SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime 138

Cybercrime Banking Malware Ransomware 138

Krebs on Security

JUNE 22, 2022

.” The DOJ’s statement doesn’t mention that RSOCKS has been in operation since 2014, when access to the web store for the botnet was first advertised on multiple Russian-language cybercrime forums. A copy of the passport for Denis Kloster, as posted to his Vkontakte page in 2019. info , allproxy[.]info

Advertising 264

Advertising Cybercrime System Administration Hacking 264

Krebs on Security

SEPTEMBER 30, 2023

GandCrab dissolved in July 2019, and is thought to have become “ REvil ,” one of the most ruthless and rapacious Russian ransomware groups of all time. “The command requires Windows system administrators,” Truniger’s ads explained. “Experience in backup, increase privileges, mikicatz, network.

Ransomware 216

Ransomware Accountability Cybercrime Backups 216

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Dmitry Yuryevich Khoroshev.

Ransomware 213

Ransomware Cybercrime Accountability Malware 213

Security Affairs

MARCH 14, 2023

The gang leverages exposed remote administration services and internet-facing vulnerabilities to gain and maintain access to victim networks. The Makop criminals were recently using version 2.5.3869 of the tool, which dates back to 2019. Advanced_Port_Scanner_2.5.3869.exe Everything is freeware software maintained by Voidtools.

Ransomware 85

Ransomware Software System Administration Encryption 85

SecureWorld News

DECEMBER 11, 2023

In the 1980s, the internet as we know it today was called ARPANET and used mostly by researchers and the military. System administrators didn't bother locking down their systems, because the possibility of bad actors using them didn't really cross their minds.

Technology 92

Technology Artificial Intelligence Cybercrime Government 92

Krebs on Security

AUGUST 5, 2021

Reinvention is a basic survival skill in the cybercrime business. After acknowledging someone had also seized their Internet servers, DarkSide announced it was folding. REvil’s last big victim was Kaseya , a Miami-based company whose products help system administrators manage large networks remotely.

Ransomware 313

Ransomware Cybercrime Malware System Administration 313