SecureList

FEBRUARY 23, 2022

SpyEye, developed in 2009 and described as a “bank Trojan with a form grabbing capability”, surged from the eighth most common banking malware tool with a 3.4% Emotet (9.3%), described by Europol as “the world’s most dangerous malware”, underwent a drop of five percentage points between 2020 and 2021.This

Banking 99

Banking Phishing Cryptocurrency Malware 99

Malwarebytes

APRIL 19, 2022

A new advisory issued by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the US Treasury Department (Treasury), highlights the cyberthreats associated with cryptocurrency thefts and tactics used by a North Korean state-sponsored advanced persistent threat (APT) group since at least 2020.

Social Engineering 114

Social Engineering Cryptocurrency Computers and Electronics Engineering 114

SecureList

MARCH 29, 2023

However, traditional financial threats – such as banking malware and financial phishing, continue to take up a significant share of such financially-motivated cyberattacks. For instance, malicious spam campaigns targeting organizations grew 10-fold in April 2022, spreading Qbot and Emotet malware.

Banking 75

Banking Phishing Cryptocurrency Mobile 75

CyberSecurity Insiders

APRIL 5, 2023

According to a study conducted by se-curity firm Mandiant, the group has been in operation since 2018 and has now been tasked with carrying out both espionage and financially motivated attacks such as credential harvesting and social engineering.

Hacking 105

Hacking Social Engineering Cryptocurrency Manufacturing 105

SC Magazine

FEBRUARY 17, 2021

Charges against one of the three were first brought in 2018. billion in currency and cryptocurrency and further other strategic interests for the North Korean government. Park was already charged in 2018 for the WannaCry attacks, and the indictment expands charges against him for other hacking campaigns.

Hacking 103

Hacking Cryptocurrency Banking Malware 103

SecureList

MARCH 31, 2021

A few Brazilian malware families expanded their operations to other continents, targeting victims in Europe and Asia. Even though, in 2020, we have seen ever more sophisticated cyberattacks, the overall statistics look encouraging: the number of users hit by computer and mobile malware declines, so does financial phishing.

Banking 121

Banking Phishing Malware Mobile 121

SiteLock

AUGUST 27, 2021

In fact, website attacks increased 14 percent in Q1 2018 compared to Q4 2017 as cybercriminals set their sights on independent websites and small businesses. The SiteLock Website Security Insider Q1 2018 analyzes data from over 10 million websites to pinpoint the threats website owners need to be aware of.

Small Business 52

Small Business Media Risk Data breaches 52

SecureList

MARCH 1, 2021

The mobile malware Trojan-Ransom.AndroidOS.Agent.aq Last year was notable for both malware and adware, the two very close in terms of capabilities. Users attacked by adware in 2018 through 2020 ( download ). Interestingly enough, the share of adware attacks increased in relation to mobile malware in general.

Mobile 136

Mobile Malware Adware Banking 136

CyberSecurity Insiders

APRIL 19, 2023

Trigona was first spotted in October 2022 by MalwareHunterTeam, who analyzed the possibilities and concluded that the malware-spreading gang uses Monero Cryptocurrency from their victims to offer a decryption key in exchange.

Ransomware 96

Ransomware Cryptocurrency Banking Cyber Attacks 96

Krebs on Security

APRIL 7, 2022

The DOJ said it did not seek to disinfect compromised devices; instead, it obtained court orders to remove the Cyclops Blink malware from its “command and control” servers — the hidden machines that allowed the attackers to orchestrate the activities of the botnet. energy facilities. ” HYDRA. . ” HYDRA. .

Marketing 249

Marketing Energy and Utilities Malware Ransomware 249

Security Affairs

SEPTEMBER 9, 2018

Researchers from Kaspersky have published a new report on the attacks on ICS systems observed by its products in the first half of 2018. Kaspersky Lab experts have published a new report titled “Threat Landscape for Industrial Automation Systems” report for H1 2018, that includes interesting data related to attacks against the ICS systems.

Internet 52

Internet Internet Advertising Malware 52

Security Affairs

OCTOBER 18, 2018

Group-IB has estimated that crypto exchanges suffered a total loss of $882 million due to targeted attacks between 2017 and 2018. This data was included in the annual Hi-Tech Crime Trends 2018 report, presented by Group-IB CTO, Dmitry Volkov, at the sixth international Cyber?rimeCon rimeCon conference.

Cyber Attacks 86

Cyber Attacks Cryptocurrency Phishing Social Engineering 86

SecureList

MARCH 3, 2022

Percentage of ICS computers on which malicious objects were blocked, January – December 2018 – 2021 ( download ). It is also worth noting that in 2021 the vectors of monthly fluctuations (increases and decreases) are the same as those in 2019 and, particularly, in 2018 more often than in 2020. Selected industries. Malicious objects.

Spyware 89

Spyware Ransomware Cryptocurrency Phishing 89

Security Affairs

NOVEMBER 19, 2021

Since 2018, Proofpoint researchers tracked the activity associated with TA406 as three distinct threat actors, namely TA406, TA408 and TA427. TA406 doesn’t usually employ malware in its campaigns, however, researchers tracked two campaigns that were attempting to distribute information-stealer malware. ” reads the report.

Cryptocurrency 85

Cryptocurrency Malware Government Education 85

SiteLock

AUGUST 27, 2021

detected between January and May 2018, it could pose a significant threat to your livelihood and business’s reputation. This article explains exactly what you need to know about cryptojacking, cryptocurrency, and how it directly impacts website security. In Q1 2018, SiteLock reported that 1 percent of malicious files.

Cryptocurrency 52

Cryptocurrency Marketing Small Business Malware 52

Security Affairs

AUGUST 7, 2018

Group-IB researchers have investigated user data leaks from cryptocurrency exchanges and has analyzed the nature of these incidents. In 2017, when cryptocurrencies were gaining momentum, their record-breaking capitalization and a spike in Bitcoin’s exchange rate led to dozens of attacks on cryptocurrency services.

Cryptocurrency 48

Cryptocurrency Passwords Authentication Accountability 48

SC Magazine

FEBRUARY 25, 2021

Researchers at Kasperksy have tied a piece of malware used by Lazarus Group last seen targeting security vulnerability researchers earlier this year to another campaign by the North Korean hacking group focused on pilfering sensitive data from defense contractors across 12 countries since 2020.

Malware 86

Malware Media Technology Phishing 86

Security Affairs

FEBRUARY 17, 2021

The indictment unsealed today charges two North Korean officials, Jon Chang Hyok (31), and Kim Il (27), and expands the charges initially brought against Park Jin- hyok in 2018 by the DoJ. In 2018, the U.S. government as “ FASTCash ” – including the October 2018 theft of $6.1 ” reads the press release published by the DoJ.

Cryptocurrency 73

Cryptocurrency Banking Hacking Ransomware 73

Malwarebytes

OCTOBER 20, 2022

A phishing campaign known to specifically target employees with access to their company's Facebook Business and Ads accounts has significantly widened its net and begun using a first-of-its-kind information-stealing malware to go after crypto wallets. Social engineering attacks and malware form the core of Ducktail's modus operandi.

Social Engineering 74

Social Engineering Malware Accountability Engineering 74

SiteLock

AUGUST 27, 2021

Short for “malicious software,” malware is a very common threat used to steal sensitive customer data, distribute spam, allow cybercriminals to access your site, and more. Your site may be removed from search engine results and flagged with a warning that turns visitors away if search engines find malware. Phishing schemes.

Small Business 98

Small Business Malware DDOS Engineering 98

SecureList

NOVEMBER 23, 2021

We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular. Currently, at a value of approximately $60,000, cybercriminals have adapted their malware to monitor the operating system’s clipboard and redirect funds to addresses under their control. MageCart attacks moving to the server side.

Cryptocurrency 110

Cryptocurrency Banking Cybercrime Ransomware 110

Security Affairs

JANUARY 13, 2019

Proofpoint analyzed two strains of malware tracked as ServHelper and FlawedGrace distributed through phishing campaigns by the TA505 crime gang. Security researchers at Proofpoint researchers discovered two strains of malware tracked as ServHelper and FlawedGrace distributed through phishing campaigns by the TA505 crime gang.

Malware 91

Malware DNS Financial Services Retail 91

SiteLock

AUGUST 31, 2021

Ryuk ransomware is a highly aggressive and widespread type of malware that first appeared in 2018 when it began attacking large, high-profile institutions running on Microsoft Windows operating systems. Like many forms of malware, Ryuk is an evolving threat, becoming more destructive with each variant. Safeguarding your data.

Ransomware 52

Ransomware Healthcare Malware Encryption 52

Security Affairs

OCTOBER 23, 2018

A new version of the Azorult info-stealer appeared in the wild, it is able to steal more data, including other types of cryptocurrencies. A new version of the Azorult info-stealer appeared in the wild, it is able to steal more data, including other types of cryptocurrencies, and implements new features. ” continues CheckPoint.

Marketing 77

Marketing Cybercrime Cryptocurrency Advertising 77

Security Affairs

APRIL 26, 2019

Security experts at Symantec have uncovered a new cryptojacking campaign tracked as Beapy that leverages the NSA’s DoublePulsar backdoor and the EternalBlue exploit to spread a cryptocurrency malware on enterprise networks in Asia. ” reads the analysis published Symantec. “ Beapy ( W32.Beapy

Cryptocurrency 58

Cryptocurrency Malware Advertising Phishing 58

Adam Levin

JULY 8, 2020

Many of these faux-Zoom sites were used to distribute malware under the guise of links to online meetings. Hackers were also quick to pounce on the disruption caused by the 2018 shutdown of the U.S. A recent domain hijack of Japanese cryptocurrency exchange Coincheck.com was used to spoof the company in a spear-phishing campaign.

Hacking 130

Hacking Retail Cyber Insurance Authentication 130

Malwarebytes

MAY 5, 2022

As the FBI points out, the goal is not always a direct fund transfer: One variation involves compromising legitimate business email accounts and requesting employees’ Personally Identifiable Information, Wage and Tax Statement (W-2) forms, or even cryptocurrency wallet s. The rise of cryptocurrency in BEC fraud.

Cryptocurrency 66

Cryptocurrency Scams Authentication Accountability 66

Malwarebytes

NOVEMBER 1, 2022

For years, it has been aware of spam, fake job offers, phishing, fraudulent investments, and (at times) malware, and has been trying to combat those issues. In 2018, LinkedIn rolled out a way to automatically detect fake accounts.

Accountability 90

Accountability Cryptocurrency Education Technology 90

Security Affairs

NOVEMBER 16, 2018

Hong Kong, 16.11.2018 – Group-IB, an international company that specializes in preventing cyber attacks, presented the findings of its latest Hi-Tech Crime Trends 2018 report at the FinTech Security Conference in Hong Kong organized by Binary Solutions Limited in partnership with Group-IB. Attacks on Crypto.

Cybercrime 83

Cybercrime Hacking Banking Phishing 83

SecureList

AUGUST 30, 2023

While investigating an infection of a cryptocurrency company in Southeast Asia, we found Gopuram coexisting on target computers with AppleJeus , a backdoor attributed to the Lazarus. The threat actor specifically targeted cryptocurrency companies. We observed that they have a specific interest in cryptocurrency companies.

Malware 76

Malware Spyware Cryptocurrency Government 76

Cytelligence

JANUARY 14, 2020

The variety show of phishing attacks – While email remains number one for phishing attacks, cybercriminals are also using a variety of other attack routes to trick their intended victims into giving up personal information, login credentials, or even sending money. How can I protect my business in 2020? Eradication.

Cybersecurity 65

Cybersecurity Cyber Insurance Insurance Ransomware 65

Security Affairs

AUGUST 4, 2018

Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . · Google introduced G Suite alerts for state-sponsored attacks. · Hundreds of thousands MikroTik Routers involved in massive Coinhive cryptomining campaign. · Industrial Sector targeted in surgical spear-phishing attacks. Paper Copy. Pierluigi Paganini.

Cryptocurrency 41

Cryptocurrency Data breaches Spyware Surveillance 41

Security Affairs

OCTOBER 10, 2018

Security firm Group-IB has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 Group-IB, an international company that specializes in preventing cyber attacks, has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 Attacks on bank customers: The decline of Android Trojans and the triumph of phishing.

Cyber Attacks 83

Cyber Attacks Banking Cyber threats Phishing 83

Security Affairs

AUGUST 23, 2020

users Thousands of WordPress WooCommerce stores potentially exposed to hack. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. users Thousands of WordPress WooCommerce stores potentially exposed to hack.

Data breaches 55

Data breaches Hacking Advertising Ransomware 55

SecureList

DECEMBER 1, 2023

To exfiltrate data and deliver next-stage malware, the attackers abuse cloud-based data storage, such as Dropbox or Yandex Disk, as well as a temporary file sharing service. The postinst script contains comments in Russian and Ukrainian, including information about improvements made to the malware, as well as statements by activists.

Malware 96

Malware Ransomware Encryption Energy and Utilities 96

Security Affairs

SEPTEMBER 2, 2018

. · Android mobile devices from 11 vendors are exposed to AT Commands attacks. · Experts warn of possible attacks after PoC code for CVE-2018-11776 Struts flaw was published. · Google researcher found Fortnite Android App vulnerable to Man-in-the-Disk attacks. · Critical Apache Struts flaw CVE-2018-11776 exploited in attacks in (..)

Spyware 41

Spyware Banking Data breaches Mobile 41

Security Affairs

APRIL 23, 2019

Security experts at CheckPoint uncovered a cyber espionage campaign leveraging a weaponized version of TeamViewer and malware disguised as a top-secret US government document to target officials in several embassies in Europe. “By following the trail from the previous campaigns we were able to find a `CyberForum[.]ru`

Advertising 106

Advertising Government Cryptocurrency Banking 106