Security Affairs

AUGUST 21, 2022

Threat actors compromise WordPress sites to display fake Cloudflare DDoS protection pages to distribute malware. DDoS Protection pages are associated with browser checks performed by WAF/CDN services which verify if the site visitor is a human or a bot. The file poses as a tool required to bypass the DDoS verification.

DDOS 87

DDOS Malware Antivirus Firewall 87

Security Affairs

JANUARY 3, 2023

Experts warn of a new malware campaign using sensitive information stolen from a bank as a lure to spread the remote access trojan BitRAT. Qualys experts spotted a new malware campaign spreading a remote access trojan called BitRAT using sensitive information stolen from a bank as a lure in phishing messages. Keylogging. Monero mining.

Banking 85

Banking Malware Phishing DDOS 85

Webroot

MARCH 9, 2021

One of the reasons why there’s so much cybercrime is because there are so many ways for cybercriminals to exploit vulnerabilities and circumvent even the best defenses. Take a deep dive into the three main hacker types and get tips on how to defend against them by downloading the e-book, Hacker Personas: a deeper Look Into Cybercrime.

Hacking 115

Hacking DNS Surveillance Cybercrime 115

Security Affairs

MAY 16, 2021

Avaddon ransomware gang made the headlines again, the cybercrime gang has breached the France-based financial consultancy firm Acer Finance. The hackers pointed out that there is no way to decrypt data without their decryptor, they also threatened the company to target it with a DDoS attack in case they will refuse to pay the ransom.

Hacking 106

Hacking Ransomware DDOS Manufacturing 106

Security Affairs

NOVEMBER 11, 2023

Police seized BulletProftLink phishing-as-a-service (PhaaS) platform Serbian pleads guilty to running ‘Monopoly’ dark web drug market McLaren Health Care revealed that a data breach impacted 2.2 Virtual Kidnapping: AI Tools Are Enabling IRL Extortion Scams How a ‘Refund Fraud’ Gang Stole $700,000 From Amazon Info from 5.6

DDOS 99

DDOS Data breaches Ransomware Marketing 99

Security Affairs

OCTOBER 15, 2023

FBI and CISA published a new advisory on AvosLocker ransomware More than 17,000 WordPress websites infected with the Balada Injector in September Ransomlooker, a new tool to track and analyze ransomware groups’ activities Apple releases iOS 16 update to fix CVE-2023-42824 on older devices Phishing, the campaigns that are targeting Italy A new (..)

DDOS 89

DDOS Data breaches Cybercrime Ransomware 89

Security Affairs

JANUARY 29, 2019

Europol and law enforcement agencies worldwide are investigating DDoS-for-hire services and hunting users that paid them to carry out cyber attacks. The operation dubbed Power Off allowed to shut down the biggest DDoS-for-hire service ( webstresser.org ) and arrest its administrators. webstresser.org.

DDOS 85

DDOS Computers and Electronics Cybercrime Banking 85

Security Affairs

JUNE 25, 2019

Belgium police have identified a member of the Anonymous Belgium collective while investigating an arson case at a local bank. The Anonymous member is a 35-year-old man from Roeselare, Belgium, was arrested after throwing a Molotov cocktail at the Crelan Bank office in Rumbeke, back in 2014.

DDOS 98

DDOS Computers and Electronics Banking Cybercrime 98

Security Affairs

SEPTEMBER 27, 2021

Telegram is becoming an essential platform for cybercriminal activities, crooks use it but and sell any kind of stolen data and hacking tools. Researchers from vpnMentor recently published a report that sheds the light on the use of Telegram in the cybercrime ecosystem. Some channels have 10,000s of followers.”

Cybercrime 120

Cybercrime Hacking Mobile DDOS 120

Krebs on Security

NOVEMBER 15, 2022

Wanted Ukrainian cybercrime suspect Vyacheslav “Tank” Penchukov (right) was arrested in Geneva, Switzerland. Once inside a victim company’s bank accounts, the crooks would modify the firm’s payroll to add dozens of “ money mules ,” people recruited through work-at-home schemes to handle bank transfers.

Banking 277

Banking Small Business Accountability Cybercrime 277

Security Affairs

OCTOBER 30, 2021

INTERPOL published the African Cyberthreat Assessment Report 2021, a report that analyzes evolution of cybercrime in Africa. A new report published by INTERPOL, titled the African Cyberthreat Assessment Report 2021 , sheds the light on cybercrime in Africa.

Cybercrime 76

Cybercrime Scams DDOS Banking 76

Security Affairs

OCTOBER 2, 2022

The phishing campaigns were conducted between October 3, 2020, and May 29, 2021, the gang sent to the victims messaging posing as coming from German banks. “These e-mails were visually and linguistically believable based on real bank e-mails. SecurityAffairs – hacking, phishing). ” continues the announcement.

Phishing 86

Phishing Banking DDOS Accountability 86

Security Affairs

JUNE 22, 2022

Today the group has announced multiple targets for coordinated DDoS attacks – the resources to be attacked are distributed between so-called “units” who are based on members and volunteers who joined previous and current campaigns. SecurityAffairs – hacking, Lithuania). which was one of the 1st targets of the new campaign.

Cyber Attacks 136

Cyber Attacks DDOS Media Government 136

Security Affairs

OCTOBER 16, 2021

TrickBot operators are back and expand the distribution channels with partnership with cybercrime affiliates. The gang support other cybercrime groups such as known Hive0105, Hive0106 (aka TA551 or Shathak), and Hive0107, supporting them in expanding their malware campaigns. SecurityAffairs – hacking, cyber security).

Malware 96

Malware Cybercrime DDOS Social Engineering 96

Security Affairs

DECEMBER 11, 2022

Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 Samsung S22 hacked Sophos fixed a critical flaw in its Sophos Firewall version 19.5 SecurityAffairs – hacking, newsletter ). Pierluigi Paganini.

Firewall 87

Firewall Banking Hacking DDOS 87

Security Affairs

SEPTEMBER 12, 2021

SecurityAffairs – hacking, newsletter). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. The post Security Affairs newsletter Round 331 appeared first on Security Affairs.

DDOS 54

DDOS Banking Cybercrime Hacking 54

Security Affairs

FEBRUARY 24, 2022

This follows the DDoS attacks against several Ukrainian websites earlier today 1/n — ESET research (@ESETresearch) February 23, 2022. According to the security firm, the infections followed the DDoS attacks against several Ukrainian websites, including Ministry of Foreign Affairs, Cabinet of Ministers, and Rada.

Malware 112

Malware DDOS Banking Government 112

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. Cracking down hard on the cybercrime world. If not ransomware, then DDoS or possibly both. Of course, this is the result of economic problems caused by the pandemic.

Cryptocurrency 110

Cryptocurrency Banking Cybercrime Ransomware 110

Security Affairs

MAY 14, 2023

ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million

Data breaches 84

Data breaches DDOS Artificial Intelligence Ransomware 84

Security Affairs

NOVEMBER 20, 2021

SecurityAffairs – hacking, newsletter). Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Banking 65

Banking Small Business Data breaches Firmware 65

Security Affairs

FEBRUARY 27, 2022

February 19 – White House and UK Gov attribute DDoS attacks on Ukraine to Russia’s GRU. The White House has linked the recent DDoS attacks against Ukraine ‘s banks and defense agencies to Russia’s GRU. February 15 – Ukraine: Military defense agencies and banks hit by cyberattacks. Pierluigi Paganini.

DDOS 83

DDOS Banking Phishing Ransomware 83

CSO Magazine

MARCH 1, 2022

The group was ostensibly responsible for shutting down the API for Sberbank, one of Russia’s major banks and Kremlin-aligned Belarus’s official information policy site. Cyber Partisans of Belarus claim train hacks. Presumed hacktivists hacked Russian EV charging stations. AgainstTheWest targeted Russian interests.

DDOS 115

DDOS Media Hacking CSO 115

Security Affairs

MARCH 12, 2023

PlugX malware delivered by exploiting flaws in Chinese programs Prometei botnet evolves and infected +10,000 systems since November 2022 CISA adds VMware’s Cloud Foundation bug to Known Exploited Vulnerabilities Catalog Law enforcement seized the website selling the NetWire RAT and arrested a Croatian man Latest version of Xenomorph Android malware (..)

Data breaches 78

Data breaches Banking Government Ransomware 78

Security Affairs

MARCH 26, 2023

NCA infiltrates the cybercriminal underground with fake DDoS-for-hire sites Pwn2Own Vancouver 2023 awarded $1,035,000 and a Tesla for 27 0-days CISA announced the Pre-Ransomware Notifications initiative China-linked hackers target telecommunication providers in the Middle East City of Toronto is one of the victims hacked by Clop gang using GoAnywhere (..)

Data breaches 73

Data breaches DDOS Backups Ransomware 73

Security Affairs

AUGUST 7, 2022

SecurityAffairs – hacking, newsletter). Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% of its users due to the exposure of salted password hashes Twitter confirms zero-day used to access data of 5.4 Pierluigi Paganini.

Spyware 115

Spyware Manufacturing Small Business Surveillance 115

Security Affairs

FEBRUARY 16, 2020

Massive DDoS attack brought down 25% Iranian Internet connectivity. A cyber-attack on major banks could trigger a liquidity crisis, ECB President Christine Lagarde warns. Chinese Military personnel charged with hacking into credit reporting agency Equifax. Dell SupportAssist flaw exposes computers to hack, patch it asap!

Cyber Attacks 89

Cyber Attacks Banking Advertising Internet 89

Security Affairs

JUNE 28, 2022

Non-state actors include multinational corporations, collectives of hacktivists, non-governmental organizations (NGOs), cybercrime syndicates, private military organizations, media outlets, terrorist groups, labor unions, organized ethnic groups, lobby groups, criminal organizations, private businesses, and others. Pierluigi Paganini.

Cyber Attacks 90

Cyber Attacks Cybercrime Telecommunications Government 90

Security Affairs

MAY 29, 2022

SecurityAffairs – hacking, newsletter). Every week the best security articles from Security Affairs for free in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. Pierluigi Paganini.

InfoSec 94

InfoSec Spyware DDOS Firewall 94

Security Affairs

FEBRUARY 20, 2022

SecurityAffairs – hacking, newsletter). If you want to also receive for free the newsletter with the international press subscribe here. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. The post Security Affairs newsletter Round 354 appeared first on Security Affairs.

Banking 79

Banking Spyware Surveillance Ransomware 79

Krebs on Security

FEBRUARY 26, 2019

Sergei Mikhailov , formerly deputy chief of Russia’s top anti-cybercrime unit, was sentenced today to 22 years in prison. In 2013, Vrublevsky was convicted of hiring his most-trusted spammer and malware writer to launch a crippling distributed denial-of-service (DDoS) attack against one of his company’s chief competitors.

Cybersecurity 226

Cybersecurity Cybercrime Media Antivirus 226

Security Affairs

MARCH 1, 2020

Raccoon Malware, a success case in the cybercrime ecosystem. Hacking campaign targets sites running popular Duplicator WordPress plugin. Silence Hacking Crew threatens Australian banks of DDoS attacks. New strain of Cerberus Android banking trojan can steal Google Authenticator codes. . Pierluigi Paganini.

Banking 85

Banking Malware Advertising Ransomware 85

Security Affairs

MAY 20, 2020

The Ukrainian Secret Service (SSU) has arrested a hacker known as Sanix, who was selling billions of stolen credentials on hacking forums and Telegram channels. The man is known in the cybercrime underground for selling billions of stolen credentials. SecurityAffairs – Sanix, hacking). Pierluigi Paganini.

Cybercrime 59

Cybercrime Passwords Advertising Hacking 59

Security Affairs

AUGUST 27, 2020

In its report, Group-IB Threat Intelligence experts provide evidence linking three campaigns with the use of various JavaScript-sniffer families – an instrument used by cybercriminals to steal text bank card data – previously attributed by cybersecurity researchers to various Magecart groups, to the same hacker group. Cybercrime prodigy.

Banking 112

Banking Cybercrime Marketing Advertising 112

Security Affairs

SEPTEMBER 27, 2020

SecurityAffairs – hacking, Newsletter). Every week the best security articles from Security Affairs free for you in your email box. fitness chains Town Sports leaked online Group-IB detects a series of ransomware attacks by OldGremlin HOW DO PROVIDERS IMPLEMENT INTERNET BLOCKING IN BELARUS? Pierluigi Paganini.

IoT 101

IoT Banking Advertising Ransomware 101

SecureList

DECEMBER 14, 2022

For instance, according to the New York Times, in 2003, the United States made plans for a huge cyberattack to freeze billions of dollars in Saddam Hussein’s bank accounts and cripple his government before the invasion of Iraq. Taking sides: professional ransomware groups, hacktivists, and DDoS attacks.

DDOS 134

DDOS Ransomware Government Energy and Utilities 134

Security Affairs

MARCH 13, 2022

SecurityAffairs – hacking, newsletter). If you want to also receive for free the newsletter with the international press subscribe here. CVE-2022-0492 flaw in Linux Kernel cgroups feature allows container escape Charities and NGOs providing support in Ukraine hit by malware. Follow me on Twitter: @securityaffairs and Facebook.

Data breaches 80

Data breaches Firmware Hacking Ransomware 80

Security Affairs

APRIL 10, 2022

A DDoS attack took down Finnish govt sites as Ukraine’s President addresses MPs SharkBot Banking Trojan spreads through fake AV apps on Google Play China-linked threat actors target Indian Power Grid organizations A Mirai-based botnet is exploiting the Spring4Shell vulnerability? SecurityAffairs – hacking, newsletter).

DDOS 66

DDOS Data breaches Marketing Manufacturing 66