Security Affairs

FEBRUARY 17, 2024

On October 2022, Swiss police arrested Penchukov in Geneva, also known as Tank, which is one of the leaders of the JabberZeus cybercrime group. In 2012, the Ukrainian national Vyacheslav Igorevich Penchukov was accused of being a member of a cybercrime gang known as JabberZeus crew.

Malware 97

Malware Cybercrime Banking Hacking 97

Security Affairs

JULY 11, 2019

The CVE-2019-1132 flaw addressed by Microsoft this month was exploited by Buhtrap threat actor to target a government organization in Eastern Europe. Microsoft Patch Tuesday updates for July 2019 address a total of 77 vulnerabilities, including two privilege escalation flaws actively exploited in the wild. 86 billion RUB ($27.4M

Government 85

Government Advertising Passwords Banking 85

Security Affairs

MARCH 18, 2021

The FBI’s Internet Crime Complaint Center has released its annual report, the 2020 Internet Crime Report , which includes data from 791,790 complaints of suspected cybercrimes. billion and authorities observed an increase of more than 300,000 complaints from 2019 (+69%). million in 2019 to over $29.1 billion in losses.

Internet 110

Internet Internet Scams Identity Theft 110

Security Affairs

MARCH 13, 2020

European authorities dismantled two cybercrime organizations responsible for stealing millions through SIM hijacking. European authorities managed to dismantle the operations of two cybercrime gangs responsible for stealing millions through SIM hijacking. The authorities arrested tens of individuals in Spain and Romania. .

Banking 118

Banking Cybercrime Mobile Accountability 118

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). The man was arrested in Bangkok, Thailand in November 2019 at the request of U.S. in May 2020.

Cybercrime 111

Cybercrime Hacking Software Phishing 111

Security Affairs

FEBRUARY 19, 2024

The man was held in the Netherlands, and he was charged for his alleged role in the international cybercrime operation known as Raccoon Infostealer. The Raccoon stealer was first spotted in April 2019, it was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data.

Identity Theft 98

Identity Theft Cryptocurrency Cybercrime Hacking 98

Security Affairs

APRIL 10, 2024

The company speculates that leaked data are from 2019 or earlier. “The information varied by individual and account, but may have included full name, email address, mailing address, phone number, social security number, date of birth, AT&T account number and AT&T passcode.” AT&T told CNN.

Data breaches 105

Data breaches Telecommunications Identity Theft Hacking 105

Security Affairs

NOVEMBER 3, 2020

The scripts developed by the cyber criminal were used to parse log data collected from botnet and searched for personally identifiable information (PII) and account credentials. In some cases, the man manually chacked the stolen information. Brovko was involved in the illegal practice between 2007 and 2019.

Accountability 106

Accountability Banking Advertising Data collection 106

Security Affairs

APRIL 28, 2023

CryptBot malware is active since at least 2019, it allows operators to steal sensitive data from the Google Chrome of the infected systems. The malware allows operators to steal login credentials from popular services such as social media platforms and cryptocurrency wallets, then stolen data is sold on cybercrime forums by the operators.

Malware 95

Malware Cybercrime Cryptocurrency Media 95

Security Affairs

MAY 26, 2021

Last week, French authorities have seized the dark web marketplace Le Monde Parallèle, it is another success of national police in the fight against cybercrime. French authorities seized the dark web marketplace Le Monde Parallèle, the operation is another success of national police in the fight against cybercrime activity in the dark web.

Cybercrime 144

Cybercrime Cryptocurrency Banking Mobile 144

Security Affairs

FEBRUARY 1, 2024

Once hijacked a SIM, the attacker can steal money, cryptocurrencies and personal information, including contacts synced with online accounts. The criminals could hijack social media accounts and bypass 2FA services based on SMS used by online services, including financial ones. ” reads the press release published by DoJ.

Cryptocurrency 112

Cryptocurrency Computers and Electronics Accountability Scams 112

Security Affairs

AUGUST 18, 2020

Ukrainian authorities arrested the members of a cybercrime gang who ran 20 cryptocurrency exchanges involved in money laundering. Police in Ukraine announced the arrest of the members of a cybercrime gang composed of three individuals who ran 20 cryptocurrency exchanges used in money laundering activities.

Cryptocurrency 107

Cryptocurrency Computers and Electronics Cybercrime Digital transformation 107

Security Affairs

SEPTEMBER 6, 2022

Researchers discovered a previously undocumented software control panel, named TeslaGun, used by a cybercrime gang known as TA505. Researchers from cybersecurity firm PRODAFT have discovered a previously undocumented software control panel, tracked as TeslaGun, used by a cybercrime group known as TA505. ” concludes the report.

Cybercrime 95

Cybercrime Banking Malware Retail 95

Security Affairs

APRIL 6, 2022

The seizure of the Hydra Market is the result of an international investigation conducted by the Central Office for Combating Cybercrime (ZIT) in partnership with U.S. The German authorities reported that around 17 million customers and over 19,000 seller accounts were registered on the Hydra Market. “Today, the U.S.

Marketing 108

Marketing Cybercrime Advertising Hacking 108

Krebs on Security

JULY 18, 2023

In 2019, a Canadian company called Defiant Tech Inc. LeakedSource was advertised on a number of popular cybercrime forums as a service that could help hackers break into valuable or high-profile accounts. us , a site unabashedly dedicated to helping people hack email and online gaming accounts. Abusewith[.]us

Hacking 189

Hacking Accountability Data breaches Marketing 189

Security Affairs

OCTOBER 28, 2021

One of the attacks, against a software developer, took place in 2019. The German police discovered Nikolay’s email address, which was also used to register to over 60 websites, along with his phone number that is associated with a Telegram account. That comes from a database of the IT security company Domaintools.

Cryptocurrency 122

Cryptocurrency Ransomware Cybercrime Accountability 122

Security Affairs

SEPTEMBER 22, 2020

This operation follows the takedown in May of last year of Wall Street Market that took place in May 2019. The Wall Street Market marketplace was considered one of the most important points of aggregation in the cybercrime underground for trading in cocaine, heroin, cannabis and amphetamines as well as digital goods (i.e.

Cybercrime 132

Cybercrime Advertising Marketing Internet 132

Security Affairs

OCTOBER 13, 2021

In that case, take into account a conviction, criminal record and the loss of your computer and/or laptop.” SecurityAffairs – hacking, cybercrime). The post Dutch police warn customers of a popular DDoS booter service appeared first on Security Affairs. If new similar facts arise in the future, we will prosecute.

DDOS 114

DDOS Cybercrime IoT Hacking 114

Security Affairs

FEBRUARY 27, 2023

Compromised data include names, addresses, telephone numbers, dates of birth, bank account numbers, credit cards, passwords, license plates, citizen service numbers or passport data. “You don’t just get access to information at DIVD, so he played it very cleverly,” the anonymous source told NOS.

Cybercrime 95

Cybercrime Identity Theft Hacking Scams 95

Security Affairs

NOVEMBER 22, 2021

million of its managed WordPress customer accounts. Threat actors compromised the company network since at least September 6, 2021, but the security breach was only discovered by the company on November 17. ” said Demetrius Comes, GoDaddy’s Chief Information Security Officer. Pierluigi Paganini.

Data breaches 126

Data breaches Passwords Accountability Phishing 126

Security Affairs

MAY 2, 2023

The Monopoly Market was launched in 2019 and the German authorities seized the marketplace’s infrastructure in December 2021. “A number of investigations to identify additional individuals behind dark web accounts are still ongoing. ” continues the press release. law enforcement authorities since August 2021.

Marketing 86

Marketing Accountability Cybercrime Education 86

Security Affairs

DECEMBER 12, 2021

He has been in custody since 2019, when he was arrested in California. Koshkin was arrested in California in September 2019 , while Tsurkan was arrested in April 2017. The Kelihos botnet was used to send out a large volume of spam messages, conduct denial of service attacks, harvest account credentials, and distribute malware.

Antivirus 91

Antivirus Malware Cybercrime Cyber threats 91

Security Affairs

DECEMBER 29, 2021

T-Mobile has suffered another security breach, threat actors gained access to the accounts of “a small number of” customers.’. According to The T-Mo Report , which viewed T-Mobile internal documents, there was “unauthorized activity” on some customer accounts. “Affected customers fall into one of three categories. .”

Data breaches 132

Data breaches Mobile Wireless Accountability 132

Security Affairs

FEBRUARY 13, 2022

Going deeper into the analysis, we can notice that the Conti operations accounted for the biggest revenue in 2021, extorting at least $180 million from victims. Experts speculate the operators are members of a Russia-based cybercrime group known as Wizard Spider. and international organizations. ” continues the report.

Ransomware 94

Ransomware Cryptocurrency Cybercrime Malware 94

Security Affairs

AUGUST 23, 2023

According to OFAC, Tornado Cash was used to launder more than $7 billion worth of virtual currency since its creation in 2019. Those charged today engaged in a conspiracy to launder money for cybercriminals, including for a North Korean cybercrime organization seeking to evade sanctions.” ” FBI Director Christopher A.

Cryptocurrency 88

Cryptocurrency Cybercrime Hacking Accountability 88

Security Affairs

DECEMBER 6, 2022

In January 2018, Truglia participated in a fraudulent scheme to hack into online accounts of the victims to steal cryptocurrency. The man gained unauthorized access to the online accounts of the victims through SIM swapping attacks. In May 2019, Terpin won $75.8 million had been stolen from his mobile phone in 2018.

Cryptocurrency 95

Cryptocurrency Accountability Mobile Hacking 95

Security Affairs

MARCH 18, 2020

While we do not store credit card information on our website, it appears that the unauthorized person gained access to the website and could have accessed the data of consumers who made payment card purchases while that data was being entered, between August 3, 2019 and January 14, 2020.” SecurityAffairs – TrueFire, cybercrime).

Hacking 101

Hacking Data breaches Advertising Accountability 101

Security Affairs

AUGUST 5, 2019

On July 23, 2018, the man sent a spear phishing message from a fraudulent Dell email account to the University of California San Diego (UCSD) and instructed its personnel into making the payment for Dell equipment to a bank account under the control of Raage. to the man’s account. Pierluigi Paganini.

Phishing 102

Phishing Banking Advertising Accountability 102

Security Affairs

JUNE 10, 2019

Million accounts back in April 2018. The security breach occurred in April 2018 and exposed account information for approximately 1.1 The notice issued by the service Have I Been Pwned states that 1,131,229 accounts from Emuparadise forums were exposed in an incident occurred in April 2018.

Data breaches 73

Data breaches Advertising Cybercrime Passwords 73

Security Affairs

MAY 30, 2020

The man was arrested in March 2019 and detained after his arrival from Ukraine. “In March 2019, Antonenko was arrested and detained on money laundering charges at New York’s John F. . “In March 2019, Antonenko was arrested and detained on money laundering charges at New York’s John F. ” continues the DoJ.

Advertising 98

Advertising Hacking Media Cybercrime 98

Security Affairs

JANUARY 27, 2020

were arrested in December 2019 in two different regions in Indonesia — Special Region of Yogyakarta and Special Capital Region of Jakarta — as part of the joint operation «Night Fury» carried out by Indonesian Cyber Police and INTERPOL with the help of Group-IB’s Cyber Investigations team. INTERPOL’s Director of Cybercrime.

Cybercrime 78

Cybercrime Marketing eCommerce Mobile 78

Security Affairs

SEPTEMBER 3, 2022

Google rolled out emergency fixes to address actively exploited Chrome zero-day Samsung discloses a second data breach this year The Prynt Stealer malware contains a secret backdoor. users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M

Data breaches 70

Data breaches Malware Surveillance Ransomware 70

Security Affairs

MARCH 18, 2022

Mandiant researchers discovered a new Unix rootkit named Caketap, which is used to steal ATM banking data, while investigating the activity of the LightBasin cybercrime group (aka UNC1945 ). CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by the group since 2019.

Banking 132

Banking Telecommunications System Administration Hacking 132

Security Affairs

MARCH 19, 2020

” According to the experts, the first infections were observed in late 2019, victims reported their files were encrypted by a strain of malware. According to the report issued by the CERT-FR, operators behind the Pysa ransomware launched brute-force attacks against management consoles and Active Directory accounts.

Government 110

Government Ransomware Encryption Penetration Testing 110

Security Affairs

OCTOBER 26, 2022

The man is currently being held in the Netherlands, he was charged for his alleged role the international cybercrime operation known as Raccoon Infostealer. The Raccoon stealer was first spotted in April 2019, it was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data.

Identity Theft 87

Identity Theft Cryptocurrency Cyber threats Cybercrime 87

Security Affairs

SEPTEMBER 22, 2021

.” Conti ransomware operators run a private Ransomware-as-a-Service (RaaS), the malware appeared in the threat landscape at the end of December 2019 and was distributed through TrickBot infections. Experts speculate the operators are members of a Russia-based cybercrime group known as Wizard Spider. Secure user accounts.

Ransomware 102

Ransomware Cybercrime Authentication Healthcare 102

Security Affairs

OCTOBER 2, 2019

Exposed information includes full name, physical and/or billing address, Social Security numbers, birth dates, and the credit card number. SecurityAffairs – American Express, cybercrime). The post Former American Express employee under investigation for customers’ data abuse appeared first on Security Affairs.

Identity Theft 78

Identity Theft Advertising Data breaches Cybercrime 78