Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Dmitry Yuryevich Khoroshev.

Ransomware 244

Ransomware Cybercrime Accountability Malware 244

Krebs on Security

AUGUST 5, 2021

Reinvention is a basic survival skill in the cybercrime business. But a little more than a month later, a new ransomware affiliate program called BlackMatter emerged, and experts quickly determined BlackMatter was using the same unique encryption methods that DarkSide had used in their attacks. Image: FBI. sanctions.

Ransomware 323

Ransomware Cybercrime Malware System Administration 323

Security Affairs

APRIL 18, 2021

The Ukrainian national Fedir Hladyr (35), aka “das” or “AronaXus,” was sentenced to 10 years in prison for having served as a manager and systems administrator for the financially motivated group FIN7 , aka Carbanak. Hladyr also controlled the organization’s encrypted channels of communication.”

System Administration 109

System Administration Penetration Testing Malware Banking 109

Security Affairs

MARCH 10, 2020

Microsoft is warning of human-operated ransomware, this kind of attack against businesses is becoming popular in the cybercrime ecosystem. Human-operated ransomware is a technique usually employed in nation-state attacks that is becoming very popular in the cybercrime ecosystem. ” reads the post published by Microsoft.

Ransomware 111

Ransomware Cybercrime Social Engineering Banking 111

Malwarebytes

APRIL 20, 2021

In 2018 three high-ranking members of a sophisticated international cybercrime group operating out of Eastern Europe were arrested and taken into custody by US authorities. The Carbanak campaign first made international headlines in 2015 as one of the first malware campaigns that specialized in remote ATM robberies.

System Administration 80

System Administration Banking Malware Penetration Testing 80

SecureWorld News

APRIL 19, 2021

Being a systems administrator can be a fulfilling job with a lot of rewards. Hladyr also controlled the organization's encrypted channels of communication.". Since 2015, many of the stolen payment card numbers have been offered for sale through online underground marketplaces.".

System Administration 86

System Administration Hacking Malware Encryption 86

SecureList

AUGUST 12, 2021

The final payload is a remote administration tool that provides full control over the victim machine to its operators. Communication with the server can take place either over raw TCP sockets encrypted with RC4, or via HTTPS. Ferocious Kitten is one of the groups that operate in a wider eco-system intended to track individuals in Iran.

Ransomware 138

Ransomware Malware Banking Encryption 138