime

Cybercrime Phishing Accountability Internet

Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment

Security Affairs

OCTOBER 21, 2024

Cisco confirms that data published by IntelBroker on a cybercrime forum was taken from the company DevHub environment. Cisco confirms that the data posted by IntelBroker on a cybercrime forum was stolen from its DevHub environment. ” Cisco states that the attackers obtained the data from a public-facing DevHub environment.

Cybercrime

Cybercrime Data breaches Technology Banking

Career Choice Tip: Cybercrime is Mostly Boring

Krebs on Security

MAY 29, 2020

But new research suggests that as cybercrime has become dominated by pay-for-service offerings, the vast majority of day-to-day activity needed to support these enterprises is in fact mind-numbingly boring and tedious, and that highlighting this reality may be a far more effective way combat cybercrime and steer offenders toward a better path.

Cybercrime

Cybercrime System Administration Marketing Malware

News alert: SpyCloud accelerates supply chain risk analysis with new ‘IDLink’ correlation capability

The Last Watchdog

OCTOBER 10, 2024

SpyCloud Investigations is a powerful cybercrime and identity threat investigation solution used by analysts and investigators to discover and act on threats by navigating the world’s largest repository of recaptured breach, malware, and phishing data. About SpyCloud — SpyCloud transforms recaptured darknet data to disrupt cybercrime.

Risk

Risk Cybercrime Identity Theft Phishing

The Funnel of Justice: Why U.K. Cybercrime Victims Are Left Behind

SecureWorld News

NOVEMBER 29, 2024

New Insights from The Cyber Helpline reveal a shocking gap in the justice system for cybercrime victims in the U.K. Key insights from The Funnel of Justice report: Limited Resources: Less than 1% of police resources are dedicated to cybercrime, despite technology being involved in 58% of all crimes.

Cybercrime

Cybercrime Technology

Ransomware attack hit Indian multinational Tata Technologies

Security Affairs

FEBRUARY 1, 2025

Indian multinational technology company Tata Technologies suspended some IT services following a ransomware attack. Indian multinational Tata Technologies , a Tata Motors subsidiary, suspended some IT services following a ransomware attack. Threat actors hit the company’s information technology (IT) infrastructure.

Technology

Technology Ransomware Engineering Manufacturing

How the FIN7 Cybercrime Gang Operates

Schneier on Security

SEPTEMBER 16, 2020

Looking at the process triangle (people, process, technology), their technology wasn’t sophisticated, but their people management and business processes were. They managed their resources and operations effectively, allowing them to successfully attack and exploit hundreds of victim organizations. Their business… is crime!

Cybercrime

Cybercrime Technology Hacking

UK Ad Campaign Seeks to Deter Cybercrime

Krebs on Security

MAY 28, 2020

The United Kingdom’s anti-cybercrime agency is running online ads aimed at young people who search the Web for services that enable computer crimes, specifically trojan horse programs and DDoS-for-hire services. law enforcement agents in connection with various cybercrime investigations. FLATTENING THE CURVE.

Cybercrime

Cybercrime DDOS Advertising Hacking

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Krebs on Security

DECEMBER 19, 2024

The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology firm based in Turkey. Silent Push said Araneida is being advertised by an eponymous user on multiple cybercrime forums. Araneida Scanner. 2023 on the forum Cracked.

Hacking

Hacking Cybercrime Advertising Data breaches

Hunters International gang claims the theft of 1.4 TB of data allegedly stolen from Tata Technologies

Security Affairs

MARCH 5, 2025

Ransomware group Hunters International claims to have hacked Tata Technologies, threatening to leak 1.4 The Hunters International ransomware group claimed to have breached the Indian multinational technology company Tata Technologies, a Tata Motors subsidiary. TB of stolen data. The group claims the theft of 1.4

Technology

Technology Ransomware Engineering Manufacturing

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

based technology companies. One English-speaking cybercriminal who goes by the nicknames “ Pwnstar ” and “ Pwnipotent ” has been selling fake EDR services on both Russian-language and English cybercrime forums. “I cannot 100% guarantee every order will go through,” Pwnstar explained.

Hacking

Hacking Accountability Government Social Engineering

Fintech Giant Finastra Investigating Data Breach

Krebs on Security

NOVEMBER 19, 2024

The financial technology firm Finastra is investigating the alleged large-scale theft of information from its internal file transfer platform, KrebsOnSecurity has learned. Importantly, for any customers who are deemed to be affected, we will be reaching out and working with them directly.” ” On Nov. abyss0’s Nov.

Data breaches

Data breaches Banking Cybercrime Advertising

The Silent Breach: How E-Waste Fuels Cybercrime

SecureWorld News

MARCH 27, 2025

In today's digital world, cybercrime is a threat to our private data and security. And with Americans owning an average of 24 electronic items in their homes , neglecting to dispose of these items correctly is putting individuals at significant risk of cybercrime. What is cybercrime?

Cybercrime

Cybercrime Computers and Electronics Passwords Hacking

Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service

Security Affairs

MARCH 1, 2025

Microsoft is taking legal action against these defendants, dismantling their operation, and curbing misuse of its AI technology. These individuals are members of a global cybercrime ring tracked as Storm-2139 by Microsoft. The case demonstrates legal actions power in dismantling cybercrime networks.

Cybercrime

Cybercrime Technology Hacking Accountability

How Criminals Are Using Generative AI

Schneier on Security

MAY 9, 2024

There’s a new report on how criminals are using generative AI tools: Key Takeaways: Adoption rates of AI technologies among criminals lag behind the rates of their industry counterparts because of the evolving nature of cybercrime.

Financial Services

Financial Services Cybercrime Technology Artificial Intelligence

Cryptocurrencies and cybercrime: A critical intermingling

Security Affairs

APRIL 26, 2024

As cryptocurrencies have grown in popularity, there has also been growing concern about cybercrime involvement in this sector Cryptocurrencies have revolutionized the financial world, offering new investment opportunities and decentralized transactions.

Cryptocurrency

Cryptocurrency Cybercrime Education Scams

Experts Uncover Chinese Cybercrime Network Behind Gambling and Human Trafficking

The Hacker News

JULY 22, 2024

Infoblox is tracking the proprietor

Cybercrime

Cybercrime DNS Technology

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

Shefel claims the true mastermind behind the Target and other retail breaches was Dmitri Golubov , an infamous Ukrainian hacker known as the co-founder of Carderplanet, among the earliest Russian-language cybercrime forums focused on payment card fraud. “I’m also godfather of his second son.”

Retail

Retail Advertising Cryptocurrency Marketing

Complex Technology Stack Supports Sprawling Chinese Crime Operation

Security Boulevard

JULY 22, 2024

A cybercrime group called Vigorish Viper runs a complex suite of technologies that support the sprawling operations of a Chinese crime syndicate that has its reach into illegal online sports gambling and Europe's most popular soccer teams.

Technology

Technology Cybercrime Security Awareness Mobile

Ransomware Is Getting Ugly

Schneier on Security

MAY 14, 2021

An industry group called the Institute for Security and Technology (no, I haven’t heard of it before, either) just released a comprehensive report on combating ransomware. Ransomware has become the most profitable cybercrime business model, and until we solve those two problems, that’s not going to change.

Ransomware

Ransomware Cryptocurrency Cybercrime Internet

Thai police arrested Chinese hackers involved in SMS blaster attacks

Security Affairs

NOVEMBER 25, 2024

Thai authorities arrested members of two Chinese cybercrime organizations, one of these groups carried out SMS blaster attacks. “This “SMS blasting” attack relies on using technology that impersonates cellular base stations and is capable of transmitting thousands of messages to devices within a close geographical radius.”

Mobile

Mobile Scams Technology Telecommunications

Microsoft seized the US infrastructure of the Storm-1152 cybercrime group

Security Affairs

DECEMBER 14, 2023

Microsoft’s Digital Crimes Unit seized multiple domains used by cybercrime group Storm-1152 to sell fraudulent Outlook accounts. Microsoft’s Digital Crimes Unit seized multiple domains used by a cybercrime group, tracked as Storm-1152, to sell fraudulent accounts. ” reads the announcement published by Microsoft.

Cybercrime

Cybercrime Accountability Media Technology

News alert: SpyCloud operationalizes darknet data, pioneers shift to holistic identity threat protection

The Last Watchdog

FEBRUARY 4, 2025

.” Key innovations Heres what underpins SpyClouds holistic identity threat protection: Refined analytics driving actionability on exposed identities: SpyCloud applies advanced data science and proprietary technology to dynamically correlate billions of recaptured darknet data points, providing a broader and more accurate view of identities.

Cybercrime

Cybercrime Phishing Accountability Malware

U.S. cannabis dispensary STIIIZY disclosed a data breach

Security Affairs

JANUARY 11, 2025

. “On November 20, 2024, we were notified by a vendor of point-of-sale processing services for some of our retail locations that accounts with their organization had been compromised by an organized cybercrime group.” ” reads the notice of data breach published by the company on its website.

Data breaches

Data breaches Retail Cybercrime Government

ExCobalt Cybercrime group targets Russian organizations in multiple sectors

Security Affairs

JUNE 24, 2024

The cybercrime group ExCobalt targeted Russian organizations in multiple sectors with a previously unknown backdoor known as GoRed. Positive Technologies researchers reported that a cybercrime gang called ExCobalt targeted Russian organizations in multiple sectors with a previously unknown Golang-based backdoor known as GoRed.

Cybercrime

Cybercrime Telecommunications DNS Technology

A cyberattack disrupted operations of US chipmaker Microchip Technology

Security Affairs

AUGUST 22, 2024

Semiconductor manufacturer Microchip Technology announced that its operations were disrupted by a cyberattack. chipmaker Microchip Technology suffered a cyberattack that disrupted operations at several of its manufacturing plants. The company detected potentially suspicious activity involving its IT infrastructure on August 17, 2024.

Technology

Technology Manufacturing Hacking Cybersecurity

ChatGPT-Written Malware

Schneier on Security

JANUARY 10, 2023

…within a few weeks of ChatGPT going live, participants in cybercrime forums—some with little or no coding experience—were using it to write software and emails that could be used for espionage, ransomware, malicious spam, and other malicious tasks. And the technology will only get better.

Malware

Malware Encryption Cybercrime Passwords

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

OCTOBER 28, 2024

Free disclosed a cyber attack over the weekend after a threat actor attempted to sell the stolen data on a popular cybercrime forum. The company is the second-largest ISP in France with over 22.9 million mobile and fixed subscribers.

Cyber Attacks

Cyber Attacks Telecommunications Data breaches Banking

Cisco states that the second data leak is linked to the one from October

Security Affairs

DECEMBER 30, 2024

In October 2024, Cisco confirmed that the data posted by the notorious threat actor IntelBroker on a cybercrime forum was stolen from its DevHub environment. DevHub is a platform designed for developers to access resources, tools, and APIs to build and integrate applications with Ciscos technologies.

Data breaches

Data breaches Cybercrime Authentication Technology

Top-Ranked New Jersey School District Cancels Final Exams Following Ransomware Cyberattack

Joseph Steinberg

JUNE 9, 2022

According to published reports, immediately after discovering the unauthorized encryption of data by ransomware on some district computers, technology personnel shut down the districtwide computer system, and commenced an investigation along with outside cybersecurity experts.

Ransomware

Ransomware Artificial Intelligence Education Cybercrime

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Krebs on Security

NOVEMBER 21, 2024

technology companies between 2021 and 2023, including LastPass , MailChimp , Okta , T-Mobile and Twilio. That Joeleoli moniker registered on the cybercrime forum OGusers in 2018 with the email address joelebruh@gmail.com , which also was used to register accounts at several websites for a Joel Evans from North Carolina.

Identity Theft

Identity Theft Phishing Cryptocurrency Accountability

Anti-Money Laundering Service AMLBot Cleans House

Krebs on Security

OCTOBER 15, 2022

AMLBot , a service that helps businesses avoid transacting with cryptocurrency wallets that have been sanctioned for cybercrime activity, said an investigation published by KrebsOnSecurity last year helped it shut down three dark web services that secretly resold its technology to help cybercrooks avoid detection by anti-money laundering systems.

Cryptocurrency

Cryptocurrency Marketing Cybercrime Technology

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum. That InfraGard member, who is head of security at a major U.S.

Hacking

Hacking Energy and Utilities Cybercrime Accountability

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

In a statement provided to KrebsOnSecurity, Group-IB said Mr. Kislitsin is no longer an employee, and that he now works for a Russian organization called FACCT , which stands for “ Fight Against Cybercrime Technologies.”

Cybersecurity

Cybersecurity Cybercrime Hacking Government

Why MSPs must offer 24/7 cybersecurity protection and response — and how OpenText MDR can help

Webroot

JANUARY 13, 2025

Cybercrime costs are skyrocketing: Global cybercrime damages are expected to hit $10.5 This ongoing evolution demands continuous investment in both training for an MSPs security team and the latest technologies to effectively detect and mitigate new types of threats. And many of these attacks happen outside of business hours.

Cybersecurity

Cybersecurity Cyber threats Artificial Intelligence Cybercrime

New AI “agents” could hold people for ransom in 2025

Malwarebytes

FEBRUARY 4, 2025

A paradigm shift in technology is hurtling towards us, and it could change everything we know about cybersecurity. When ChatGPT was unveiled to the public in late 2022, security experts looked on with cautious optimism, excited about the new technology but concerned about its use in cyberattacks. Uhh, again, that is.

Artificial Intelligence

Artificial Intelligence Small Business Malware Technology

Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

Krebs on Security

OCTOBER 1, 2020

” As financial losses from cybercrime activity and ransomware attacks in particular have skyrocketed in recent years, the Treasury Department has imposed economic sanctions on several cybercriminals and cybercrime groups, effectively freezing all property and interests of these persons (subject to U.S.

Ransomware

Ransomware Cyber Insurance Insurance Cybercrime

Crypto Analysts Expose HuiOne Guarantee's $11 Billion Cybercrime Transactions

The Hacker News

JULY 10, 2024

Merchants on the platform offer technology, data, and money laundering services, and have engaged in transactions totaling at least $11 billion," Elliptic said in a report shared with The Hacker News.

Cybercrime

Cybercrime Cryptocurrency Scams Technology

The Stark Truth Behind the Resurgence of Russia’s Fin7

Krebs on Security

JULY 10, 2024

The Russia-based cybercrime group dubbed “ Fin7 ,” known for phishing and malware attacks that have cost victim organizations an estimated $3 billion in losses since 2013, was declared dead last year by U.S. authorities. In May 2023, the U.S.

Phishing

Phishing Cybercrime Malware Software

Note to Self: Create Non-Exhaustive List of Competitors

Krebs on Security

APRIL 20, 2021

NYSE:IT ] — a $4 billion technology goliath whose analyst reports can move markets and shape the IT industry. As the largest organization dedicated to the analysis of software, Gartner’s network of analysts are well connected to the technology and software industries.

Marketing

Marketing Technology Software Cybercrime

Canada Charges Its “Most Prolific Cybercriminal”

Krebs on Security

DECEMBER 8, 2021

According to cyber intelligence firm Intel 471 , that dark_cl0ud6@hotmail.com address has been used in conjunction with the handle “ DCReavers2 ” to register user accounts on a half-dozen English-language cybercrime forums since 2008, including Hackforums , Blackhatworld, and Ghostmarket.

Cybercrime

Cybercrime Ransomware Accountability Advertising

E-Crime Rapper ‘Punchmade Dev’ Debuts Card Shop

Krebs on Security

JANUARY 17, 2024

The rapper and social media personality Punchmade Dev is perhaps best known for his flashy videos singing the praises of a cybercrime lifestyle. But until recently, there wasn’t much to support a conclusion that Punchmade was actually doing the cybercrime things he promotes in his songs. Punchmade Dev’s shop.

Cybercrime

Cybercrime Media Banking Accountability

U.S. Justice Department Cracks Down on Scattered Spider Phishing Ring

SecureWorld News

NOVEMBER 22, 2024

The United States Department of Justice (DOJ) has unsealed charges against five individuals accused of orchestrating sophisticated phishing campaigns tied to the notorious Scattered Spider cybercrime group.

Phishing

Phishing Identity Theft Cryptocurrency Cybercrime

Gmail Under Siege: FBI Warns of Unusual AI-Driven Phishing Attacks

eSecurity Planet

FEBRUARY 10, 2025

This surge highlights a broader trend toward automation in cybercrime and signals that no email platform is immune. The recent spate of sophisticated Gmail attacks highlights cybercriminals tactics are evolving as fast as technology. Gmail, one of the worlds most widely used email services, remains the prime target.

Phishing

Phishing Artificial Intelligence Password Management Accountability

Why Phishers Love New TLDs Like.shop,top and.xyz

Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment

Trending Sources

Career Choice Tip: Cybercrime is Mostly Boring

News alert: SpyCloud accelerates supply chain risk analysis with new ‘IDLink’ correlation capability

The Funnel of Justice: Why U.K. Cybercrime Victims Are Left Behind

Ransomware attack hit Indian multinational Tata Technologies

How the FIN7 Cybercrime Gang Operates

UK Ad Campaign Seeks to Deter Cybercrime

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Hunters International gang claims the theft of 1.4 TB of data allegedly stolen from Tata Technologies

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Fintech Giant Finastra Investigating Data Breach

The Silent Breach: How E-Waste Fuels Cybercrime

Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service

How Criminals Are Using Generative AI

Cryptocurrencies and cybercrime: A critical intermingling

Experts Uncover Chinese Cybercrime Network Behind Gambling and Human Trafficking

An Interview With the Target & Home Depot Hacker

Complex Technology Stack Supports Sprawling Chinese Crime Operation

Ransomware Is Getting Ugly

Thai police arrested Chinese hackers involved in SMS blaster attacks

Microsoft seized the US infrastructure of the Storm-1152 cybercrime group

News alert: SpyCloud operationalizes darknet data, pioneers shift to holistic identity threat protection

U.S. cannabis dispensary STIIIZY disclosed a data breach

ExCobalt Cybercrime group targets Russian organizations in multiple sectors

A cyberattack disrupted operations of US chipmaker Microchip Technology

ChatGPT-Written Malware

France’s second-largest telecoms provider Free suffered a cyber attack

Cisco states that the second data leak is linked to the one from October

Top-Ranked New Jersey School District Cancels Final Exams Following Ransomware Cyberattack

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Anti-Money Laundering Service AMLBot Cleans House

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Why MSPs must offer 24/7 cybersecurity protection and response — and how OpenText MDR can help

New AI “agents” could hold people for ransom in 2025

Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

Crypto Analysts Expose HuiOne Guarantee's $11 Billion Cybercrime Transactions

The Stark Truth Behind the Resurgence of Russia’s Fin7

Note to Self: Create Non-Exhaustive List of Competitors

Canada Charges Its “Most Prolific Cybercriminal”

E-Crime Rapper ‘Punchmade Dev’ Debuts Card Shop

U.S. Justice Department Cracks Down on Scattered Spider Phishing Ring

Gmail Under Siege: FBI Warns of Unusual AI-Driven Phishing Attacks

Stay Connected