The Hacker News

OCTOBER 21, 2021

Since at least late 2019, a network of hackers-for-hire have been hijacking the channels of YouTube creators, luring them with bogus collaboration opportunities to broadcast cryptocurrency scams or sell the accounts to the highest bidder.

Accountability 102

Accountability Cryptocurrency Scams Phishing 102

Security Affairs

NOVEMBER 18, 2020

In 2019, over 320 million users were registered with the MercadoLivre e-commerce platform. . The kill chain starts with phishing messages that use a.docx file that once is opened triggers a template injection attack. bin, researchers also observed the use of a cryptocurrency mining module. . SecurityAffairs – hacking, malware).

Phishing 117

Phishing Malware Cryptocurrency Information Security 117

SecureList

FEBRUARY 23, 2022

The research in this report is a continuation of our previous annual financial threat reports ( 2018 , 2019 and 2020 ), providing an overview of the latest trends and key events across the threat landscape. Phishing: In 2021, 8.2% of users were hit by phishing. of all phishing schemes in 2021, compared to the 11.1%

Banking 107

Banking Phishing Cryptocurrency Malware 107

SecureList

MARCH 31, 2021

Even though, in 2020, we have seen ever more sophisticated cyberattacks, the overall statistics look encouraging: the number of users hit by computer and mobile malware declines, so does financial phishing. Traditionally, the study covers the common phishing threats encountered by users, along with Windows and Android-based financial malware.

Banking 123

Banking Phishing Malware Mobile 123

SecureList

MARCH 29, 2023

However, traditional financial threats – such as banking malware and financial phishing, continue to take up a significant share of such financially-motivated cyberattacks. Meanwhile, cryptocurrency became a prominent target for those seeking monetary gain. In addition to financial malware, we also examined phishing activities.

Banking 79

Banking Phishing Cryptocurrency Mobile 79

Security Affairs

OCTOBER 20, 2021

A Cookie Theft malware was employed in phishing attacks against YouTube creators, Google’s Threat Analysis Group (TAG) warns. Financially motivated threat actors are using Cookie Theft malware in phishing attacks against YouTube creators since late 2019.

Accountability 129

Accountability Malware Phishing Social Engineering 129

Identity IQ

APRIL 2, 2021

The FBI received a record number of reports last year totaling 791,790, a 69% growth from 2019. billion in 2019 to $4.2 Phishing Scams. Phishing scams accounted for 241,342 complaints in the report, generating $54 million in total damages. Moreover, losses due to internet crime increased by $700 million, growing from $3.5

Scams 110

Scams Computers and Electronics Phishing Internet 110

Security Affairs

MARCH 18, 2021

billion and authorities observed an increase of more than 300,000 complaints from 2019 (+69%). According to the 2020 Internet Crime Report , the top three crimes reported by victims in 2020 were phishing scams, non-payment/non-delivery scams, and extortion. million in 2019 to over $29.1 billion in losses. million last year.

Internet 108

Internet Internet Scams Identity Theft 108

SecureList

MARCH 3, 2022

It is also worth noting that in 2021 the vectors of monthly fluctuations (increases and decreases) are the same as those in 2019 and, particularly, in 2018 more often than in 2020. However, compared to 2018 and 2019, the summer decrease in the percentage of ICS computers on which malicious objects were blocked was less pronounced in 2021.

Spyware 96

Spyware Ransomware Cryptocurrency Phishing 96

Security Affairs

OCTOBER 26, 2022

The Raccoon stealer was first spotted in April 2019, it was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data. These individuals used various ruses, such as email phishing, to install the malware onto the computers of unsuspecting victims.” in the stolen data.

Identity Theft 86

Identity Theft Cryptocurrency Cyber threats Cybercrime 86

Security Affairs

APRIL 1, 2020

The malware is cheap compared to similar threats, it is able to steal sensitive data from about 60 applications, including (browsers, cryptocurrency wallets, email and FTP clients). The malware is currently distributed via exploit kits, phishing campaigns, and bundled with other malware.

Cryptocurrency 101

Cryptocurrency Malware Advertising Hacking 101

Security Affairs

JANUARY 2, 2020

The Poloniex cryptocurrency exchange is forcing users to reset their passwords following a data leak. . Another bad news for the community of the virtual currencies communities, the Poloniex cryptocurrency exchange has forced its users to reset their passwords following a data leak. . charlysatoshi. This is a real email!

Passwords 61

Passwords Cryptocurrency Data breaches Advertising 61

Security Affairs

JULY 6, 2020

In the past, the APT targeted banks and cryptocurrency exchanges , according to the experts the overall operations allowed the group to earn $2 billion. Researchers were investigating e-skimming attacks when noticed that the malicious code was loaded from domains that were involved in spear-phishing campaign attributed to the Lazarus APT.

Retail 97

Retail Advertising Malware Cryptocurrency 97

Webroot

APRIL 7, 2021

The reason for this volatility is at least partly attributed to an event known as “ the halvening ,” where the reward generating supply of the cryptocurrency is cut in half, simultaneously increasing demand. Not necessarily, says threat researcher and cryptocurrency expert Tyler Moffitt. A more direct relationship.

Ransomware 86

Ransomware Cryptocurrency Marketing Cybercrime 86

Security Affairs

FEBRUARY 17, 2021

billion of money and cryptocurrency from financial institutions and companies, to create and deploy multiple malicious cryptocurrency applications, and to develop and fraudulently market a blockchain platform.” Cyber-Enabled Heists from Banks : from 2015 through 2019 the APT group attempted to steal more than $1.2

Cryptocurrency 73

Cryptocurrency Banking Hacking Ransomware 73

Security Affairs

MAY 8, 2019

Hackers steal $41 Million worth of Bitcoin from Binance, one of the world’s largest cryptocurrency exchange. The hack of another cryptocurrency exchange made the headlines, hackers steal $41 Million worth of Bitcoin (over 7,000 bitcoins ) from Binance. — CZ Binance (@cz_binance) May 8, 2019. Much appreciated!

Cryptocurrency 71

Cryptocurrency Data breaches Advertising Phishing 71

Approachable Cyber Threats

JULY 7, 2022

Raccoon Stealer has been around since April 2019, and was one of the most prolific information stealers in 2021. It also serves as an easy access point for more advanced hackers and scammers to target specific organizations, or even harvest cryptocurrency. Category Awareness, News. Risk Level. DropBox and social engineering.

Social Engineering 105

Social Engineering Cryptocurrency Malware Antivirus 105

SecureList

NOVEMBER 23, 2021

We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular. In fact, from January through the end of October, Kaspersky detected more than 2,300 fraudulent global resources aimed at 85,000 potential crypto investors or users who are interested in cryptocurrency mining. Definitely yes.

Cryptocurrency 118

Cryptocurrency Banking Cybercrime Ransomware 118

Krebs on Security

APRIL 7, 2022

” In Dragonfly’s second iteration between 2014 and 2017, the hacking group spear-phished more than 3,300 people at more than 500 U.S. and international companies and entities, including U.S. federal agencies like the Nuclear Regulatory Commission. ” HYDRA.

Marketing 253

Marketing Energy and Utilities Malware Ransomware 253

Malwarebytes

MAY 5, 2022

As the FBI points out, the goal is not always a direct fund transfer: One variation involves compromising legitimate business email accounts and requesting employees’ Personally Identifiable Information, Wage and Tax Statement (W-2) forms, or even cryptocurrency wallet s. The rise of cryptocurrency in BEC fraud.

Cryptocurrency 73

Cryptocurrency Scams Authentication Accountability 73

eSecurity Planet

JULY 27, 2021

The LemonDuck malware that for the past couple of years has been known for its cryptocurrency mining and botnet capabilities is evolving into a much broader threat, moving into new areas of cyber attacks, targeting both Linux and Microsoft systems and expanding its geographical reach, according to security researchers with Microsoft.

Malware 144

Malware Risk Cryptocurrency Ransomware 144

Security Affairs

SEPTEMBER 3, 2022

users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M Pierluigi Paganini.

Data breaches 69

Data breaches Malware Surveillance Ransomware 69

Security Affairs

FEBRUARY 24, 2020

The malware is cheap compared to similar threats, it is able to steal sensitive data from about 60 applications, including (browsers, cryptocurrency wallets, email and FTP clients). According to a report published by security firm CyberArk, Raccoon is mostly delivered through Exploit Kits and Phishing Campaigns.

Cybercrime 89

Cybercrime Malware Cryptocurrency Advertising 89

IT Security Guru

SEPTEMBER 1, 2022

That is why it is popular in cryptocurrency systems; in fact, it is vital because there would be no anonymity for crypto users without it. This is vital in cryptocurrency transactions as nobody can alter or delete a transaction once it has been recorded on the block. In 2019, hackers attacked twelve crypto exchanges.

Cryptocurrency 98

Cryptocurrency Hacking Authentication Insurance 98

Cytelligence

JANUARY 14, 2020

While we saw the threat landscape change in 2019 with even more sophisticated attacks, we predict 2020 to be even more extreme. More targeted ransomware – 2019 saw ransomware exploits getting highly targeted against specific businesses, as well as local government. These services typically include: Ransomware analysis. Eradication.

Cybersecurity 65

Cybersecurity Cyber Insurance Insurance Ransomware 65

CyberSecurity Insiders

AUGUST 26, 2022

In 2019, this type of cyberattack cost companies about $7.5 CryptoLocker: Another cryptocurrency attack took place in 2013 at the hands of a piece of ransomware called CryptoLocker. Avoiding phishing scams can be the best way to prevent a ransomware attack. What Companies Have Suffered These Attacks?

Ransomware 123

Ransomware Education Software Malware 123

Security Boulevard

MAY 3, 2021

The personal information of 11 million UK Facebook profiles were been found on a hackers website , with the social media giant seemingly dismissing the significance of the data within a statement, " This is old data that was previously reported on in 2019. We found and fixed this issue in August 2019".

Ransomware 124

Ransomware Passwords Scams Government 124

Security Affairs

JUNE 23, 2019

New phishing campaign targets bank customers with WSH RAT. CVE-2019-11707 Firefox Zero-Day exploited to infect employees at cryptocurrency exchanges. Microsoft fixed CVE-2019-1105 flaw in Outlook for Android. A free Decryptor tool for GandCrab Ransomware released. From Targeted Attack to Untargeted Attack. Update it now!

Data breaches 54

Data breaches Cryptocurrency Banking Phishing 54

Security Affairs

MARCH 13, 2020

Attackers obtain victims’ information by launching a phishing campaign, or by purchasing them in the underground market. “The thefts, which netted dozens of victims in Austria, were perpetrated by the gang in the spring of 2019 in a series of SIM swapping attacks.” ”continues Europol.

Banking 118

Banking Cybercrime Mobile Accountability 118

CyberSecurity Insiders

MARCH 13, 2023

The Phishing email attack took place in the year 2021 and the Museum of Gloucester that identified the unauthorized intrusion is still being affected by the cyber incident. For the past 1 year or so, a museum is unable to access its artecraft database because of a ransomware attack on the servers of Gloucester City Council.

Cyber Attacks 52

Cyber Attacks Healthcare Ransomware Backups 52

Security Affairs

SEPTEMBER 22, 2019

France and Germany will block Facebooks Libra cryptocurrency. taxpayers hit by a phishing campaign delivering the Amadey bot. MMD-0063-2019 – Summarize report of three years MalwareMustDie research (Sept 2016-Sept 2019). Astaroth Trojan leverages Facebook and YouTube to avoid detection.

Adware 52

Adware Password Management Advertising Hacking 52

Security Affairs

MARCH 5, 2019

Security experts have recently discovered hundreds of exposed Docker hosts that have been compromised by hackers exploiting the CVE-2019-5736 runc vulnerability in February. This is a Go implementation of CVE-2019-5736, a container escape for Docker. The flaw was discovered by the security researchers Adam Iwaniuk and Borys Pop?awski,

Advertising 87

Advertising Cryptocurrency Engineering Phishing 87

SecureList

MARCH 1, 2021

If you look at the dynamics of attacks on mobile users in 2020, you will see that the average monthly number of attacks decreased by 865,000 compared to 2019. Number of attacks on mobile users in 2019 and 2020 ( download ). Number of adware attacks on mobile users in 2019 and 2020 ( download ). Number of mobile users attacked.

Mobile 139

Mobile Malware Adware Banking 139

SiteLock

AUGUST 27, 2021

Maybe one of your employees clicks on a phishing email and accidentally gives away his work email login information. Some criminals use ransomware techniques to exploit business computers for cryptocurrency mining. There were more than 151 million ransomware attacks in 2019. Cyberattacks disrupt and even destroy businesses.

Data breaches 98

Data breaches DDOS Ransomware Marketing 98

Malwarebytes

MARCH 12, 2024

A few years ago, paying ransomware attackers was almost a given—85% of hit organizations in early 2019 felt they had no choice. Ransomware attackers target the easiest entry points: an example chain might be that they first try phishing emails, then open RDP ports, and if those are secured, they’ll exploit unpatched vulnerabilities.

Ransomware 85

Ransomware Healthcare Technology Phishing 85

Security Affairs

OCTOBER 28, 2019

The malware was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data. The malware was first spotted in April 2019, it is actively distributed via multiple exploit kits, including Fallout and RIG , and phishing campaigns.

Malware 47

Malware Advertising Cryptocurrency Cybercrime 47

SiteLock

AUGUST 31, 2021

Once Ryuk ransomware infects its target, it uses encryption to hold data hostage until a substantial ransom is paid generally in bitcoin or another type of cryptocurrency. The FBI estimates that bad actors deploying Ryuk ransomware made off with over $61 million in ransom payments in a 21-month period spanning 2018 and 2019.

Ransomware 52

Ransomware Healthcare Malware Encryption 52