Security Affairs

JUNE 8, 2022

On June 7, 2022, seizure orders allowed to seize four domains used by the operators of the SSNDOB Marketplace ( ssndob.ws , ssndob.vip , ssndob.club , and blackjob.biz ), shutting down the website’s operation. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS.

Cybercrime 92

Cybercrime Cryptocurrency Marketing Advertising 92

Security Affairs

APRIL 16, 2023

Microsoft warns of a new Remcos RAT campaign targeting US accounting and tax return preparation firms ahead of Tax Day. Tax Day, Microsoft has observed a new Remcos RAT campaign targeting US accounting and tax return preparation firms. Ahead of the U.S. The phishing attacks began in February 2023, the IT giant reported. LNK) files.

Accountability 90

Accountability Phishing Financial Services Surveillance 90

Security Affairs

APRIL 24, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, PaperCut ) The post Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws appeared first on Security Affairs.

Cybercrime 75

Cybercrime Software Education Ransomware 75

Security Boulevard

NOVEMBER 2, 2022

Dear blog readers, Do you know a lot about information security cybercrime research OSINT and threat intelligence gathering including cyber threat actors research? Who is Dancho Danchev and what is Dancho Danchev's Blog? The post Who Wants to Become a Guest Blogger At This Blog? Stay tuned!

Cybercrime 52

Cybercrime InfoSec Cyber threats Accountability 52

Security Affairs

AUGUST 9, 2023

Cloud account takeover scheme utilizing EvilProxy hit over 100 top-level executives of global organizations EvilProxy was observed sending 120,000 phishing emails to over a hundred organizations to steal Microsoft 365 accounts. Proofpoint noticed a worrisome surge of successful cloud account compromises in the past five months.

Accountability 89

Accountability Phishing Authentication Architecture 89

McAfee

OCTOBER 31, 2021

McAfee Enterprise and FireEye recently released its 2022 Threat Predictions. In this blog, we take a deeper dive into the continuingly aggressive role Nation States will play in 2022. Equally, direct messages have been used by groups to take control over influencer accounts to promote messaging of their own. Prevention.

Cybercrime 115

Cybercrime Government Malware Media 115

Security Affairs

APRIL 12, 2022

The illegal dark web marketplace RaidForums has been shut down and its infrastructure seized as a result of the international law enforcement Operation TOURNIQUET coordinated by Europol’s European Cybercrime Centre. Europol will continue working with its international partners to make cybercrime harder – and riskier –to commit.

Cybercrime 142

Cybercrime Banking Accountability Hacking 142

McAfee

OCTOBER 26, 2021

What cyber security threats should enterprises look out for in 2022? Skilled engineers and security architects from McAfee Enterprise and FireEye offer a preview of how the threatscape might look in 2022 and how these new or evolving threats could potentially impact the security of enterprises, countries, and civilians. By John Fokker.

Cybercrime 118

Cybercrime Ransomware Risk B2C 118

BH Consulting

AUGUST 9, 2022

Microsoft’s extensive blog has more details. Ars Technica’s writeup includes this important caveat: “Nothing in Microsoft’s account should be taken to say that deploying MFA isn’t one of the most effective measures to prevent account takeovers. It’s now accepting applications to start in September 2022.

Cybercrime 52

Cybercrime Accountability Phishing Authentication 52

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. The homepage of Stark Industries Solutions.

DDOS 274

DDOS Internet Internet Government 274

Security Affairs

APRIL 24, 2023

EvilExtractor is a new “all-in-one” info stealer for Windows that is being advertised for sale on dark web cybercrime forums. FortiGuard Labs observed this malware in a phishing email campaign on 30 March, which we traced back to the samples included in this blog.” ” reads the report published by Fortinet.

Cybercrime 88

Cybercrime Malware Education Phishing 88

BH Consulting

AUGUST 31, 2023

Having policies and procedures to secure social media accounts and minimise the potential for incidents can help. So in this blog, I’ll talk about the risks and steps to mitigate them. The organisation had suffered reputational damage after one of the team followed some accounts that didn’t fit with its values. More than 4.7

Media 52

Media Accountability Authentication Passwords 52

Krebs on Security

JUNE 1, 2023

One of Megatraffer’s ads on an English-language cybercrime forum. Megatraffer has continued to offer their code-signing services across more than a half-dozen other Russian-language cybercrime forums, mostly in the form of sporadically available EV and non-EV code-signing certificates from major vendors like Thawte and Comodo.

Malware 252

Malware Cybercrime Software Antivirus 252

Digital Shadows

JANUARY 18, 2023

Ransomware activity stayed at steady levels throughout 2022’s fourth quarter (Q4 2022). One major development was the use of ransomware in hacktivism’s resurgence during 2022. This blog focuses on ransomware activity in Q4 2022, based on primary and secondary source reporting. increase from Q3 2022.

Ransomware 40

Ransomware Accountability Healthcare Data breaches 40

SecureList

NOVEMBER 1, 2022

This is our latest installment, focusing on activities that we observed during Q3 2022. We can confirm a Maui ransomware incident in 2022, but we would expand their “first seen” date from the reported May 2021 to April 15, 2021, and the geolocation of the target to Japan and India. The most remarkable findings.

Malware 142

Malware Ransomware Spyware Encryption 142

Security Affairs

APRIL 28, 2023

The malware allows operators to steal login credentials from popular services such as social media platforms and cryptocurrency wallets, then stolen data is sold on cybercrime forums by the operators. To prevent infections from malware like Cryptbot, Cybercrime Support Network recommends users to Download from well-known and trusted sources.

Malware 93

Malware Cybercrime Cryptocurrency Media 93

Security Affairs

MAY 2, 2023

. “Noncompliant virtual currency exchanges, which have a lax anti-money laundering program or collect minimal Know Your Customer information or none at all, serve as important hubs in the cybercrime ecosystem and are operating in violation of Title 18 United States Code, Sections 1960 and 1956.”

Cybercrime 89

Cybercrime Cryptocurrency Advertising Education 89

Security Affairs

APRIL 9, 2023

billion rubles. Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter newsletter) The post Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Computers and Electronics 81

Computers and Electronics Backups Cybercrime Marketing 81

Security Affairs

APRIL 30, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Cybercrime 89

Cybercrime Malware Hacking Accountability 89

Security Affairs

APRIL 5, 2023

The discovery of STYX coincides with Resecurity financial crime risk analysts observing a significant increase in threat actors offering money-laundering services that exploit digital banking and cryptocurrency accounts. Resecurity’s investigation of STYX also yielded the discovery of 100 mules accounts.

Banking 79

Banking Cybercrime Accountability Risk 79

Security Affairs

APRIL 14, 2023

The threat actors also attempted to sell the stolen data on the BreachForums cybercrime forum that was recently shut down by law enforcement. The account was used to create database backups which were then downloaded and deleted. The account owner has confirmed they did not access the admin console to perform these actions.”

Data breaches 92

Data breaches Backups Passwords Accountability 92

SiteLock

DECEMBER 7, 2021

It’s no secret that cybersecurity breaches can yield staggering cybercrime costs for your business. Given these astounding statistics, it’s plain to see that businesses must prepare to mitigate cyber breaches in 2022. Take into account these three key strategies as you plan your cybersecurity measures.

Cybercrime 52

Cybercrime Identity Theft Ransomware Marketing 52

Security Affairs

APRIL 10, 2023

MERCURY (aka MuddyWater , SeedWorm and TEMP.Zagros ) has been active since at least 2017, in January 2022 the USCYBERCOM has officially linked the Iran-linked APT group to Iran’s Ministry of Intelligence and Security (MOIS). Threat actors masqueraded the attacks as a standard ransomware operation.

Ransomware 88

Ransomware Cybercrime VPN Education 88

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). Iarmak is the third member of the FIN7 cybercrime group to be sentenced in the U.S. in May 2020.

Cybercrime 104

Cybercrime Hacking Software Phishing 104

Krebs on Security

FEBRUARY 14, 2022

In January, KrebsOnSecurity examined clues left behind by “ Wazawaka ,” the hacker handle chosen by a major ransomware criminal in the Russian-speaking cybercrime scene. ” The @fuck_maze account messaged me a few times on Twitter, but largely stayed silent until Jan. This post is an attempt to remedy that.

VPN 209

VPN Ransomware Cybercrime Accountability 209

Security Affairs

APRIL 6, 2022

The seizure of the Hydra Market is the result of an international investigation conducted by the Central Office for Combating Cybercrime (ZIT) in partnership with U.S. The German authorities reported that around 17 million customers and over 19,000 seller accounts were registered on the Hydra Market.

Marketing 90

Marketing Cybercrime Advertising Hacking 90

Security Affairs

MAY 2, 2023

“A number of investigations to identify additional individuals behind dark web accounts are still ongoing. In April 2022, Germany’s Federal Criminal Police Office, the Bundeskriminalamt (BKA), announced they have shut down Hydra, one of the world’s largest dark web marketplace. ” continues the press release.

Marketing 81

Marketing Accountability Cybercrime Education 81

Security Affairs

MAY 27, 2022

can target an increasing number of applications, passing from 378 to 467 target applications to steal account credentials and crypto-wallets. The malware is available for rent on underground forums for $5000 per month since March 2022. Available for rent on underground forums for $5K/month since March 2022, ERMAC 2.0

Banking 140

Banking Malware Cybercrime Phishing 140

Security Affairs

MAY 3, 2023

Today’s indictment and global takedown of the Try2Check website demonstrates that the Office, together with our partners, will disrupt cybercrime operations no matter where they are based.” The DoJ pointed out that Try2Check also victimized a major U.S.-based

Cybercrime 88

Cybercrime Education Media Hacking 88

Security Affairs

MAY 29, 2022

Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog”). To nominate, please visit:?. Follow me on Twitter: @securityaffairs and Facebook.

InfoSec 98

InfoSec Spyware DDOS Firewall 98

Security Affairs

APRIL 21, 2023

The ABA has 166,000 members as of 2022. ” The investigation launched into the incident revealed that that an unauthorized third party obtained usernames and hashed and salted passwords for members’ online accounts on the ABA website prior to 2018 or the ABA Career Center since 2018.

Data breaches 90

Data breaches Passwords Education Accountability 90

Security Affairs

MAY 3, 2023

“Since March alone, our security analysts have found around 10 malware families posing as ChatGPT and similar tools to compromise accounts across the internet. In March, security experts at Meta found multiple malware posing as ChatGPT or similar AI tools. ” reads the Meta’s Q1 2023 Security Reports.

Malware 95

Malware Education Accountability Media 95

Krebs on Security

APRIL 4, 2024

For example, this account at Medium has authored more than a dozen blog posts in the past year singing the praises of Tornote as a secure, self-destructing messaging service. info , a website erected after Russia invaded Ukraine in early 2022 that doxed Russians perceived to have helped the Ukrainian cause.

Phishing 223

Phishing Cryptocurrency DDOS Internet 223

Security Affairs

MAY 1, 2023

While investigating the malware distribution, the researchers noticed the use of an infrastructure known to belong to cybercrime group TA505. com, which is a domain associated with the operations of the TA505 cybercrime gang. Upon executing the MSI file, a PowerShell command is launched.

Malware 88

Malware Cybercrime Banking Software 88

Security Affairs

APRIL 25, 2022

ALPHV has been advertising the BlackCat Ransomware-as-a-Service (RaaS) on the cybercrime forums XSS and Exploit since early December. The alert includes indicators of compromise (IoCs) associated with BlackCat/ALPHV, as of mid-February 2022. Regularly back up data, air gap, and password-protect backup copies offline.

Ransomware 103

Ransomware Antivirus Passwords Malware 103

Security Affairs

APRIL 20, 2023

In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing campaigns on Ukraine, with the country accounting for over 60% of observed Russian targeting. On September 2022, the Sandworm group was observed impersonating telecommunication providers to target Ukrainian entities with malware.

Phishing 87

Phishing Education Accountability Telecommunications 87

Security Affairs

APRIL 7, 2023

. “Microsoft, Fortra and Health-ISAC remain relentless in our efforts to improve the security of the ecosystem, and we are collaborating with the FBI Cyber Division, National Cyber Investigative Joint Task Force (NCIJTF) and Europol’s European Cybercrime Centre (EC3) on this case. Our action is therefore not one and done.”

Penetration Testing 83

Penetration Testing Ransomware Malware Hacking 83