SecureList

FEBRUARY 23, 2022

The research in this report is a continuation of our previous annual financial threat reports ( 2018 , 2019 and 2020 ), providing an overview of the latest trends and key events across the threat landscape. Phishing: In 2021, 8.2% of users were hit by phishing. of all phishing schemes in 2021, compared to the 11.1%

Banking 93

Banking Phishing Cryptocurrency Malware 93

Security Affairs

MARCH 18, 2021

The FBI’s Internet Crime Complaint Center has released its annual report, the 2020 Internet Crime Report , which includes data from 791,790 complaints of suspected cybercrimes. billion and authorities observed an increase of more than 300,000 complaints from 2019 (+69%). million in 2019 to over $29.1 billion in losses.

Internet 110

Internet Internet Scams Identity Theft 110

Security Affairs

OCTOBER 26, 2022

The man is currently being held in the Netherlands, he was charged for his alleged role the international cybercrime operation known as Raccoon Infostealer. The Raccoon stealer was first spotted in April 2019, it was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data.

Identity Theft 88

Identity Theft Cryptocurrency Cyber threats Cybercrime 88

SecureList

MARCH 29, 2023

However, traditional financial threats – such as banking malware and financial phishing, continue to take up a significant share of such financially-motivated cyberattacks. Meanwhile, cryptocurrency became a prominent target for those seeking monetary gain. In addition to financial malware, we also examined phishing activities.

Banking 71

Banking Phishing Cryptocurrency Mobile 71

Identity IQ

APRIL 2, 2021

The recent Federal Bureau of Investigations Internet Crime Report shows that cybercrime has spiked, leaving hundreds of thousands of victims and costing more than $4 billion. The FBI received a record number of reports last year totaling 791,790, a 69% growth from 2019. billion in 2019 to $4.2 Phishing Scams.

Scams 110

Scams Computers and Electronics Phishing Internet 110

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular. Cracking down hard on the cybercrime world. Definitely yes.

Cryptocurrency 104

Cryptocurrency Banking Cybercrime Ransomware 104

Webroot

APRIL 7, 2021

With investors currently bullish on Bitcoin, is its high value is driving cybercriminals to pursue crypto-generating forms of cybercrime like ransomware and illicit miners? A study by Palo Alto Networks charted a growth rate of 171 percent in ransoms paid between 2019 and 2020, with the average cost now over $312 thousand.

Ransomware 85

Ransomware Cryptocurrency Marketing Cybercrime 85

Security Affairs

MARCH 13, 2020

European authorities dismantled two cybercrime organizations responsible for stealing millions through SIM hijacking. European authorities managed to dismantle the operations of two cybercrime gangs responsible for stealing millions through SIM hijacking. SecurityAffairs – SIM Hijacking, cybercrime). ”continues Europol.

Banking 119

Banking Cybercrime Mobile Accountability 119

Security Affairs

SEPTEMBER 3, 2022

Google rolled out emergency fixes to address actively exploited Chrome zero-day Samsung discloses a second data breach this year The Prynt Stealer malware contains a secret backdoor. users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M

Data breaches 70

Data breaches Malware Surveillance Ransomware 70

IT Security Guru

SEPTEMBER 1, 2022

That is why it is popular in cryptocurrency systems; in fact, it is vital because there would be no anonymity for crypto users without it. This is vital in cryptocurrency transactions as nobody can alter or delete a transaction once it has been recorded on the block. In 2019, hackers attacked twelve crypto exchanges.

Cryptocurrency 98

Cryptocurrency Hacking Authentication Insurance 98

Security Affairs

MAY 8, 2019

Hackers steal $41 Million worth of Bitcoin from Binance, one of the world’s largest cryptocurrency exchange. The hack of another cryptocurrency exchange made the headlines, hackers steal $41 Million worth of Bitcoin (over 7,000 bitcoins ) from Binance. — CZ Binance (@cz_binance) May 8, 2019. Much appreciated!

Cryptocurrency 74

Cryptocurrency Data breaches Advertising Phishing 74

SiteLock

AUGUST 27, 2021

Maybe one of your employees clicks on a phishing email and accidentally gives away his work email login information. Some criminals use ransomware techniques to exploit business computers for cryptocurrency mining. There were more than 151 million ransomware attacks in 2019. Cyberattacks disrupt and even destroy businesses.

Data breaches 98

Data breaches DDOS Ransomware Marketing 98

Security Affairs

OCTOBER 28, 2019

The malware was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data. The malware was first spotted in April 2019, it is actively distributed via multiple exploit kits, including Fallout and RIG , and phishing campaigns.

Malware 48

Malware Advertising Cryptocurrency Cybercrime 48

SiteLock

AUGUST 27, 2021

In our 2019 report covering website security , we analyzed the current online threat landscape to discern how it might change in the future. This makes stealthy attacks incredibly popular in the cybercrime community. To help protect your site, here are some of the most common stealthy cybersecurity threats to be aware of: Phishing.

Small Business 98

Small Business Cybersecurity Phishing DDOS 98

Security Affairs

MARCH 5, 2019

Security experts have recently discovered hundreds of exposed Docker hosts that have been compromised by hackers exploiting the CVE-2019-5736 runc vulnerability in February. This is a Go implementation of CVE-2019-5736, a container escape for Docker. The flaw was discovered by the security researchers Adam Iwaniuk and Borys Pop?awski,

Advertising 88

Advertising Cryptocurrency Engineering Phishing 88

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. Super Bowl Sunday watchers are treated to no fewer than a half-dozen commercials for cryptocurrency investing. I will also continue to post on LinkedIn about new stories in 2023. agencies]. .”

Cryptocurrency 230

Cryptocurrency Cybercrime Computers and Electronics Scams 230

BH Consulting

JUNE 8, 2021

The DBIR (for short) listed those breaches as including phishing, business email compromise, lost or stolen credentials, and misuse or human error. Dark Reading’s writeup drew the natural connection with mass working from home during Covid lockdowns, and a rise in cybercrime activity.

Ransomware 52

Ransomware Data breaches Phishing Cybersecurity 52

SecureList

AUGUST 23, 2021

Last year’s lockdowns gave a boost to the mobile market, with users downloading thirty percent more mobile games per week in Q1 2021 than in Q4 2019 globally, reaching over one billion weekly downloads. In this report, we cover PC and mobile threats as well as various phishing schemes that capitalize on popular games.

Adware 112

Adware Mobile Phishing Malware 112

Digital Shadows

JULY 5, 2021

As we discussed in our blog about cryptocurrency attacks to be aware of in 2021 , cybercriminals are increasingly moving toward privacy-focused cryptocurrencies, such as Monero, for their operations. REvil is ransomware that was first observed in April 2019.

Ransomware 52

Ransomware Encryption Cryptocurrency System Administration 52

SecureList

AUGUST 30, 2023

While investigating an infection of a cryptocurrency company in Southeast Asia, we found Gopuram coexisting on target computers with AppleJeus , a backdoor attributed to the Lazarus. The threat actor specifically targeted cryptocurrency companies. We observed that they have a specific interest in cryptocurrency companies.

Malware 73

Malware Spyware Cryptocurrency Government 73

Security Affairs

MAY 8, 2020

Group-IB, a Singapore-based cybersecurity company, observed the growth of the lifespan of phishing attacks in the second half of 2019. Figure 1 The distribution of web-phishing among target categories . CERT-GIB’s findings indicate that phishing attack perpetrators have revised their so-called target pool.

Phishing 58

Phishing Spyware Banking Malware 58

Krebs on Security

AUGUST 5, 2021

Reinvention is a basic survival skill in the cybercrime business. REvil is widely considered a reboot of GandCrab , a prolific ransomware gang that boasted of extorting more than $2 billion over 12 months before abruptly closing up shop in June 2019. ” That CrowdStrike report was from July 2019.

Ransomware 313

Ransomware Cybercrime Malware System Administration 313

SecureList

MAY 27, 2022

Late last year, we became aware of a UEFI firmware-level compromise through logs from our firmware scanner (integrated into Kaspersky products at the start of 2019). The campaign has two goals: gathering information and stealing cryptocurrency. MoonBounce: the dark side of UEFI firmware.

Phishing 103

Phishing Spyware Firmware Malware 103

eSecurity Planet

FEBRUARY 16, 2021

For access to the decryption key, the victim must make prompt payment, often in cryptocurrency shielding the attacker’s identity. In 2019, Danish company Demant paid $85 million after losing access to 22,000 computers in 40 countries. The Ryuk ransomware family spawned in 2018 from a sophisticated Russia-based cybercrime group.

Ransomware 97

Ransomware Backups Software Encryption 97

Malwarebytes

JUNE 30, 2022

Cryptocurrency wallets, cookies, passwords, browser autofill data, and credit card data: pretty much anything is up for grabs. Since 2019, Raccoon stealer has been lifting data from the unwary. Credit card data, autofill, browser passwords, and a big slice of cryptocurrency wallets are once more targets for Raccoon Stealer.

Cryptocurrency 80

Cryptocurrency Malware Data collection Passwords 80

SecureList

MAY 12, 2021

Finally, negotiations with the victims may be handled by yet another team and when the ransom is paid out, a whole new set of skills is needed to launder the cryptocurrency obtained. They interact with each other through internet handles, paying for services with cryptocurrency. Monero (XMR) cryptocurrency is used for payment.

Ransomware 123

Ransomware Encryption Malware Cybercrime 123

SecureList

APRIL 10, 2023

The offers presented in this report were published between 2019 and 2023 and were collected from the nine most popular forums for the purchase and sale of goods and services related to malware and unwanted software. Cybercriminals accept three main kinds of payment: a percentage of the final profit, subscription or rent, and one-time payment.

Malware 98

Malware Encryption Mobile Accountability 98

SecureList

APRIL 27, 2022

We named it BlackMoule, as we believe it is an update of BlackMould, a malicious tool that was briefly mentioned by Microsoft in late 2019 as part of GALLIUM activities against telecoms companies (aka Operation SoftCell). The attack targets victims with spear-phishing emails containing malicious OOXML files.

Malware 130

Malware Firmware Government Phishing 130

Spinone

OCTOBER 13, 2020

In 2019, Trend Micro found a 77% surge in ransomware attacks during the first half of 2019 from the previous year. Ransom payments are generally demanded in the form of untraceable cryptocurrency such as Bitcoin. Maze ransomware was first seen in the wild since May 2019 and is becoming increasingly active.

Ransomware 52

Ransomware Backups Data breaches Encryption 52

SecureWorld News

FEBRUARY 18, 2021

And the targets in this case are widespread: banks, ATMs, cryptocurrency exchanges, online casinos, movie studios such as Sony Pictures, and theater chains such as AMC. Cyber-Enabled Heists from Banks: Attempts from 2015 through 2019 to steal more than $1.2 million from an Indonesian cryptocurrency company in September 2018; and $11.8

Hacking 98

Hacking Cryptocurrency Computers and Electronics Banking 98

SecureList

JULY 28, 2022

In late 2021, we encountered a malicious DXE driver incorporated into several UEFI firmware images that were flagged by our firmware scanner (integrated into Kaspersky products at the start of 2019). Based on our telemetry, the actor initiated the attack by sending a spear-phishing email containing a macro-embedded Word document.

Malware 130

Malware Firmware Phishing Cryptocurrency 130

The Last Watchdog

FEBRUARY 15, 2019

Meanwhile, after presumably enjoying a restful holiday, the best and brightest malicious hackers are diving into 2019 with renewed verve. This makes Vidar capable of stealing cryptocurrencies from digital wallets. Vidar and microcode hacking are two grains of sand on the beachhead of 2019 cyber threats. ” Shared burden.

Cybercrime 124

Cybercrime IoT Internet Internet 124

Adam Levin

DECEMBER 7, 2020

Approximately 30% of phishing web pages were related to Covid-19. In April 2020, Google reported 18 million instances per day of malware and phishing email sent via its Gmail service using Covid-related topics as a lure. Phishing emails were a prevalent mode of attack, and they have been in circulation since at least the mid-1990s.

IoT 130

IoT Artificial Intelligence Technology Scams 130

eSecurity Planet

JUNE 25, 2021

Likewise, circa 2019/2020, we saw the introduction of leak sites. The federal government has become increasingly involved in pushing back against cybercrime, particularly ransomware. We see that trend in cybercrime almost every year after Christmas and holidays,” he said. This is a number of years old,” he said. “We Leak Sites.

Ransomware 98

Ransomware Backups Encryption Malware 98

SecureList

JULY 29, 2021

We have designated it as a new threat actor and named it “HotCousin” The attacks began with a spear-phishing email which led to an ISO file container being stored on disk and mounted. Previous activity also connected with this group relied heavily on spear-phishing and Cobalt Strike throughout 2020. Middle East.

Malware 140

Malware Phishing Password Management Social Engineering 140

eSecurity Planet

NOVEMBER 2, 2022

The advent of untraceable digital payment methods like cryptocurrency was a boon to hackers looking to extort as much money as they could from their targets without being caught. Petya was initially developed by a group called Janus Cybercrime Solutions as part of its ransomware-as-a-service (RaaS) platform.

Malware 138

Malware Ransomware Antivirus Internet 138

SC Magazine

JULY 12, 2021

million global ransomware attacks in 2020 , an increase of 62 percent over 2019. Cryptocurrency makes it too easy to get paid. And, if they pocket the cash during a major cryptocurrency market upswing, they stand to gain far more than the amount of the ransom. Overall, there were 304.6

Ransomware 57

Ransomware Cryptocurrency Cyber Attacks Media 57