Krebs on Security

AUGUST 17, 2023

You’ve probably never heard of “ 16Shop ,” but there’s a good chance someone using it has tried to phish you. A 16Shop phishing page spoofing Apple and targeting Japanese users. Image: Akamai.com. The INTERPOL statement says the platform sold hacking tools to compromise more than 70,000 users in 43 countries.

Phishing 242

Phishing Passwords Hacking Insurance 242

Krebs on Security

FEBRUARY 17, 2021

Secret Service and Department of Homeland Security told reporters on Wednesday the trio’s activities involved extortion, phishing, direct attacks on financial institutions and ATM networks, as well as malicious applications that masqueraded as software tools to help people manage their cryptocurrency holdings.

Cryptocurrency 344

Cryptocurrency Financial Services Banking Government 344

Security Affairs

JANUARY 18, 2020

I’m preparing the slides for my next speech and I decided to create this post while searching for interesting cybercrime statistics in 2020. Cybercrime will cost as much as $6 trillion annually by 2021. The global expense for organizations to protect their systems from cybercrime attacks will continue to grow.

Cybercrime 143

Cybercrime Small Business Data breaches Mobile 143

Tech Republic Security

APRIL 27, 2017

According to Verizon's 2017 Data Breach Investigations Report, espionage-related attacks are growing in popularity, with malware and phishing still go-to tools for hackers as well.

Cybercrime 158

Cybercrime Data breaches Phishing Malware 158

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means. ” reads the alert published by the FBI. Pierluigi Paganini.

Cybercrime 145

Cybercrime Education Accountability Phishing 145

Krebs on Security

AUGUST 19, 2020

The COVID-19 epidemic has brought a wave of email phishing attacks that try to trick work-at-home employees into giving away credentials needed to remotely access their employers’ networks. The employee phishing page bofaticket[.]com. Image: urlscan.io.

Phishing 363

Phishing VPN Social Engineering Media 363

SecureWorld News

APRIL 22, 2025

A sophisticated cybercrime campaign, dubbed Elusive Comet , has been uncovered, in which North Korean threat actors are exploiting Zoom's remote control feature to infiltrate the systems of cryptocurrency professionals. Victims are sent unsolicited invitations to join Zoom calls, often via links in phishing emails or messages.

Cryptocurrency 90

Cryptocurrency Social Engineering Cybercrime Engineering 90

Krebs on Security

SEPTEMBER 6, 2021

In May 2015, KrebsOnSecurity briefly profiled “ The Manipulaters ,” the name chosen by a prolific cybercrime group based in Pakistan that was very publicly selling spam tools and a range of services for crafting, hosting and deploying malicious email. One of several current Fudtools sites run by The Manipulaters.

Software 317

Software Phishing Cybercrime Accountability 317

Security Affairs

APRIL 25, 2019

Experts at Proofpoint discovered that free code repositories on GitHub have been abused since at least 2017 to host phishing websites. Researchers at Proofpoint reported that crooks are abusing free code repositories on GitHub to host phishing websites and bypass security defenses. SecurityAffairs – GitHub, cybercrime).

Phishing 108

Phishing Advertising Accountability Cybercrime 108

Malwarebytes

JUNE 8, 2021

Sometimes, it’s used even if an attack being discussed is a basic phish, or maybe some very generic malware. A Latvian woman has been charged for their alleged role in a transnational cybercrime organisation. As touched on above, the group hired experts in a variety of cybercrime fields. What happened this week, you ask?

Cybercrime 119

Cybercrime Malware Banking Phishing 119

CyberSecurity Insiders

JANUARY 3, 2023

Already some have used the OpenAI platform to have ChatGPT write phishing emails and insert malicious links. The emails don’t have the usual spelling, grammar, and syntax errors that today’s phishing messages composed by non-native-English speakers tend to contain – errors that serve as a tip-off to recipients.

Technology 135

Technology Cybercrime Government Artificial Intelligence 135

Krebs on Security

JULY 25, 2018

The upshot of this weakness is that cyber criminals could harvest the data and use it in targeted phishing campaigns that spoof LifeLock’s brand. According to LifeLock’s marketing literature as of January 2017, the company has more than 4.5 That’s a pretty sharp spear for my spear phishing right there.

Identity Theft 198

Identity Theft Consumer Protection Phishing Marketing 198

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135

Security Affairs

NOVEMBER 16, 2018

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. In 2017-2018 hackers’ interest in cryptocurrency exchanges ramped up. New cybercrime groups are also expected to start operations in Asia and Latin America. Attacks on Crypto.

Cybercrime 108

Cybercrime Hacking Banking Phishing 108

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime 145

Cybercrime Banking Malware Ransomware 145

Security Affairs

NOVEMBER 17, 2022

A China-based financially motivated group, tracked as Fangxiao, is behind a large-scale phishing campaign dating back as far as 2019. Researchers from Cyjax reported that a China-based financially motivated group, dubbed Fangxiao, orchestrated a large-scale phishing campaign since 2017. SecurityAffairs – hacking, phishing).

Phishing 129

Phishing Adware Retail Malware 129

Krebs on Security

MAY 7, 2025

” Launched in 2017, eWorldTrade[.]com The authorities called it “the biggest money laundering case in the history of Pakistan,” and named a number of businesses based in Texas that allegedly helped move the proceeds of cybercrime. com now features a seizure notice from the DOJ. ” Reached via LinkedIn, Mr.

Scams 270

Scams Marketing Advertising Technology 270

CSO Magazine

MARCH 23, 2022

A new report released by the FBI's Internet Crime Complaint Center (IC3) shows that financial losses due to suspected cybercrime continued to rise sharply over the course of 2021, to a total of $6.9 billion in that year alone, with 847,000 complaints lodged by victims. billion, on 301,580 complaints.

Cybercrime 83

Cybercrime Internet Internet Phishing 83

Krebs on Security

AUGUST 25, 2023

And there are indications that fraudsters may already be exploiting the stolen data in phishing attacks. SIM-swapping groups will often call employees on their mobile devices, pretend to be someone from the company’s IT department, and then try to get the employee to visit a phishing website that mimics the company’s login page.

Mobile 244

Mobile Cyber Risk Data breaches Cryptocurrency 244

Krebs on Security

JULY 24, 2018

Hackers used phishing emails to break into a Virginia bank in two separate cyber intrusions over an eight-month period, making off with more than $2.4 7 and 9, 2017, the hackers modified or removed critical security controls and withdrew the fraudulent credits using hundreds of ATMs. million total. Between Jan. THE LAWSUIT.

Banking 198

Banking Insurance Computers and Electronics Cyber Insurance 198

Security Affairs

NOVEMBER 25, 2020

Group-IB supported an INTERPOL-led operation Falcon targeting business email compromise cybercrime gang from Nigeria, dubbed TMT. Group-IB , a global threat hunting and intelligence company, supported an INTERPOL-led operation Falcon targeting business email compromise (BEC) cybercrime gang from Nigeria, dubbed TMT by Group-IB.

Cybercrime 137

Cybercrime Phishing Social Engineering Spyware 137

Krebs on Security

AUGUST 12, 2018

” Organized cybercrime gangs that coordinate unlimited attacks typically do so by hacking or phishing their way into a bank or payment card processor. million from accounts at the National Bank of Blacksburg in two separate ATM cashouts between May 2016 and January 2017.

Banking 228

Banking Accountability Phishing Authentication 228

Krebs on Security

MAY 23, 2024

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are also massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. The user dfyz on Searchengines[.]ru

DDOS 334

DDOS Internet Internet Government 334

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). Iarmak is the third member of the FIN7 cybercrime group to be sentenced in the U.S. in May 2020.

Cybercrime 130

Cybercrime Hacking Software Phishing 130

Security Affairs

MARCH 17, 2020

FireEye compiled the report using data from dozens of ransomware infections that it has investigated from 2017 to 2019. Experts also analyzed initial infection vectors across multiple ransomware incidents, including RDP, phishing attacks, and drive-by-download of malware. SecurityAffairs – ransomware attacks, cybercrime).

Ransomware 143

Ransomware Advertising Malware Cybercrime 143

Malwarebytes

MARCH 29, 2022

We’ve also observed several different wipers and cybercrime groups such as FormBook using the same tactics. These methods include using documents that exploit CVE-2017-0199 and CVE-2021-40444, macro-embedded documents, and executables. Figure 1: Phishing template. Figure 2: Phishing template. Victimology.

Phishing 90

Phishing Education Telecommunications Technology 90

SecureWorld News

JUNE 10, 2020

Clients hired a group of perpetrators to phish and hack their way across an amazing array of industry verticals like banking, education, energy, law, media, government, and more. And just wait until you find out who is accused of running this cybercrime scheme. You could hire Dark Basin to phish up some dirt of your own.

Phishing 84

Phishing Hacking Cybercrime Passwords 84

Security Affairs

NOVEMBER 28, 2019

Security experts at Kaspersky have published a report on a targeted cybercrime malware campaign, tracked as RevengeHotels, that hit hotels, hostels, hospitality and tourism companies. The attackers carried out spear-phishing campaigns using weaponized Word, Excel or PDF documents as attachments.

Cybercrime 131

Cybercrime Malware Advertising Phishing 131

SecureWorld News

OCTOBER 7, 2024

In a significant win against cybercrime, Microsoft, in collaboration with the U.S. Between January 2023 and August 2024, Star Blizzard launched persistent spear-phishing campaigns targeting civil society organizations, U.S. government agencies, and private companies. democratic processes is of utmost concern."

Hacking 109

Hacking Cybercrime Phishing Government 109

Malwarebytes

MAY 10, 2024

Dell is warning its customers about a data breach after a cybercriminal offered a 49 million-record database of information about Dell customers on a cybercrime forum. Some forms of two-factor authentication (2FA) can be phished just as easily as a password. 2FA that relies on a FIDO2 device can’t be phished. Take your time.

Data breaches 140

Data breaches Passwords Phishing Big data 140

Security Affairs

AUGUST 3, 2018

Industrial sector hit by a surgical spear-phishing campaign aimed at installing legitimate remote administration software on victims’ machines. Attackers personalized the content of each phishing email reflecting the activity of the target organization and the type of work performed by the employee to whom the email is sent.

Phishing 69

Phishing VPN Passwords Software 69

Security Affairs

JUNE 24, 2020

. “While the group’s key infiltration vector to the exchange is usually through spear-phishing against the corporate network, the executives’ personal email accounts are the first to be targeted.” Online cryptocurrency exchanges are a privileged target for cybercrime groups and nation-state actors.

Cryptocurrency 114

Cryptocurrency Phishing Accountability Passwords 114

Security Affairs

OCTOBER 10, 2018

Security firm Group-IB has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 Group-IB, an international company that specializes in preventing cyber attacks, has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 In December 2017, Group-IB published the first report on this group: “MoneyTaker: 1.5

Cyber Attacks 108

Cyber Attacks Banking Cyber threats Phishing 108

Security Affairs

JUNE 12, 2019

The last time security experts documented the FIN8’s activities was in 2016 and 2017. FireEye documented obfuscation techniques used by the group in June 2017 and the involvement of PUNCHTRACK POS-scraping malware. “It is believed that the malware was deployed as a result of several phishing attempts.”

Hacking 106

Hacking Malware Advertising Cybercrime 106

Security Affairs

AUGUST 24, 2019

Grant West, aka ‘Courvoisier,’ is a hacker that was arrested by the police on September 2017 as result of a two-year-long investigation code-named ‘Operation Draba.’ He predominately used ‘phishing’ email scams to obtain the financial data of tens of thousands of customers. Pierluigi Paganini.

Cryptocurrency 107

Cryptocurrency Scams Cybercrime Phishing 107

CyberSecurity Insiders

NOVEMBER 8, 2022

BitDefender Mobile Security feature assists customers in protecting against malware spread and phishing scams. NOTE 2 – Bitdefender has been assisting Europol European Cybercrime Centre in solving cyber crime from the year 2017 and is also assisting Interpol from the year 2020.

Mobile 101

Mobile Antivirus IoT VPN 101

Security Affairs

OCTOBER 15, 2018

Group-IB: The online market for counterfeit goods in Russia has reached $1,5 billion, while the number of phishing attacks has surpassed 1,200 daily. billion in 2017, compared to $1.2 Fraudsters use various ways to deceive users: phishing websites, fake mobile apps, accounts and groups on social media. billion in 2016.

Marketing 104

Marketing Phishing Media Engineering 104