Malware, Scams and Web Fraud - Cyber Security Informer

Scam ‘Funeral Streaming’ Groups Thrive on Facebook

Krebs on Security

SEPTEMBER 18, 2024

One of the many scam funeral group pages on Facebook. One of many look-alike landing pages for video streaming services linked to scam Facebook funeral groups. But as luck would have it, sometime last year the administrator of apkdownloadweb.com managed to infect their Windows PC with password-stealing malware.

Scams

Scams DNS Internet Internet

The Fake Browser Update Scam Gets a Makeover

Krebs on Security

OCTOBER 18, 2023

One of the oldest malware tricks in the book — hacked websites claiming visitors need to update their Web browser before they can view any content — has roared back to life in the past few months. “The team is committed to ongoing monitoring of addresses that are involved in spreading malware scripts on the BSC. .

Scams

Scams Malware Cryptocurrency Hacking

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. ” One of the crypto investment scam messages promoted in the spam campaigns on Mastodon this month. “On Twitter, more spam and crypto scam.”

Scams

Scams DDOS Cryptocurrency Accountability

This Service Helps Malware Authors Fix Flaws in their Code

Krebs on Security

MAY 18, 2020

Almost daily now there is news about flaws in commercial software that lead to computers getting hacked and seeded with malware. Here’s a look at one long-lived malware vulnerability testing service that is used and run by some of the Dark Web’s top cybercriminals. is cybercrime forum.

Malware

Malware Cybercrime Ransomware Marketing

Booking.com Phishers May Leave You With Reservations

Krebs on Security

NOVEMBER 1, 2024

” “That said, the phishing attacks stem from partners’ machines being compromised with malware, which has enabled them to also gain access to the partners’ accounts and to send the messages that your reader has flagged,” they continued. A scan of social media networks showed this is not an uncommon scam.

Phishing

Phishing Accountability Artificial Intelligence Cybercrime

Calendar Meeting Links Used to Spread Mac Malware

Krebs on Security

FEBRUARY 28, 2024

But clicking the meeting link provided by the scammers prompts the user to run a script that quietly installs malware on macOS systems. KrebsOnSecurity recently heard from a reader who works at a startup that is seeking investment for building a new blockchain platform for the Web. ” Image: SlowMist.

Malware

Malware Cryptocurrency Software Phishing

Beware of Hurricane Florence Relief Scams

Krebs on Security

SEPTEMBER 24, 2018

All of the domains mentioned above have been reported to the Justice Department’s National Center for Disaster Fraud , which accepts tips at disaster@leo.gov. Let me be clear: Just because a site is listed here doesn’t mean it’s a scam (or that it will be). You can find more details about how those sites work here.

Scams

Scams Accountability Media Web Fraud

A Day in the Life of a Prolific Voice Phishing Crew

Krebs on Security

JANUARY 7, 2025

Before we get to the Apple scam in detail, we need to revisit Tony’s case. The Owner: The phishing panel owner, who will frequently listen in on and participate in scam calls. The phishing domain used to steal roughly $4.7 million in cryptocurrencies from Tony was verify-trezor[.]io.

Phishing

Phishing Cryptocurrency Accountability Social Engineering

No SOCKS, No Shoes, No Malware Proxy Services!

Krebs on Security

AUGUST 2, 2022

Compounding the problem, several remaining malware-based proxy services have chosen to block new registrations to avoid swamping their networks with a sudden influx of customers. com , a malware-based proxy network that has been in existence since at least 2010. 1, 2021: 15-Year-Old Malware Proxy Network VIP72 Goes Dark.

Malware

Malware Cybercrime Internet Internet

This Windows PowerShell Phish Has Scary Potential

Krebs on Security

SEPTEMBER 19, 2024

Those who clicked the link for details were asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware. ” Visiting that link generates a web page that asks the visitor to “Verify You Are Human” by solving an unusual CAPTCHA.

Phishing

Phishing Scams Malware Passwords

How Phishers Are Slinking Their Links Into LinkedIn

Krebs on Security

FEBRUARY 3, 2022

Urlscan also found this phishing scam from Jan. ” In a statement provided to KrebsOnSecurity, Linkedin said it has “industry standard technologies in place for URL sharing and chained redirects that help us identify and prevent the spread of malware, phishing and spam.” Here’s one example from Jan.

Phishing

Phishing Marketing Scams Accountability

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort , which rents hacked residential and small business devices to cybercriminals looking to hide their true location online. ” According to Kilmer, AVrecon is the malware that gives SocksEscort its proxies.

Malware

Malware VPN Internet Internet

When Low-Tech Hacks Cause High-Impact Breaches

Krebs on Security

FEBRUARY 26, 2023

Web hosting giant GoDaddy made headlines this month when it disclosed that a multi-year breach allowed intruders to steal company source code, siphon customer and employee login credentials, and foist malware on customer websites. “He was literally reading off the tickets to the notes of the admin panel inside GoDaddy.”

Hacking

Hacking Social Engineering Phishing Scams

How Do You Fight a $12B Fraud Problem? One Scammer at a Time

Krebs on Security

OCTOBER 25, 2018

The fraudsters behind the often laughable Nigerian prince email scams have long since branched out into far more serious and lucrative forms of fraud, including account takeovers, phishing, dating scams, and malware deployment. The FBI says BEC scams netted thieves more than $12 billion between 2013 and 2018.

Scams

Scams Accountability Media Banking

Malicious Office 365 Apps Are the Ultimate Insiders

Krebs on Security

MAY 5, 2021

After a user logs in, the link prompts them to install a malicious but innocuously-named app that gives the attacker persistent, password-free access to any of the user’s emails and files, both of which are then plundered to launch malware and phishing scams against others. Image: Proofpoint.

Accountability

Accountability Advertising Passwords Phishing

US Harbors Prolific Malicious Link Shortening Service

Krebs on Security

OCTOBER 31, 2023

The top-level domain for the United States — US — is home to thousands of newly-registered domains tied to a malicious link shortening service that facilitates malware and phishing scams, new research suggests. The findings come close on the heels of a report that identified.US

Phishing

Phishing Telecommunications Malware Scams

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

Krebs on Security

FEBRUARY 8, 2021

” The operation was carried out in coordination with the FBI and authorities in Australia, which was particularly hard hit by phishing scams perpetrated by U-Admin customers. A demonstration video showing the real-time web injection capabilities of the U-Admin phishing kit. The U-Admin phishing panel interface. Image: fr3d.hk/blog.

Phishing

Phishing Scams Banking Mobile

How to Shop Online Like a Security Pro

Krebs on Security

NOVEMBER 23, 2018

‘Tis the season when even those who know a thing or two about Internet scams tend to let down their guard in the face of an eye-popping discount or the stress of last-minute holiday shopping. Even people who shop mainly at big-name online stores can get scammed if they’re not wary of too-good-to-be-true offers.

Scams

Scams Wireless Phishing Banking

Using Google Search to Find Software Can Be Risky

Krebs on Security

JANUARY 25, 2024

But cybercrooks are constantly figuring out ingenious ways to fly beneath Google’s anti-abuse radar, and new examples of bad ads leading to malware are still too common. My guess it’s still continuing because of the up-and-down [of the] domains hosting malware and then looking legitimate.”

Software

Software Advertising Malware Accountability

A Deep Dive Into the Residential Proxy Service ‘911’

Krebs on Security

JULY 18, 2022

re network uses at least two free VPN services to lure its users to install a malware-like software that achieves persistence on the user’s computer,” the researchers wrote. The Exe Clean service made malware look like goodware to antivirus products. 2022 closure of LuxSocks , another malware-based proxy network.

VPN

VPN Computers and Electronics Antivirus Software

How Cybercriminals are Weathering COVID-19

Krebs on Security

APRIL 30, 2020

In many ways, the COVID-19 pandemic has been a boon to cybercriminals: With unprecedented numbers of people working from home and anxious for news about the virus outbreak, it’s hard to imagine a more target-rich environment for phishers, scammers and malware purveyors.

Cybercrime

Cybercrime Computers and Electronics Marketing Scams

Who’s Behind the Botnet-Based Service BHProxies?

Krebs on Security

FEBRUARY 24, 2023

Last year, researchers at Minerva Labs spotted the botnet being used to blast out sextortion scams. The Mylobot malware includes more than 1,000 hard-coded and encrypted domain names, any one of which can be registered and used as control networks for the infected hosts.

Accountability

Accountability Advertising Marketing Malware

Feds Bust Up Dark Web Hub Wall Street Market

Krebs on Security

MAY 3, 2019

Federal investigators in the United States, Germany and the Netherlands announced today the arrest and charging of three German nationals and a Brazilian man as the alleged masterminds behind the Wall Street Market (WSM), one of the world’s largest dark web bazaars that allowed vendors to sell illegal drugs, counterfeit goods and malware.

Marketing

Marketing Accountability Scams Engineering

Karma Catches Up to Global Phishing Service 16Shop

Krebs on Security

AUGUST 17, 2023

The international police organization INTERPOL said last week it had shuttered the notorious 16Shop, a popular phishing-as-a-service platform launched in 2017 that made it simple for even complete novices to conduct complex and convincing phishing scams.

Phishing

Phishing Passwords Internet Internet

Sipping from the Coronavirus Domain Firehose

Krebs on Security

APRIL 16, 2020

Security experts are poring over thousands of new Coronavirus-themed domain names registered each day, but this often manual effort struggles to keep pace with the flood of domains invoking the virus to promote malware and phishing sites, as well as non-existent healthcare products and charities.

Cyber threats

Cyber threats Phishing Data collection Government

Why is.US Being Used to Phish So Many of Us?

Krebs on Security

SEPTEMBER 1, 2023

Domain names ending in “ US ” — the top-level domain for the United States — are among the most prevalent in phishing scams, new research shows. This is noteworthy because.US is overseen by the U.S. government, which is frequently the target of phishing domains ending in.US. “Even very large ccTLDs, like.de

Phishing

Phishing Telecommunications Government DNS

Don’t Let Your Domain Name Become a “Sitting Duck”

Krebs on Security

JULY 31, 2024

. “Hijacked domains have been used directly in phishing attacks and scams, as well as large spam systems,” reads the Infoblox report, which refers to lame domains as “ Sitting Ducks.” ” “There is evidence that some domains were used for Cobalt Strike and other malware command and control (C2).

DNS

DNS Internet Internet Phishing

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

Krebs on Security

JANUARY 22, 2019

Now if an attacker launches a malware campaign using these domains, it will be harder to pinpoint who/what is carrying out the attack since the domains would all appear to be just regular domains with no observable pattern other than the fact that they all use cloud DNS.

DNS

DNS Internet Internet Computers and Electronics

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

Krebs on Security

MARCH 22, 2022

According to Russian prosecutors, the scam went like this: Consumers would receive an SMS with links to sites that falsely claimed a number of well-known companies were sponsoring drawings and lotteries for people who enrolled or agreed to answer surveys. Inferno Pay, a cryptocurrency and payment API allegedly operated by the ChronoPay CEO.

Banking

Banking Marketing DDOS Risk

Sextortion Scams Now Include Photos of Your Home

Krebs on Security

SEPTEMBER 3, 2024

An old but persistent email scam known as “ sextortion ” has a new personalized touch: The missives, which claim that malware has captured webcam footage of recipients pleasuring themselves, now include a photo of the target’s home in a bid to make threats about publishing the videos more frightening and convincing.

Scams

Scams Spyware Malware Passwords

Cyber Security Informer

Scam ‘Funeral Streaming’ Groups Thrive on Facebook

The Fake Browser Update Scam Gets a Makeover

Trending Sources

Interview With a Crypto Scam Investment Spammer

This Service Helps Malware Authors Fix Flaws in their Code

Booking.com Phishers May Leave You With Reservations

Calendar Meeting Links Used to Spread Mac Malware

Beware of Hurricane Florence Relief Scams

A Day in the Life of a Prolific Voice Phishing Crew

No SOCKS, No Shoes, No Malware Proxy Services!

This Windows PowerShell Phish Has Scary Potential

How Phishers Are Slinking Their Links Into LinkedIn

Who and What is Behind the Malware Proxy Service SocksEscort?

When Low-Tech Hacks Cause High-Impact Breaches

How Do You Fight a $12B Fraud Problem? One Scammer at a Time

Malicious Office 365 Apps Are the Ultimate Insiders

US Harbors Prolific Malicious Link Shortening Service

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

How to Shop Online Like a Security Pro

Using Google Search to Find Software Can Be Risky

A Deep Dive Into the Residential Proxy Service ‘911’

How Cybercriminals are Weathering COVID-19

Who’s Behind the Botnet-Based Service BHProxies?

Feds Bust Up Dark Web Hub Wall Street Market

Karma Catches Up to Global Phishing Service 16Shop

Sipping from the Coronavirus Domain Firehose

Why is.US Being Used to Phish So Many of Us?

Don’t Let Your Domain Name Become a “Sitting Duck”

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

Sextortion Scams Now Include Photos of Your Home

Stay Connected