2014, Cybercrime and Phishing - Cyber Security Informer

Cybercrime Statistics in 2019

Security Affairs

JANUARY 18, 2020

I’m preparing the slides for my next speech and I decided to create this post while searching for interesting cybercrime statistics in 2020. Cybercrime will cost as much as $6 trillion annually by 2021. The global expense for organizations to protect their systems from cybercrime attacks will continue to grow.

Cybercrime

Cybercrime Small Business Data breaches Mobile

How much is the phish? Underground market of phishing kits is booming – Group-IB

Security Affairs

APRIL 15, 2020

The report focuses on phishing kits – the driving force of the phishing industry, which is hard to detect but extremely valuable in terms of fight against phishing. The growing demand for phishing kits is also reflected in its price that skyrocketed last year by 149 percent and exceeded $300 per item.

Phishing

Phishing Marketing Advertising Cyber threats

Full(z) House Magecart group mix phishing and MiTM in its attacks

Security Affairs

NOVEMBER 26, 2019

A group under the Magecart umbrella adopted a new tactic that leverages on MiTM and phishing attacks to target sites using external payment processors. The name Fullz House comes from two different attack techniques, the phishing, and the web skimming. The [phishing] pages are part of a framework,” they wrote.

Phishing

Phishing Cybercrime Advertising Software

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Fraudster stole $870,000 from 2 US universities with spear-phishing mails

Security Affairs

AUGUST 5, 2019

A crook involved in a spear phishing scheme and that was in Kenya is facing up to 20 years in the US federal prison for stealing thousands of dollars from US universities. Amil Hassan Raage, 48, pleaded guilty last week in a southern California court to fraudulently receiving almost $750,000 as part of a spear phishing scheme.

Phishing

Phishing Banking Advertising Accountability

Very trivial Spotify phishing campaign uncovered by experts

Security Affairs

NOVEMBER 25, 2018

Researchers at AppRiver uncovered a very trivial phishing campaign targeting the streaming service Spotify, anyway, it is important to share info about it. Security researchers at AppRiver uncovered a phishing campaign targeting the popular streaming service Spotify. Clicking on the button, users are redirected to a phishing page.

Phishing

Phishing Accountability Advertising Passwords

Crooks abuse GitHub platform to host phishing kits

Security Affairs

APRIL 25, 2019

Experts at Proofpoint discovered that free code repositories on GitHub have been abused since at least 2017 to host phishing websites. Researchers at Proofpoint reported that crooks are abusing free code repositories on GitHub to host phishing websites and bypass security defenses. SecurityAffairs – GitHub, cybercrime).

Phishing

Phishing Advertising Accountability Cybercrime

Ransomware en masse on the wane: top threats inside web-phishing in H1 2020

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. Secure web- phishing. In the first six months of 2020, CERT-GIB blocked a total of 9 304 phishing web resources, which is an increase of 9 percent compared to the previous year.

Phishing

Phishing Ransomware Spyware Banking

U.S. taxpayers hit by a phishing campaign delivering the Amadey bot

Security Affairs

SEPTEMBER 20, 2019

Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey. Pierluigi Paganini.

Phishing

Phishing Social Engineering Malware Advertising

Hackers stole a six-figure amount from Swiss universities

Security Affairs

OCTOBER 5, 2020

The hackers carried out spear-phishing attacks against the Swiss universities in an attempt of tricking its employees into providing their access data. The SonntagsZeitung also added that hackers attempted to breach the University of Zurich, but the employees at the university recognised the phishing attempts and neutralized them.

Advertising

Advertising Phishing Cybercrime Hacking

Cobalt cybercrime gang abused Google App Engine in recent attacks

Security Affairs

JANUARY 27, 2019

The Cobalt cybercrime gang has been using Google App Engine to distribute malware through PDF decoy documents. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – Cobalt, Google App Engine).

Engineering

Engineering Cybercrime Banking Advertising

Raccoon Malware, a success case in the cybercrime ecosystem

Security Affairs

FEBRUARY 24, 2020

According to a report published by security firm CyberArk, Raccoon is mostly delivered through Exploit Kits and Phishing Campaigns. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the report published by CyberArk.

Cybercrime

Cybercrime Malware Cryptocurrency Advertising

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Security Affairs

NOVEMBER 16, 2018

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. Spear phishing remains the major vector of attack: approximately 56% of all money siphoned off from ICO were stolen using phishing.

Cybercrime

Cybercrime Hacking Banking Phishing

Internationa police operation led to the arrest of the SilverTerrier gang leader

Security Affairs

MAY 25, 2022

The Nigeria Police Force has arrested the suspected leader of the SilverTerrier cybercrime group as a result of an international operation. The Nigeria Police Force has arrested the suspected leader of the SilverTerrier cybercrime gang (aka TMT ) after a year-long investigation codenamed “Operation Delilah.”

Cybercrime

Cybercrime Healthcare Cybersecurity Phishing

Reading Mandiant M-Trends 2023

Anton on Security

APRIL 20, 2023

Phishing returned as the second most utilized vector , representing 22 percent of intrusions as compared to 12 percent in 2021.” “Of Furthermore, these adversaries demonstrated a willingness to get personal with their targets, bullying and threatening many of them. ”

Social Engineering

Social Engineering Ransomware Cybercrime Cybersecurity

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Prosecutors in Northern California indicted Kislitsin in 2014 for his alleged role in stealing account data from Formspring. Kislitsin also was indicted in Nevada in 2013, but the Nevada indictment does not name his alleged victim(s) in that case.

Cybersecurity

Cybersecurity Cybercrime Hacking Technology

The new Azorult 3.3 is available in the cybercrime underground market

Security Affairs

OCTOBER 23, 2018

The latest version of the Azorult was delivered through the RIG exploit kit as well as other sources, previous variants were mainly distributed via weaponized Office documents as attachment of phishing messages. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Marketing

Marketing Cybercrime Cryptocurrency Advertising

TA505 cybercrime group use SDBbot RAT in recent campaigns

Security Affairs

OCTOBER 20, 2019

TA505 cybercrime group that operated the Dridex Trojan and Locky ransomware, has been using a new RAT dubbed SDBbot in recent attacks. Security experts at Proofpoint observed the notorious TA505 cybercrime group that has been using a new RAT dubbed SDBbot in recent attacks. Pierluigi Paganini. SecurityAffairs – SDBbot RAT, TA505).

Cybercrime

Cybercrime Advertising Retail Banking

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

Researchers from FireEye’s Mandiant observed FIN11 hackers using spear-phishing messages distributing a malware downloader dubbed FRIENDSPEAK. ” The attack chain starts when the victims enable the macro embedded in an Excel spreadsheet that came with the phishing e-mails. . ” reads the analysis published by FireEye.

Ransomware

Ransomware Malware Telecommunications Advertising

Crooks use Star Wars saga as bait in Phishing and malware attacks

Security Affairs

JANUARY 2, 2020

” Crooks set up websites that look like related to the official movie, the websites are designed to deliver the malware or for phishing purposes. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Phishing

Phishing Malware Advertising Media

Coronavirus-themed attacks March 15 – March 21, 2020

Security Affairs

MARCH 22, 2020

Day after day the number of COVID19-themed attacks increases, fraudsters have launched a phishing campaign to deliver on users’ PC. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – COVID19 , cybercrime).

Advertising

Advertising Cybercrime Scams Phishing

US authorities have sentenced to prison 3 Romanian men who hacked US servers

Security Affairs

JULY 24, 2019

The crooks also carried out a phishing campaign that reached thousands of victims and tricked them into providing social security numbers and bank account information. . Smishing” is similar to “ vishing ,” but communicates a phishing message through text messages. SecurityAffairs – Romanian men, cybercrime).

Hacking

Hacking Banking Identity Theft Phishing

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Security Affairs

JULY 11, 2020

A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces. Nikulin used data stolen from Linkedin to launch spear-phishing attacks against employees at other companies, including Dropbox. Pierluigi Paganini.

Hacking

Hacking Cybercrime Data breaches Advertising

CryptoCore hacker group stole over $200M from cryptocurrency exchanges

Security Affairs

JUNE 24, 2020

. “While the group’s key infiltration vector to the exchange is usually through spear-phishing against the corporate network, the executives’ personal email accounts are the first to be targeted.” Online cryptocurrency exchanges are a privileged target for cybercrime groups and nation-state actors.

Cryptocurrency

Cryptocurrency Phishing Accountability Passwords

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Security Affairs

APRIL 14, 2020

PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. The attacks against the Canadian healthcare organizations were discovered between March 24 and March 26, they started with coronavirus -themed phishing campaigns that were carried out in the last months.

Healthcare

Healthcare Ransomware Phishing Government

Industrial Sector targeted in surgical spear-phishing attacks

Security Affairs

AUGUST 3, 2018

Industrial sector hit by a surgical spear-phishing campaign aimed at installing legitimate remote administration software on victims’ machines. Attackers personalized the content of each phishing email reflecting the activity of the target organization and the type of work performed by the employee to whom the email is sent.

Phishing

Phishing VPN Passwords Software

Coronavirus-themed attacks March 29 – April 04, 2020

Security Affairs

APRIL 5, 2020

March 30, 2020 – Your colleague was infected with COVID19, this is the latest phishing lure. Security experts uncovered a new COVID19-themed phishing campaign, the messages inform recipients that they have been exposed to the virus. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising

Advertising Phishing Malware Cybercrime

Hackers accessed staff mailboxes at Italian bank Monte dei Paschi

Security Affairs

APRIL 11, 2020

In the recent weeks users have been targeted by Coronavirus-themed phishing campaign and malspam aimed at delivering malware. Italian police also warned of an increase in cybercrime and recommended citizens to remain vigilant, especially when received COVID-19-themed emails. Pierluigi Paganini. adrotate banner=”13″].

Banking

Banking Cyber Attacks Advertising Cybercrime

Noooo, now Ancient Tortoise BEC scammers are launching Coronavirus-Themed attacks

Security Affairs

MARCH 15, 2020

A cybercrime gang focused on Business Email Compromise (BEC) has started using coronavirus-themed scam emails in its attacks. To defend against BEC attacks, Agari experts recommend vendors and suppliers to implement strong email authentication and anti-phishing email protections. A change of the bank account). Pierluigi Paganini.

Scams

Scams Banking Cybercrime Advertising

Reading the 2019 Internet Crime Complaint Center (IC3) report

Security Affairs

FEBRUARY 12, 2020

The FBI’s Internal Crime Complaint Center (IC3) released the FBI 2019 Internet Crime Report , a document that outlines cybercrime trends over the past year. The figure that most of all capture our attention is that victims of cybercrime activities lost $3.5 Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Internet

Internet Internet Scams Cybercrime

New Coronavirus-themed attack uses fake WHO chief emails

Security Affairs

MARCH 21, 2020

Day after day the number of Coronavirus-themed attacks increases, fraudsters have launched a phishing campaign to deliver keyloggers on users’ PC. Experts from IBM X-Force have uncovered a new Coronavirus-themed phishing campaign aimed at delivering keyloggers on users’ PC. SecurityAffairs – coronavirus, cybercrime).

Phishing

Phishing Advertising Malware Cybercrime

The parabola of a prolific cyber-criminal known as Dton

Security Affairs

MARCH 17, 2020

The experts were able to identify the man, his name is Bill Henry (25) from Benin City, Nigeria, his criminal activity include the theft of credit cards, phishing and malware attacks. Dton’s history demonstrates that it is quite easy, even for relatively unskilled individuals, to enter in the cybercrime arena. Pierluigi Paganini.

Cybercrime

Cybercrime Malware Advertising Phishing

Carbanak malware returned in ransomware attacks

Security Affairs

DECEMBER 26, 2023

The Carbanak malware has been active since at least 2014 and has been used by ransomware gangs to infiltrate financial systems. The threat actors used sophisticated phishing techniques against bank employees.

Malware

Malware Ransomware Banking Healthcare

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

Security Affairs

SEPTEMBER 30, 2020

Nikulin used data stolen from Linkedin to launch spear-phishing attacks against employees at other companies, including Dropbox. The data stolen by Nikulin were available on the cybercrime underground between 2015 and 2016, they were offered for sale by multiple traders. SecurityAffairs – hacking, Cybercrime).

Identity Theft

Identity Theft Cybercrime Advertising Hacking

PhishPoint Phishing Attack – A new technique to Bypass Microsoft Office 365 Protections

Security Affairs

AUGUST 15, 2018

PhishPoint is a new SharePoint phishing attack that affected an estimated 10% of Office 365 users over the last 2 weeks. “Over the past two weeks, we detected (and blocked) a new phishing attack that affected about 10% of Avanan’s Office 365 customers. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing

Phishing Advertising Authentication Cybercrime

European police arrested tens of members of two SIM Hijacking Gangs

Security Affairs

MARCH 13, 2020

European authorities dismantled two cybercrime organizations responsible for stealing millions through SIM hijacking. European authorities managed to dismantle the operations of two cybercrime gangs responsible for stealing millions through SIM hijacking. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Banking

Banking Cybercrime Mobile Accountability

Experts discovered TeslaGun Panel used by TA505 to manage its ServHelper Backdoor

Security Affairs

SEPTEMBER 6, 2022

Researchers discovered a previously undocumented software control panel, named TeslaGun, used by a cybercrime gang known as TA505. Researchers from cybersecurity firm PRODAFT have discovered a previously undocumented software control panel, tracked as TeslaGun, used by a cybercrime group known as TA505.

Cybercrime

Cybercrime Banking Malware Retail

State-sponsored hackers are launching Coronavirus-themed attacks

Security Affairs

MARCH 13, 2020

In the last weeks, security experts reported many Coronavirus-themed attacks carried out by cybercrime gangs, now experts warn of similar attacks from nation – s tate actors. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cybercrime

Cybercrime Malware Advertising Phishing

Polish police shut down major group of hackers in the country

Security Affairs

SEPTEMBER 25, 2020

Polish authorities have dismantled a major hacker group that was involved in multiple cybercrime activities, including ransomware attacks, malware distribution, SIM swapping, banking fraud, running rogue online stores, and even making bomb threats at the behest of paying customers. ” reads the press release published by the Europol. .

Cybercrime

Cybercrime Banking Malware Mobile

Open Exchange Rates discloses a security breach

Security Affairs

MARCH 16, 2020

Stolen data could be used by threat actors to target organizations with spear- phishing campaigns. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – data breach, cybercrime). Pierluigi Paganini.

Data breaches

Data breaches Passwords Advertising Accountability

Hacker will compensate victims with $1.1 million Bitcoin illegally earned

Security Affairs

AUGUST 24, 2019

West carried out phishing scams against hundreds of companies since 2015, he stole financial data of tens of thousands of customers and then sold that information on cybercrime underground forums. He predominately used ‘phishing’ email scams to obtain the financial data of tens of thousands of customers. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Scams Cybercrime Phishing

Records for 7.5 million users of the digital banking app Dave leaked online

Security Affairs

JULY 26, 2020

The company is also aware that a threat actor is attempting to sell the Dave user records in the cybercrime underground, it hired security firm CrowdStrike to investigate the security breach. “This database seems to be have dumped through sending Github phishing emails to Dave.com employees. ” continues Cyble.

Banking

Banking Advertising Education Cybercrime

SHARED INTEL Q&A: My thoughts and opinions about cyber threats — as discussed with OneRep

The Last Watchdog

OCTOBER 5, 2023

He previously chronicled the emergence of cybercrime while covering Microsoft for USA TODAY. I held this position from 2000 through 2014, during which time Windows emerged as a prime target for both precocious script kiddies and emerging criminal hacking rings. Erin: What role should governments play in combating cybercrime?

Cyber threats

Cyber threats Cyber Insurance Cybersecurity Threat Detection

Hackers target financial firms hosting malicious payloads on Google Cloud Storage

Security Affairs

DECEMBER 26, 2018

Experts analyzed some malicious VBS scripts that were highly obfuscated and were likely created by one of the builder available in the cybercrime underground. “Financial Services companies can expect to be the target of even more sophisticated malware and credential phishing attacks,”. Pierluigi Paganini.

Financial Services

Financial Services Cybercrime Malware Advertising

Zscaler saw 30,000% increase in Coronavirus-themed attacks

Security Affairs

APRIL 25, 2020

. “Since January, we have seen an increase of 30,000% in phishing, malicious websites, and malware targeting remote users—all related to COVID-19. “Phishing attacks based around COVID-19 targeted corporations as well as consumers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing

Phishing Advertising Malware Scams

Cybercrime Statistics in 2019

How much is the phish? Underground market of phishing kits is booming – Group-IB

Webinars

Trending Sources

Full(z) House Magecart group mix phishing and MiTM in its attacks

Webinars

Fraudster stole $870,000 from 2 US universities with spear-phishing mails

Very trivial Spotify phishing campaign uncovered by experts

Crooks abuse GitHub platform to host phishing kits

Ransomware en masse on the wane: top threats inside web-phishing in H1 2020

U.S. taxpayers hit by a phishing campaign delivering the Amadey bot

Hackers stole a six-figure amount from Swiss universities

Cobalt cybercrime gang abused Google App Engine in recent attacks

Raccoon Malware, a success case in the cybercrime ecosystem

Group-IB presented latest cybercrime and nation-state hacking trends in Asia

Internationa police operation led to the arrest of the SilverTerrier gang leader

Reading Mandiant M-Trends 2023

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

The new Azorult 3.3 is available in the cybercrime underground market

TA505 cybercrime group use SDBbot RAT in recent campaigns

FIN11 gang started deploying ransomware to monetize its operations

Crooks use Star Wars saga as bait in Phishing and malware attacks

Coronavirus-themed attacks March 15 – March 21, 2020

US authorities have sentenced to prison 3 Romanian men who hacked US servers

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

CryptoCore hacker group stole over $200M from cryptocurrency exchanges

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Industrial Sector targeted in surgical spear-phishing attacks

Coronavirus-themed attacks March 29 – April 04, 2020

Hackers accessed staff mailboxes at Italian bank Monte dei Paschi

Noooo, now Ancient Tortoise BEC scammers are launching Coronavirus-Themed attacks

Reading the 2019 Internet Crime Complaint Center (IC3) report

New Coronavirus-themed attack uses fake WHO chief emails

The parabola of a prolific cyber-criminal known as Dton

Carbanak malware returned in ransomware attacks

Russian national Yevgeniy Aleksandrovich Nikulin sentenced to 88 months in prison

PhishPoint Phishing Attack – A new technique to Bypass Microsoft Office 365 Protections

European police arrested tens of members of two SIM Hijacking Gangs

Experts discovered TeslaGun Panel used by TA505 to manage its ServHelper Backdoor

State-sponsored hackers are launching Coronavirus-themed attacks

Polish police shut down major group of hackers in the country

Open Exchange Rates discloses a security breach

Hacker will compensate victims with $1.1 million Bitcoin illegally earned

Records for 7.5 million users of the digital banking app Dave leaked online

SHARED INTEL Q&A: My thoughts and opinions about cyber threats — as discussed with OneRep

Hackers target financial firms hosting malicious payloads on Google Cloud Storage

Zscaler saw 30,000% increase in Coronavirus-themed attacks

Stay Connected