Penetration Testing

MARCH 11, 2024

A dangerous new malware named Planet Stealer is making its rounds in the cybercriminal underworld, and security experts warn that your passwords, cryptocurrency wallets, and other sensitive information could be in its sights.

Passwords 125

Passwords Penetration Testing Malware Risk 125

Krebs on Security

OCTOBER 13, 2021

A recent phishing campaign targeting Coinbase users shows thieves are getting cleverer about phishing one-time passwords (OTPs) needed to complete the login process. Coinbase is the world’s second-largest cryptocurrency exchange, with roughly 68 million users from over 100 countries. million Italians.

Passwords 349

Passwords Phishing Accountability Mobile 349

Malwarebytes

SEPTEMBER 20, 2023

The dangers of cryptocurrency phishing are back in the news, after tech investor Mark Cuban was reported to have lost around $870k via a phishing link. Fake tools and websites for cryptocurrency are common. The site claims: MetaMask cannot recover your password. You can paste your entire secret recovery phrase below.

Cryptocurrency 111

Cryptocurrency Scams Phishing Engineering 111

Bleeping Computer

NOVEMBER 21, 2022

An information-stealing Google Chrome browser extension named 'VenomSoftX' is being deployed by Windows malware to steal cryptocurrency and clipboard contents as users browse the web. [.].

Cryptocurrency 96

Cryptocurrency Passwords Malware 96

Krebs on Security

MAY 19, 2020

In January 2019, dozens of media outlets raised the alarm about a new “megabreach” involving the release of some 773 million stolen usernames and passwords that was breathlessly labeled “the largest collection of stolen data in history.” By far the most important passwords are those protecting our email inbox(es).

Passwords 349

Passwords Accountability Hacking Password Management 349

WIRED Threat Level

MAY 28, 2024

Thanks to a flaw in a decade-old version of the RoboForm password manager and a bit of luck, researchers were able to unearth the password to a crypto wallet containing a fortune.

Passwords 136

Passwords Password Management Cryptocurrency Hacking 136

Krebs on Security

SEPTEMBER 5, 2023

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. Taylor Monahan is founder and CEO of MetaMask , a popular software cryptocurrency wallet used to interact with the Ethereum blockchain.

Cryptocurrency 351

Cryptocurrency Passwords Encryption Accountability 351

Krebs on Security

NOVEMBER 21, 2020

Fraudsters redirected email and web traffic destined for several cryptocurrency trading platforms over the past week. 13, with an attack on cryptocurrency trading platform liquid.com. The attacks were facilitated by scams targeting employees at GoDaddy , the world’s largest domain name registrar, KrebsOnSecurity has learned.

Cryptocurrency 363

Cryptocurrency VPN Scams Social Engineering 363

Security Affairs

JANUARY 4, 2024

The X account of cybersecurity giant Mandiant was hacked, attackers used it to impersonate the Phantom crypto wallet and push a cryptocurrency scam. Crooks hacked the X account of cybersecurity firm Mandiant and used it to impersonate the Phantom crypto platform and share a cryptocurrency scam. “Sorry, change password please.”

Scams 100

Scams Cryptocurrency Accountability Hacking 100

Adam Levin

MAY 5, 2020

Hackers successfully breached the servers of a popular blogging platform and used them to mine cryptocurrency. As of May 4, Ghost announced that it had successfully purged the cryptocurrency mining malware from its systems. The post Ghost Blogging Platform Hacked To Mine Cryptocurrency appeared first on Adam Levin.

Cryptocurrency 162

Cryptocurrency Hacking System Administration Passwords 162

CyberSecurity Insiders

NOVEMBER 26, 2021

Google, the business subsidiary of tech giant Alphabet Inc, has released a report saying that the compromised cloud accounts were leading hackers to mine cryptocurrency that could prove as a double threat to customers. The post Compromised cloud accounts leading to Cryptocurrency mining appeared first on Cybersecurity Insiders.

Cryptocurrency 131

Cryptocurrency Accountability Passwords Software 131

Bleeping Computer

APRIL 18, 2024

LastPass is warning of a malicious campaign targeting its users with the CryptoChameleon phishing kit that is associated with cryptocurrency theft. [.]

Passwords 128

Passwords Cryptocurrency Hacking Phishing 128

Heimadal Security

NOVEMBER 22, 2022

A Google Chrome browser extension named VenomSoftX is being deployed by Windows malware to steal cryptocurrency and clipboard contents as people browse the web. The post A Google Chrome Extension Is Helping Hackers Steal Cryptocurrency Passwords appeared first on Heimdal Security Blog. ViperSoftX has been around since 2020.

Cryptocurrency 52

Cryptocurrency Passwords Internet Internet 52

The Last Watchdog

SEPTEMBER 6, 2023

Over time, Bitcoin has become the most widely used cryptocurrency in the world. Use strong passwords, 2FA. The security of your Bitcoin wallet is mostly dependent on the strength of your passwords. Use uppercase, lowercase, digits, special characters, and a combination of them to create strong, one-of-a-kind passwords.

Cryptocurrency 100

Cryptocurrency Backups Passwords Software 100

Security Affairs

DECEMBER 13, 2023

Microsoft warns that threat actors are using OAuth applications cryptocurrency mining campaigns and phishing attacks. Threat actors are using OAuth applications such as an automation tool in cryptocurrency mining campaigns and other financially motivated attacks. ” states Microsoft.

Cryptocurrency 93

Cryptocurrency Phishing Accountability VPN 93

The Hacker News

JANUARY 19, 2022

BHUNT is a modular stealer written in.NET, capable of exfiltrating wallet (Exodus, Electrum, Atomic, Jaxx, Ethereum, Bitcoin, Litecoin wallets) contents, passwords stored in the

Passwords 103

Passwords Cryptocurrency Malware 103

Threatpost

NOVEMBER 20, 2019

The passwords of more than 2.2 million users of a gaming and cryptocurrency website were dumped online after dual data breaches.

Cryptocurrency 76

Cryptocurrency Passwords Data breaches Data privacy 76

Heimadal Security

OCTOBER 10, 2022

Solana cryptocurrency owners are being targeted by NFTs pretending to be alerts for a new Phantom security update. This will result in the installation of password-stealing malware and the theft of cryptocurrency wallets. The post Solana Phantom Targeted by Password-Stealing Malware appeared first on Heimdal Security Blog.

Passwords 94

Passwords Malware Cryptocurrency Cybersecurity 94

Tech Republic Security

JULY 6, 2023

The post New Malware Targets 97 Browser Variants, 76 Crypto Wallets & 19 Password Managers appeared first on TechRepublic. Learn how the Meduza Stealer malware works, what it targets and how to protect your company from this cybersecurity threat.

Password Management 196

Password Management Passwords Malware Cybersecurity 196

The Security Ledger

MARCH 12, 2024

The post Malicious Python Packages Target Crypto Wallet Recovery Passwords appeared first on The Security Ledger with Paul F. A newly discovered campaign pushing malicious open source software packages is designed to steal mnemonic phrases used to recover lost or destroyed crypto wallets, according to a report by ReversingLabs.

Passwords 52

Passwords Cryptocurrency Software Technology 52

Graham Cluley

MARCH 27, 2024

Hardware wallet manufacturer Trezor has explained how its Twitter account was compromised - despite it having sensible security precautions in place, such as strong passwords and multi-factor authentication. Read more in my article on the Hot for Security blog.

Accountability 112

Accountability Cryptocurrency Manufacturing Authentication 112

Heimadal Security

JUNE 21, 2023

Hackers port scanned for publicly exposed Linux SSH servers and brute-forced username-password pairs to log in to the server. More about the Attack on […] The post Linux Servers Hacked to Launch DDoS Attacks and Mine Monero Cryptocurrency appeared first on Heimdal Security Blog.

DDOS 82

DDOS Cryptocurrency Hacking Passwords 82

SecureWorld News

JULY 15, 2021

million worth of cryptocurrency for Colonial Pipeline following a ransomware attack that disrupted the company's operations. Detectives from the Met’s Economic Crime Command seized £180 million, or roughly $249 million, in cryptocurrency following intelligence received about the transfer of criminal assets. Earlier this year, the U.S.

Cryptocurrency 98

Cryptocurrency Passwords Ransomware Cybercrime 98

Approachable Cyber Threats

MARCH 1, 2022

Our 2022 update to our famous password table that’s been shared across the news, internet, social media, and organizations worldwide. Password Strength in 2022 It’s been two years since we first shared our (now famous) password table. Hackers solve this problem by cracking the passwords instead. Keep reading!

Passwords 145

Passwords Software Internet Internet 145

Security Affairs

FEBRUARY 24, 2023

Trojanized versions of legitimate applications are being used to deploy XMRig cryptocurrency miner on macOS systems. Later first generation samples changed to a user Launch Agent, which would not require the conspicuous password prompt. ” reads the analysis published by the experts. ” concludes the report.

Cryptocurrency 86

Cryptocurrency Malware Software Passwords 86

Heimadal Security

JANUARY 20, 2022

This targets passwords, security phrases, and cryptocurrency wallet contents. The post Crypto Wallets and Passwords Targeted by BHUNT Malware appeared first on Heimdal Security Blog. Researchers have recently discovered a new malware they named BHUNT. We named the stealer BHUNT after the main assembly’s name. […].

Passwords 105

Passwords Malware Cryptocurrency Cybersecurity 105

Security Affairs

AUGUST 3, 2020

million worth of cryptocurrency from cryptocurrency investment accounts. . Hackers stole roughly €1.183 million worth of cryptocurrency from investment accounts of 2gether, 26.79% of overall funds stored by the accounts. Estrada urges users to change their passwords because they have been compromised in the attack. . .

Cryptocurrency 111

Cryptocurrency Accountability Hacking Advertising 111

Bleeping Computer

JANUARY 19, 2022

A novel modular crypto-wallet stealing malware dubbed 'BHUNT' has been spotted targeting cryptocurrency wallet contents, passwords, and security phrases. [.].

Passwords 97

Passwords Malware Cryptocurrency 97

Malwarebytes

DECEMBER 20, 2022

If you’re a user of the Gemini cryptocurrency exchange, it’s time to be on your guard against phishing attacks. Breaches in cryptocurrency land are always a major issue. Some folks have their life savings and investments in these realms, and cryptocurrency/Web3 phishing generally has been running riot for some time now.

Cryptocurrency 77

Cryptocurrency Phishing Scams Accountability 77

Security Affairs

APRIL 30, 2023

Threat actors are gaining access to AT&T email accounts in an attempt to hack into the victim’s cryptocurrency exchange accounts. Hackers are breaking into the AT&T email accounts and then using the access they are logging into the victim’s cryptocurrency exchange accounts to drain their crypto funds, TechCrunch reported.

Cryptocurrency 72

Cryptocurrency Accountability Passwords Hacking 72

CyberSecurity Insiders

DECEMBER 30, 2021

If you follow a custom of saving passwords in your browser, you better change it, before it’s too late. Because security researchers from a South Korean cybersecurity firm, AhnLab discovered that a new malware named Redline was seen lurking in the browsers and stealing saved passwords only to be transmitted to remote servers.

Passwords 118

Passwords Malware Cryptocurrency Software 118

Security Affairs

JUNE 24, 2020

The CryptoCore hacker group that is believed to be operating out of Eastern Europe has stolen around $200 million from online cryptocurrency exchanges. Experts from ClearSky states that a hacker group tracked as CryptoCore, which is believed to be operating out of Eastern Europe, has stolen around $200 million from cryptocurrency exchanges.

Cryptocurrency 97

Cryptocurrency Phishing Accountability Passwords 97

Bleeping Computer

MARCH 27, 2023

A new info-stealing malware named MacStealer is targeting Mac users, stealing their credentials stored in the iCloud KeyChain and web browsers, cryptocurrency wallets, and potentially sensitive files. [.]

Malware 133

Malware Passwords Cryptocurrency 133

Security Affairs

JANUARY 25, 2021

Indian cryptocurrency exchange Buyucoin suffered a security incident, threat actors leaked sensitive data of 325K users. A new incident involving a cryptocurrency exchange made the headlines, the India-based cryptocurrency exchange suffered a security incident, threat actors leaked sensitive data of 325K users on the Dark Web.

Cryptocurrency 127

Cryptocurrency Hacking InfoSec Data breaches 127

Security Affairs

JULY 15, 2022

Threat actors behind the campaign used multiple accounts across several social media platforms to advertise password-cracking software for Programmable Logic Controller (PLC), Human-Machine Interface (HMI), and project files. The password cracking software also acts as a dropper for the Sality P2P bot. ” concludes the report.

Passwords 106

Passwords Software Firmware Malware 106

IT Security Guru

APRIL 2, 2021

Cryptocurrencies are a topic that touches many areas; not only finance and investing but technology and even political arenas. Although apolitical in itself, it is the structure behind these cryptocurrencies that make them a much talked about subject amongst political purists from across the political spectrum.

Cryptocurrency 71

Cryptocurrency Banking Marketing Malware 71

Krebs on Security

APRIL 4, 2024

The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers. co showing the site did indeed swap out any cryptocurrency addresses.

Phishing 222

Phishing Cryptocurrency DDOS Internet 222