2008 Cybercrime Malware VPN 
Krebs on Security
JULY 25, 2023
Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort , which rents hacked residential and small business devices to cybercriminals looking to hide their true location online. ” According to Kilmer, AVrecon is the malware that gives SocksEscort its proxies.
Security Affairs
JANUARY 18, 2022
Europol this week announced the shutdown of VPNLab, a VPN service that is very popular in the cybercrime ecosystem. An international operation conducted by law enforcement bodies from 10 countries took down VPNLab.net, a VPN service provider that is very popular in the cybercrime ecosystem. Europol said.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Malwarebytes
JANUARY 19, 2022
VPNLab had been around since 2008 and had built its service around the OpenVPN technology, used strong encryption, and provided double VPN, with servers located in many different countries. What is double VPN? Double VPN is basically what the name suggests. Double VPN is not a common feature, because it is very slow.
Security Affairs
NOVEMBER 29, 2020
A cyberattack crippled the IT infrastructure of the City of Saint John Hundreds of female sports stars and celebrities have their naked photos and videos leaked online Romanians arrested for running underground malware services Threat actor shared a list of 49,577 IPs vulnerable Fortinet VPNs Computer Security and Data Privacy, the perfect alliance (..)
Security Affairs
FEBRUARY 17, 2022
Experts pointed out that despite having the same name, this botnet should not be confused with the Kraken botnet that was spotted in 2008. It leverages the RedLine Stealer to siphon credentials, credit card data, cookies, autocomplete information stored in browsers, cryptocurrency wallets, credentials stored in VPN clients and FTP clients.
SecureList
JUNE 2, 2022
LuoYu is a lesser-known threat actor that has been active since 2008. In their initial disclosures on this threat actor, TeamT5 identified three malware families: SpyDealer, Demsty and WinDealer. Leaving the mystery of the delivery method aside for now, let’s look at the capabilities of the malware itself.
Krebs on Security
JANUARY 11, 2022
More commonly, the infected PC or stolen VPN credentials the gang used to break in were purchased from a cybercriminal middleman known as an initial access broker. This post examines some of the clues left behind by “ Wazawaka ,” the hacker handle chosen by a major access broker in the Russian-speaking cybercrime scene.
Expert insights. Personalized for you.
203 
Let's personalize your content