2012 and Cybercrime - Cyber Security Informer

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Kislitsin is accused of hacking into the now-defunct social networking site Formspring in 2012, and conspiring with another Russian man convicted of stealing tens of millions of usernames and passwords from LinkedIn and Dropbox that same year. Nikita Kislitsin, at a security conference in Russia. prison system.

Cybersecurity

Cybersecurity Cybercrime Hacking Technology

The Cost of Cybercrime

Schneier on Security

JUNE 4, 2019

Really interesting paper calculating the worldwide cost of cybercrime: Abstract: In 2012 we presented the first systematic study of the costs of cybercrime. Several new cybercrimes are significant enough to mention, including business email compromise and crimes involving cryptocurrencies. and more on response.

Cybercrime

Cybercrime Scams Cryptocurrency Antivirus

Who Stole 3.6M Tax Records from South Carolina?

Krebs on Security

APRIL 16, 2024

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 13, 2012, after a state IT contractor clicked a malicious link in an email.

Identity Theft

Identity Theft Banking Cybercrime Hacking

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

State-Sponsored Cybercrime Group`s Infrastructure Revealed

Heimadal Security

MAY 18, 2023

At least since 2012, SideWinder has been active, using spear-phishing attacks to gain access to targeted environments. Among the […] The post State-Sponsored Cybercrime Group`s Infrastructure Revealed appeared first on Heimdal Security Blog.

Cybercrime

Cybercrime Phishing Cybersecurity

NetWire Remote Access Trojan Maker Arrested

Schneier on Security

MARCH 14, 2023

From Brian Krebs : A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S.

Cybercrime

Cybercrime Marketing Passwords Spyware

Hacker deposited $1M in a popular cybercrime marketplace to buy zero-day exploits

Security Affairs

JULY 8, 2021

Bitcoins on one of the cybercrime forums, he aims at purchasing zero-day exploits from other forum members. Bitcoins on one of the cybercrime forums with the intent to purchase zero-day Exploits from other forum members, researchers from threat intelligence firm Cyble. SecurityAffairs – hacking, cybercrime).

Cybercrime

Cybercrime Malware Hacking Information Security

Who’s Behind the NetWire Remote Access Trojan?

Krebs on Security

MARCH 9, 2023

A Croatian national has been arrested for allegedly operating NetWire , a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. NetWire has been sold openly on the same website since 2012: worldwiredlabs[.]com. org , also registered in 2012.

DNS

DNS Cybercrime Passwords Accountability

Tank, the leader of the Zeus cybercrime gang, was arrested by the Swiss police

Security Affairs

NOVEMBER 17, 2022

A suspected leader of the Zeus cybercrime gang, Vyacheslav Igorevich Penchukov (aka Tank), was arrested by Swiss police. Swiss police last month arrested in Geneva Vyacheslav Igorevich Penchukov (40), also known as Tank, which is one of the leaders of the JabberZeus cybercrime group. Pierluigi Paganini.

Cybercrime

Cybercrime Banking Identity Theft Hacking

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking

Hacking Cybercrime Ransomware Government

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Krebs on Security

APRIL 30, 2024

Finnish prosecutors quickly zeroed in on a suspect: Julius “Zeekill” Kivimäki , a notorious criminal hacker convicted of committing tens of thousands of cybercrimes before he became an adult. After being charged with the attack in October 2022, Kivimäki fled the country. Kivimäki was 15 years old at the time.

DDOS

DDOS Cybercrime Hacking Passwords

Finland’s Most-Wanted Hacker Nabbed in France

Krebs on Security

FEBRUARY 5, 2023

A notorious hacker convicted of perpetrating tens of thousands of cybercrimes, Kivimäki had been in hiding since October 2022, when he failed to show up in court and Finland issued an international warrant for his arrest. The DDoS-for-hire service allegedly operated by Kivimäki in 2012. Kivimäki was 15 years old at the time.

Cybercrime

Cybercrime DDOS Hacking Accountability

Italian mafia cybercrime sting leads to 100+ arrests

Malwarebytes

SEPTEMBER 23, 2021

In 2012, Belgian police were called in to investigate a case involving computers of the Swiss Shipping Company, MSC. The post Italian mafia cybercrime sting leads to 100+ arrests appeared first on Malwarebytes Labs. Cyber mafia” is not an unknown concept in the cybersecurity world.

Cybercrime

Cybercrime Computers and Electronics Cryptocurrency Phishing

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

.'” MRMURZA Faceless is a project from MrMurza , a particularly talkative member of more than a dozen Russian-language cybercrime forums over the past decade. According to cyber intelligence firm Flashpoint , MrMurza has been active in the Russian underground since at least September 2012. Image: Darkbeast/Ke-la.com.

Malware

Malware Passwords Accountability Advertising

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

Security Affairs

SEPTEMBER 30, 2020

Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison for hacking LinkedIn, Dropbox, and Formspring in 2012. The Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison in the United States for hacking LinkedIn, Dropbox, and Formspring in 2012. Source: US Defense Watch.com.

Identity Theft

Identity Theft Cybercrime Advertising Hacking

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Security Affairs

JULY 11, 2020

The Russian hacker Yevgeniy Nikulin found guilty for LinkedIn, Dropbox, and Formspring data breach back in 2012 and the sale of their users’ data. A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces.

Hacking

Hacking Cybercrime Data breaches Advertising

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Security Affairs

JUNE 9, 2023

The BTC-e virtual currency is popular in the cybercrime underground because it was used by crooks to launder funds for illegal activities. In accordance with these requests, between in or about March 2012 and in or about April 2013, the New York Bitcoin Broker allegedly transferred more than approximately $6.6 ” reads the DoJ.

Hacking

Hacking Cryptocurrency Advertising Banking

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes

Security Affairs

FEBRUARY 17, 2024

On October 2022, Swiss police arrested Penchukov in Geneva, also known as Tank, which is one of the leaders of the JabberZeus cybercrime group. In 2012, the Ukrainian national Vyacheslav Igorevich Penchukov was accused of being a member of a cybercrime gang known as JabberZeus crew.

Malware

Malware Cybercrime Banking Hacking

Who’s Behind the NetWire Remote Access Trojan?

Security Boulevard

MARCH 9, 2023

A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S. Federal Bureau of Investigation (FBI).

Cybercrime

Cybercrime Marketing Passwords

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

One of Megatraffer’s ads on an English-language cybercrime forum. Megatraffer has continued to offer their code-signing services across more than a half-dozen other Russian-language cybercrime forums, mostly in the form of sporadically available EV and non-EV code-signing certificates from major vendors like Thawte and Comodo.

Malware

Malware Cybercrime Software Antivirus

Canada Charges Its “Most Prolific Cybercriminal”

Krebs on Security

DECEMBER 8, 2021

According to cyber intelligence firm Intel 471 , that dark_cl0ud6@hotmail.com address has been used in conjunction with the handle “ DCReavers2 ” to register user accounts on a half-dozen English-language cybercrime forums since 2008, including Hackforums , Blackhatworld, and Ghostmarket.

Cybercrime

Cybercrime Ransomware Accountability Advertising

Law enforcement seized the website selling the NetWire RAT and arrested a Croatian man

Security Affairs

MARCH 10, 2023

The NetWire Remote Access Trojan (RAT) is available for sale on cybercrime forums since 2012, it allows operators to steal sensitive data from the infected systems. DomainTools further shows this email address was used to register one other domain in 2012: wwlabshosting[.]com, ” reads the press release published DoJ.

Malware

Malware Cybercrime Data breaches Internet

Don’t trust links with known domains: BMW affected by redirect vulnerability

Security Affairs

JANUARY 3, 2024

This type of vulnerability, which affected BMW websites and other SAP systems, was first identified in 2012 but still poses risks to organizations even after applying security updates. Those typically occur when web apps or components fail to properly validate or sanitize URLs before redirecting users.

Phishing

Phishing Manufacturing Firewall Cybercrime

DoJ announced to have shut down Slilpp marketplace in international operation

Security Affairs

JUNE 11, 2021

The US Department of Justice seized the servers and domains of the popular cybercrime marketplace SlilPP. In the past, law enforcement shut down other cybercrime marketplace focused on the sale of login credentials, such as xDedic and DEER.IO. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Cybercrime

Cybercrime Accountability Retail Cyber threats

Who Is the Network Access Broker ‘Babam’?

Krebs on Security

DECEMBER 3, 2021

Since the beginning of 2020, Babam has set up numerous auctions on the Russian-language cybercrime forum Exploit , mainly selling virtual private networking (VPN) credentials stolen from various companies. All of these domains date back to between 2012 and 2013. com and wwwpexpay[.]com. com , and portalsagepay[.]com.

Ransomware

Ransomware Passwords Accountability Cybercrime

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Security Affairs

APRIL 14, 2020

doc, which, when opened with a vulnerable application, attempted to deliver a ransomware payload using a known shared Microsoft component vulnerability, CVE-2012-0158.” . “The emails all contained a malicious Rich Text Format (RTF) phishing lure with the file name 20200323- sitrep -63- covid -19. ” concludes the report.

Healthcare

Healthcare Ransomware Phishing Government

Experts warn of a surge in zero-day flaws observed and exploited in 2021

Security Affairs

APRIL 25, 2022

Mandiant states that From 2012 to 2021, China exploited more zero-days than any other nation. From 2012 to 2021, China-linked threat actors exploited more zero-days than any other nation-state actors. Most of the zero-days discovered by the company were exploited by nation-state APT groups. ” concludes the report.”The

Ransomware

Ransomware Hacking Software Risk

Microsoft disrupted US-Based Infrastructure of the Necurs botnet

Security Affairs

MARCH 10, 2020

Necurs botnet is one of the largest spam botnet , it has been active since at least 2012 and was involved in massive campaigns spreading malware such as the Locky ransomware , the Scarab ransomware , and the Dridex banking Trojan. The Necurs botnet is active since at least 2012, it is operated by the cybercrime gang tracked as TA505.

Advertising

Advertising Malware Cybercrime Government

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

Security Affairs

JULY 25, 2022

“From 1 December 2012 the Revenue Agency incorporated the Territory Agency (article 23-quater of Legislative Decree 95/2012).” The bodies of the Agency are made up of the Director, the Management Committee, the Board of Auditors.” ” reads the message published on the leak site.

Ransomware

Ransomware Government Scams Hacking

The Dark Web Has Nothing on Data Brokers

Daniel Miessler

FEBRUARY 1, 2020

And some people really go there to steal identities, buy things in your name, and all those cybercrime things you’ve heard about. and in 2012 the New York Times said they had the largest commercial database on customers. And sure—the Dark Web can be…well, dark. So it’s not nothing, and it can definitely be seedy.

Advertising

Advertising InfoSec Password Management Education

Former CIA Cyber Engineer Sentenced to 40 Years for Massive Leak

SecureWorld News

FEBRUARY 5, 2024

Schulte worked as a software developer for the CIA's cyber operations division from 2012 to 2016, where he built hacking tools for intelligence gathering. A United States federal judge has sentenced Joshua Adam Schulte, a former CIA employee, to 40 years in prison for one of the largest disclosures of classified information in U.S.

Engineering

Engineering Media Encryption Software

Red Cross Hack Linked to Iranian Influence Operation?

Krebs on Security

FEBRUARY 16, 2022

The same day the ICRC went public with its breach, someone using the nickname “ Sheriff ” on the English-language cybercrime forum RaidForums advertised the sale of data from the Red Cross and Red Crescent Movement. com, sachtimes[.]com, com, and whatsupic[.]com. com, moslempress[.]com, com, and realneinovosti[.]net.

Hacking

Hacking Ransomware Media Accountability

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Security Affairs

NOVEMBER 10, 2023

Skynet was first discovered in 2012 and has since grown to become one of the largest botnets in the world. This week the group hit OpenAI, which confirmed that the outage suffered by ChatGPT and its API on Wednesday was caused by a distributed denial-of-service (DDoS) attack.

DDOS

DDOS Cryptocurrency Accountability Media

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

Security Affairs

SEPTEMBER 19, 2021

Fahd was the mind behind a criminal scheme that begun in 2012 and that caused more than $200 million in losses to the company, according to DoJ, he continued his activity even after he became aware that law enforcement was investigating. ” reads the press release published by DoJ.

Hacking

Hacking Malware Cybercrime Information Security

A Deep Dive Into the Residential Proxy Service ‘911’

Krebs on Security

JULY 18, 2022

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. “all promotion methods allowed”).

VPN

VPN Computers and Electronics Antivirus Software

New Version of Meduza Stealer Released in Dark Web

Security Affairs

DECEMBER 29, 2023

Presently, Meduza password stealer supports Windows Server 2012/2016/2019/2022 and Windows 10/11. The product has been originally emerged at XSS underground forum, and later received positive feedback on other well-established communities including Exploit.

Password Management

Password Management Cryptocurrency Passwords Authentication

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

Security Affairs

NOVEMBER 22, 2019

Lisov operated the infrastructure behind the NeverQuest malware between June 2012 and January 2015, the managed a network of servers containing lists of millions of stolen login credentials.

Banking

Banking Malware Advertising Passwords

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

FBI spoofs 2012 – 2013. It surfaced in November 2012 and was making thousands of victims a day. Forward outlook Ransomware is a dynamic and increasingly hybrid segment of cybercrime. None of these early threats went pro. This quirk made the attack look more trustworthy and added a layer of flexibility to these scams.

Ransomware

Ransomware Hacking Encryption Penetration Testing

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Dmitry Yuryevich Khoroshev.

Ransomware

Ransomware Cybercrime Accountability Malware

Cyber nonprofits ask billionaire philanthropists to show them some love

SC Magazine

APRIL 16, 2021

That percentage shrinks if you look at the data since 2012; however, in recent years, cybersecurity has become more of a priority. Signatories also include nonprofit executives Mari Galloway, CEO of the Women’s Society of Cyberjutsu, and Kristin Judge, CEO and founder of the Cybercrime Support Network (CSN). percent (or $15.2

Education

Education Media Cybercrime Internet

Belarusian authorities seized XakFor, one of the largest Russian-speaking hacker sites

Security Affairs

SEPTEMBER 8, 2019

XakFor has been active since 2012, most of its visitors were Russian-speaking hackers and crooks. Belarusian police have seized the servers of XakFor (xakfor[.]net), net), a popular hacking forum a place frequented by hackers, malware authors, scammers and cybercriminals. The news was first reported by the Belarusian news outlet Reformation.

Advertising

Advertising Malware Cybercrime Hacking

A new Adwind variant involved in attacks on US petroleum industry

Security Affairs

OCTOBER 1, 2019

The Adwind RAT was first discovered early 2012, the experts dubbed it Frutas RAT and later it was identified with other names, Unrecom RAT (February 2014), AlienSpy (October 2014), and recently JSocket RAT (June 2015).

Malware

Malware Advertising DDOS Cybercrime

Google provides rules to detect tens of cracked versions of Cobalt Strike

Security Affairs

NOVEMBER 21, 2022

The experts were able to locate versions of the Cobalt Strike JAR file starting with version 1.44 (which was released in 2012) up to the latest version at the time of publishing the analysis, Cobalt Strike 4.7. The researchers noticed that each Cobalt Strike version contains approximately 10 to 100 attack template binaries.

Penetration Testing

Penetration Testing Hacking Cybersecurity Cybercrime

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

Ngo said he started taking classes again back in Vietnam, but soon found he was spending most of his time on cybercrime forums. ” Then, in March 2012, something even more remarkable happened: Court Ventures was purchased by Experian , one of the big three major consumer credit bureaus in the United States.

Identity Theft

Identity Theft Computers and Electronics Hacking Accountability

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

The Cost of Cybercrime

Webinars

Trending Sources

Who Stole 3.6M Tax Records from South Carolina?

Webinars

State-Sponsored Cybercrime Group`s Infrastructure Revealed

NetWire Remote Access Trojan Maker Arrested

Hacker deposited $1M in a popular cybercrime marketplace to buy zero-day exploits

Who’s Behind the NetWire Remote Access Trojan?

Tank, the leader of the Zeus cybercrime gang, was arrested by the Swiss police

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Finland’s Most-Wanted Hacker Nabbed in France

Italian mafia cybercrime sting leads to 100+ arrests

Giving a Face to the Malware Proxy Service ‘Faceless’

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Russians charged with hacking Mt. Gox exchange and operating BTC-e

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes

Who’s Behind the NetWire Remote Access Trojan?

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Canada Charges Its “Most Prolific Cybercriminal”

Law enforcement seized the website selling the NetWire RAT and arrested a Croatian man

Don’t trust links with known domains: BMW affected by redirect vulnerability

DoJ announced to have shut down Slilpp marketplace in international operation

Who Is the Network Access Broker ‘Babam’?

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Experts warn of a surge in zero-day flaws observed and exploited in 2021

Microsoft disrupted US-Based Infrastructure of the Necurs botnet

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

The Dark Web Has Nothing on Data Brokers

Former CIA Cyber Engineer Sentenced to 40 Years for Massive Leak

Red Cross Hack Linked to Iranian Influence Operation?

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme

A Deep Dive Into the Residential Proxy Service ‘911’

New Version of Meduza Stealer Released in Dark Web

Russian author of NeverQuest banking malware gets 4 Years in U.S. Prison

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

How Did Authorities Identify the Alleged Lockbit Boss?

Cyber nonprofits ask billionaire philanthropists to show them some love

Belarusian authorities seized XakFor, one of the largest Russian-speaking hacker sites

A new Adwind variant involved in attacks on US petroleum industry

Google provides rules to detect tens of cracked versions of Cobalt Strike

Confessions of an ID Theft Kingpin, Part I

Stay Connected