Krebs on Security

DECEMBER 14, 2023

The story on the Flashback author featured redacted screenshots that were taken from Ika’s BlackSEO account (see image above). The day after that story ran, Ika posted a farewell address to his mates, expressing shock and bewilderment over the apparent compromise of his BlackSEO account. ru under the handle “ r-fac1.”

Cybercrime 232

Cybercrime Accountability Advertising Computers and Electronics 232

Krebs on Security

MARCH 9, 2023

A Croatian national has been arrested for allegedly operating NetWire , a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. Constella also shows the email address zankomario@gmail.com used the password “dugidox2407.” ” Mr.

DNS 257

DNS Cybercrime Passwords Accountability 257

Krebs on Security

MAY 4, 2023

” That handle used the same ICQ instant messenger account number ( 555724 ) as a Mazafaka denizen named “ Nordex.” ” In February 2005, Nordex posted to Mazafaka that he was in the market for hacked bank accounts, and offered 50 percent of the take. In 2017, U.S.

Marketing 244

Marketing Cybercrime Accountability Cryptocurrency 244

Krebs on Security

JULY 8, 2019

The following month, GandCrab bragged that the program in July 2018 netted almost 425,000 victims and extorted more than one million dollars worth of cryptocurrencies, much of which went to affiliates who helped to spread the infections. In 2010, the hottabych_k2 address was used to register the domain name dedserver[.]ru Vpn-service[.]us

Ransomware 260

Ransomware Accountability Cybercrime Passwords 260

Krebs on Security

MAY 13, 2024

used the password 225948. According to Constella, this email address was used in 2010 to register an account for a Dmitry Yurievich Khoroshev from Voronezh, Russia at the hosting provider firstvds.ru. NeroWolfe seems to have abandoned all of his forum accounts sometime in 2016. and admin@stairwell.ru

Ransomware 244

Ransomware Cybercrime Accountability Malware 244

Hot for Security

JANUARY 25, 2021

The perp claims to have stolen usernames, emails, clear text passwords, and MFC Token balances of 2 million Premium and Diamond members. The threat actor made a pretty penny, based on his cryptocurrency wallet analysis that showed 49 Bitcoin transactions, equating to more than $22,000. Stop guessing what the internet knows about you.

Passwords 52

Passwords Accountability Cryptocurrency Internet 52

Security Affairs

JANUARY 22, 2021

Stolen records belong to 2 million user records of MyFreeCams Premium members, they include usernames, email addresses, MyFreeCams Token (MFC Token) amounts, and passwords in plain text. At the time of this writing, the threat actor has deleted its post, as well as its account, and emptied the cryptocurrency wallet used for the sale.

Passwords 84

Passwords Marketing Accountability Cryptocurrency 84