Security Affairs

JANUARY 31, 2019

Palo Alto Networks discovered a piece of Mac malware dubbed CookieMiner that is targeting browser cookies associated with cryptocurrency exchanges and wallet service websites. The malware targets cookies associated with cryptocurrency exchanges such as Binance , Coinbase, Poloniex, Bittrex, Bitstamp, and MyEtherWallet.

Malware 84

Malware Cryptocurrency Authentication Advertising 84

Krebs on Security

DECEMBER 14, 2023

The malware used in the Target breach included the text string “ Rescator ,” which also was the handle chosen by the cybercriminal who was selling all of the cards stolen from Target customers. Rescator, advertising a new batch of cards stolen in a 2014 breach at P.F. 18, 2013, KrebsOnSecurity broke the news that U.S.

Cybercrime 232

Cybercrime Accountability Advertising Computers and Electronics 232

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. The messages said recipients had earned an investment credit at a cryptocurrency trading platform called moonxtrade[.]com. A DIRECT QUOT The domain quot[.]pw

Scams 252

Scams DDOS Cryptocurrency Accountability 252

Security Affairs

APRIL 15, 2020

Google has removed 49 new Chrome browser extensions from its official Web Store that hide the code to hijack cryptocurrency wallets. Google has removed 49 new Chrome browser extensions from its official Web Store that contain the code to steal sensitive information and hijack cryptocurrency wallets. Pierluigi Paganini.

Cryptocurrency 88

Cryptocurrency Advertising Phishing Passwords 88

Security Affairs

MAY 1, 2023

The previously undetected LOBSHOT malware is distributed using Google ads and gives operators VNC access to Windows devices. Threat actors are using an elaborate scheme of fake websites through Google Ads to spread their malware, the backdoors are embedded in installers for apparently legitimate applications, such as AnyDesk.

Malware 83

Malware Cybercrime Banking Software 83

Security Affairs

JULY 19, 2020

The social media giant Twitter confirmed that hackers compromised 130 accounts in last week hack and downloaded data from eight of them. The social media platform Twitter suffered one of the biggest cyberattacks in its history, multiple high-profile accounts were hacked. You send $1,000, I send you back $2,000.”.

Accountability 97

Accountability Social Engineering Media Hacking 97

Security Affairs

JULY 16, 2020

Researchers spotted a new Android banking trojan dubbed BlackRock malware that steals credentials and credit card data from hundreds of apps. The BlackRock malware borrows the code from the Xerxes banking malware, which is a strain of the popular LokiBot Android trojan. Coinbase, BitPay, and Coinbase), and banks (i.e.

Malware 83

Malware Banking Mobile Spyware 83

Krebs on Security

APRIL 7, 2022

The DOJ said it did not seek to disinfect compromised devices; instead, it obtained court orders to remove the Cyclops Blink malware from its “command and control” servers — the hidden machines that allowed the attackers to orchestrate the activities of the botnet. energy facilities. ” HYDRA. . ” HYDRA. .

Marketing 255

Marketing Energy and Utilities Malware Ransomware 255

Security Affairs

MARCH 28, 2019

Security experts at Group-IB have detected the activity of Gustuff a mobile Android Trojan, which includes potential targets of customers in leading international banks, users of cryptocurrency services, popular ecommerce websites and marketplaces. Gustuff has previously never been reported.

Banking 86

Banking Cryptocurrency Mobile Advertising 86

Security Affairs

NOVEMBER 20, 2018

Security experts at F-Secure have recently spotted a small spam campaign aimed at Mac users that use Exodus cryptocurrency wallet. The messages were sent by accounts associated with the domain “update-exodus[.]io”, The messages were sent by accounts associated with the domain “update-exodus[.]io”, update.zip.”

Cryptocurrency 66

Cryptocurrency Spyware Advertising Surveillance 66

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers. A single bitcoin is trading at around $45,000.

Cryptocurrency 239

Cryptocurrency Cybercrime Computers and Electronics Scams 239

Security Affairs

FEBRUARY 5, 2020

Threat actors are abusing the Bitbucket code hosting service to host seven types of malware that has already claimed more than 500,000 business computers. Cybereason researchers reported that attackers are abusing the Bitbucket code hosting service to store seven types of malware that were employed in an ongoing campaign.

Malware 57

Malware Cryptocurrency Ransomware Advertising 57

Security Affairs

AUGUST 30, 2020

US DoJ filed a civil forfeiture complaint to seize 280 Bitcoin (BTC) and Ethereum (ETH) accounts containing funds allegedly stolen by North Korea-linked hackers. ” The analysis of the blockchain allowed the US officials to follow the stolen funds from two hacked exchange back to the 280 crypto-currency accounts. .”

Cryptocurrency 112

Cryptocurrency Hacking Advertising Accountability 112

Security Affairs

AUGUST 18, 2020

Ukrainian authorities arrested the members of a cybercrime gang who ran 20 cryptocurrency exchanges involved in money laundering. Police in Ukraine announced the arrest of the members of a cybercrime gang composed of three individuals who ran 20 cryptocurrency exchanges used in money laundering activities. Pierluigi Paganini.

Cryptocurrency 101

Cryptocurrency Computers and Electronics Cybercrime Digital transformation 101

Security Affairs

NOVEMBER 4, 2020

KPOT Stealer is a “stealer” malware that focuses on exfiltrating account information and other data from web browsers, instant messengers, email, VPN, RDP, FTP, cryptocurrency, and gaming software. The KPOT Stealer was written in C/C++, it was offered in the cybercrime underground as a Malware-as-a-Service (MaaS).

Ransomware 132

Ransomware Malware Advertising Cybercrime 132

Security Affairs

JULY 30, 2018

Security experts from Kaspersky Lab have spotted a new cryptocurrency miner dubbed PowerGhost that can spread leveraging a fileless infection technique. “The malware, which we dubbed PowerGhost, is capable of stealthily establishing itself in a system and spreading across large corporate networks infecting both workstations and servers.”

Cryptocurrency 43

Cryptocurrency DDOS Advertising Malware 43

Security Affairs

NOVEMBER 4, 2019

Security experts warn of a new piece of malware dubbed QSnatch that already infected thousands of QNAP NAS devices worldwide. A new piece of malware dubbed QSnatch is infecting thousands of NAS devices manufactured by the Taiwanese vendor QNAP. At the time of writing, it is still unclear how threat actor will use the malware (i.e.

Malware 59

Malware Firmware Advertising Encryption 59

Security Affairs

AUGUST 27, 2019

Security experts from Kaspersky spotted a malware in the free version of the popular PDF creator application CamScanner app. Experts from Kaspersky have discovered malware in the free Android version of the CamScanner app that could be used by attackers to remotely hack Android devices and steal targets’ data.

Malware 94

Malware Advertising Mobile Hacking 94

Security Affairs

MARCH 26, 2020

The number of Coronavirus-themed attacks continues to increase, crooks hijack D-Link and Linksys routers to redirect users to sites spreading COVID19-themed malware. Crooks continue to launch Coronavirus-themed attacks , experts observed hackers hijacking D-Link and Linksys routers to redirect users to COVID19-themed sites spreading malware.

Malware 73

Malware DNS Advertising Cryptocurrency 73

Security Affairs

AUGUST 9, 2020

worth of cryptocurrency from 2gether Havenly discloses data breach, 1.3M worth of cryptocurrency from 2gether Havenly discloses data breach, 1.3M worth of cryptocurrency from 2gether Havenly discloses data breach, 1.3M Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Data breaches 93

Data breaches Ransomware Advertising VPN 93

Security Affairs

APRIL 14, 2019

The malware was developed to steal credentials, financial data, personal information, then the crooks offered them on the dark web marketplaces. The crooks used malicious emails purporting to be legitimate from such entities as Western Union, Norton AntiVirus and the IRS to spread the malware. ” continues the DoJ.

Cryptocurrency 85

Cryptocurrency Identity Theft Advertising Accountability 85

Security Affairs

AUGUST 15, 2020

A new Mac malware, tracked as XCSSET, spreads through Xcode projects and exploits two zero-day vulnerabilities, experts warn. XCSSET is a new Mac malware that spreads through Xcode projects and exploits two zero-day vulnerabilities to steal sensitive information from target systems and launch ransomware attacks.

Spyware 116

Spyware Malware Advertising Cryptocurrency 116

Security Affairs

AUGUST 7, 2018

Group-IB researchers have investigated user data leaks from cryptocurrency exchanges and has analyzed the nature of these incidents. In 2017, when cryptocurrencies were gaining momentum, their record-breaking capitalization and a spike in Bitcoin’s exchange rate led to dozens of attacks on cryptocurrency services.

Cryptocurrency 47

Cryptocurrency Passwords Authentication Accountability 47

Security Affairs

FEBRUARY 11, 2019

Security researcher Lukas Stefanko from ESET discovered the first Android cryptocurrency clipboard hijacker impersonating MetaMask on the official Google Play store. “This dangerous form of malware first made its rounds in 2017 on the Windows platform and was spotted in shady Android app stores in the summer of 2018.

Cryptocurrency 81

Cryptocurrency Mobile Advertising Malware 81

Security Affairs

MARCH 17, 2020

In this campaign, crooks are exploiting the interest in the Coronavirus (COVID-19) outbreak to deliver a couple of malware, the CoronaVirus Ransomware and the Kpot information-stealing Trojan. The malware is also able to take a screenshot of the active desktop and also target wallets stored on the computer. . Pierluigi Paganini.

Ransomware 94

Ransomware Cryptocurrency Advertising Passwords 94

Security Affairs

JANUARY 25, 2023

APT38 appears to be a North Korea-linked group separate from the infamous Lazarus group, it has been active since at least 2014 and it has been observed targeting over 16 organizations across 11 countries. According to Proofpoint the group is targeting cryptocurrencies since at least 2017. ” concludes the report.

Cryptocurrency 70

Cryptocurrency Phishing Healthcare Malware 70

Security Affairs

MARCH 11, 2019

Experts observed the STOP ransomware installing the Azorult password-stealing Trojan to steal account credentials, cryptocurrency wallets, and more. In October a new version of the info-stealer appeared in the wild, it is able to steal more data, including other types of cryptocurrencies. ” concludes BleepingComputer.

Encryption 82

Encryption Ransomware Cryptocurrency Passwords 82

Security Affairs

APRIL 19, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Scams 81

Scams Phishing Advertising DDOS 81

Security Affairs

JANUARY 2, 2020

The Poloniex cryptocurrency exchange is forcing users to reset their passwords following a data leak. . Another bad news for the community of the virtual currencies communities, the Poloniex cryptocurrency exchange has forced its users to reset their passwords following a data leak. . Pierluigi Paganini.

Passwords 57

Passwords Cryptocurrency Data breaches Advertising 57

Security Affairs

JUNE 17, 2021

Russian national Oleg Koshkin was convicted for charges related to the operation of a malware crypting service used by the Kelihos botnet to obfuscate malware and evade detection. “Levashov provided the Kelihos malware to Crypt4U personnel for crypting before distributing it to his victims.

Antivirus 97

Antivirus Malware Cryptocurrency Software 97

Security Affairs

FEBRUARY 25, 2021

. “Once the malicious document is opened, the malware is dropped and proceeds to the next stage of the deployment process. The ThreatNeedle malware used in this campaign belongs to a malware family known as Manuscrypt, which belongs to the Lazarus group and has previously been seen attacking cryptocurrency businesses.”

Malware 92

Malware Cryptocurrency Password Management Encryption 92

Security Affairs

OCTOBER 20, 2020

Group-IB assisted Paxful, an international peer-to-peer cryptocurrency marketplace, in countering web-bot and social engineering attacks. Group-IB Secure Portal also managed to identify over 100,000 accounts with three or more logins from the same device. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency 57

Cryptocurrency Social Engineering eCommerce Engineering 57

Security Affairs

DECEMBER 1, 2019

After 1 Million of malware samples analyzed. Facebook and Twitter warn of malicious SDK harvesting personal data from its accounts. Upbit cryptocurrency exchange hacked, crooks stole $48.5 Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Twitter allows users to use 2FA without a phone number.

Advertising 90

Advertising Ransomware Cryptocurrency Government 90

Security Affairs

SEPTEMBER 13, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Banking 60

Banking Advertising Ransomware Cryptocurrency 60

Security Affairs

FEBRUARY 17, 2021

Department of Justice charged Park over WannaCry and 2014 Sony Pictures Entertainment Hack. billion of money and cryptocurrency from financial institutions and companies, to create and deploy multiple malicious cryptocurrency applications, and to develop and fraudulently market a blockchain platform.” sanctions. .

Cryptocurrency 71

Cryptocurrency Banking Hacking Ransomware 71

Security Affairs

NOVEMBER 24, 2019

The Raccoon stealer was first spotted in April, it was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data. The malware is now promoted on English- speeaking hacking forums, it works on both 32-bit and 64-bit operating systems. ” concludes Cofense.

Malware 79

Malware Advertising Cryptocurrency Hacking 79

Security Affairs

MAY 6, 2020

The crime gang was formed in 2018, it was involved in distributing stolen user credentials, developing and distributing malware and hacking tools, and fraud. . The agents seized electronic equipment, external hard drives and hardware cryptocurrency wallets, all worth around €100 000. ” continues the press release.

Computers and Electronics 70

Computers and Electronics Hacking Cryptocurrency Accountability 70