Accountability, Blog, Cybercrime and Education

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. In 2017, crooks launched a phishing campaign against universities to compromise.edu accounts. ” reads the alert published by the FBI.

Cybercrime

Cybercrime Education Accountability Phishing

Law enforcement seized the Genesis Market cybercrime marketplace

Security Affairs

APRIL 5, 2023

The price for a stolen account was very cheap, paying a few dollars crooks were able to use it for a specific period. Genesis Market provided access to accounts of the most popular services, including Amazon, eBay, Facebook, Gmail, Netflix, PayPal, Spotify, and Zoom.

Marketing

Marketing Cybercrime Accountability Education

Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

Krebs on Security

FEBRUARY 4, 2021

Facebook, Instagram , TikTok , and Twitter this week all took steps to crack down on users involved in trafficking hijacked user accounts across their platforms. Facebook said it targeted a number of accounts tied to key sellers on OGUsers, as well as those who advertise the ability to broker stolen account sales. THE MIDDLEMEN.

Accountability

Accountability Hacking Media Mobile

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Cybercrime group exploits Windows zero-day in ransomware attacks

Security Affairs

APRIL 11, 2023

The experts pointed out that while the majority of zero-days they have discovered in the past were used by APT groups, this zero-day was exploited by a sophisticated cybercrime group. This group is known to have used similar CLFS driver exploits in the past that were likely developed by the same author.

Cybercrime

Cybercrime Ransomware Education Media

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

Security Affairs

APRIL 30, 2023

Threat actors are gaining access to AT&T email accounts in an attempt to hack into the victim’s cryptocurrency exchange accounts. Hackers are breaking into the AT&T email accounts and then using the access they are logging into the victim’s cryptocurrency exchange accounts to drain their crypto funds, TechCrunch reported.

Cryptocurrency

Cryptocurrency Accountability Passwords Hacking

Remcos RAT campaign targets US accounting and tax return preparation firms

Security Affairs

APRIL 16, 2023

Microsoft warns of a new Remcos RAT campaign targeting US accounting and tax return preparation firms ahead of Tax Day. Tax Day, Microsoft has observed a new Remcos RAT campaign targeting US accounting and tax return preparation firms. Ahead of the U.S. The phishing attacks began in February 2023, the IT giant reported. LNK) files.

Accountability

Accountability Phishing Financial Services Surveillance

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

Krebs on Security

MAY 14, 2021

The crime gang announced it was closing up shop after its servers were seized and someone drained the cryptocurrency from an account the group uses to pay affiliates. The new restrictions came as some Russian cybercrime forums began distancing themselves from ransomware operations altogether. This word has become dangerous and toxic.”

Ransomware

Ransomware Cryptocurrency Cybercrime Healthcare

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

Security Affairs

APRIL 24, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, PaperCut ) The post Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws appeared first on Security Affairs.

Cybercrime

Cybercrime Software Education Ransomware

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

But by all accounts, few attacks from those gangs have come close to the amount of firepower wielded by a pro-Russia group calling itself “ NoName057(16).” He also co-runs SURBL , an anti-abuse service that flags domains and Internet address ranges that are strongly associated with spam and cybercrime activity, including DDoS.

DDOS

DDOS Internet Internet Government

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. Accounting for humans.

Cybersecurity

Cybersecurity Cybercrime Education Passwords

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

Security Affairs

APRIL 24, 2023

EvilExtractor is a new “all-in-one” info stealer for Windows that is being advertised for sale on dark web cybercrime forums. The tool was developed by a company named Kodex, which claims that the tool was developed for an educational purpose. EvilExtractor is a modular info-stealer, it exfiltrates data via an FTP service.

Cybercrime

Cybercrime Malware Education Phishing

15 Best Cybersecurity Blogs To Read

Spinone

OCTOBER 10, 2019

The best way to stay up-to-date with the recent trends is by reading the top cybersecurity blogs. Here’s our list of the best cybersecurity blogs to read and follow. Securing Tomorrow SecuringTomorrow is a blog by McAfee, one of the biggest security software providers. Their main focus is on cybercrime investigations.

Cybersecurity

Cybersecurity IoT Antivirus Education

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. Dave Kennedy | @hackingdave.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

FBI and Ukrainian police seized 9 crypto exchanges used by cybercriminals

Security Affairs

MAY 2, 2023

. “Noncompliant virtual currency exchanges, which have a lax anti-money laundering program or collect minimal Know Your Customer information or none at all, serve as important hubs in the cybercrime ecosystem and are operating in violation of Title 18 United States Code, Sections 1960 and 1956.”

Cybercrime

Cybercrime Cryptocurrency Advertising Education

Cybercrime Year in Review: 2013

SiteLock

AUGUST 27, 2021

bank accounts in 2012 by cybercrooks using malware like keyloggers. And if any of those were business accounts, the business owners were probably on the hook for all the losses. If you’re a frequent reader of this blog, then you’ll know that our expertise and advice goes far beyond just protecting your website.

Cybercrime

Cybercrime Small Business Antivirus Malware

Kodi discloses data breach after its forum was compromised

Security Affairs

APRIL 14, 2023

The threat actors also attempted to sell the stolen data on the BreachForums cybercrime forum that was recently shut down by law enforcement. The account was used to create database backups which were then downloaded and deleted. The account owner has confirmed they did not access the admin console to perform these actions.”

Data breaches

Data breaches Backups Passwords Accountability

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Security Affairs

APRIL 30, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Cybercrime

Cybercrime Malware Hacking Accountability

STYX Marketplace emerged in Dark Web focused on Financial Fraud

Security Affairs

APRIL 5, 2023

The discovery of STYX coincides with Resecurity financial crime risk analysts observing a significant increase in threat actors offering money-laundering services that exploit digital banking and cryptocurrency accounts. Resecurity’s investigation of STYX also yielded the discovery of 100 mules accounts.

Banking

Banking Cybercrime Accountability Risk

Google obtained a temporary court order against CryptBot distributors

Security Affairs

APRIL 28, 2023

The malware allows operators to steal login credentials from popular services such as social media platforms and cryptocurrency wallets, then stolen data is sold on cybercrime forums by the operators. To prevent infections from malware like Cryptbot, Cybercrime Support Network recommends users to Download from well-known and trusted sources.

Malware

Malware Cybercrime Cryptocurrency Media

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs

APRIL 9, 2023

billion rubles. Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter newsletter) The post Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Computers and Electronics

Computers and Electronics Backups Cybercrime Marketing

Authorities dismantled the card-checking platform Try2Check

Security Affairs

MAY 3, 2023

Today’s indictment and global takedown of the Try2Check website demonstrates that the Office, together with our partners, will disrupt cybercrime operations no matter where they are based.” The DoJ pointed out that Try2Check also victimized a major U.S.-based

Cybercrime

Cybercrime Education Media Hacking

Iran-linked MERCURY APT behind destructive attacks on hybrid environments

Security Affairs

APRIL 10, 2023

. “DEV-1084 was then later observed leveraging highly privileged compromised credentials to perform en masse destruction of resources, including server farms, virtual machines, storage accounts, and virtual networks, and send emails to internal and external recipients.”

Ransomware

Ransomware Cybercrime VPN Education

Hackers are taking advantage of the interest in generative AI to install Malware

Security Affairs

MAY 3, 2023

“Since March alone, our security analysts have found around 10 malware families posing as ChatGPT and similar tools to compromise accounts across the internet. In March, security experts at Meta found multiple malware posing as ChatGPT or similar AI tools. ” reads the Meta’s Q1 2023 Security Reports.

Malware

Malware Education Accountability Media

SpecTor operation: 288 individuals arrested in the seizure of marketplace Monopoly Market

Security Affairs

MAY 2, 2023

“A number of investigations to identify additional individuals behind dark web accounts are still ongoing. The seizure of the Hydra Market is the result of an international investigation conducted by the Central Office for Combating Cybercrime (ZIT) in partnership with U.S. ” continues the press release.

Marketing

Marketing Accountability Cybercrime Education

Health insurer Point32Health suffered a ransomware attack

Security Affairs

APRIL 23, 2023

“On April 17, Point32Health identified a cybersecurity ransomware incident that impacted systems we use to service members, accounts, brokers and providers. At this time, most systems impacted are on the Harvard Pilgrim Health Care side of our business. ” reads the statement published by the insurer.

Insurance

Insurance Ransomware Education Accountability

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Security Affairs

APRIL 2, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter) The post Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Spyware

Spyware Surveillance Artificial Intelligence Data breaches

Personal Cybersecurity Concerns for 2023

Security Through Education

JANUARY 18, 2023

The truth is technology has grown at an exponential rate and so has cybercrime. Cybercrime doesn’t just affect big businesses and national governments. This is how the scammers “fatten the pig” until the right time to “butcher it,” when they take all the money out of the account. What You Can Do. Update your software.

Cybersecurity

Cybersecurity Social Engineering Scams IoT

Money Message ransomware group claims to have hacked IT giant MSI

Security Affairs

APRIL 6, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, MSI) The post Money Message ransomware group claims to have hacked IT giant MSI appeared first on Security Affairs.

Hacking

Hacking Ransomware Manufacturing Education

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

Security Affairs

APRIL 21, 2023

.” The investigation launched into the incident revealed that that an unauthorized third party obtained usernames and hashed and salted passwords for members’ online accounts on the ABA website prior to 2018 or the ABA Career Center since 2018. According to BleepingComputer, 1,466,000 members were impacted by this breach.

Data breaches

Data breaches Passwords Education Accountability

The intricate relationships between the FIN7 group and members of the Conti ransomware gang

Security Affairs

APRIL 18, 2023

A new malware, dubbed Domino, developed by the FIN7 cybercrime group has been used by the now-defunct Conti ransomware gang. IBM Security X-Force researchers recently discovered a new malware family, called Domino, which was created by developers associated with the FIN7 cybercriminal group (tracked by X-Force as ITG14).

Ransomware

Ransomware Cybercrime Malware Education

UK outsourcing services provider Capita suffered a cyber incident

Security Affairs

APRIL 3, 2023

Capita, the UK outsourcing giant, confirmed that its staff was locked out of their accounts on Friday after a cyber incident. UK outsourcing services provider Capita confirmed that the outage suffered on Friday was caused by a cyberattack. The outsourcing firm signed numerous contracts with the Ministry of Defence.

Data breaches

Data breaches Education Accountability Media

T-Mobile suffered the second data breach in 2023

Security Affairs

MAY 1, 2023

The carrier states that personal financial account information and call records were not affected by the security breach. In January, T-Mobile suffered the first data breach in 2023, threat actors stole the personal information of 37 million current postpaid and prepaid customer accounts.

Data breaches

Data breaches Mobile Identity Theft Accountability

New Lobshot hVNC malware spreads via Google ads

Security Affairs

MAY 1, 2023

While investigating the malware distribution, the researchers noticed the use of an infrastructure known to belong to cybercrime group TA505. com, which is a domain associated with the operations of the TA505 cybercrime gang. Upon executing the MSI file, a PowerShell command is launched.

Malware

Malware Cybercrime Banking Software

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing campaigns on Ukraine, with the country accounting for over 60% of observed Russian targeting. The group targeted multiple sectors, including government, defense, energy, transportation/logistics, education, and humanitarian organizations.

Phishing

Phishing Education Accountability Telecommunications

LockBit leaks data stolen from the South Korean National Tax Service

Security Affairs

APRIL 1, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – Lockbit ransomware gang, The South Korean National Tax Service) The post LockBit leaks data stolen from the South Korean National Tax Service appeared first on Security Affairs.

Identity Theft

Identity Theft Ransomware Scams Education

Facebook warns of a new information-stealing malware dubbed NodeStealer

Security Affairs

MAY 4, 2023

NodeStealer is a new information-stealing malware distributed on Meta that allows stealing browser cookies to hijack accounts on multiple platforms, including Facebook, Gmail, and Outlook. The social network giant took action to disrupt the malware campaign and support victims in recovering their accounts. ” continues the report.

Malware

Malware Accountability Advertising Education

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Security Affairs

APRIL 7, 2023

. “Microsoft, Fortra and Health-ISAC remain relentless in our efforts to improve the security of the ecosystem, and we are collaborating with the FBI Cyber Division, National Cyber Investigative Joint Task Force (NCIJTF) and Europol’s European Cybercrime Centre (EC3) on this case. Our action is therefore not one and done.”

Penetration Testing

Penetration Testing Ransomware Malware Hacking

A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays

Security Affairs

APRIL 14, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Heathcare ) The post A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays appeared first on Security Affairs.

Healthcare

Healthcare Cyber Attacks Education Media

Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware

Security Affairs

APRIL 27, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, PaperCut ) The post Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware appeared first on Security Affairs.

Ransomware

Ransomware Education Media Malware

Hackers are actively exploiting a flaw in the Elementor Pro WordPress plugin

Security Affairs

MARCH 31, 2023

The issue stems from improper input validation and a lack of capability check to restrict its access to a high privileged user only. We ask that you provide a brief paragraph of 250 words explaining why they should win.

Authentication

Authentication Education Accountability Media

Ukraine cyber police arrested a man for selling data of 300M people

Security Affairs

APRIL 28, 2023

The man had information on passport data, taxpayer numbers, birth certificates, driver’s licenses, and bank account data. The Ukrainian cyber police have arrested a man (36) from the city of Netishyn for selling the personal data and sensitive information of over 300 million people from different countries.

Education

Education Accountability Banking Mobile

Yum! Brands, the owner of KFC, Taco Bell and Pizza Hut, discloses data breach

Security Affairs

APRIL 11, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Yum!

Data breaches

Data breaches Identity Theft Education Ransomware

SD Worx shuts down UK and Ireland services after cyberattack

Security Affairs

APRIL 10, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, SD Worx) The post SD Worx shuts down UK and Ireland services after cyberattack appeared first on Security Affairs.

Cyber Attacks

Cyber Attacks Data breaches Education Media

Researchers found the first Linux variant of the RTM locker

Security Affairs

APRIL 27, 2023

The affiliates are obliged to remain active, or their account will be removed after 10 days without notifying them upfront. The group also avoids targeting morgues, hospitals, COVID-19 vaccine-related organizations, critical infrastructure, law enforcement, and other prominent companies to attract as little attention as possible.

Encryption

Encryption Ransomware Malware Education

FBI: Compromised US academic credentials available on various cybercrime forums

Law enforcement seized the Genesis Market cybercrime marketplace

Webinars

Trending Sources

Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

Webinars

Cybercrime group exploits Windows zero-day in ransomware attacks

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

Remcos RAT campaign targets US accounting and tax return preparation firms

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

Stark Industries Solutions: An Iron Hammer in the Cloud

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

15 Best Cybersecurity Blogs To Read

Top Cybersecurity Accounts to Follow on Twitter

FBI and Ukrainian police seized 9 crypto exchanges used by cybercriminals

Cybercrime Year in Review: 2013

Kodi discloses data breach after its forum was compromised

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

STYX Marketplace emerged in Dark Web focused on Financial Fraud

Google obtained a temporary court order against CryptBot distributors

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Authorities dismantled the card-checking platform Try2Check

Iran-linked MERCURY APT behind destructive attacks on hybrid environments

Hackers are taking advantage of the interest in generative AI to install Malware

SpecTor operation: 288 individuals arrested in the seizure of marketplace Monopoly Market

Health insurer Point32Health suffered a ransomware attack

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Personal Cybersecurity Concerns for 2023

Money Message ransomware group claims to have hacked IT giant MSI

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

The intricate relationships between the FIN7 group and members of the Conti ransomware gang

UK outsourcing services provider Capita suffered a cyber incident

T-Mobile suffered the second data breach in 2023

New Lobshot hVNC malware spreads via Google ads

Google TAG warns of Russia-linked APT groups targeting Ukraine

LockBit leaks data stolen from the South Korean National Tax Service

Facebook warns of a new information-stealing malware dubbed NodeStealer

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays

Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware

Hackers are actively exploiting a flaw in the Elementor Pro WordPress plugin

Ukraine cyber police arrested a man for selling data of 300M people

Yum! Brands, the owner of KFC, Taco Bell and Pizza Hut, discloses data breach

SD Worx shuts down UK and Ireland services after cyberattack

Researchers found the first Linux variant of the RTM locker

Stay Connected