Security Affairs

AUGUST 8, 2022

LogoKit – Threat actors leveraging Open Redirect Vulnerabilities popular in online services and apps to bypass spam filters in phishing campaigns. Using highly trusted service domains like Snapchat and other online-services, they create special URLs which lead to malicious resources with phishing kits. Resecurity, Inc.

Phishing 90

Phishing Passwords Threat Detection Cybercrime 90

Security Affairs

MAY 30, 2023

The database of the popular RaidForums hacking forum has been leaked on a new hacking forum, 478,000 members exposed. A database belonging to the now-defunct RaidForums cybercrime platform has been leaked on a new hacking forum called Exposed. The database contains data belonging to 478,000 RaidForums members.

Cybercrime 78

Cybercrime Hacking Phishing Passwords 78

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. ”] Kislitsin was hired by Group-IB in January 2013, nearly six months after the Formspring hack. Department of Justice.

Cybersecurity 258

Cybersecurity Cybercrime Hacking Technology 258

Security Affairs

OCTOBER 22, 2021

FIN7 hacking group created fake cybersecurity companies to hire experts and involve them in ransomware attacks tricking them of conducting a pentest. The FIN7 hacking group is attempting to enter in the ransomware business and is doing it with an interesting technique. SecurityAffairs – hacking, cyber security).

Cybercrime 100

Cybercrime Ransomware Cybersecurity Backups 100

Security Affairs

NOVEMBER 3, 2022

Sentinel Labs found evidence that links the Black Basta ransomware gang to the financially motivated hacking group FIN7. On the other end, FIN7 is a Russian financially motivated group that has been active since at least 2015. SecurityAffairs – hacking, FIN7). ” Follow me on Twitter: @securityaffairs and Facebook.

Cybercrime 90

Cybercrime Ransomware Antivirus Malware 90

SiteLock

AUGUST 27, 2021

Protect your website from hackers and cybercrime. Hacktivist Group AnonOpsIndia Hacks BSNL Website, Days After Hacking Nation’s PAN Database. Prior to the BSNL hack, AnonOpsIndia, usually referred as “Anonymous India,” has already compromised the nation’s PAN database and a coal-sector website last week.

Cybersecurity 52

Cybersecurity Surveillance Cyber Attacks Government 52

Security Affairs

NOVEMBER 16, 2018

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. Thirteen exchanges were hacked in 2017 and in the first three quarters of 2018, amounting to a total loss of $877 million. Attacks on Crypto.

Cybercrime 81

Cybercrime Hacking Banking Phishing 81

Security Affairs

JULY 11, 2020

A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces. Nikulin used data stolen from Linkedin to launch spear-phishing attacks against employees at other companies, including Dropbox.

Hacking 73

Hacking Cybercrime Data breaches Advertising 73

The Last Watchdog

JUNE 21, 2020

File encryption 2013 – 2015. The newsmaking emergence of CTB-Locker in 2014 and the CryptoWall ransomware in 2015 fully demonstrated this multi-pronged shift. RaaS rollout 2015 – 2018. Another fundamental tweak was the onset of Ransomware-as-a-Service (RaaS) in May 2015. pharma giant ExecuPharm.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

APRIL 15, 2020

The report focuses on phishing kits – the driving force of the phishing industry, which is hard to detect but extremely valuable in terms of fight against phishing. The growing demand for phishing kits is also reflected in its price that skyrocketed last year by 149 percent and exceeded $300 per item.

Phishing 97

Phishing Marketing Advertising Cyber threats 97

Security Affairs

OCTOBER 5, 2020

Threat actors have hacked at least three Swiss universities, including the University of Basel and managed to drain employee salary transfers. The hackers carried out spear-phishing attacks against the Swiss universities in an attempt of tricking its employees into providing their access data. SecurityAffairs – hacking, cybercrime).

Advertising 144

Advertising Phishing Cybercrime Hacking 144

SecureWorld News

FEBRUARY 18, 2021

It may be the most complete picture we've ever had of North Korean hacking campaigns. The unsealed documents highlight a number of attack targets and motives in an effort to hack, digitally intrude, and defraud. The hacking indictment filed in the U.S. North Korean hacking methods and attack vectors. global targets.

Hacking 97

Hacking Cryptocurrency Computers and Electronics Banking 97

Security Affairs

NOVEMBER 26, 2019

A group under the Magecart umbrella adopted a new tactic that leverages on MiTM and phishing attacks to target sites using external payment processors. The name Fullz House comes from two different attack techniques, the phishing, and the web skimming. The [phishing] pages are part of a framework,” they wrote.

Phishing 95

Phishing Cybercrime Advertising Software 95

Security Affairs

FEBRUARY 24, 2020

Racoon malware , Legion, Mohazo, and Racealer, is an infostealer that recently appeared in the threat landscape that is advertised in hacking forums. The Raccoon stealer is written in C++ by Russian-speaking developers that initially promoted it exclusively on Russian-speaking hacking forums. SecurityAffairs – hacking, malware).

Cybercrime 86

Cybercrime Malware Cryptocurrency Advertising 86

Security Affairs

JANUARY 27, 2019

The Cobalt cybercrime gang has been using Google App Engine to distribute malware through PDF decoy documents. The Cobalt hacking group has been using Google App Engine to distribute malware through PDF decoy documents. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Engineering 81

Engineering Cybercrime Banking Advertising 81

Security Affairs

JULY 24, 2019

US authorities have sentenced to prison three Romanian men who hacked US servers and used them in a fraud scheme that totaled more than $21 million. The crooks also carried out a phishing campaign that reached thousands of victims and tricked them into providing social security numbers and bank account information. .

Hacking 79

Hacking Banking Identity Theft Phishing 79

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). Iarmak is the third member of the FIN7 cybercrime group to be sentenced in the U.S. in May 2020.

Cybercrime 99

Cybercrime Hacking Software Phishing 99

Security Affairs

NOVEMBER 25, 2018

Researchers at AppRiver uncovered a very trivial phishing campaign targeting the streaming service Spotify, anyway, it is important to share info about it. Security researchers at AppRiver uncovered a phishing campaign targeting the popular streaming service Spotify. Clicking on the button, users are redirected to a phishing page.

Phishing 82

Phishing Accountability Advertising Passwords 82

Security Affairs

AUGUST 5, 2019

A crook involved in a spear phishing scheme and that was in Kenya is facing up to 20 years in the US federal prison for stealing thousands of dollars from US universities. Amil Hassan Raage, 48, pleaded guilty last week in a southern California court to fraudulently receiving almost $750,000 as part of a spear phishing scheme.

Phishing 94

Phishing Banking Advertising Accountability 94

Krebs on Security

AUGUST 8, 2023

Faced with customers trying to use WormGPT to create ransomware and phishing scams, the 23-year-old Portuguese programmer who created the project now says his service is slowly morphing into “a more controlled environment.” ” SlashNext asked WormGPT to compose this BEC phishing email. . Image: SlashNext.

Malware 220

Malware Cybercrime Advertising Phishing 220

Security Affairs

SEPTEMBER 20, 2019

Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey. Pierluigi Paganini.

Phishing 81

Phishing Social Engineering Malware Advertising 81

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. Secure web- phishing. In the first six months of 2020, CERT-GIB blocked a total of 9 304 phishing web resources, which is an increase of 9 percent compared to the previous year.

Phishing 101

Phishing Ransomware Spyware Banking 101

The Last Watchdog

JULY 13, 2023

The economic impact of cybercrime on business across the globe continues to reach new levels, with the cost predicted to reach US$10.5 trillion by 2025, a 300% increase since 2015 1. Yet, boardroom focus on cyber risk appears to be diminishing.

Cyber Risk 189

Cyber Risk Risk Insurance Energy and Utilities 189

Security Affairs

APRIL 25, 2019

Experts at Proofpoint discovered that free code repositories on GitHub have been abused since at least 2017 to host phishing websites. Researchers at Proofpoint reported that crooks are abusing free code repositories on GitHub to host phishing websites and bypass security defenses. SecurityAffairs – GitHub, cybercrime).

Phishing 81

Phishing Advertising Accountability Cybercrime 81

Security Affairs

JUNE 29, 2023

The Andariel APT (aka Stonefly) has been active since at least 2015, it was involved in several attacks attributed to the North Korean government. “Despite being an APT group, Lazarus is known for performing typical cybercrime tasks, such as deploying ransomware, which makes the cybercrime landscape more complicated.

Malware 76

Malware Cybercrime Phishing Internet 76

Security Affairs

JULY 8, 2020

The US Department of Justice has indicted a hacker named Fxmsp for hacking over three hundred organizations worldwide and selling access to their networks. The US Department of Justice has indicted a hacker that goes online with the moniker Fxmsp for hacking over three hundred organizations worldwide and selling access to their networks.

Hacking 69

Hacking Antivirus Advertising Cybercrime 69

Security Affairs

SEPTEMBER 1, 2018

Security experts from Netscout’s ASERT uncovered a new campaign carried out by the Cobalt cybercrime group. Cobalt hackers leverage spear-phishing emails to compromise target systems, messages spoof emails from financial institutions or a financial supplier/partner. The phishing message includes two malicious links.

Cybercrime 52

Cybercrime Banking Phishing Advertising 52

Security Affairs

SEPTEMBER 30, 2020

Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison for hacking LinkedIn, Dropbox, and Formspring in 2012. The Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison in the United States for hacking LinkedIn, Dropbox, and Formspring in 2012. Pierluigi Paganini.

Identity Theft 104

Identity Theft Cybercrime Advertising Hacking 104

Security Affairs

DECEMBER 26, 2023

The Carbanak gang was first discovered by Kaspersky Lab in 2015, the group has stolen at least $300 million from 100 financial institutions. The threat actors used sophisticated phishing techniques against bank employees. In November, the LockBit ransomware gang was the most active threat actor.

Malware 108

Malware Ransomware Banking Healthcare 108

Security Affairs

SEPTEMBER 4, 2021

FIN7 cybercrime gang used weaponized Windows 11 Alpha-themed Word documents to drop malicious payloads, including a JavaScript backdoor. Anomali Threat Research experts have monitored recent spear-phishing attacks conducted by financially motivated threat actor FIN7. SecurityAffairs – hacking, FIN7). Pierluigi Paganini.

Cybercrime 110

Cybercrime Retail Phishing Hacking 110

Security Affairs

APRIL 9, 2020

Group-IB’s CERT-GIB analyzed hundreds of coronavirus -related phishing emails and discovered top malware strains in COVID-19 campaigns. Group-IB’s Computer Emergency Response Team ( CERT-GIB ) analyzed hundreds of coronavirus-related phishing emails between February 13 and April 1, 2020. Spyware: the most likely COVID-19 payload.

Phishing 100

Phishing Malware Spyware DDOS 100

Security Affairs

OCTOBER 31, 2018

Department of Justice, the Chinese intelligence officers recruited hackers and insiders to hack aerospace and tech firms. The campaign was carried out at least from January 2010 to May 2015. State-sponsored hacking is a direct threat to our national security. According to the U.S. Pierluigi Paganini.

Hacking 83

Hacking Manufacturing Engineering Cybercrime 83

Security Affairs

MAY 28, 2020

The Google Threat Analysis Group (TAG) is a group inside the Google’s security team that tracks operations conducted by nation-state actors and cybercrime groups. A first scaring trend reported by Google is the rising of hack-for-fire companies currently operating out of India. ” concludes Google. Pierluigi Paganini.

Hacking 71

Hacking Healthcare Advertising Financial Services 71

Security Affairs

JUNE 12, 2019

“It is believed that the malware was deployed as a result of several phishing attempts.” ” Experts believe the attackers launched phishing attacks in the attempt of delivering PoS malware. “ ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – FIN8, hacking).

Hacking 73

Hacking Malware Advertising Retail 73

Security Affairs

OCTOBER 20, 2019

TA505 cybercrime group that operated the Dridex Trojan and Locky ransomware, has been using a new RAT dubbed SDBbot in recent attacks. Security experts at Proofpoint observed the notorious TA505 cybercrime group that has been using a new RAT dubbed SDBbot in recent attacks. Pierluigi Paganini. SecurityAffairs – SDBbot RAT, TA505).

Cybercrime 42

Cybercrime Advertising Retail Banking 42

Krebs on Security

JULY 16, 2019

For at least the past decade, a computer crook variously known as “ Yalishanda ,” “ Downlow ” and “ Stas_vl ” has run one of the most popular “bulletproof” Web hosting services catering to a vast array of phishing sites, cybercrime forums and malware download servers.

Cybercrime 187

Cybercrime Phishing Banking Malware 187

Security Affairs

NOVEMBER 17, 2018

A hacker going online by the moniker AmFearLiathMor is claiming to have hacked the most popular end-to-end encrypted email service ProtonMail. “We hacked Protonmail and have a significant amount of their data from the past few months. ProtonMail denied having been hacked that added that this is just a hoax.

Scams 94

Scams Hacking Data collection Advertising 94