Data collection, DDOS and Phishing - Cyber Security Informer

Report: Recent 10x Increase in Cyberattacks on Ukraine

Krebs on Security

MARCH 11, 2022

As their cities suffered more intense bombardment by Russian military forces this week, Ukrainian Internet users came under renewed cyberattacks, with one Internet company providing service there saying they blocked ten times the normal number of phishing and malware attacks targeting Ukrainians. that are easier for computers to manage.

DNS

DNS Internet Internet Phishing

Fashion brand Guess hacked, DarkSide ransomware group the likely culprit

SC Magazine

JULY 13, 2021

Speed is the natural enemy of security, and retailers must beware of increased risks of DDoS attacks, ransomware, fraudulent purchases, [and] phishing campaigns impersonating retailers.”. “As a result, these systems often haven’t been properly tested in high-volume transaction environments before.

Retail

Retail Ransomware Hacking Digital transformation

Crypto-inspired Magecart skimmer surfaces via digital crime haven

Malwarebytes

JANUARY 9, 2023

Digging further into the skimmer's infrastructure on Russian-based hosting provider DDoS-Guard, we came across a digital crime haven for cryptocurrency scams, Bitcoin mixers, malware distribution sites and much more. In the next section, we will show exactly what happens during this process of data collection and exfiltration.

DDOS

DDOS Scams Cryptocurrency Phishing

What is website security?

SiteLock

AUGUST 27, 2021

Website security is any action or application taken to ensure website data is not exposed to cybercriminals or to prevent exploitation of websites in any way. Website security protects your website from: DDoS attacks. Website security protects your visitors from: Stolen data. Phishing schemes. An SSL certificate.

Small Business

Small Business Malware DDOS Engineering

APT trends report Q2 2023

SecureList

JULY 27, 2023

Killnet, led by a person nicknamed “KillMilk”, is one of the leaders of the hacktivist movement that uses DDoS as a means of disruption. We now have better visibility into the group’s tactics, particularly in the areas of lateral movement, data collection and exfiltration.

Malware

Malware Government Phishing Social Engineering

Top Threat Intelligence Platforms for 2021

eSecurity Planet

SEPTEMBER 13, 2021

Key features: De-duplication of data. Data extraction from suspected phishing emails. Collections repository. ThreatConnect’s platform enables automated data collection from all sources and presents it to users in context. Removal of false positives. Integration with third-party intelligence tools.

Threat Detection

Threat Detection Risk Firewall Cybersecurity

SOC 2025: Operationalizing the SOC

Security Boulevard

APRIL 18, 2022

These typically include phishing, malware attacks/compromised devices, ransomware, DDoS, unauthorized account creation, and network security rule changes. For a malware attack, maybe it’s checking the email gateway for a phishing email that arrived in the user’s inbox. Begin by enumerating the situations you see most frequently.

Technology

Technology Marketing Phishing DNS

Who is the Network Access Broker ‘Wazawaka?’

Krebs on Security

JANUARY 11, 2022

Wazawaka spent his early days on Exploit and other forums selling distributed denial-of-service (DDoS) attacks that could knock websites offline for about USD $80 a day. Wazawaka has been a highly active member of multiple cybercrime forums over the past decade, but his favorite is the Russian-language community Exploit.

DDOS

DDOS Accountability Cybercrime Ransomware

The Hacker Mind Podcast: Incident Response in the Cloud

ForAllSecure

APRIL 4, 2023

You know, I did a job once where we had a customer and involved compromises at different servers right in and, you know, we literally had a whole team just to do data collection. And it took us a month to collect that data, like a month like meanwhile, there's an ABD group running around the network causing havoc.

Government

Government Technology Firewall Engineering

Advanced threat predictions for 2024

SecureList

NOVEMBER 14, 2023

Solutions like XDR, SIEM, and MDM platforms, apart from traditional anti-virus products, enable centralized data collection, accelerate analysis, and correlate security events from various sources, facilitating swift response to complex incidents. It is hard to imagine any future conflict without hacktivist involvement.

Hacking

Hacking Energy and Utilities Media Malware

The Hacker Mind Podcast: Crimeware As A Service

ForAllSecure

OCTOBER 25, 2022

It’s pretty devastating in that it arrives through phishing or some other common attack vector, sits on your network for a period of time, and then encrypts your data such that the system is inoperable until you pay a ransom for the decryption key. Vamosi: We mentioned the initial infection could be through phishing.

Ransomware

Ransomware Encryption Cybercrime Government

Infrastructure Laundering: Blending in with the Cloud

Krebs on Security

JANUARY 30, 2025

In October 2024, the security firm Silent Push published a lengthy analysis of how Amazon AWS and Microsoft Azure were providing services to Funnull, a two-year-old Chinese content delivery network that hosts a wide variety of fake trading apps, pig butchering scams , gambling websites, and retail phishing pages. based cloud providers.

Accountability

Accountability Scams Passwords Retail

Cyber Security Informer

Report: Recent 10x Increase in Cyberattacks on Ukraine

Fashion brand Guess hacked, DarkSide ransomware group the likely culprit

Trending Sources

Crypto-inspired Magecart skimmer surfaces via digital crime haven

What is website security?

APT trends report Q2 2023

Top Threat Intelligence Platforms for 2021

SOC 2025: Operationalizing the SOC

Who is the Network Access Broker ‘Wazawaka?’

The Hacker Mind Podcast: Incident Response in the Cloud

Advanced threat predictions for 2024

The Hacker Mind Podcast: Crimeware As A Service

Infrastructure Laundering: Blending in with the Cloud

Stay Connected