Krebs on Security

JUNE 29, 2023

Kislitsin also was indicted in Nevada in 2013, but the Nevada indictment does not name his alleged victim(s) in that case. ”] Kislitsin was hired by Group-IB in January 2013, nearly six months after the Formspring hack. ”

Cybersecurity 301

Cybersecurity Cybercrime Hacking Network Security 301

Krebs on Security

SEPTEMBER 16, 2020

In February 2020, KrebsOnSecurity wrote about being contacted by an Internal Revenue Service investigator seeking to return funds seized seven years earlier as part of the governments 2013 seizure of Liberty Reserve , a virtual currency service that acted as a $6 billion hub for the cybercrime world.

Cryptocurrency 362

Cryptocurrency Phishing Accountability Cybercrime 362

Security Affairs

FEBRUARY 10, 2025

The cybercrime group XE Group exploited a VeraCore zero-day to deploy reverse shells, web shells in recent attacks. Active since at least 2013 , XE Group is a cybercriminal group focused on credit card skimming and password theft via supply chain attacks. ” reads the analysis published by Intezer.

Manufacturing 109

Manufacturing Cybercrime Passwords Authentication 109

Krebs on Security

APRIL 30, 2024

Finnish prosecutors quickly zeroed in on a suspect: Julius “Zeekill” Kivimäki , a notorious criminal hacker convicted of committing tens of thousands of cybercrimes before he became an adult. After being charged with the attack in October 2022, Kivimäki fled the country. Kivimäki was 15 years old at the time.

DDOS 312

DDOS Cybercrime Hacking Passwords 312

Krebs on Security

APRIL 16, 2024

KrebsOnSecurity examined posts across dozens of cybercrime forums around that time, and found only one instance of someone selling large volumes of tax data in the year surrounding the breach date. As it happens, Rescator’s criminal hacking crew was directly responsible for the 2013 breach at Target and the 2014 hack of Home Depot.

Identity Theft 303

Identity Theft Banking Cybercrime Hacking 303

Krebs on Security

MAY 4, 2021

Which means when a cybercrime forum gets hacked and its user databases posted online, it is often possible to work backwards from some of the more unique passwords for each account and see where else that password was used. Mistake number two was the password for his email account was the same as his cybercrime forum admin account.

Passwords 339

Passwords Cybercrime Accountability Password Management 339

Krebs on Security

FEBRUARY 14, 2020

In May 2013, the U.S. Justice Department seized Liberty Reserve , alleging the virtual currency service acted as a $6 billion financial hub for the cybercrime world.

Identity Theft 279

Identity Theft Government Scams Cybercrime 279

Krebs on Security

MARCH 10, 2020

was responsible for $17 million worth of stolen credential sales since its inception in 2013. That same email address was used to register the account “Isis” at several other top Russian-language cybercrime forums, including Damagelab, Zloy, Evilzone and Priv-8. An example seller’s panel at deer.io.

Accountability 353

Accountability Advertising Hacking Cybercrime 353

Krebs on Security

MAY 18, 2020

is cybercrime forum. “We can examine your (or not exactly your) PHP code for vulnerabilities and backdoors,” reads his offering on several prominent Russian cybercrime forums. ” From 2013 to 2016, upO was a major player on Exploit[.]in The cybercrime actor “upO” on Exploit[.]in

Malware 359

Malware Ransomware Cybercrime Marketing 359

Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. A screenshot of a website reviewing PM2BTC.

Cryptocurrency 306

Cryptocurrency Cybercrime Retail Government 306

Krebs on Security

JULY 17, 2019

To alleviate the cash from a whole entire nation…” KrebsOnSecurity has seen some creative yet truly bizarre ads for dodgy services in the cybercrime underground, but the following animated advertisement for a popular credit card fraud shop likely takes the cake. “It takes a certain kind of man with a certain reputation.

Cybercrime 228

Cybercrime Advertising Cybersecurity 228

Krebs on Security

NOVEMBER 8, 2021

” These last two nicknames correspond to accounts on several top cybercrime forums way back in 2013, where a user named “Yaroslav2468” registered using the email address yarik45@gmail.com. Prosecutors say Vasinskyi also used the monikers “ Yarik45 ,” and “ Yaroslav2468.” 3 was Lublin, Poland.

Ransomware 349

Ransomware Cybercrime System Administration Passwords 349

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime 135

Cybercrime Computers and Electronics Hacking Banking 135

Krebs on Security

NOVEMBER 6, 2023

Last week, KrebsOnSecurity broke the news that one of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. Cyber intelligence firm Intel 471 says Fearlless first registered on Verified in February 2013. As detailed in this Nov.

Passwords 309

Passwords Cybercrime Accountability Hacking 309

Krebs on Security

JANUARY 10, 2024

Rasch said it could be that Dellone’s stolen crypto was seized as part of a government asset forfeiture, but that either way there is no reason Uncle Sam should hold some cybercrime victims’ life savings indefinitely. For example, in 2013 the U.S. court orders, then it’s yours,” Bax said. federal court.”

Cryptocurrency 344

Cryptocurrency Government Cybercrime Accountability 344

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Dmitry Yuryevich Khoroshev.

Ransomware 310

Ransomware Cybercrime Accountability Malware 310

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a

Cybercrime 277

Cybercrime Banking Computers and Electronics DDOS 277

Krebs on Security

MARCH 9, 2023

A Croatian national has been arrested for allegedly operating NetWire , a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The WorldWiredLabs website, in 2013. The arrest coincided with a seizure of the NetWire sales website by the U.S.

DNS 314

DNS Cybercrime Passwords Accountability 314

Graham Cluley

DECEMBER 12, 2023

A malicious hacking group, thought to have been operating since at least 2013, may have suffered a significant blow after the arrest of a suspected leading member by Spanish police late last week. Read more in my article on the Tripwire State of Security blog.

Cybercrime 111

Cybercrime Hacking Data breaches 111

Krebs on Security

JANUARY 17, 2023

Proprietors of these so-called “booter” or “stresser” services — designed to knock websites and users offline — have long operated in a legally murky area of cybercrime law. The only work experience Dobbs listed on his resume was as a freelance developer from 2013 to the present day.

DDOS 294

DDOS Cybercrime Engineering Government 294

Krebs on Security

SEPTEMBER 24, 2022

A native of Omsk, Russia, Kloster came into focus after KrebsOnSecurity followed clues from the RSOCKS botnet master’s identity on the cybercrime forums to Kloster’s personal blog , which featured musings on the challenges of running a company that sells “security and anonymity services to customers around the world.”

Cybercrime 262

Cybercrime Data breaches Malware Ransomware 262

Krebs on Security

NOVEMBER 16, 2023

In a 2,200-page report, Finnish authorities laid out how they connected the extortion spree to Kivimäki, a notorious hacker who was convicted in 2015 of perpetrating tens of thousands of cybercrimes, including data breaches, payment fraud, operating a botnet and calling in bomb threats.

Cybercrime 283

Cybercrime Hacking Data breaches Banking 283

Krebs on Security

JUNE 18, 2020

Federal prosecutors in Pittsburgh allege that in 2013 and 2014 Johnson hacked into the Oracle PeopleSoft databases for UPMC, a $21 billion nonprofit health enterprise that includes more than 40 hospitals.

Identity Theft 363

Identity Theft Healthcare Hacking Technology 363

Security Affairs

AUGUST 28, 2024

The indictment alleges that from 2013 to 2022, Kadariya played a key role in distributing the Angler Exploit Kit, which was used to spread various malware, including ransomware, through malvertising and other methods. Kadariya has been indicted for distributing the Angler Exploit Kit and other malware to millions of victims.

Malware 129

Malware Computers and Electronics Cybercrime Internet 129

Troy Hunt

MAY 29, 2024

Since 2013 when I kicked off HIBP as a pet project , it has become an increasingly important part of the security posture of individuals, organisations, governments and law enforcement agencies.

Passwords 360

Passwords Password Management Data breaches Cybercrime 360

Krebs on Security

FEBRUARY 26, 2019

Sergei Mikhailov , formerly deputy chief of Russia’s top anti-cybercrime unit, was sentenced today to 22 years in prison. In 2013, Vrublevsky was convicted of hiring his most-trusted spammer and malware writer to launch a crippling distributed denial-of-service (DDoS) attack against one of his company’s chief competitors.

Cybersecurity 265

Cybersecurity Cybercrime Media Antivirus 265

Krebs on Security

DECEMBER 3, 2021

Since the beginning of 2020, Babam has set up numerous auctions on the Russian-language cybercrime forum Exploit , mainly selling virtual private networking (VPN) credentials stolen from various companies. All of these domains date back to between 2012 and 2013. com and wwwpexpay[.]com. com , and portalsagepay[.]com.

Ransomware 352

Ransomware Passwords Accountability Cybercrime 352

The Last Watchdog

JUNE 21, 2020

The epidemic went truly mainstream with the release of CryptoLocker back in 2013, and it has since transformed into a major dark web economy spawning the likes of Sodinokibi, Ryuk, and Maze lineages that are targeting the enterprise on a huge scale in 2020. FBI spoofs 2012 – 2013. File encryption 2013 – 2015.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Krebs on Security

AUGUST 6, 2020

In 2013, KrebsOnSecurity broke the news that the U.S. Also in 2013, KrebsOnSecurity broke the news that ssndob[.]ms ms , then a major identity theft service in the cybercrime underground, had infiltrated computers at some of America’s large consumer and business data aggregators , including LexisNexis Inc. ,

Accountability 363

Accountability Identity Theft Hacking Insurance 363

Krebs on Security

NOVEMBER 3, 2022

In 2013, Kurittu worked on investigation involving Kivimaki’s use of the Zbot botnet, among other activities Kivimaki engaged in as a member of the hacker group Hack the Planet. The entire archive has since been made into a searchable website on the Dark Web. “There were also other projects and databases.”

Data breaches 256

Data breaches Cybercrime Accountability Telecommunications 256

Krebs on Security

SEPTEMBER 6, 2021

In May 2015, KrebsOnSecurity briefly profiled “ The Manipulaters ,” the name chosen by a prolific cybercrime group based in Pakistan that was very publicly selling spam tools and a range of services for crafting, hosting and deploying malicious email. ” The IT network of The Manipulaters, circa 2013. Image: Facebook.

Software 312

Software Phishing Cybercrime Accountability 312

Krebs on Security

JULY 28, 2022

Launched in 2013, Microleaves is a service that allows customers to route their Internet traffic through PCs in virtually any country or city around the globe. The very first discussion thread started by the new user Microleaves on the forum BlackHatWorld in 2013 sought forum members who could help test and grow the proxy network.

Advertising 281

Advertising Software Computers and Electronics Internet 281

Security Affairs

JANUARY 31, 2024

It was operating between 2008 and 2013. In 2013, the Motion Picture Association of America (MPAA) shut down the website due to concerns related to copyright infringement. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – cybercrime, Apple)

Media 127

Media Cybercrime Advertising Information Security 127

Krebs on Security

APRIL 18, 2023

” MRMURZA Faceless is a project from MrMurza , a particularly talkative member of more than a dozen Russian-language cybercrime forums over the past decade. MrMurza’s Faceless advertised on the Russian-language cybercrime forum ProCrd. In 2013, U.S. Image: Darkbeast/Ke-la.com.

Malware 301

Malware Passwords Accountability Advertising 301

Security Affairs

JANUARY 10, 2022

A malware campaign spreads ZLoader malware by exploiting a Windows vulnerability that was fixed in 2013 but in 2014 Microsoft revised the fix. The threat actors exploit a vulnerability, tracked as CVE-2013-3900, that was discovered and fixed in 2013 but in 2014 Microsoft revised the fix.

Malware 145

Malware Banking Software Cybercrime 145

Security Affairs

OCTOBER 6, 2018

Davis also provided customer support to Silk Road users in 2013, for this job he received a weekly salary. “From May 2013 up to June 2013, DAVIS served as a forum moderator for Silk Road. From June 2013 up to October 2, 2013, DAVIS worked as a site administrator on Silk Road. The FBI also seized about $33.6

Advertising 110

Advertising Marketing Cybercrime Hacking 110

Dark Reading

MARCH 26, 2018

The Carbanak group has caused more financial losses to financial institutions than any other cybercrime group since it surfaced in 2013.

Cybercrime 53

Cybercrime Banking 53