2010, Cybercrime, Information Security and Malware

Administrator of RSOCKS Proxy Botnet Pleads Guilty

Krebs on Security

JANUARY 24, 2023

Denis Emelyantsev , a 36-year-old Russian man accused of running a massive botnet called RSOCKS that stitched malware into millions of devices worldwide, pleaded guilty to two counts of computer crime violations in a California courtroom this week. “Thanks to you, we are now developing in the field of information security and anonymity!

Cybercrime

Cybercrime Advertising IoT Malware

Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.

Krebs on Security

SEPTEMBER 24, 2022

A native of Omsk, Russia, Kloster came into focus after KrebsOnSecurity followed clues from the RSOCKS botnet master’s identity on the cybercrime forums to Kloster’s personal blog , which featured musings on the challenges of running a company that sells “security and anonymity services to customers around the world.”

Cybercrime

Cybercrime Data breaches Malware Ransomware

The author of FastPOS PoS malware pleads guilty

Security Affairs

AUGUST 1, 2020

A 30-year-old Moldovan man pleaded guilty this week for creating the FastPOS malware that infected PoS systems worldwide. The Moldovan citizen Valerian Chiochiu (30), aka Onassis, pleaded guilty on Friday for creating the infamous FastPOS Point-of-Sale (POS) malware. and infraud.ws. Pierluigi Paganini.

Malware

Malware Advertising Cybercrime Hacking

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security

JUNE 22, 2022

.” The DOJ’s statement doesn’t mention that RSOCKS has been in operation since 2014, when access to the web store for the botnet was first advertised on multiple Russian-language cybercrime forums. “Thanks to you, we are now developing in the field of information security and anonymity!,”

Advertising

Advertising Cybercrime System Administration Hacking

Bulletproof VPN services took down in a global police operation

Security Affairs

DECEMBER 22, 2020

VPN bulletproof services are widely adopted by cybercrime organizations to carry out malicious activities, including ransomware and malware attacks, e-skimming breaches, spear-phishing campaigns, and account takeovers. ” The three services were advertised on both Russian and English-speaking cybercrime forums.

VPN

VPN Cybercrime Advertising Accountability

US and UK sanctioned seven Russian members of Trickbot gang

Security Affairs

FEBRUARY 9, 2023

“Today, the United States, in coordination with the United Kingdom, is designating seven individuals who are part of the Russia-based cybercrime gang Trickbot.” The operation aimed at disrupting Russian cybercrime and ransomware. ” reads the press release published by the US Treasury. and allies and partners.

Banking

Banking Ransomware Cybercrime Malware

ChromeLoader campaign uses VHD files disguised as cracked games and pirated software

Security Affairs

FEBRUARY 27, 2023

Threat actors behind the ChromeLoader malware campaign are using VHD files disguised as popular games, experts warn. Researchers from Ahnlab Security Emergency Response Center ( ASEC ) recently uncovered a malware campaign distributing the ChromeLoader using VHD files. ” concludes the report.

Software

Software Malware Advertising Hacking

330K stolen payment cards and 895K stolen gift cards sold on dark web

Security Affairs

APRIL 8, 2021

A threat actor has sold almost 900,000 gift cards and over 300,000 payment cards on a cybercrime forum on the dark web. ” The investigation of the cybercriminal actor selling the gift cards and payment cards revealed that he is a prolific Russian-speaking hacker who was engaged in similar activities since 2010.

Cybercrime

Cybercrime Hacking Banking Information Security

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Security Affairs

NOVEMBER 11, 2022

Researchers from mobile security firm Lookout uncovered two long-running surveillance campaigns targeting the Uyghurs minority. The threat actors behind the campaigns used two Android spyware to spy on the victims and steal sensitive information. The malware is able to steal sensitive data, record audio, and download arbitrary files.

Surveillance

Surveillance Spyware Malware Mobile

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Security Affairs

AUGUST 6, 2023

The company added that the incident may have impacted those that attended a public institution of higher education in Colorado between 2007-2020, attended a Colorado public high school between 2004-2020, individuals with a Colorado K-12 public school educator license between 2010-2014, participated in the Dependent Tuition Assistance Program from 2009-2013, (..)

Education

Education Data breaches Ransomware Hacking

IRISSCON 2023: OT, AI, and human empathy

BH Consulting

NOVEMBER 22, 2023

He said have only been eight examples of malware specifically written to target operational technology (OT) – as distinct from IT – that runs critical national infrastructure. Stuxnet in 2010 was the first the most recent was CosmicEnergy in 2023. Workers were unable to safely shut down a furnace and it melted to the ground.

Cybercrime

Cybercrime Technology Cybersecurity Engineering

Volvo Cars suffers a data breach. Is it a ransomware attack?

Security Affairs

DECEMBER 10, 2021

In 2010, Volvo Cars became a subsidiary of the Chinese manufacturer Geely Holding Group, which confirmed that it “has become aware that one of its file repositories has been illegally accessed by a third party.” Swedish automotive manufacturer Volvo Cars revealed that threat actors have stolen R&D data from its systems.

Data breaches

Data breaches Ransomware Manufacturing Hacking

Full(z) House Magecart group mix phishing and MiTM in its attacks

Security Affairs

NOVEMBER 26, 2019

Security firms have monitored the activities of a dozen groups at least since 2010. The Magecart group used a generic phishing technique to gather and sell full sets of an individual’s personally identifying information along with financial data (identified with the slang term fullz in the cybercrime underground).

Phishing

Phishing Cybercrime Advertising Software

Experts believe the Magecart Group 5 could be linked to the Carbanak APT

Security Affairs

OCTOBER 22, 2019

Security experts linked the Magecart group 5 to the infamous Dridex banking Trojan and the Carbanak cybercrime group. Security firms have monitored the activities of a dozen groups at least since 2010. . SecurityAffairs – Magecart Group 5, cybercrime ). Pierluigi Paganini.

Cybercrime

Cybercrime Phishing Advertising Banking

The Satan Ransomware adds new exploits to its arsenal

Security Affairs

MAY 21, 2019

The Satan ransomware first appeared in the threat landscape in January 2017 when the independent malware research @Xylit0l discovered it. Since its discovery, the malware was costantly updated, in one of the campaigns monitored by Fortinet, it utilized a cryptominer as an additional payload to maximize its profits. .

Ransomware

Ransomware Advertising Malware Encryption

Cyber Security Roundup for April 2021

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. At the start of March 2021, Microsoft rushed out patches for a critical zero-day Vulnerability in Exchange Server (2010, 2013, 2016, and 2019). Stay safe and secure.

Energy and Utilities

Energy and Utilities Ransomware Banking Hacking

Magecart hackers are expanding their operations

Security Affairs

OCTOBER 5, 2019

Cybercrime gangs under the Magecart umbrella continue to compromise e-commerce platforms to steal payment card data from users worldwide. Security firms have monitored the activities of a dozen groups at least since 2010.

Advertising

Advertising Software Hacking Cybercrime

DoJ sentenced Russian ‘King of Fraud’ behind the fraud scheme 3ve to 10 years

Security Affairs

NOVEMBER 11, 2021

Zhukov, aka Nastra, was arrested in Bulgaria, where he had lived since 2010, in November 2018 and was extradited to the US on January 18. . million computers with malware, attackers used thousands of servers and more than 10,000 counterfeit websites to impersonate legitimate web publishers. 2—The KOVTER Malware Scheme.

Advertising

Advertising Mobile Internet Internet

FBI and DHS CISA issue alerts on e-skimming attacks

Security Affairs

OCTOBER 23, 2019

The US FBI issued a warning for the US private sector about e-skimming attacks carried out by the Magecart cybercrime groups. E-skimming took place when hackers compromise an e-commerce site and plant a malicious code designed to siphon payment card data or personally identifiable information (PII).

Social Engineering

Social Engineering Advertising Software Firewall

EP 49: LoL

ForAllSecure

JUNE 21, 2022

So I started thinking about other ways to hide messages or even how to get malware onto a system without it being detected. Vamosi: Welcome to the hacker mind and original podcast from for all secure. Vamosi: Living off the land or fireless malware is a threat actor leveraging the utilities readily available on a system.

Ransomware

Ransomware Marketing Software Antivirus

Cyber Security Informer

Administrator of RSOCKS Proxy Botnet Pleads Guilty

Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.

Webinars

Trending Sources

The author of FastPOS PoS malware pleads guilty

Webinars

Meet the Administrators of the RSOCKS Proxy Botnet

Bulletproof VPN services took down in a global police operation

US and UK sanctioned seven Russian members of Trickbot gang

ChromeLoader campaign uses VHD files disguised as cracked games and pirated software

330K stolen payment cards and 895K stolen gift cards sold on dark web

Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

IRISSCON 2023: OT, AI, and human empathy

Volvo Cars suffers a data breach. Is it a ransomware attack?

Full(z) House Magecart group mix phishing and MiTM in its attacks

Experts believe the Magecart Group 5 could be linked to the Carbanak APT

The Satan Ransomware adds new exploits to its arsenal

Cyber Security Roundup for April 2021

Magecart hackers are expanding their operations

DoJ sentenced Russian ‘King of Fraud’ behind the fraud scheme 3ve to 10 years

FBI and DHS CISA issue alerts on e-skimming attacks

EP 49: LoL

Stay Connected