2018, Cryptocurrency, Malware and Spyware

Experts observed the growth of hi-tech crime landscape in Asia in 2018

Security Affairs

MARCH 19, 2019

Security experts at Group-IB presented at Money2020 Asia the results of an interesting analysis of hi-tech crime landscape in Asia in 2018. The number of leaked cards increased in 2018 by 56%. The total underground market value of Singaporean banks’ cards compromised in 2018 is estimated at nearly $640 000.

Banking

Banking Government Passwords Marketing

Threat landscape for industrial automation systems, H2 2021

SecureList

MARCH 3, 2022

Percentage of ICS computers on which malicious objects were blocked, January – December 2018 – 2021 ( download ). It is also worth noting that in 2021 the vectors of monthly fluctuations (increases and decreases) are the same as those in 2019 and, particularly, in 2018 more often than in 2020. Selected industries. Malicious objects.

Spyware

Spyware Ransomware Cryptocurrency Phishing

Mobile malware evolution 2020

SecureList

MARCH 1, 2021

The word “covid” in various combinations was typically used in the names of packages hiding spyware and banking Trojans, adware or Trojan droppers. The mobile malware Trojan-Ransom.AndroidOS.Agent.aq Last year was notable for both malware and adware, the two very close in terms of capabilities. More on that later.

Mobile

Mobile Malware Adware Banking

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Ursnif: The Latest Evolution of the Most Popular Banking Malware

Security Affairs

APRIL 5, 2019

A few days ago, the researchers of ZLab Yoroi-Cybaze dissected another attack wave of the infamous Ursnif malware, also known as Gozi ISFB , an offspring of the original Gozi which source code was leaked in 2014. Ursnif/Gozi is active from over a decade and was one of the most active malware listed in 2017 and 2018.

Banking

Banking Malware Cryptocurrency Advertising

STOP ransomware encrypts files and steals victim’s data

Security Affairs

MARCH 11, 2019

Experts observed the STOP ransomware installing the Azorult password-stealing Trojan to steal account credentials, cryptocurrency wallets, and more. Experts observed the ransomware also installing the dreaded Azorult password-stealing Trojan on victim’s machine to steal account credentials, cryptocurrency wallets, documents and more.

Encryption

Encryption Ransomware Cryptocurrency Passwords

Security Affairs newsletter Round 181 – News of the week

Security Affairs

SEPTEMBER 23, 2018

New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms. NSO mobile Pegasus Spyware used in operations in 45 countries. Evolution of threat landscape for IoT devices – H1 2018. Adobe issued a critical out-of-band patch to address CVE-2018-12848 Acrobat flaw.

Computers and Electronics

Computers and Electronics Cryptocurrency Spyware Data breaches

The new Azorult 3.3 is available in the cybercrime underground market

Security Affairs

OCTOBER 23, 2018

A new version of the Azorult info-stealer appeared in the wild, it is able to steal more data, including other types of cryptocurrencies. A new version of the Azorult info-stealer appeared in the wild, it is able to steal more data, including other types of cryptocurrencies, and implements new features. ” continues CheckPoint.

Marketing

Marketing Cybercrime Cryptocurrency Advertising

IT threat evolution in Q2 2023

SecureList

AUGUST 30, 2023

While investigating an infection of a cryptocurrency company in Southeast Asia, we found Gopuram coexisting on target computers with AppleJeus , a backdoor attributed to the Lazarus. The threat actor specifically targeted cryptocurrency companies. We observed that they have a specific interest in cryptocurrency companies.

Malware

Malware Spyware Cryptocurrency Government

Security Affairs newsletter Round 222 – News of the week

Security Affairs

JULY 13, 2019

Croatia government agencies targeted with news SilentTrinity malware. UK ICO fines British Airways £183 Million under GDPR over 2018 security breach. Kaspersky report: Malware shared by USCYBERCOM first seen in December 2016. Agent Smith Android malware already infected 25 million devices. Kindle Edition. Paper Copy.

Data breaches

Data breaches Spyware Advertising Government

Security Affairs newsletter Round 177 – News of the week

Security Affairs

AUGUST 26, 2018

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware

Spyware Banking DNS Retail

Security Affairs newsletter Round 174 – News of the week

Security Affairs

AUGUST 4, 2018

Paper Copy. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency

Cryptocurrency Data breaches Spyware Surveillance

IT threat evolution Q3 2023

SecureList

DECEMBER 1, 2023

To exfiltrate data and deliver next-stage malware, the attackers abuse cloud-based data storage, such as Dropbox or Yandex Disk, as well as a temporary file sharing service. However, they included an additional module that constantly monitored the messenger and sent data to the spyware creator’s C2 server.

Malware

Malware Ransomware Encryption Energy and Utilities

Security Affairs newsletter Round 178 – News of the week

Security Affairs

SEPTEMBER 2, 2018

Stopping a big botnet targeting USA, Canada and Italy. · What Happens to Whistleblowers After They Blow the Whistle?

Spyware

Spyware Banking Data breaches Mobile

Spam and phishing in 2022

SecureList

FEBRUARY 16, 2023

These sites referenced public figures and humanitarian groups, offering to accept cash in cryptocurrency, something that should have raised a red flag in itself. By getting the user’s secret phrase, cybercriminals could get access to their cryptocurrency balance. Now, attackers have started collecting Bitcoin for charity.

Phishing

Phishing Scams Accountability Energy and Utilities

IT threat evolution Q1 2022

SecureList

MAY 27, 2022

Our analysis of the rogue firmware, and other malicious artefacts from the target’s network, revealed that the threat actor behind it had tampered with the firmware to embed malware that we call MoonBounce. The campaign has two goals: gathering information and stealing cryptocurrency. Roaming Mantis reaches Europe.

Phishing

Phishing Spyware Firmware Malware

Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows

Security Affairs

MAY 8, 2020

In H2 2019, as part of its work to detect and prevents threats distributing online, Group-IB’s Computer Emergency Response Team (CERT-GIB) blocked a total of 8, 506 phishing web resources, while in H2 2018, the figure stood at 2,567.This Malware delivery: what’s on the menu? Balance of power.

Phishing

Phishing Spyware Banking Malware

Spam and phishing in 2023

SecureList

MARCH 7, 2024

Cryptocurrency scams Phishing aimed at stealing crypto wallet credentials remained a common money-making tool. Fake pages mimicking popular cryptocurrency sites invited users to sign in with their wallet credentials. Scam sites also used cryptocurrency as bait. The required amount is most likely unattainable.

Phishing

Phishing Scams Cryptocurrency Accountability

NullMixer: oodles of Trojans in a single dropper

SecureList

SEPTEMBER 26, 2022

NullMixer is a dropper leading to an infection chain of a wide variety of malware families. These websites are often related to crack, keygen and activators for downloading software illegally, and while they may pretend to be legitimate software, they actually contain a malware dropper. Malware execution instructions.

Malware

Malware Cryptocurrency Passwords Software

Cyber Security Informer

Experts observed the growth of hi-tech crime landscape in Asia in 2018

Threat landscape for industrial automation systems, H2 2021

Webinars

Trending Sources

Mobile malware evolution 2020

Webinars

Ursnif: The Latest Evolution of the Most Popular Banking Malware

STOP ransomware encrypts files and steals victim’s data

Security Affairs newsletter Round 181 – News of the week

The new Azorult 3.3 is available in the cybercrime underground market

IT threat evolution in Q2 2023

Security Affairs newsletter Round 222 – News of the week

Security Affairs newsletter Round 177 – News of the week

Security Affairs newsletter Round 174 – News of the week

IT threat evolution Q3 2023

Security Affairs newsletter Round 178 – News of the week

Spam and phishing in 2022

IT threat evolution Q1 2022

Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows

Spam and phishing in 2023

NullMixer: oodles of Trojans in a single dropper

Stay Connected