Security Affairs

FEBRUARY 9, 2021

An international operation conducted by Ukraine’s police, along with the US and Australia peers, shut down the world’s largest phishing Service U-Admin. The phishing service was involved in attacks aimed at financial institutions in 11 countries (Australia, Spain, the U.S., and caused tens of millions of dollars in losses.

Phishing 85

Phishing Scams Mobile Authentication 85

Security Affairs

SEPTEMBER 20, 2019

Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey. The post U.S.

Phishing 82

Phishing Social Engineering Malware Advertising 82

Security Affairs

MARCH 6, 2023

German police announced to have dismantled an international cybercrime gang behind the DoppelPaymer ransomware operation. DoppelPaymer ransomware has been active since June 2019 , in November 2020 Microsoft Security Response Center (MSRC) warned customers of the DoppelPaymer ransomware and provided useful information on the threat.

Ransomware 75

Ransomware Cybercrime Malware Phishing 75

Security Affairs

FEBRUARY 24, 2020

The Raccoon stealer was first spotted in April 2019, it was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data. According to a report published by security firm CyberArk, Raccoon is mostly delivered through Exploit Kits and Phishing Campaigns. Pierluigi Paganini.

Cybercrime 90

Cybercrime Malware Cryptocurrency Advertising 90

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). The man was arrested in Bangkok, Thailand in November 2019 at the request of U.S. in May 2020. Polite, Jr.

Cybercrime 105

Cybercrime Hacking Software Phishing 105

Security Affairs

SEPTEMBER 6, 2022

Researchers discovered a previously undocumented software control panel, named TeslaGun, used by a cybercrime gang known as TA505. Researchers from cybersecurity firm PRODAFT have discovered a previously undocumented software control panel, tracked as TeslaGun, used by a cybercrime group known as TA505.

Cybercrime 92

Cybercrime Banking Malware Retail 92

Security Affairs

NOVEMBER 2, 2022

Some of the sites employed in the campaign host phishing pages. “After the initial delay, the malicious app opens phishing sites in Chrome. The content of the phishing sites varies—some are harmless sites used simply to produce pay-per-click, and others are more dangerous phishing sites that attempt to trick unsuspecting users.

Adware 103

Adware Phishing Mobile Malware 103

Security Affairs

MARCH 18, 2021

The FBI’s Internet Crime Complaint Center has released its annual report, the 2020 Internet Crime Report , which includes data from 791,790 complaints of suspected cybercrimes. billion and authorities observed an increase of more than 300,000 complaints from 2019 (+69%). million in 2019 to over $29.1 million last year.

Internet 107

Internet Internet Scams Identity Theft 107

Security Affairs

OCTOBER 20, 2019

TA505 cybercrime group that operated the Dridex Trojan and Locky ransomware, has been using a new RAT dubbed SDBbot in recent attacks. Security experts at Proofpoint observed the notorious TA505 cybercrime group that has been using a new RAT dubbed SDBbot in recent attacks. Pierluigi Paganini.

Cybercrime 43

Cybercrime Advertising Retail Banking 43

Security Affairs

APRIL 3, 2024

This malware was first identified in 2019 and was initially attributed to SOLAR SPIDER’s phishing campaigns, which delivered the JSOutProx RAT to financial institutions across Africa, the Middle East, South Asia, and Southeast Asia.

Banking 97

Banking Financial Services Malware Phishing 97

Security Affairs

OCTOBER 28, 2021

“AbstractEmu does not exploit zero-click remote exploits, instead it exploits very contemporary vulnerabilities (CVE-2020-0041, CVE-2020-0069, CVE-2019-2215 and CVE-2020-0041 ) from 2019 and 2020 to target the largest number of devices as possible. . SecurityAffairs – hacking, cybercrime). Pierluigi Paganini.

Malware 94

Malware Cybercrime Mobile Banking 94

Security Affairs

FEBRUARY 28, 2020

An interesting report published by RiskIQ on 2019 Mobile App Threat Landscape, lists the most dangerous mobile app store online. Mobile users downloaded over 200 billion apps in 2019 and the overall expense in app stores worldwide has been estimated in more than $120 billion. ” reads the report published by RiskIQ.

Mobile 107

Mobile Advertising Cybercrime Phishing 107

Security Affairs

MARCH 13, 2020

European authorities dismantled two cybercrime organizations responsible for stealing millions through SIM hijacking. European authorities managed to dismantle the operations of two cybercrime gangs responsible for stealing millions through SIM hijacking. SecurityAffairs – SIM Hijacking, cybercrime). million). .

Banking 114

Banking Cybercrime Mobile Accountability 114

SecureList

FEBRUARY 1, 2022

times against 2019. This was based on an analysis of information published on the dark web. In 2021, HIPAA noted 642 data leaks from medical organizations versus 512 in 2019. Let’s see if there are any informational security issues with these wearables. Source: HIPAA Journal.

Phishing 116

Phishing Healthcare IoT Authentication 116

Cisco Security

AUGUST 12, 2021

Threat Grid (Secure Malware Analytics). AMP for Endpoints (Secure Endpoint). CyberCrime Tracker. Farsight Security DNSDB. It is rare that we take this step, the only previous time was when a spear phishing attack was sent against our registration laptops in Black Hat Europe 2018. SECURITY CATEGORY (PHISHING).

DNS 141

DNS Firewall Phishing Mobile 141

Security Affairs

NOVEMBER 22, 2021

” said Demetrius Comes, GoDaddy’s Chief Information Security Officer. The investigation revealed that attackers exploited a vulnerability to gain access to the following customer information: Up to 1.2 The exposure of email addresses presents risk of phishing attacks. Pierluigi Paganini.

Data breaches 121

Data breaches Passwords Accountability Phishing 121

Security Affairs

JANUARY 28, 2023

The recent Hive infrastructure takedown as well as other major gangs dissolution such as Conti in 2022, is making room in the cybercrime business The Lockbit locker leaked a few months ago in the underground, is increasing its popularity and adoption among micro-criminal actors.

Penetration Testing 90

Penetration Testing Ransomware Firewall Social Engineering 90

Security Affairs

FEBRUARY 8, 2022

The Roaming Mantis SMS phishing campaign is now targeting Android and iPhone users in Europe with malicious apps and phishing pages. The latest wave of attacks aimed at spreading phishing links via SMS messages (SMiShing), most of the victims were users in Russia, Japan, India, Bangladesh, Kazakhstan, Azerbaijan, Iran, and Vietnam.

Phishing 86

Phishing DNS Malware Hacking 86

Security Affairs

OCTOBER 18, 2020

Researchers from FireEye’s Mandiant observed FIN11 hackers using spear-phishing messages distributing a malware downloader dubbed FRIENDSPEAK. ” The attack chain starts when the victims enable the macro embedded in an Excel spreadsheet that came with the phishing e-mails. . ” reads the analysis published by FireEye.

Ransomware 131

Ransomware Malware Telecommunications Advertising 131

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. The malware has been active at least since August 2019, over the months the NetWalker ransomware was made available through a ransomware-as-a-service (RaaS) model attracting criminal affiliates.

Ransomware 76

Ransomware VPN Cybercrime Advertising 76

Security Affairs

OCTOBER 26, 2022

The man is currently being held in the Netherlands, he was charged for his alleged role the international cybercrime operation known as Raccoon Infostealer. The Raccoon stealer was first spotted in April 2019, it was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data.

Identity Theft 81

Identity Theft Cryptocurrency Cyber threats Cybercrime 81

Security Affairs

MARCH 17, 2020

Security experts from FireEye published an interesting report on the Ransomware deployment trends, it revealed that most of the attacks (76%) against the enterprise sector occur outside working hours. FireEye compiled the report using data from dozens of ransomware infections that it has investigated from 2017 to 2019.

Ransomware 111

Ransomware Advertising Malware Cybercrime 111

Security Affairs

SEPTEMBER 3, 2022

Google rolled out emergency fixes to address actively exploited Chrome zero-day Samsung discloses a second data breach this year The Prynt Stealer malware contains a secret backdoor. users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M

Data breaches 66

Data breaches Malware Surveillance Ransomware 66

Security Affairs

AUGUST 27, 2022

” reads a security notice published by the company. “Based on our investigation, we determined the vendor was compromised by a sophisticated phishing attack. Then the attackers could gain unauthorized access to any enterprise resources by using this information. million consumers, Dashers, and merchants.

Data breaches 85

Data breaches Phishing Hacking Authentication 85

SecureList

NOVEMBER 23, 2021

A 2021 report by Constella Intelligence found that the number of personal data leaks in healthcare grew by half when compared to 2019. Unfortunately, despite the best efforts by medical institutions and information security companies, the healthcare industry remains one insufficiently protected and vulnerable to attacks of this kind.

Healthcare 115

Healthcare Ransomware Cybercrime Scams 115

Security Affairs

MAY 12, 2020

Trojan Lampion is a malware observed at the end of the year 2019 impacting Portuguese users using template emails from the Portuguese Government Finance & Tax and EDP. We are living in an era where crooks taking advantage of the pandemic situation to launch new waves of phishing and malware every day. com/team-modulosp/0.]zipzH$^Uj[jHf2ir0[%u%YiEj’elhKW@]s[`$5]0e6e:]`bB[<WLf7_Gi*$FYZe+cp%ojP[‘W;co#lcLeIZ]krb’eTimf(%PF=#Z’c(h#:/^$}Z~bZbjHhxxps://stora

Banking 107

Banking Malware Government Advertising 107

Security Affairs

DECEMBER 30, 2022

WordPress Ultimate FAQ (vulnerabilities CVE-2019-17232 and CVE-2019-17233). ” Visitors of compromised pages are redirected to malicious sites used to distribute malware and serve phishing pages. Total Donations Plugin. Post Custom Templates Lite. WP Quick Booking Manager. Faceboor Live Chat by Zotabox. WP Live Chat.

Malware 83

Malware Hacking Accountability Phishing 83

Security Affairs

DECEMBER 24, 2019

“Since January 2019, LockerGoga ransomware has targeted large corporations and organizations in the United States, United Kingdom, France, Norway, and the Netherlands. Feds remind that both ransomware implements a secure encryption algorithm that means it impossible to decrypt the files without paying the ransom.

Ransomware 60

Ransomware Backups Encryption Cyber Attacks 60

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. conduct employee phishing tests. conduct employee phishing tests. Between 2015 and 2019, the largest-known individual ransom demand was $15 million.

Energy and Utilities 122

Energy and Utilities Ransomware Banking Hacking 122

Security Affairs

JULY 10, 2022

The company highlight the risks of identity theft or phishing attacks in case their data have been compromised. The gang has been active since at least 2019 and today it is one of the most active ransomware gangs.

Mobile 101

Mobile Ransomware Identity Theft Phishing 101

Security Affairs

MARCH 1, 2023

Parallax RAT has been distributed through malvertising and phishing campaigns since December 2019. Researchers from cybersecurity firm Uptycs warns of attacks targeting cryptocurrency organizations with the Parallax remote access Trojan (RAT).

Cryptocurrency 87

Cryptocurrency Malware Phishing Hacking 87

Security Affairs

OCTOBER 3, 2020

SunCrypt ransomware operators first appeared in the threat landscape in October 2019, and over the past few months, they launched a dedicated leak site where they started publishing the data stolen from the victims. The UHNJ is a New Jersey state-owned teaching hospital with over 3,500 employees that was established in 1994.

Ransomware 142

Ransomware Advertising Encryption Phishing 142

Security Affairs

OCTOBER 29, 2021

The list of victims of the group also includes Norwegian giant Norsk Hydr that was hit in 2019. The suspects were involved in more than 1,800 ransomware attacks against victims across 71 countries, the threat actors focused on large corporations. ” reads the press release published by the Europol.

Ransomware 91

Ransomware Computers and Electronics Malware Phishing 91

Security Affairs

OCTOBER 5, 2021

The black marketplace was launched in February 2019, it was one of the few black marketplaces that initially accepted only payment in Monero. Meanwhile be on the lookout for phishing or copycats, if it’s not signed by us it’s not us.” Meanwhile be on the lookout for phishing or copycats, if it’s not signed by us it’s not us.”

Marketing 87

Marketing Scams Phishing Hacking 87

SecureWorld News

JANUARY 28, 2021

And not only work-from-home (WFH) employees have been affected, but also those mobile workers and all the contracted workers and supply chain workers who have largely been going under the radar of CISOs and information security departments for the past two to three decades. 15-20 minutes). This will be a great beginning.

IoT 54

IoT Phishing Mobile Passwords 54

Security Affairs

AUGUST 20, 2019

Group-IB has limited some of the data in the reports that could hinder investigations into the group’s cybercrimes. In 2019 alone, Silence has infected workstations in more than 30 countries across Europe, Latin America, Africa, and Asia. Like most APTs, Silence uses phishing emails to infect their victims.

Banking 56

Banking Cybercrime Cybersecurity Advertising 56

Krebs on Security

JULY 18, 2023

In 2019, a Canadian company called Defiant Tech Inc. LeakedSource was advertised on a number of popular cybercrime forums as a service that could help hackers break into valuable or high-profile accounts. LeakedSource also tried to pass itself off as a legal, legitimate business that was marketing to security firms and professionals.

Hacking 189

Hacking Accountability Data breaches Marketing 189