Malwarebytes

JUNE 16, 2021

According to a press release issued by Ukrainian authorities, law enforcement officials also shut down infrastructure that was used to spread the cybercrime gang’s ransomware, which was first spotted in February of 2019 as a new variant of the Cryptomix family.

Ransomware 115

Ransomware Cybercrime Cryptocurrency Encryption 115

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular. Of course, this is the result of economic problems caused by the pandemic.

Cryptocurrency 105

Cryptocurrency Banking Cybercrime Ransomware 105

SecureWorld News

JUNE 17, 2021

The group used Clop to encrypt data on the servers of multiple American companies and universities, as well as some Korean companies. According to Ukranian Cyberpolice, four Korean companies were attacked with the Clop virus in 2019. This resulted in 810 internal servers and personal computers of employees becoming encrypted.

Ransomware 98

Ransomware Cryptocurrency Encryption Retail 98

SecureWorld News

JUNE 17, 2021

The group used Clop to encrypt data on the servers of multiple American companies and universities, as well as some Korean companies. According to Ukrainian Cyberpolice, four Korean companies were attacked with the Clop virus in 2019. This resulted in 810 internal servers and personal computers of employees becoming encrypted.

Ransomware 52

Ransomware Cryptocurrency Encryption Retail 52

Security Affairs

OCTOBER 13, 2021

Avast researchers reported that since 2019, MyKings operators have amassed at least $24 million in the Bitcoin, Ethereum, and Dogecoin. However, experts pointed out that the botnet uses more than 20 cryptocurrencies in total, for this reason the total financial gains could be greater than $24M. ” continues the analysis.

Cryptocurrency 112

Cryptocurrency Encryption Malware Hacking 112

Security Affairs

NOVEMBER 17, 2019

Apple Mail stores parts of encrypted emails in plaintext DB. TA505 Cybercrime targets system integrator companies. Microsoft Patch Tuesday updates fix CVE-2019-1429 flaw exploited in the wild. CVE-2019-3648 flaw in all McAfee AV allows DLL Hijacking. WhatsApp flaw CVE-2019-11931 could be exploited to install spyware.

DDOS 52

DDOS Spyware Advertising Ransomware 52

Security Affairs

JULY 29, 2019

One of the most active drug sellers on the Dark Web was charged by law authorities and ordered to forfeit over $4 million in cryptocurrency. . Castro was requesting a fee up-front to connect and was identified by an undercover officer that paid the fee, obtained the encrypted email address, and placed orders with CASTRO.

Cryptocurrency 68

Cryptocurrency Marketing Internet Internet 68

Security Affairs

FEBRUARY 21, 2024

In wider action coordinated by Europol, two LockBit actors have been arrested this morning in Poland and Ukraine, over 200 cryptocurrency accounts linked to the group have been frozen.” The NCA will reach out to victims based in the UK in the coming days and weeks, providing support to help them recover encrypted data.

Energy and Utilities 98

Energy and Utilities Ransomware Manufacturing Financial Services 98

Security Affairs

FEBRUARY 20, 2024

In wider action coordinated by Europol, two LockBit actors have been arrested this morning in Poland and Ukraine, over 200 cryptocurrency accounts linked to the group have been frozen.” The NCA will reach out to victims based in the UK in the coming days and weeks, providing support to help them recover encrypted data.

Energy and Utilities 110

Energy and Utilities Ransomware Manufacturing Financial Services 110

SiteLock

AUGUST 27, 2021

Either way, now your databases haves been encrypted by attackers. Some criminals use ransomware techniques to exploit business computers for cryptocurrency mining. There were more than 151 million ransomware attacks in 2019. The site is down, and the criminals want money to unencrypt the data. What’s the financial impact?

Data breaches 98

Data breaches DDOS Ransomware Marketing 98

Security Affairs

NOVEMBER 19, 2019

Ransomware accounted for over half of all malicious mailings in H1 2019, Troldesh aka Shade being the most popular tool among cybercriminals. The first half of 2019 saw a 10-fold increase in the number of password-protected objects, such as documents and archive files, being used to deliver malware. The revival of ransomware.

Ransomware 73

Ransomware Antivirus Malware Banking 73

Digital Shadows

JULY 5, 2021

Consequently, it makes sense for them to encrypt the compromised networks and demand a ransom to restore them. Based on the correspondence, the affiliates demanded between USD 40,000 and USD 45,000 per individual encrypted file extension. REvil is ransomware that was first observed in April 2019.

Ransomware 52

Ransomware Encryption Cryptocurrency System Administration 52

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. Super Bowl Sunday watchers are treated to no fewer than a half-dozen commercials for cryptocurrency investing. I will also continue to post on LinkedIn about new stories in 2023. agencies]. .”

Cryptocurrency 229

Cryptocurrency Cybercrime Computers and Electronics Scams 229

Security Affairs

APRIL 5, 2019

The malware has evolved over time and has added functionality, in fact, apart from collecting banking credentials it is also able to collect keystrokes, cryptocurrencies, screenshots, webmail, integrating spyware features together with banking Trojans features. SecurityAffairs – Ursnif Trojan, cybercrime). Pierluigi Paganini.

Banking 90

Banking Malware Cryptocurrency Advertising 90

eSecurity Planet

FEBRUARY 16, 2021

All of your files are encrypted with RSA-2048 and AES-128 ciphers.” ” Or you might see a readme.txt stating, “Your files have been replaced by these encrypted containers and aren’t accessible; you will lose your files on [enter date] unless you pay $2500 in Bitcoin.” IMPORTANT INFORMATION !!!

Ransomware 97

Ransomware Backups Software Encryption 97

SiteLock

AUGUST 27, 2021

In our 2019 report covering website security , we analyzed the current online threat landscape to discern how it might change in the future. This makes stealthy attacks incredibly popular in the cybercrime community. The Changing Cyberthreat Landscape. Cybercriminals won’t become complacent, and that means you shouldn’t, either.

Small Business 98

Small Business Cybersecurity Phishing DDOS 98

SecureList

AUGUST 30, 2023

While investigating an infection of a cryptocurrency company in Southeast Asia, we found Gopuram coexisting on target computers with AppleJeus , a backdoor attributed to the Lazarus. The threat actor specifically targeted cryptocurrency companies. We observed that they have a specific interest in cryptocurrency companies.

Malware 74

Malware Spyware Cryptocurrency Government 74

Krebs on Security

AUGUST 5, 2021

Reinvention is a basic survival skill in the cybercrime business. But a little more than a month later, a new ransomware affiliate program called BlackMatter emerged, and experts quickly determined BlackMatter was using the same unique encryption methods that DarkSide had used in their attacks.

Ransomware 312

Ransomware Cybercrime Malware System Administration 312

SecureList

MAY 12, 2021

To ensure that their ability to restore encrypted files would never be questioned, they cultivated an online presence, wrote press releases and generally made sure their name would be known to all potential victims. They interact with each other through internet handles, paying for services with cryptocurrency. The merchants.

Ransomware 124

Ransomware Encryption Malware Cybercrime 124

SecureList

APRIL 10, 2023

The offers presented in this report were published between 2019 and 2023 and were collected from the nine most popular forums for the purchase and sale of goods and services related to malware and unwanted software. Most frequently, sellers promise to inject code into an app with 5,000 downloads or more.

Malware 99

Malware Encryption Mobile Accountability 99

SecureList

DECEMBER 7, 2021

But how did we get here and what has changed about the ransomware landscape since it was first our story of the year in 2019? Arguably, it all started at the end of 2019, when Maze became a “pioneer” of the modern ransomware landscape. This ransomware group first appeared in 2019 and was quite prolific in 2020.

Ransomware 122

Ransomware B2B B2C Government 122

Security Affairs

MARCH 27, 2023

The threat actor abused Bitly shortener and an ad hoc BlogSpot account to protect the malicious code, lastly stored in an encrypted zip archive hosted on Mega.nz. The shared secret is used to encrypt the GZipped memory stream using a xor-based algorithm in a compress-then-encrypt fashion.

Malware 92

Malware Social Engineering Encryption Marketing 92

SecureList

MAY 10, 2021

Botnet operators use infected devices to carry out DDoS attacks or mine cryptocurrency. At the same time, ransomware operators, having already started to steal victims’ data before encryption, also turned their eyes on DDoS as an extortion tool. Comparative number of DDoS attacks, 2019–2021.

DDOS 96

DDOS Cryptocurrency Media Marketing 96

Krebs on Security

JULY 22, 2020

In a direct message exchange on OGUsers from November 2019, lol is asked for help from another OGUser member whose Twitter account had been suspended for abuse. . “I have a twitter contact who I can get users from (to an extent) and I believe I can get verification from,” lol explained. “If so and got targs lmk your discord.”

Hacking 290

Hacking Accountability Scams Media 290

Spinone

OCTOBER 13, 2020

In 2019, Trend Micro found a 77% surge in ransomware attacks during the first half of 2019 from the previous year. Whether it is synchronized files from on-premises to cloud environments or the risk of encryption of cloud email, ransomware is a real threat to your data. How much can ransomware cost your business?

Ransomware 52

Ransomware Backups Data breaches Encryption 52

SecureList

NOVEMBER 8, 2021

At any rate, the ransom attacks on VoIP providers were limited to DDoS, while REvil primarily does data encryption, although the group does not shrink from other methods of putting pressure on companies. Another actor, the operator of two “stressers” (used to carry out DDoS attacks) was found guilty of cybercrime in court.

DDOS 108

DDOS Marketing Cryptocurrency IoT 108

SecureWorld News

MAY 12, 2021

A report by the newly founded Ransomware Task Force (RTF) details a 2019 attack against the U.S. Such attacks also add to budgetary challenges for already under-resourced districts: when Mississippi's Yazoo County School District paid $300,000 as a ransom to recover files encrypted during a ransomware attack, the cost equaled roughly 1.5%

Ransomware 96

Ransomware Healthcare Education Small Business 96

Veracode Security

MAY 21, 2021

In 2019, Accenture reported an average company spends $13 million per breach. And CIS and McAfee reported that cybercrime cost 1 percent of global GDP in 2018. And that software leveraged by the federal government should include strong authentication, encryption and limit privileges. Neuberger noted two staggering statistics.

Cybersecurity 64

Cybersecurity Government Software Small Business 64

The Last Watchdog

FEBRUARY 15, 2019

Meanwhile, after presumably enjoying a restful holiday, the best and brightest malicious hackers are diving into 2019 with renewed verve. This makes Vidar capable of stealing cryptocurrencies from digital wallets. Vidar and microcode hacking are two grains of sand on the beachhead of 2019 cyber threats. ” Shared burden.

Cybercrime 124

Cybercrime IoT Internet Internet 124

eSecurity Planet

JUNE 25, 2021

Likewise, circa 2019/2020, we saw the introduction of leak sites. Cybercriminals typically would grab hold of a victim’s data, encrypt it and then demand payment, with the promise – not always fulfilled – that once the ransom was paid, they would send a key to the victims to decrypt the data. This is a number of years old,” he said. “We

Ransomware 114

Ransomware Backups Encryption Malware 114

SecureList

JULY 28, 2022

We identified a Windows variant of this sample using the same string encryption algorithm, internal modules, and functionalities. In late 2021, we encountered a malicious DXE driver incorporated into several UEFI firmware images that were flagged by our firmware scanner (integrated into Kaspersky products at the start of 2019).

Malware 131

Malware Firmware Phishing Cryptocurrency 131

eSecurity Planet

NOVEMBER 2, 2022

The advent of untraceable digital payment methods like cryptocurrency was a boon to hackers looking to extort as much money as they could from their targets without being caught. It later evolved to also include file encryption. It later evolved to also include file encryption. In exchange, Janus took a cut of the paid ransom.

Malware 140

Malware Ransomware Antivirus Internet 140

Security Boulevard

JULY 11, 2021

Yes, these organized cybercrime groups have been known to offer 24/7 technical support, subscriptions, quality assurance, affiliate schemes, and online forums just like legitimate SaaS companies. REvil ( also known as Sodin and Sodinokibi ) is a ransomware-as-a-service (RAAS) enterprise that first came to prominence in April 2019.

Ransomware 119

Ransomware Software Encryption Risk 119