eSecurity Planet

SEPTEMBER 14, 2022

Cybercrime is a growth industry like no other. According to statistics from the FBI’s 2021 Internet Crime Report , complaints to the Internet Crime Complaint Center (IC3) have been rising since 2017. Then, we’ll go over the basic, foundational techniques most scammers find themselves using, such as social engineering and phishing.

Social Engineering 120

Social Engineering Energy and Utilities Phishing Scams 120

IT Security Guru

JUNE 28, 2022

The pandemic has fuelled an increase in cybercrime that shows no signs of abating. Attacks on big brands make the headlines and the jargon used to describe vulnerabilities and malware is complex, making it appear to be a big enterprise issue. Small and medium sized enterprises caught in the cross hairs.

Cybersecurity 76

Cybersecurity Digital transformation Phishing Cybercrime 76

The Last Watchdog

JUNE 21, 2020

Balaban This ransomware was doing the rounds over spam generated by the Gameover ZeuS botnet, which had been originally launched in 2011 as a toolkit for stealing victim’s banking credentials and was repurposed for malware propagation. Forward outlook Ransomware is a dynamic and increasingly hybrid segment of cybercrime.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

SecureList

NOVEMBER 1, 2022

Since the malware in this incident was compiled on April 15, 2021, and compilation dates are the same for all known samples, this incident is likely to be the first involving Maui ransomware. This report included technical details of malware used in the campaign, such as Ecipekac, SodaMaster, P8RAT, FYAnti and QuasarRAT.

Malware 138

Malware Ransomware Spyware Encryption 138

eSecurity Planet

DECEMBER 21, 2021

The dangers from ransomware have risen sharply since WannaCry and NotPetya hit the scene in 2017, and this year has been no different. As cybercrime became more about monetization, cybercriminals began leveraging the currency for money laundering, fraud and other schemes, he said. Cybercrime Rewarded.

Cryptocurrency 140

Cryptocurrency Ransomware Cybercrime Social Engineering 140

SecureWorld News

OCTOBER 19, 2021

The malicious campaigns Charming Kitten are unleashing on unsuspecting victims makes use of superior social engineering, such as creating dummy accounts on Gmail that look realistic enough to trick users into clicking through. According to Google’s TAG blog, APT35 have been active since at least 2017, including attacks on the 2020 U.S.

Phishing 76

Phishing Social Engineering Authentication Government 76

Security Affairs

OCTOBER 10, 2018

Security firm Group-IB has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 Group-IB, an international company that specializes in preventing cyber attacks, has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 In December 2017, Group-IB published the first report on this group: “MoneyTaker: 1.5

Cyber Attacks 83

Cyber Attacks Banking Cyber threats Phishing 83

SecureList

NOVEMBER 17, 2021

Last year, we foresaw the APT and cybercrime worlds becoming more porous on an operational level. On September 24, the EU issued a statement regarding a disinformation campaign called “Ghostwriter”, ongoing since March 2017, intended to discredit NATO. Let’s start by looking at the predictions we made for 2021.

Mobile 127

Mobile Surveillance Ransomware Government 127

Security Affairs

NOVEMBER 19, 2019

The first half of 2019 saw a 10-fold increase in the number of password-protected objects, such as documents and archive files, being used to deliver malware. In 2017, password-protected archives accounted for only 0.08% of all malicious objects. Another trend was disguising malware in emails. Financial departments at high risk.

Ransomware 70

Ransomware Antivirus Malware Banking 70

SecureList

OCTOBER 6, 2022

During the pandemic, lockdowns forced people to stay at home and do their shopping online, which was mirrored in point-of-sale (PoS) and ATM malware activity, as certain regions saw malicious transactions drop significantly. Perpetrators continue to spread already-existing, widely used malware to attack PoS terminals and ATMs.

Malware 108

Malware Banking Software Cybercrime 108

Security Boulevard

JUNE 26, 2023

Unfortunately, the increasing reliance on digital systems and capabilities has also attracted an ever-growing number of malicious actors seeking to defraud businesses through phishing , social engineering , or ransomware attacks. The end result of these types of cyber attacks are often highly public and damaging data breaches.

Data breaches 52

Data breaches Healthcare Telecommunications Financial Services 52

Security Boulevard

AUGUST 2, 2022

Their attacks are usually low-skill and low-resource, such as using social engineering (phishing) for fraudulent redirects to malicious websites. Chainalysis reported that between January 2017 and April 2021 twelve “far-right” entities accumulated a total of 213 Bitcoin worth millions of dollars ( 12 ).

Cryptocurrency 98

Cryptocurrency Ransomware Government Risk 98

eSecurity Planet

DECEMBER 3, 2021

Brian Krebs is an independent investigative reporter known for his coverage of technology, malware , data breaches , and cybercrime developments. ICYMI, Equifax forced to pull offline a huge database of consumer data guarded only by credentials "admin/admin" [link] — briankrebs (@briankrebs) September 13, 2017.

Accountability 139

Accountability Cybersecurity Penetration Testing InfoSec 139

SecureList

APRIL 27, 2022

Disclaimer: when referring to APT groups as Russian-speaking, Chinese-speaking or other-“speaking” languages, we refer to various artefacts used by the groups (such as malware debugging strings, comments found in scripts, etc.) On February 23, ESET published a tweet announcing new wiper malware targeting Ukraine.

Malware 129

Malware Firmware Government Phishing 129

Security Affairs

AUGUST 1, 2022

The Australian Federal Police (AFP) launched an investigation into the case, codenamed Cepheus, in 2017 after it received information about a “suspicious RAT” from cybersecurity firm Palo Alto Networks and the U.S. The authorities believe the man earned between $300,000 and $400,000 from selling the malware.

Spyware 103

Spyware Malware Cybercrime Hacking 103

Security Affairs

NOVEMBER 21, 2019

There is misleading information circulating about Microsoft Teams, along with references to RDP (BlueKeep), as ways in which this malware spreads.” In our investigations we found that the malware relies on remote human operators using existing Domain Admin credentials to spread across an enterprise network.”

Ransomware 81

Ransomware Social Engineering Malware Advertising 81

Security Affairs

JUNE 20, 2020

The crooks exploited online tools and technology along with social engineering tactics to target the victims and steal usernames, passwords, and bank accounts. From September 2015 to June 2017, Olorunyomi and an accomplice engaged in a romance fraud scheme that resulted in losses of more than $1 million. Pierluigi Paganini.

Social Engineering 78

Social Engineering Scams Small Business Banking 78

SecureList

JULY 27, 2023

The most remarkable findings Early in June, we issued an early warning of a long-standing campaign that we track under the name Operation Triangulation , involving a previously unknown iOS malware platform distributed via zero-click iMessage exploits. Kaspersky employees were also affected by this threat.

Malware 82

Malware Government Phishing Social Engineering 82

SecureList

APRIL 27, 2021

In our initial report on Sunburst , we examined the method used by the malware to communicate with its C2 (command-and-control) server and the protocol used to upgrade victims for further exploitation. This campaign made use of a previously unknown malware family we dubbed FourteenHi. webshells and Exaramel implants.

Malware 137

Malware Spyware Government Social Engineering 137

Digital Shadows

NOVEMBER 1, 2022

For Lockbit, who have been the most active group since early 2021, it is possible that the current war between Russia and Ukraine may take law enforcement focus away from cybercrime as many western law enforcement agencies are likely more preoccupied with stopping Russian nation state sponsored activity.

Cyber threats 52

Cyber threats Ransomware Media Data breaches 52

eSecurity Planet

NOVEMBER 2, 2022

If you’ve used a computer for more than 5 minutes, you probably know a thing or two about computer viruses and malware. On the modern Internet, malware is a near-constant presence. Though often conflated with one another, malware and computer viruses aren’t necessarily the same thing. Looking to Protect Yourself Against Malware?

Malware 140

Malware Ransomware Antivirus Internet 140

SecureWorld News

FEBRUARY 17, 2022

Security researchers from Proofpoint have tracked an APT that has targeted the aviation, aerospace, transportation, manufacturing, and defense industries dating back to 2017, and are calling it TA2541. Proofpoint has tracked this threat actor since 2017, and it has used consistent tactics, techniques, and procedures (TTPs) in that time.

Social Engineering 82

Social Engineering Engineering Phishing Manufacturing 82

Krebs on Security

FEBRUARY 17, 2021

million in a 2018 ATM cash out scheme targeting a Pakistani bank; and a total of $112 million in virtual currencies stolen between 2017 and 2020 from cryptocurrency companies in Slovenia, Indonesia and New York. In reality, prosecutors say, the programs were malware or downloaded malware after the applications were installed.

Cryptocurrency 273

Cryptocurrency Financial Services Banking Government 273

SecureList

OCTOBER 26, 2021

Following this, they were tricked into downloading previously unknown malware. The backdoor, dubbed Tomiris, bears a number of similarities to the second-stage malware, Sunshuttle (aka GoldMax), used by DarkHalo last year. ShadowPad is a highly sophisticated, modular cyberattack platform that APT groups have used since 2017.

Malware 139

Malware Government Surveillance Spyware 139

ForAllSecure

APRIL 21, 2023

Mitnick was known for his social engineering skills, which he used to trick employees into divulging sensitive information or passwords. The 1980s also saw the emergence of computer viruses and malware as a significant threat to computer security. The 1990s also saw the emergence of a new type of hacker: the "script kiddie".

Hacking 75

Hacking Cybersecurity Internet Internet 75

SecureList

JULY 29, 2021

Moreover, we saw ShadowPad detections coincide with FourteenHi variant infections, possibly hinting at a shared operator between these two malware families. It is likely that APT31 uses them for other implants and ends as well (for example, exploit or malware staging). It is capable of performing basic backdoor functions.

Malware 139

Malware Phishing Password Management Social Engineering 139

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135

Adam Levin

DECEMBER 7, 2020

In April 2020, Google reported 18 million instances per day of malware and phishing email sent via its Gmail service using Covid-related topics as a lure. Many of the contact tracing scams of 2020 similarly followed social engineering scripts that have been used in taxpayer identity theft schemes since the 1990s as well.

IoT 130

IoT Artificial Intelligence Technology Scams 130

Cisco Security

MARCH 4, 2021

Without knowing much about me, she was very responsive and shared trust, insights, and tips in the right direction with me that contributed to my success and towards winning the social engineering capture-the-flag contest at DEF CON. I remember working on some research back in 2017. Following a Strategic Leader.

Cybersecurity 124

Cybersecurity Engineering Technology Education 124