2019, Cryptocurrency, Cybercrime and DDOS

Fake Lawsuit Threat Exposes Privnote Phishing Sites

Krebs on Security

APRIL 4, 2024

The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers. co showing the site did indeed swap out any cryptocurrency addresses.

Phishing

Phishing Cryptocurrency DDOS Internet

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. Conclusion: cybersecurity and cybercrime have matured.

Cybercrime

Cybercrime Banking Malware Ransomware

Cyberthreats to financial organizations in 2022

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular. Cracking down hard on the cybercrime world. Definitely yes.

Cryptocurrency

Cryptocurrency Banking Cybercrime Ransomware

Security Affairs newsletter Round 240

Security Affairs

NOVEMBER 17, 2019

Experts warn of spike in TCP DDoS reflection attacks targeting Amazon, SoftLayer and telco infrastructure. TA505 Cybercrime targets system integrator companies. Microsoft Patch Tuesday updates fix CVE-2019-1429 flaw exploited in the wild. CVE-2019-3648 flaw in all McAfee AV allows DLL Hijacking. Pierluigi Paganini.

DDOS

DDOS Spyware Advertising Ransomware

Security Service of Ukraine arrested the popular hacker Sanix who sold billions of stolen credentials

Security Affairs

MAY 20, 2020

The man is known in the cybercrime underground for selling billions of stolen credentials. Sanix was identified by the investigator Brian Krebs as the source of Collection 1 in January 2019. Sanix has been active on the cybercrime underground at least since 2018, he focuses in the sale of stolen data from organizations.

Cybercrime

Cybercrime Passwords Advertising Hacking

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Dmitry Yuryevich Khoroshev.

Ransomware

Ransomware Cybercrime Accountability Malware

The Financial Impact of Cyberthreats: Secure Your Site to Prevent these Top Expenses

SiteLock

AUGUST 27, 2021

Some criminals use ransomware techniques to exploit business computers for cryptocurrency mining. There were more than 151 million ransomware attacks in 2019. How much money would your business lose if hacking, corrupted files, defacement, ransomware or a DDoS attack shuts down your website? What’s the financial impact?

Data breaches

Data breaches DDOS Ransomware Marketing

DDoS attacks in Q4 2020

SecureList

FEBRUARY 16, 2021

While the resource was down, cryptocurrency newbies were invited to download a copy of Bitcoin Core via a torrenting service. Cybercriminals used the names of well-known APT groups to intimidate victims, demanded ransoms in cryptocurrency, and carried out demonstration attacks to back up their threats.

DDOS

DDOS Cryptocurrency Marketing Internet

DDoS attacks in Q1 2021

SecureList

MAY 10, 2021

Botnet operators use infected devices to carry out DDoS attacks or mine cryptocurrency. In Q1 2021, cybercriminals also found a host of new tools for amplifying DDoS attacks. RDP servers listening on UDP port 3389 were used to amplify DDoS attacks. The vendor released a patch when they learned about the problem.

DDOS

DDOS Cryptocurrency Media Marketing

DDoS attacks in Q3 2021

SecureList

NOVEMBER 8, 2021

Q3 2021 brought two new DDoS attack vectors, potentially posing a serious threat, including for major web resources. ris , a new botnet capable of carrying out powerful DDoS attacks. For instance, a DDoS attack on a Cloudflare customer (attributed to M?ris) We won't let our #DDoS stop us doing what we love!

DDOS

DDOS Marketing Cryptocurrency IoT

Your Small Business Cybersecurity Guide to the Most Common Cyberthreats

SiteLock

AUGUST 27, 2021

In our 2019 report covering website security , we analyzed the current online threat landscape to discern how it might change in the future. This makes stealthy attacks incredibly popular in the cybercrime community. Even when a DDoS attack doesn’t take a site completely offline, it usually slows it enough to make it unusable.

Small Business

Small Business Cybersecurity Phishing DDOS

Ten Years Later, New Clues in the Target Breach

Krebs on Security

DECEMBER 14, 2023

That reporting was based on clues from an early Russian cybercrime forum in which a hacker named Rescator — using the same profile image that Rescator was known to use on other forums — claimed to have originally been known as “Helkern,” the nickname chosen by the administrator of a cybercrime forum called Darklife.

Cybercrime

Cybercrime Accountability Advertising Computers and Electronics

Ransomware world in 2021: who, how and why

SecureList

MAY 12, 2021

Finally, negotiations with the victims may be handled by yet another team and when the ransom is paid out, a whole new set of skills is needed to launder the cryptocurrency obtained. They interact with each other through internet handles, paying for services with cryptocurrency. Monero (XMR) cryptocurrency is used for payment.

Ransomware

Ransomware Encryption Malware Cybercrime

IT threat evolution Q1 2022

SecureList

MAY 27, 2022

Late last year, we became aware of a UEFI firmware-level compromise through logs from our firmware scanner (integrated into Kaspersky products at the start of 2019). The campaign has two goals: gathering information and stealing cryptocurrency. Subsequently, DDoS attacks hit some government websites.

Phishing

Phishing Spyware Firmware Malware

Security Affairs newsletter Round 308

Security Affairs

APRIL 4, 2021

If you want to receive the complete weekly Security Affairs Newsletter for free, including the international press, subscribe here.

Ransomware

Ransomware Hacking DDOS Cryptocurrency

APT trends report Q1 2022

SecureList

APRIL 27, 2022

Subsequently, DDoS attacks hit several government websites. We named it BlackMoule, as we believe it is an update of BlackMould, a malicious tool that was briefly mentioned by Microsoft in late 2019 as part of GALLIUM activities against telecoms companies (aka Operation SoftCell).

Malware

Malware Firmware Government Phishing

The History of Computer Viruses & Malware

eSecurity Planet

NOVEMBER 2, 2022

In July 2001, the Code Red Worm attempted to subject the entire Internet to a distributed denial of service (DDoS) attack. Eventually, the infected computers were all directed to attempt a DDoS specifically on whitehouse.gov, though the White House managed to sidestep the assault. Welcome to [link] Hacked By Chinese!”.

Malware

Malware Ransomware Antivirus Internet

APT trends report Q2 2022

SecureList

JULY 28, 2022

In late 2021, we encountered a malicious DXE driver incorporated into several UEFI firmware images that were flagged by our firmware scanner (integrated into Kaspersky products at the start of 2019). We discovered a highly active campaign, starting in March 2022, targeting stock and cryptocurrency investors in South Korea.

Malware

Malware Firmware Phishing Cryptocurrency

Cyber Security Informer

Fake Lawsuit Threat Exposes Privnote Phishing Sites

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

Trending Sources

Cyberthreats to financial organizations in 2022

Security Affairs newsletter Round 240

Security Service of Ukraine arrested the popular hacker Sanix who sold billions of stolen credentials

How Did Authorities Identify the Alleged Lockbit Boss?

The Financial Impact of Cyberthreats: Secure Your Site to Prevent these Top Expenses

DDoS attacks in Q4 2020

DDoS attacks in Q1 2021

DDoS attacks in Q3 2021

Your Small Business Cybersecurity Guide to the Most Common Cyberthreats

Ten Years Later, New Clues in the Target Breach

Ransomware world in 2021: who, how and why

IT threat evolution Q1 2022

Security Affairs newsletter Round 308

APT trends report Q1 2022

The History of Computer Viruses & Malware

APT trends report Q2 2022

Stay Connected