Security Affairs

JANUARY 18, 2020

I’m preparing the slides for my next speech and I decided to create this post while searching for interesting cybercrime statistics in 2020. Cybercrime will cost as much as $6 trillion annually by 2021. The global expense for organizations to protect their systems from cybercrime attacks will continue to grow.

Cybercrime 125

Cybercrime Small Business Data breaches Mobile 125

Security Affairs

APRIL 5, 2023

The FBI seized the Genesis Market , a black marketplace for stolen credentials that was launched in 2017. The price for a stolen account was very cheap, paying a few dollars crooks were able to use it for a specific period. Genesis Market was an invite-only marketplace, but it was not complex to find invite codes online.

Marketing 83

Marketing Cybercrime Accountability Education 83

Security Affairs

SEPTEMBER 1, 2021

Securities and Exchange Commission (SEC) announced sanctions against several organizations over email account hacking. Securities and Exchange Commission (SEC) announced sanctions against eight entities belonging to three companies over email account hacking due to cybersecurity failures. Pierluigi Paganini.

Accountability 82

Accountability Hacking Financial Services Cybersecurity 82

Security Affairs

JUNE 9, 2023

Two Russian nationals have been charged with the hack of the cryptocurrency exchange Mt. Russian nationals Alexey Bilyuchenko (43) and Aleksandr Verner (29) have been charged with the hack of the cryptocurrency exchange Mt. million to overseas bank accounts controlled by Bilyuchenko, Verner, and their co-conspirators.”

Hacking 86

Hacking Cryptocurrency Advertising Banking 86

Krebs on Security

MAY 4, 2023

government this week put a $10 million bounty on the head of a Russian man who for the past 18 years operated Try2Check , one of the cybercrime underground’s most trusted services for checking the validity of stolen credit card data. In 2017, U.S. was used to register an account with the username “Nordex” at bankir[.]com

Marketing 235

Marketing Cybercrime Accountability Cryptocurrency 235

Krebs on Security

OCTOBER 15, 2019

“ BriansClub ,” one of the largest underground stores for buying stolen credit card data, has itself been hacked. All of the card data stolen from BriansClub was shared with multiple sources who work closely with financial institutions to identify and monitor or reissue cards that show up for sale in the cybercrime underground.

Hacking 212

Hacking Cybercrime Marketing Banking 212

Security Affairs

SEPTEMBER 16, 2022

According to the New York Times , the threat actors hacked an employee’s Slack account and used it to inform internal personnel that the company had “suffered a data breach” and provided a list of allegedly hacked internal databases. “I SecurityAffairs – hacking, Uber). states the message.

Hacking 133

Hacking Data breaches Engineering Information Security 133

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. These services, too, have been outsourced.

Cybercrime 136

Cybercrime Banking Malware Ransomware 136

Security Affairs

APRIL 24, 2023

Truebot has been active since 2017 and some researchers linked it to the Russian Silence Group , while a recent investigation linked it to threat actor TA505 (aka Evil Corp). .” The researchers noticed that the domain hosting the tools employed in the attack, windowservicecemter[.]com, com, was registered on April 12, 2023.

Cybercrime 74

Cybercrime Software Education Ransomware 74

Security Affairs

NOVEMBER 16, 2018

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. In 2017-2018 hackers’ interest in cryptocurrency exchanges ramped up. New cybercrime groups are also expected to start operations in Asia and Latin America. Attacks on Crypto.

Cybercrime 83

Cybercrime Hacking Banking Phishing 83

Security Affairs

NOVEMBER 3, 2018

Cybercriminals offered for sale private messages from at least 81,000 Facebook accounts claiming of being in possession of data from 120 million accounts. Crooks are offering for sale Criminals are selling the private messages of 81,000 hacked Facebook accounts for 10 cents per account. ” states the BBC.

Accountability 98

Accountability Advertising Cybercrime Hacking 98

Krebs on Security

AUGUST 9, 2021

Also, this greenhorn criminal clearly had bought into BriansClub’s advertising, which uses my name and likeness in a series of ads that run on all the top cybercrime forums. That was right after KrebsOnSecurity broke the news that someone had hacked BriansClub and siphoned information on 26 million stolen debit and credit accounts.

Phishing 355

Phishing Cybercrime Accountability Advertising 355

Security Affairs

SEPTEMBER 21, 2019

US authorities have indicted two men for hacking the exchange EtherDelta in December 2017, one of them was also accused of TalkTalk hack. US authorities have indicted two men, Elliot Gunton and Anthony Tyler Nashatka, for hacking the cryptocurrency exchange EtherDelta in 2017. Six days later, on December 19, 2017.

Hacking 79

Hacking DNS Cryptocurrency Accountability 79

Krebs on Security

DECEMBER 8, 2021

There is a now-dormant Myspace account for a Matthew Philbert from Orleans, a suburb of Ottawa, Ontario. The information tied to the Myspace account matches the age and town of the defendant. The Myspace account was registered under the nickname “ Darkcloudowner ,” and to the email address dark_cl0ud6@hotmail.com.

Cybercrime 275

Cybercrime Ransomware Accountability Advertising 275

Krebs on Security

DECEMBER 3, 2021

Since the beginning of 2020, Babam has set up numerous auctions on the Russian-language cybercrime forum Exploit , mainly selling virtual private networking (VPN) credentials stolen from various companies. Verified was hacked at least twice in the past five years, and its user database posted online. com (2017).

Ransomware 296

Ransomware Passwords Accountability Cybercrime 296

Security Affairs

OCTOBER 16, 2023

The researchers speculate the originating accounts of the instant messaging applications were compromised through the leaked credentials available on cybercrime forums. The message sent to the victims from a compromised Skype account contains a VBS script with a filename following the following format: <filename.pdf> www.skype[.]vbs.

Malware 106

Malware Cryptocurrency Accountability Cybercrime 106

Security Affairs

JULY 17, 2023

In April, the FBI seized the Genesis Market , a black marketplace for stolen credentials that was launched in 2017. The price for a stolen account was very cheap, paying a few dollars crooks were able to use it for a specific period. Accounts on the forums will not be transferred, the new owner will create new accounts if necessary.”

Marketing 83

Marketing Accountability Cybercrime Passwords 83

Security Affairs

MAY 6, 2024

Alexander Vinnik , a Russian national, pleaded guilty to conspiracy to commit money laundering for his involvement in operating the cryptocurrency exchange BTC-e from 2011 to 2017. In July 2017 law enforcement shut down the virtual currency exchange.

Cryptocurrency 95

Cryptocurrency Computers and Electronics Identity Theft Hacking 95

Security Affairs

SEPTEMBER 24, 2023

. “According to his plea agreement, from February 2017 until at least July 2017, Simon-Ebo conspired with others to perpetrate a BEC scheme.” ” reads the press release published by DoJ. ” During the same period, Simon-Ebo and his co-conspirators conspired to commit money laundering. .

Accountability 107

Accountability Banking Hacking Cybercrime 107

Security Affairs

MARCH 14, 2024

Stolen data included corporate files and personal information Nissan refused to pay the ransom and the cybercrime group published the alleged stolen files. In December 2017, Nissan Finance Canada was hacked , personal information of 1.13 This week, Nissan Oceania announced that it started notifying the impacted individuals.

Data breaches 93

Data breaches Identity Theft Financial Services Cybercrime 93

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). Iarmak is the third member of the FIN7 cybercrime group to be sentenced in the U.S. in May 2020.

Cybercrime 105

Cybercrime Hacking Software Phishing 105

Krebs on Security

MAY 18, 2020

Almost daily now there is news about flaws in commercial software that lead to computers getting hacked and seeded with malware. But the reality is most malicious software also has its share of security holes that open the door for security researchers or ne’er-do-wells to liberate or else seize control over already-hacked systems.

Malware 314

Malware Cybercrime Ransomware Marketing 314

Krebs on Security

SEPTEMBER 30, 2023

.” New York City-based cyber intelligence firm Flashpoint said the Snatch ransomware group was created in 2018, based on Truniger’s recruitment both on Russian language cybercrime forums and public Russian programming boards. was also used to register an account at the online game stalker[.]so ru account and posted as him.

Ransomware 218

Ransomware Accountability Cybercrime Backups 218

Security Affairs

NOVEMBER 18, 2018

Daniel’s Hosting became the largest Dark Web hosting provider earlier 2017 when Anonymous members breached and took down Freedom Hosting II. The attackers exploited a PHP zero-day exploit leaked just a day before the hack and that was already fixed in db626a54a4f5 , but likely attackers used other flaws. Who is the culprit?

Hacking 99

Hacking Advertising Cybercrime Accountability 99

Security Affairs

JANUARY 2, 2021

Ticketmaster agreed to pay a $10 million fine for hacking into the computer system of the startup rival CrowdSurge. The attacks aimed at stealing information to gain an advantage over CrowdSurge, which was acquired by Warner Music Group (WMG) in 2017. ” Both Mead and Zaidi were fired by Ticketmaster in 2017.

Hacking 85

Hacking Passwords Accountability Cybercrime 85

Krebs on Security

MARCH 8, 2019

Unfortunately, if you don’t already have an account at the credit bureau’s new myEquifax portal , it may be simple for identity thieves to lift an existing credit freeze at Equifax and bypass the PIN armed with little more than your, name, Social Security number and birthday. Getting an account at myequifax.com was easy.

Accountability 268

Accountability Identity Theft Authentication Passwords 268

Security Affairs

OCTOBER 26, 2022

. “Kaye allegedly operated The Real Deal, a Dark Web market for illicit items, including stolen account login credentials for U.S. ” The now-defunct Real Deal marketplace was used by crooks to sell and buy illegal goods and services, including narcotics, hacking tools and stolen login credentials. . Attorney Ryan K.

Marketing 87

Marketing Government Hacking Accountability 87

Security Affairs

OCTOBER 19, 2020

Alexander Vinnik allegedly headed the Bitcoin exchange BTC-e, he is charged with different hacking crimes in Russia, France, and the United States. In 2017, Greek Police arrested the Russian national Alexander Vinnik and they accused the man of running the BTC-e Bitcoin exchange to launder more than US$4bn worth of the cryptocurrency.

Advertising 117

Advertising Cybercrime Hacking Cryptocurrency 117

Security Affairs

APRIL 6, 2022

The seizure of the Hydra Market is the result of an international investigation conducted by the Central Office for Combating Cybercrime (ZIT) in partnership with U.S. “Hydra quickly rose to become the most prominent Russian-language darknet market after the closure of a key competitor in 2017. SecurityAffairs – hacking, Hydra).

Marketing 90

Marketing Cybercrime Advertising Hacking 90

Krebs on Security

JULY 18, 2022

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. In a 2017 discussion on fl.l33t[.]su

VPN 304

VPN Computers and Electronics Antivirus Software 304

Krebs on Security

AUGUST 12, 2018

” Organized cybercrime gangs that coordinate unlimited attacks typically do so by hacking or phishing their way into a bank or payment card processor. “At a pre-determined time, the co-conspirators withdraw account funds from ATMs using these cards.”

Banking 215

Banking Accountability Retail Phishing 215

Security Affairs

NOVEMBER 25, 2020

Group-IB supported an INTERPOL-led operation Falcon targeting business email compromise cybercrime gang from Nigeria, dubbed TMT. Group-IB , a global threat hunting and intelligence company, supported an INTERPOL-led operation Falcon targeting business email compromise (BEC) cybercrime gang from Nigeria, dubbed TMT by Group-IB.

Cybercrime 127

Cybercrime Phishing Social Engineering Spyware 127

Security Affairs

OCTOBER 5, 2022

Narelle Devine, the company’s chief information security officer for the Asia Pacific region, added that no customer account information was stored on the third-party platform. Data leaked online was from 2017, it includes the names (first and last) and email addresses used to sign up for the employee rewards program.

Data breaches 87

Data breaches Telecommunications Accountability Information Security 87

Security Affairs

APRIL 6, 2022

The seizure of the Hydra Market is the result of an international investigation conducted by the Central Office for Combating Cybercrime (ZIT) in partnership with U.S. Hydra quickly rose to become the most prominent Russian-language darknet market after the closure of a key competitor in 2017. SecurityAffairs – hacking, cybercrime).

Marketing 102

Marketing Cybercrime Advertising Hacking 102

Security Affairs

JUNE 24, 2020

According to the experts, the group is not extremely technically advanced and was responsible for five successful hacks in the United States, Japan, and the Middle East. ” The initial phishing messages are always sent to personal email accounts, rather than the corporate ones, due to their lower level of security. .”

Cryptocurrency 102

Cryptocurrency Phishing Accountability Passwords 102

Security Affairs

OCTOBER 12, 2023

The Balada injector is a malware family that has been active since 2017. “Doctor Web has discovered a malicious Linux program that hacks websites based on a WordPress CMS. In another wave, the threat actors were observed using a malicious script to create rogue WordPress administrator accounts.

Malware 114

Malware Hacking Accountability Cybercrime 114

Security Affairs

APRIL 10, 2023

MERCURY (aka MuddyWater , SeedWorm and TEMP.Zagros ) has been active since at least 2017, in January 2022 the USCYBERCOM has officially linked the Iran-linked APT group to Iran’s Ministry of Intelligence and Security (MOIS). Threat actors masqueraded the attacks as a standard ransomware operation.

Ransomware 88

Ransomware Cybercrime VPN Education 88