Security Affairs

FEBRUARY 6, 2025

During the search, the agents seized cryptocurrencies and various computer equipment. ” The International Civil Aviation Organization (ICAO) is investigating a significant data breach that has raised concerns about the security of its systems and employees data. The man was arrested in the town of Calpe (Alicante).

Cybercrime 82

Cybercrime Government Data breaches Information Security 82

Security Affairs

MAY 15, 2025

The Rydox marketplace has been active since February 2016, it facilitated over 7,600 sales of stolen PII, access devices, and cybercrime tools, generating $230,000 since 2016. It offered over 321,000 products to 18,000 users, including names, social security numbers, and hacking tools. Thousands of U.S. victims were affected.

Cybercrime 73

Cybercrime Identity Theft Cryptocurrency Hacking 73

Security Affairs

JANUARY 2, 2022

The cyberattacks against the cryptocurrency industry are a profitable business for threat actors, according to the experts, $12.1 billion worth of cryptocurrencies have been stolen in the last decade. “Cryptocurrency crime stands in direct proportion to the size of the cryptocurrency market. Threat actors stole $3.18

Cryptocurrency 120

Cryptocurrency Scams Marketing Hacking 120

Security Affairs

AUGUST 7, 2018

Group-IB researchers have investigated user data leaks from cryptocurrency exchanges and has analyzed the nature of these incidents. In 2017, when cryptocurrencies were gaining momentum, their record-breaking capitalization and a spike in Bitcoin’s exchange rate led to dozens of attacks on cryptocurrency services.

Cryptocurrency 75

Cryptocurrency Passwords Authentication Accountability 75

Security Affairs

DECEMBER 22, 2022

billion worth of cryptocurrency and other virtual assets in the past five years. billion) in cryptocurrency and other virtual assets in the past five years. sanctions imposed in 2016 and 1017, and the impact on its economy is dramatic. million in cryptocurrency through this program. trillion won ($1.2 billion (about 2.7

Cryptocurrency 141

Cryptocurrency Cybercrime Media Government 141

Security Affairs

MAY 6, 2024

Alexander Vinnik , a Russian national, pleaded guilty to conspiracy to commit money laundering for his involvement in operating the cryptocurrency exchange BTC-e from 2011 to 2017. Greek Police arrested the Russian national in 2017, and they accused the man of running the BTC-e Bitcoin exchange to launder billions worth of cryptocurrency.

Cryptocurrency 133

Cryptocurrency Computers and Electronics Identity Theft Hacking 133

Security Affairs

OCTOBER 18, 2020

QQAAZZ attempted to launder tens of millions stolen from victims starting with 2016 by the world’s foremost cybercriminals. “The funds were then transferred to other QQAAZZ-controlled bank accounts and sometimes converted to cryptocurrency using ‘tumbling’ services designed to hide the original source of the funds. .

Malware 142

Malware Banking Cryptocurrency Cybercrime 142

Security Affairs

JANUARY 14, 2022

The North Korea-linked APT group BlueNoroff has been spotted targeting cryptocurrency startups with fake MetaMask browser extensions. The North Korea-linked APT group BlueNoroff has been spotted targeting cryptocurrency startups with fake MetaMask browser extensions. Follow me on Twitter: @securityaffairs and Facebook.

Cryptocurrency 123

Cryptocurrency Banking Malware Hacking 123

Security Affairs

DECEMBER 29, 2023

One of the key significant improvements are support of more software clients (including browser-based cryptocurrency wallets), upgraded credit card (CC) grabber, and additional advanced mechanisms for password storage dump on various platforms to extract credentials and tokens.

Password Management 144

Password Management Cryptocurrency Passwords Authentication 144

Security Affairs

JANUARY 31, 2021

The malware is an evolution of a Monero cryptocurrency miner that was first spotted by Unit 42 researchers in 2019. In our analysis, we found Pro-Ocean targeting Apache ActiveMQ (CVE-2016-3088), Oracle WebLogic (CVE-2017-10271) and Redis (unsecure instances).” ” reads the analysis published by Palo Alto Networks.

Malware 122

Malware Cryptocurrency Firewall Cybercrime 122

Security Affairs

OCTOBER 13, 2021

However, experts pointed out that the botnet uses more than 20 cryptocurrencies in total, for this reason the total financial gains could be greater than $24M. According to the researchers, the Smominru botnet has been active at least since 2016 and at the time of its discovery infected more than 526,000 Windows computers.

Cryptocurrency 134

Cryptocurrency Encryption Malware Hacking 134

Security Affairs

FEBRUARY 14, 2020

Larry Dean Harmon (36), from Akron, Ohio, was charged with laundering more than $310 million worth of Bitcoin while he was operating a Darknet-based cryptocurrency laundering service between 2014 and 2017. In November 2016, Harmon started a partnership with AlphaBay , the popular black market that was seized by authorities in July 2017.

Advertising 135

Advertising Cryptocurrency Cybercrime Engineering 135

Security Affairs

DECEMBER 17, 2021

Experts at Check Point Research have monitored the resurgence of the Phorpiex botnet, an old threat that was involved in sextortion spam campaigns , crypto-jacking, cryptocurrency clipping (substituting the original wallet address saved in the clipboard with the attacker’s wallet address during a transaction) and ransomware attacks in the past.

Cryptocurrency 129

Cryptocurrency Cybercrime Malware Hacking 129

Security Affairs

MAY 3, 2024

The Moobot botnet has been active since at least 2016, it also includes other routers and virtual private servers (VPS). The threat actors used the botnet harvest credentials, collect NTLMv2 digests, proxy network traffic, and host spear-phishing landing pages and custom tools. ” reported Trend Micro. ” concludes the report.

Phishing 127

Phishing Cryptocurrency Internet Internet 127

Security Affairs

APRIL 9, 2019

Yahoo is continuously trying to settle a lawsuit on the massive data breach over the period of 2013 to 2016. million settlement with millions of people whose email addresses and other personal information were stolen in the largest data breach in history”. She is a small business owner, traveler and investor of cryptocurrencies.

Data breaches 107

Data breaches Small Business Advertising Cryptocurrency 107

Security Affairs

DECEMBER 8, 2020

In 2017, Greek Police arrested the Russian national Alexander Vinnik and they accused the man of running the BTC-e Bitcoin exchange to launder more than US$4bn worth of the cryptocurrency. French authorities accused Vinnik of defrauding more than 100 people in six French cities between 2016 and 2018. million withdrawn.

Cryptocurrency 120

Cryptocurrency Hacking Ransomware Cybercrime 120

Security Affairs

DECEMBER 13, 2024

The Rydox marketplace has been active since February 2016, it facilitated over 7,600 sales of stolen PII, access devices, and cybercrime tools, generating $230,000 since 2016. It offered over 321,000 products to 18,000 users, including names, social security numbers, and hacking tools. Thousands of U.S. victims were affected.

Cybercrime 99

Cybercrime Identity Theft Cryptocurrency Hacking 99

Security Affairs

JANUARY 8, 2024

The black marketplace has been active since 2014, it was first analyzed by experts at Kaspersky Lab in 2016. In 2016 the service was offering up to 70,000 hacked servers for as little as $6, and with 416 registered sellers in 173 countries, the platform was operating a highly successful global business model.

Cybercrime 135

Cybercrime Identity Theft Government Hacking 135

Security Affairs

MARCH 17, 2022

The news wave of attacks aimed at cryptocurrency firms, most of them located in the U.S. TrickBot is a popular Windows banking Trojan that has been around since October 2016, its authors have continuously upgraded it by implementing new features, including powerful password-stealing capabilities.

Malware 134

Malware DNS Ransomware Passwords 134

Security Affairs

MARCH 12, 2020

The malware also uses an information-stealing technique, which was first seen in 2016 and related to the “AZORult” malware family. . “The malware uses a few layers of packing as well as a multi-sub-process technique to make research more difficult. ” continues the analysis.

Malware 145

Malware Advertising Passwords Cryptocurrency 145

Security Affairs

OCTOBER 19, 2020

In 2017, Greek Police arrested the Russian national Alexander Vinnik and they accused the man of running the BTC-e Bitcoin exchange to launder more than US$4bn worth of the cryptocurrency. French authorities accused Vinnik of defrauding more than 100 people in six French cities between 2016 and 2018. million withdrawn.

Advertising 136

Advertising Hacking Cybercrime Cryptocurrency 136

Security Affairs

JULY 7, 2019

This isn’t the first incident suffered by the company, Ubuntu , official Ubuntu forums had been hacked in July 2013, two times in July 2016. In May 2018, an Ubuntu user has spotted a Bytecoin cryptocurrency miner hidden in the source code of an Ubuntu Snap Pack in the Official Ubuntu Snap Store.

Accountability 111

Accountability Advertising Cryptocurrency Hacking 111

Security Affairs

AUGUST 29, 2020

The group is considered responsible for the massive WannaCry ransomware attack, a string of SWIFT attacks in 2016, the Sony Pictures hack , the FASTCash ATM attacks against banks, and attacks on multiple cryptocurrency exchanges.

Banking 144

Banking Malware Advertising Hacking 144

Security Affairs

FEBRUARY 25, 2021

The ThreatNeedle malware used in this campaign belongs to a malware family known as Manuscrypt, which belongs to the Lazarus group and has previously been seen attacking cryptocurrency businesses.” ” reads the press release published by Kaspersky.

Malware 130

Malware Cryptocurrency Password Management Encryption 130

Security Affairs

MAY 13, 2024

New Jersey’s Cybersecurity and Communications Integration Cell (NJCCIC) reported that since April, threat actors used the the Phorpiex botnet to send millions of phishing emails as part of a LockBit Black ransomware campaign.

Phishing 134

Phishing Ransomware Security Awareness Authentication 134

Security Affairs

JANUARY 1, 2023

Every week the best security articles from Security Affairs free for you in your email box. Personal health information of 42M Americans leaked between 2016 and 2021 Malvertising campaign MasquerAds abuses Google Ads New Linux malware targets WordPress sites by exploiting 30 bugs NETGEAR fixes a severe bug in its routers.

Cyber Attacks 98

Cyber Attacks Advertising Cryptocurrency Hacking 98

Security Affairs

MAY 18, 2023

22, 2016, and Oct. Mihalo earned at least $1 million worth of cryptocurrencies at the time of the sales, including Bitcoin, Ethereum, and Monero. Mihalo is suspected to be the leader of a team that helped him sell this stolen financial information on the darknet. . victims between Feb.

Marketing 98

Marketing Cryptocurrency Hacking Government 98

Security Affairs

SEPTEMBER 13, 2019

The groups are behind several hacking operations that resulted in the theft of hundreds of millions of dollars from financial institutions and cryptocurrency exchanges worldwide and destructive cyber-attacks on infrastructure. Lazarus Group is also considered the threat actors behind the 2018 massive WannaCry attack.

Cyber Attacks 106

Cyber Attacks Hacking Cryptocurrency Banking 106

Security Affairs

JULY 25, 2019

Researchers at Intezer have discovered a new variant of WatchBog, a Linux-based cryptocurrency mining botnet, that also includes a module to scan the Internet for Windows RDP servers vulnerable to the Bluekeep vulnerability (CVE-2019-0708). ” reads a blog post published by Intezer.

Cryptocurrency 103

Cryptocurrency Internet Internet Malware 103

Security Affairs

MAY 29, 2019

The payloads used in this campaign were droppers used to deliver a cryptocurrency miner to mine TurtleCoin cryptocurrency. The compile time for these files suggests that it had been created in 2016, but most AV engines still not detect them as malicious.

Cryptocurrency 107

Cryptocurrency Malware Telecommunications Advertising 107

Security Affairs

NOVEMBER 16, 2020

The group is considered responsible for the massive WannaCry ransomware attack, a string of SWIFT attacks in 2016, and the Sony Pictures hack. According to a report published by Kaspersky Lab in January 2020, in the two years the North Korea-linked APT group has continued to target cryptocurrency exchanges evolving its TTPs.

Malware 110

Malware Software Cryptocurrency Financial Services 110

Security Affairs

AUGUST 21, 2022

The loader is also designed to gather system information, retrieve a list of installed antivirus solutions, cryptocurrency wallets, banking, and mail apps, and exfiltrate the information to a remote server. ” reads the post published by Zscaler. That’s not all. ” concludes the report.

Banking 108

Banking Malware Antivirus Phishing 108

Security Affairs

OCTOBER 15, 2019

In addition to the C2 change, functionality was also added to their LSD malware to exploit ActiveMQ servers vulnerable to CVE-2016-3088.” The group also improved its LSD dropper by adding the malicious code to exploit CVE-2016-3088 in ActiveMQ servers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cybercrime 94

Cybercrime DNS Malware Advertising 94

Security Affairs

NOVEMBER 6, 2023

The proxy botnet has been active since at least 2016 but has remained under the radar. Threat actors offer traffic-forwarding proxies for malicious activities to subscribers for a price between $1 and $140 per day in cryptocurrency.

Malware 135

Malware Cryptocurrency Hacking Cybercrime 135

Security Affairs

FEBRUARY 13, 2022

US seizes $3.6 to replace Chinese equipment Hackers breached a server of National Games of China days before the event Russian Gamaredon APT is targeting Ukraine since October Israeli surveillance firm QuaDream emerges from the dark Argo CD flaw could allow stealing sensitive data from Kubernetes Apps.

Spyware 98

Spyware Ransomware Surveillance Hacking 98

Security Affairs

APRIL 26, 2021

Attackers are exploiting the ProxyLogon flaws in Microsoft Exchange to recruit machines in a cryptocurrency botnet tracked as Prometei. Attackers are exploiting the ProxyLogon flaws in Microsoft Exchange to recruit machines in a cryptocurrency botnet tracked as Prometei.

Malware 99

Malware Cryptocurrency Retail Insurance 99

Security Affairs

OCTOBER 26, 2022

The man, along with other individuals of a gang known as “ thedarkoverlord ,” trafficked in stolen social security numbers. Kaye laundered cryptocurrency obtained from the illegal The Real Deal operation through the mixing service Bitmixer.io. government agencies,” said U.S. government agencies [ PDF ].

Government 102

Government Marketing Hacking Accountability 102