Security Affairs

DECEMBER 4, 2022

The North Korea-linked Lazarus APT spreads fake cryptocurrency apps under the fake brand BloxHolder to install the AppleJeus malware. Volexity researchers warn of a new malware campaign conducted by the North Korea-linked Lazarus APT against cryptocurrency users. In this campaign, the threat actors used the “bloxholder[.]com”

Cryptocurrency 85

Cryptocurrency Malware Hacking Information Security 85

Security Affairs

DECEMBER 27, 2022

The BTC.com cryptocurrency platform was the victim of a cyberattack that resulted in the theft of $3 million worth of crypto assets. “BIT Mining Limited, a leading technology-driven cryptocurrency mining company, today announced that the Company’s subsidiary, BTC.com, experienced a cyberattack on December 3, 2022.

Cryptocurrency 84

Cryptocurrency Technology Hacking Cybercrime 84

Security Affairs

AUGUST 29, 2022

FBI warns investors that crooks are increasingly exploiting security issues in Decentralized Finance (DeFi) platforms to steal cryptocurrency. Threat actors are exploiting vulnerabilities in the smart contracts governing DeFi platforms to steal investors’ cryptocurrency.

Cryptocurrency 80

Cryptocurrency Internet Internet Risk 80

Security Affairs

JULY 19, 2022

FBI has warned of crooks developing malicious cryptocurrency-themed apps to steal crypto assets from the users. Federal Bureau of Investigation (FBI) has warned of crooks creating malicious cryptocurrency-themed apps to steal crypto assets from investors. million from 244 victims between October 4, 2021, and May 13, 2022.

Cryptocurrency 97

Cryptocurrency Mobile Hacking Accountability 97

Security Affairs

JANUARY 15, 2023

An international police operation led by Europol led to the arrest of cryptocurrency scammers targeting users all over the world. The European police have supported this investigation since June 2022 following an initial request from German authorities. SecurityAffairs – hacking, cryptocurrency). Pierluigi Paganini.

Cryptocurrency 80

Cryptocurrency Computers and Electronics Advertising Backups 80

Security Affairs

FEBRUARY 24, 2023

Trojanized versions of legitimate applications are being used to deploy XMRig cryptocurrency miner on macOS systems. The researchers noticed similarities with other examples reported by Trend Micro in February 2022. ” reads the analysis published by the experts. ” concludes the report.

Cryptocurrency 86

Cryptocurrency Malware Software Passwords 86

Security Affairs

DECEMBER 22, 2022

billion worth of cryptocurrency and other virtual assets in the past five years. billion) in cryptocurrency and other virtual assets in the past five years. The Government of Pyongyang focuses on crypto hacking to fund its military program following harsh U.N. million in cryptocurrency through this program. 380 billion.

Cryptocurrency 122

Cryptocurrency Cybercrime Media Government 122

Security Affairs

JANUARY 31, 2022

Threat actors stole $80M worth of cryptocurrency from the Qubit DeFi platform by exploiting a flaw in the smart contract code used in an Ethereum bridge. The DeFi platform Qubit Finance was victim of a cyber heist, threat actors stole around $80 million in cryptocurrency last week. SecurityAffairs – hacking, REvil ransomware).

Cryptocurrency 81

Cryptocurrency Hacking Accountability Ransomware 81

Security Affairs

APRIL 4, 2023

Threat actors behind the 3CX supply chain attack have targeted a limited number of cryptocurrency companies with a second-state implant. SentinelOne is tracking the malicious activity as SmoothOperator, the company speculates that the threat actor behind the attack has set up its infrastructure starting as early as February 2022.

Cryptocurrency 75

Cryptocurrency Malware Software Manufacturing 75

Security Affairs

APRIL 30, 2023

Threat actors are gaining access to AT&T email accounts in an attempt to hack into the victim’s cryptocurrency exchange accounts. Hackers are breaking into the AT&T email accounts and then using the access they are logging into the victim’s cryptocurrency exchange accounts to drain their crypto funds, TechCrunch reported.

Cryptocurrency 72

Cryptocurrency Accountability Passwords Hacking 72

Security Affairs

SEPTEMBER 22, 2022

Threat actors targeted tens thousands of unauthenticated Redis servers exposed on the internet as part of a cryptocurrency campaign. ” reads the post published by Zhu on September 11, 2022. Threat actors are targeting these instances to install a cryptocurrency miner. SecurityAffairs – hacking, mining).

Cryptocurrency 90

Cryptocurrency Internet Internet Hacking 90

Security Affairs

JUNE 15, 2022

PrivacyAffairs released the Dark Web Index 2022, the document provides the prices for illegal services/products available in the black marketplaces. The document updates the information provided in the Dark Web Index 2022 report. The document updates the information provided in the Dark Web Index 2022 report.

Identity Theft 90

Identity Theft Accountability DDOS Cybercrime 90

Security Affairs

JUNE 30, 2022

North Korea-linked Lazarus APT group is suspected to be behind the recent hack of the Harmony Horizon Bridge. Recently, threat actors have stolen $100 million in cryptocurrency from the Blockchain company Harmony. — Harmony (@harmonyprotocol) June 26, 2022. SecurityAffairs – hacking, Harmony). Pierluigi Paganini.

Hacking 82

Hacking Social Engineering Cryptocurrency Engineering 82

Security Affairs

FEBRUARY 14, 2023

The threat actors behind a massive AdSense fraud campaign infected 10,890 WordPress sites since September 2022. In November 2022, researchers from security firm Sucuri reported to have tracked a surge in WordPress malware redirecting website visitors to fake Q&A sites via ois[.]is.

Malware 73

Malware DDOS Cryptocurrency Hacking 73

SecureWorld News

FEBRUARY 10, 2022

Cybersecurity continues to be one of the hottest industries to be in, and that's not just because of ransomware and crypto hacks. Momentum Cyber has released its Cybersecurity Almanac 2022 , a comprehensive report providing strategic insights into the industry. Outlook on cybersecurity in 2022. Cybersecurity challenges in 2022.

Cybersecurity 78

Cybersecurity Digital transformation Cryptocurrency Marketing 78

Security Affairs

DECEMBER 8, 2023

Anatoly Legkodymov, the founder of the Bitzlato cryptocurrency exchange has pleaded in a money-laundering scheme. Anatoly Legkodymov (41) (aka Anatolii Legkodymov, Gandalf, and Tolik), the Russian founder of the unlicensed Bitzlato cryptocurrency exchange, has pleaded guilty in a money-laundering scheme.

Cryptocurrency 87

Cryptocurrency Marketing Advertising Hacking 87

Security Affairs

JANUARY 23, 2024

The Australian government announced sanctions for a member of the REvil ransomware group for the Medibank hack that occurred in 2022. The man is responsible for the cyber attacks that in 2022 hit the Australian insurance provider Medibank. “ In November 2022, Medibank announced that personal data belonging to around 9.7M

Government 92

Government Insurance Ransomware Hacking 92

Security Affairs

JANUARY 20, 2022

Crypto.com is a cryptocurrency exchange app based in Singapore, the app currently has 10 million users and 3,000 employees. — Crypto.com (@cryptocom) January 17, 2022. JUST IN: CEO @cryptocom ’s Kris Marszalek discusses the site's recent hack with @BloombergTV ’s @emilychangtv. "Customer ErgoBTC) January 18, 2022.

Accountability 81

Accountability Hacking Cryptocurrency Cyber Attacks 81

Security Affairs

MAY 7, 2022

Department of Treasury sanctioned cryptocurrency mixer Blender.io Department of Treasury sanctioned the cryptocurrency mixer Blender.io SecurityAffairs – hacking, domain name system). The post US gov sanctions cryptocurrency mixer Blender also used by North Korea-linked Lazarus APT appeared first on Security Affairs.

Cryptocurrency 66

Cryptocurrency Hacking Ransomware Risk 66

Security Affairs

APRIL 28, 2024

Hackers may have accessed thousands of accounts on the California state welfare platform Brokewell Android malware supports an extensive set of Device Takeover capabilities Experts warn of an ongoing malware campaign targeting WP-Automatic plugin Cryptocurrencies and cybercrime: A critical intermingling Kaiser Permanente data breach may have impacted (..)

Cybercrime 90

Cybercrime Spyware Data breaches Antivirus 90

Security Affairs

FEBRUARY 19, 2024

The Raccoon stealer was first spotted in April 2019, it was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data. The Raccoon stealer is written in C++ by Russian-speaking developers who initially promoted it exclusively on Russian-speaking hacking forums. in the stolen data.

Identity Theft 87

Identity Theft Cryptocurrency Cybercrime Hacking 87

Security Affairs

OCTOBER 8, 2023

North Korea-linked APT group Lazarus has laundered $900 million worth of cryptocurrency, Elliptic researchers reported. North Korea-linked Lazarus Group laundered $900 Million in cryptocurrency between July 2022 and July 2023.

Cryptocurrency 112

Cryptocurrency Cybercrime Scams Hacking 112

Security Affairs

NOVEMBER 22, 2022

Aurora Stealer is an info-stealing malware that was first advertised on Russian-speaking underground forums in April 2022. In October and November 2022, the researchers analyzed several hundreds of collected samples and identified dozens of active C2 servers. . SecurityAffairs – hacking, Aurora Stealer). Pierluigi Paganini.

Cybercrime 89

Cybercrime Malware Cryptocurrency Advertising 89

Security Affairs

MAY 30, 2024

“According to an indictment unsealed on May 24, from 2014 through July 2022, Wang and others are alleged to have created and disseminated malware to compromise and amass a network of millions of residential Windows computers worldwide.” The compromised devices were recruited in the 911 S5 residential proxy service.

VPN 83

VPN Cryptocurrency Malware Software 83

Security Affairs

JUNE 10, 2022

Threat actors are exploiting the recently disclosed CVE-2022-26134 RCE in Atlassian Confluence servers to deploy cryptocurrency miners. CheckPoint researchers have observed threat actors exploiting the recently disclosed CVE-2022-26134 remote code execution vulnerability in Atlassian Confluence servers to deploy cryptocurrency miners.

Cryptocurrency 112

Cryptocurrency Malware Hacking Cybersecurity 112

Security Affairs

MAY 2, 2024

in March 2022. ” The co-conspirators demanded ransom payments in cryptocurrency and used cryptocurrency exchangers and mixing services to hide their ill-gotten gains. . Pierluigi Paganini Follow me on Twitter: @securityaffairs and Facebook and Mastodon ( SecurityAffairs – hacking, ransomware)

Ransomware 83

Ransomware Cryptocurrency Cybercrime Encryption 83

Security Affairs

JUNE 3, 2022

The bot focuses on cryptocurrency mining and cryptocurrency theft via clipboard hijacking. “However, some funds had also been transferred to what appear to be cryptocurrency tumblers, also known as cryptocurrency mixing services.” SecurityAffairs – hacking, cryptocurrency). Pierluigi Paganini.

Cryptocurrency 135

Cryptocurrency Malware Hacking Software 135

Security Affairs

DECEMBER 11, 2022

Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 SecurityAffairs – hacking, newsletter ). Pierluigi Paganini.

Firewall 87

Firewall Banking Hacking DDOS 87

Security Affairs

OCTOBER 7, 2022

— CZ Binance (@cz_binance) October 6, 2022. The attackers immediately attempted to split the stolen funds through multiple pools, while the cryptocurrency exchange was asking all validators to temporarily suspend BSC. link] — Binance (@binance) October 7, 2022. SecurityAffairs – hacking, Bridge).

Cryptocurrency 88

Cryptocurrency Hacking Information Security 88

Security Affairs

MARCH 16, 2024

In August 2022, the U.S. Tornado Cash was also used to launder more than $96 million of malicious cyber actors’ funds derived from the June 24, 2022 Harmony Bridge Heist, and at least $7.8 Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Lazarus APT)

Cryptocurrency 110

Cryptocurrency Hacking Cybersecurity Information Security 110

Security Affairs

OCTOBER 30, 2023

Researchers from Kaspersky discovered a sophisticated malware, dubbed StripedFly, that remained under the radar for five years masquerading as a cryptocurrency miner. In 2022, the researchers detected within the WININIT.EXE process an older code that was associated with the NSA-linked Equation malware.

Malware 112

Malware Cryptocurrency Ransomware Hacking 112

Security Affairs

DECEMBER 14, 2023

“A Russian, suspected of having recovered in cryptocurrencies the money taken from French victims of the powerful Hive ransomware , dismantled in January, was arrested last week, AFP learned on Tuesday December 12 from the judicial police.” anti-cybercrime (Ofac).” cybersecurity and intelligence authorities.

Ransomware 106

Ransomware Cryptocurrency Cybercrime VPN 106

Security Affairs

SEPTEMBER 22, 2022

Malicious actors continue to target organizations in the cryptocurrency industry, the last victim in order of time is crypto trading firm Wintermute. ” Threat actors breached the company and performed multiple transactions that transferred multiple cryptocurrencies to a wallet under their control. ” Gaevoy added.

Marketing 78

Marketing Cryptocurrency Accountability Hacking 78

Security Affairs

JANUARY 17, 2022

— BEN BALLER (@BENBALLER) January 17, 2022. 17 BTC — mohamed qudah (@qudah_mohamed) January 17, 2022. My wallet was just hacked.27 — Nick Dushko (@NickDushko) January 17, 2022. Crypto.com is a cryptocurrency exchange app based in Singapore, the app currently has 10 million users and 3,000 employees.

Cryptocurrency 77

Cryptocurrency Accountability Hacking Authentication 77

Security Affairs

DECEMBER 12, 2022

Researchers spotted a cryptocurrency mining campaign targeting Linux users with Go-based CHAOS malware (Trojan.Linux.CHAOSRAT). In November 2022, Trend Micro researchers discovered a cryptocurrency mining campaign targeting Linux users with Go-based CHAOS malware (Trojan.Linux.CHAOSRAT). Gather operating system information.

Malware 98

Malware Cryptocurrency Hacking Software 98

Security Affairs

DECEMBER 29, 2023

One of the key significant improvements are support of more software clients (including browser-based cryptocurrency wallets), upgraded credit card (CC) grabber, and additional advanced mechanisms for password storage dump on various platforms to extract credentials and tokens.

Password Management 118

Password Management Cryptocurrency Passwords Authentication 118

Security Affairs

DECEMBER 1, 2022

Redigo is a new Go-based malware employed in attacks against Redis servers affected by the CVE-2022-0543 vulnerability. Researchers from security firm AquaSec discovered a new Go-based malware that is used in a campaign targeting Redis servers. In March 2022, the U.S. SecurityAffairs – hacking, Redis).

Malware 139

Malware DDOS Architecture Cryptocurrency 139