Security Affairs

JULY 13, 2019

UK ICO fines British Airways £183 Million under GDPR over 2018 security breach. New FinFisher spyware used to spy on iOS and Android users in 20 countries. Hackers stole $32 million from Bitpoint cryptocurrency exchange. Hackers are poisoning the PGP SKS keyserver network poisoned.

Data breaches 50

Data breaches Spyware Advertising Government 50

Security Affairs

AUGUST 4, 2018

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency 41

Cryptocurrency Data breaches Spyware Surveillance 41

Security Affairs

SEPTEMBER 2, 2018

Stopping a big botnet targeting USA, Canada and Italy. · What Happens to Whistleblowers After They Blow the Whistle?

Spyware 41

Spyware Banking Data breaches Mobile 41

SecureList

MARCH 7, 2024

Cryptocurrency scams Phishing aimed at stealing crypto wallet credentials remained a common money-making tool. Fake pages mimicking popular cryptocurrency sites invited users to sign in with their wallet credentials. Scam sites also used cryptocurrency as bait. The required amount is most likely unattainable.

Phishing 102

Phishing Scams Cryptocurrency Accountability 102

Security Affairs

APRIL 5, 2019

Ursnif/Gozi is active from over a decade and was one of the most active malware listed in 2017 and 2018. First analyzed sample backs to January 2018. After a few months, in June 2018, we find evidence that Ursnif was delivered through Necurs Botnet. Table 1: Ursnif techniques evolution.

Banking 84

Banking Malware Cryptocurrency Advertising 84

SecureList

SEPTEMBER 26, 2022

NullMixer is a dropper that includes more than just specific malware families; it drops a wide variety of malicious binaries to infect the machine with, such as backdoors, bankers, downloaders, spyware and many others. Screen with cryptocurrency addresses from Generic.ClipBanker binary. NullMixer execution chain. ColdStealer.

Malware 114

Malware Cryptocurrency Passwords Software 114

SecureList

AUGUST 30, 2023

While investigating an infection of a cryptocurrency company in Southeast Asia, we found Gopuram coexisting on target computers with AppleJeus , a backdoor attributed to the Lazarus. The threat actor specifically targeted cryptocurrency companies. We observed that they have a specific interest in cryptocurrency companies.

Malware 78

Malware Spyware Cryptocurrency Government 78

Security Affairs

MAY 8, 2020

In H2 2019, as part of its work to detect and prevents threats distributing online, Group-IB’s Computer Emergency Response Team (CERT-GIB) blocked a total of 8, 506 phishing web resources, while in H2 2018, the figure stood at 2,567.This Balance of power. Figure 2 The map of major web phishing-hosting countries.

Phishing 56

Phishing Spyware Banking Malware 56

SecureList

FEBRUARY 16, 2023

These sites referenced public figures and humanitarian groups, offering to accept cash in cryptocurrency, something that should have raised a red flag in itself. By getting the user’s secret phrase, cybercriminals could get access to their cryptocurrency balance. Now, attackers have started collecting Bitcoin for charity.

Phishing 96

Phishing Scams Accountability Energy and Utilities 96

SecureList

MARCH 1, 2021

The word “covid” in various combinations was typically used in the names of packages hiding spyware and banking Trojans, adware or Trojan droppers. Users attacked by adware in 2018 through 2020 ( download ). Ransomware Trojan installation packages in 2018 through 2020 ( download ). Pandemic theme in mobile threats.

Mobile 138

Mobile Malware Adware Banking 138

SecureList

DECEMBER 1, 2023

However, they included an additional module that constantly monitored the messenger and sent data to the spyware creator’s C2 server. The Arkei stealer, written in C++, first appeared in May 2018 and has been forked/rebranded several times over the last few years. We also published a report on a new version of the Lumma stealer.

Malware 98

Malware Ransomware Encryption Energy and Utilities 98