2020, Cybercrime and Hacking - Cyber Security Informer

From Cybercrime Saul Goodman to the Russian GRU

Krebs on Security

FEBRUARY 7, 2024

In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. Launched in 2001 under the tagline “Network terrorism,” Mazafaka would evolve into one of the most guarded Russian-language cybercrime communities. One representation of the leaked Mazafaka database. As well as the cost of my services.”

Cybercrime

Cybercrime Accountability Identity Theft Hacking

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Security Affairs

OCTOBER 9, 2023

A threat actor has leaked the source code for the first version of the HelloKitty ransomware on a Russian-speaking cybercrime forum. The availability of the source in the cybercrime ecosystem can allow threat actors to develop their own version of the Hello Kitty ransomware. The HelloKitty gang has been active since January 2021.

Cybercrime

Cybercrime Ransomware DDOS Encryption

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking

Hacking Cybercrime Ransomware Government

'PlugwalkJoe' Gets 5 Years in Prison for 2020 Twitter Hack

SecureWorld News

JUNE 27, 2023

In a significant victory against cybercrime, Joseph James O'Connor, a U.K. citizen known by the moniker "PlugwalkJoe," has been sentenced to five years in prison for his involvement in a wide range of cybercrimes. This sentencing serves as a powerful reminder that cybercriminals will face severe consequences for their actions.

Hacking

Hacking Cybercrime Cryptocurrency Accountability

Breached Data Indexer ‘Data Viper’ Hacked

Krebs on Security

JULY 13, 2020

Data Viper , a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. The incident also highlights the often murky area between what’s legal and ethical in combating cybercrime.

Hacking

Hacking Marketing Cybercrime Accountability

Pwn2Own 2020 Day1 -researchers earned $180K for hacking Windows, Ubuntu, and macOS

Security Affairs

MARCH 19, 2020

During the first day of the Pwn2Own 2020 hacking competition, participants earned a total of $180,000 for exploits targeting Windows 10, Ubuntu Desktop and macOS. The hack exploits an improper input validation bug. SecurityAffairs – Pwn2Own, cybercrime). ” reads the official page of the event. Pierluigi Paganini.

Hacking

Hacking Advertising Cybercrime Software

No, I Did Not Hack Your MS Exchange Server

Krebs on Security

MARCH 28, 2021

“web shells”) that various cybercrime groups worldwide have been using to commandeer any unpatched Exchange servers. 26, Shadowserver saw an attempt to install a new type of backdoor in compromised Exchange Servers, and with each hacked host it installed the backdoor in the same place: “ /owa/auth/babydraco.aspx.

Hacking

Hacking Cybercrime DNS Antivirus

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 10, 2020

Microsoft has uncovered Zerologon attacks that were allegedly conducted by the infamous TA505 Russia-linked cybercrime group. Microsoft spotted a series of Zerologon attacks allegedly launched by the Russian cybercrime group tracked as TA505 , CHIMBORAZO and Evil Corp. SecurityAffairs – hacking, Zerologon). states Microsoft.

Cybercrime

Cybercrime Security Intelligence Authentication Banking

3 hacking forums have been hacked and database have been leaked online

Security Affairs

MAY 25, 2020

Three hacking forums Nulled.ch, Sinfulsite.com, and suxx.to have been hacked and their databases have been leaked online. Researchers from intelligence firm Cyble made the headlines again, this time they have discovered online the databases of three hacking forums. The databases appear to have been leaking in May 2020.

Hacking

Hacking Data breaches Advertising Cybercrime

Cybercrime Statistics in 2019

Security Affairs

JANUARY 18, 2020

I’m preparing the slides for my next speech and I decided to create this post while searching for interesting cybercrime statistics in 2020. Cybercrime will cost as much as $6 trillion annually by 2021. The global expense for organizations to protect their systems from cybercrime attacks will continue to grow.

Cybercrime

Cybercrime Small Business Data breaches Mobile

Safer internet day – Cybercrime facts Infographic

Security Affairs

FEBRUARY 11, 2020

Dear readers, I decided to create a simple Infographic that shows Cybercrime facts in 2019, I’ve done it for Safer Internet Day 2020. SecurityAffairs – cybercrime, hacking). The post Safer internet day – Cybercrime facts Infographic appeared first on Security Affairs. Pierluigi Paganini.

Cybercrime

Cybercrime Internet Internet Advertising

Top data breaches of 2020 – Security Affairs

Security Affairs

JANUARY 3, 2021

Data from major cyber security firms revealed that tens of billion records have been exposed in data breaches exposed in 2020. Below a list of top incidents: There were a number of major data breaches that took place in 2020, in many cases stolen records flooded the cybercrime underground and were used credential stuffing attacks.

Data breaches

Data breaches Cybercrime Hacking Passwords

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. In late 2020, credentials for US-based universities were found for sale on the dark web. SecurityAffairs – hacking, FBI). To nominate, please visit:?. Pierluigi Paganini.

Cybercrime

Cybercrime Education Accountability Phishing

Teen behind 2020 Twitter hack pleads guilty

Malwarebytes

MARCH 17, 2021

The so-called “mastermind” behind the 2020 Twitter hack that compromised the accounts of several celebrities and public figures—including President Barack Obama, Bill Gates, and Elon Musk—pleaded guilty to several charges on Tuesday in a Florida court. He will also earn credit for the 229 days that he has already spent in jail.

Hacking

Hacking Social Engineering Scams Accountability

Reading the FBI IC3’s ‘2020 Internet Crime Report’

Security Affairs

MARCH 18, 2021

The FBI’s Internet Crime Complaint Center has released its annual report, the 2020 Internet Crime Report , which includes data from 791,790 complaints of suspected cybercrimes. Data that emerged from the report are worrisome, in 2020 the reported losses exceeded $4.2 ” reads 2020 Internet Crime Report.

Internet

Internet Internet Scams Identity Theft

Malicious Domain in SolarWinds Hack Turned into ‘Killswitch’

Krebs on Security

DECEMBER 16, 2020

A key malicious domain name used to control potentially thousands of computer systems compromised via the months-long breach at network monitoring software vendor SolarWinds was commandeered by security experts and used as a “killswitch” designed to turn the sprawling cybercrime operation against itself, KrebsOnSecurity has learned.

Hacking

Hacking Malware Software Cybercrime

Coronavirus-themed attacks February 1 – March 15, 2020

Security Affairs

MARCH 15, 2020

In this post, I decided to share the details of the Coronavirus-themed attacks launched from February 1 to March 15, 2020. February 1, 2020 – Crooks start exploiting Coronavirus as bait to spread malware. February 25, 2020 – South Korea suffers from the spread of people infected with Corona 19. ‘ Pierluigi Paganini.

Malware

Malware Advertising Scams Cybercrime

Hacker ‘PlugwalkJoe’ pleads guilty to 2020 Twitter breach

Bleeping Computer

MAY 10, 2023

Joseph James O'Connor, aka 'PlugwalkJoke,' has pleaded guilty to multiple cybercrime offenses, including SIM swapping attacks, cyberstalking, computer hacking, and hijacking high-profile accounts on Twitter and TikTok. [.]

Cybercrime

Cybercrime Accountability Hacking

15 billion credentials available in the cybercrime marketplaces

Security Affairs

JULY 9, 2020

More than 15 billion username and passwords are available on cybercrime marketplaces, including over 5 billion unique credentials, states the experts. Experts reported that brute-force cracking tools and account checkers are available on cybercrime marketplaces and forums for an average of $4. Pierluigi Paganini.

Cybercrime

Cybercrime Antivirus Marketing Accountability

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. ”] Kislitsin was hired by Group-IB in January 2013, nearly six months after the Formspring hack. Department of Justice.

Cybersecurity

Cybersecurity Cybercrime Hacking Technology

UNC2447 cybercrime gang exploited SonicWall Zero-Day before it was fixed

Security Affairs

APRIL 30, 2021

UNC2447 cybercrime gang exploited a zero-day in the Secure Mobile Access (SMA), addressed by SonicWall earlier this year, before the vendor released a fix. The malware employed by the group since November 2020, includes Sombrat, FiveHands, the Warprism PowerShell dropper, the Cobalt Strike beacon, and FoxGrabber. Pierluigi Paganini.

Cybercrime

Cybercrime Ransomware Malware Mobile

TeamTNT cybercrime gang expands its arsenal to target thousands of orgs worldwide

Security Affairs

SEPTEMBER 9, 2021

The financially motivated TeamTNT hacking group expanded its arsenal with new tools used to target thousands of victims worldwide. The TeamTNT botnet is a crypto-mining malware operation that has been active since April 2020 and that targets Docker installs. SecurityAffairs – hacking, TeamTNT). Pierluigi Paganini.

Cybercrime

Cybercrime Cryptocurrency Penetration Testing Malware

Ex-Canadian government employee admits to being a member of the Russian cybercrime gang NetWalker

Security Affairs

JUNE 30, 2022

A former Canadian government IT worker admitted to being a high-level member of the Russian cybercrime group NetWalker. to charges related to his involvement with the Russian cybercrime group NetWalker. In August 2020, the FBI has issued a security alert about Netwalker ransomware attacks targeting U.S. Pierluigi Paganini.

Cybercrime

Cybercrime Government Ransomware Cryptocurrency

DarkIRC botnet is targeting the critical Oracle WebLogic CVE-2020-14882

Security Affairs

DECEMBER 1, 2020

The critical remote code execution (RCE) vulnerability CVE-2020-14882 in Oracle WebLogic is actively exploited by operators behind the DarkIRC botnet. Experts reported that the DarkIRC botnet is actively targeting thousands of exposed Oracle WebLogic servers in the attempt of exploiting the CVE-2020-14882. Pierluigi Paganini.

Malware

Malware DDOS Hacking Cybercrime

Carding Action 2020: Group-IB supports Europol-backed operation saving €40 million

Security Affairs

NOVEMBER 26, 2020

Carding Action 2020 targeted crooks selling/purchasing compromised card data on sites selling stolen cred itcard data and darkweb marketplaces. The three-month anti-cybercrime effort targeted traders of compromised card details and prevented approximately €40 million in losses. .

Cybercrime

Cybercrime eCommerce Banking Marketing

ZingoStealer crimeware released for free in the cybercrime ecosystem

Security Affairs

APRIL 15, 2022

The cybercrime gang has been active since at least January 2020. SecurityAffairs – hacking, cybercrime). The post ZingoStealer crimeware released for free in the cybercrime ecosystem appeared first on Security Affairs. To nominate, please visit:? Follow me on Twitter: @securityaffairs and Facebook.

Cybercrime

Cybercrime Malware Cryptocurrency Hacking

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime

Cybercrime Banking Malware Ransomware

Coronavirus-themed attacks April 19 – April 25, 2020

Security Affairs

APRIL 26, 2020

This post includes the details of the Coronavirus-themed attacks launched from April 19 to April 25, 2020. The FBI announced that the number of cybercrime reports is spiked since the beginning of the Coronavirus (COVID-19) pandemic. Coronavirus-themed attacks April 05 – April 11, 2020. SecurityAffairs – Facebook, hacking).

Cyber Attacks

Cyber Attacks Advertising Cybercrime Hacking

Coronavirus-themed attacks March 15 – March 21, 2020

Security Affairs

MARCH 22, 2020

In this post, I decided to share the details of the Coronavirus-themed attacks launched from March 15 to March 21, 2020. March 21, 2020 – New Coronavirus-themed attack uses fake WHO chief emails. March 19, 2020 – Coronavirus news used by Emotet and Trickbot to evade detection. Pierluigi Paganini.

Advertising

Advertising Cybercrime Scams Phishing

Cybersecurity CEO: 5 Cybercrime Trends to Watch for in 2021

Herjavec Group

DECEMBER 16, 2020

16, 2020 . As we close out 2020, it’s no secret that this year has had more than its fair share of challenges. Ransomware, the fastest-growing type of cybercrime, will claim a new victim? Sadly, in 2020, we saw the first instance of human loss as a direct result of cybercrime – ransomware to be exact.

Cybercrime

Cybercrime Cybersecurity Digital transformation CISO

Top cybersecurity Predictions for 2020

Security Affairs

DECEMBER 27, 2019

The 2020 Cybersecurity Landscape – Below Pierluigi Paganini’s cybersecurity predictions for the next twelve months. In 2020, we will witness an increase in targeted ransomware attacks. The complete list of “Top #Cybersecurity Predictions for 2020” is available at the following URL: [link].

Cybersecurity

Cybersecurity IoT Ransomware Advertising

Indian video on demand giant ZEE5 has been hacked

Security Affairs

JUNE 7, 2020

The Indian video on demand giant ZEE5 has been hacked, attackers are threatening to sell the database on the cybercrime underground markets. Now, Kanishk Tagade from Quickcyber confirmed the hack of the Indian video streaming giant. . “A person or a hacking group claiming to have gained access to the network of ZEE5.com,

Hacking

Hacking Cybercrime Advertising Passwords

FIN11 cybercrime group is behind recent wave of attacks on FTA servers

Security Affairs

FEBRUARY 23, 2021

FireEye experts linked a series of attacks targeting Accellion File Transfer Appliance (FTA) servers to the cybercrime group UNC2546, aka FIN11. Security experts from FireEye linked a series of cyber attacks against organizations running Accellion File Transfer Appliance (FTA) servers to the cybercrime group UNC2546, aka FIN11.

Cybercrime

Cybercrime Software Ransomware Cyber Attacks

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Security Affairs

MAY 5, 2021

A new cybercrime gang, tracked as UNC2529 , has targeted many organizations in the US and other countries using new sophisticated malware. FireEye’s Mandiant unit observed two distinct waves of attacks carried out by the cybercrime group in December 2020. SecurityAffairs – hacking, UNC2529). Pierluigi Paganini.

Cybercrime

Cybercrime Malware Manufacturing Retail

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Security Affairs

FEBRUARY 27, 2021

‘Hotarus Corp’ Ransomware operators hacked Ecuador’s largest private bank, Banco Pichincha, and the country’s Ministry of Finance. ?A The bank has confirmed the attack in an official statement but states that it was a hacked marketing partner and not their internal systems. SecurityAffairs – hacking, Ecuador).

Hacking

Hacking Banking Ransomware Passwords

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Security Affairs

JULY 11, 2020

A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces. The data stolen by Nikulin were available on the cybercrime underground between 2015 and 2016, they were offered for sale by multiple traders.

Hacking

Hacking Cybercrime Data breaches Advertising

Asian media firm E27 hacked, attackers asked for a “donation”

Security Affairs

JUNE 28, 2020

Asian media firm E27 has been hacked by a hacking group identifying themselves as “Korean Hackers” and “Team Johnwick”that asked for a “donation” to provide information on the vulnerabilities they have exploited in the attack. SecurityAffairs – hacking, E27). Pierluigi Paganini.

Media

Media Hacking Passwords Data breaches

Coronavirus-themed attacks March 29 – April 04, 2020

Security Affairs

APRIL 5, 2020

In this post, I decided to share the details of the Coronavirus-themed attacks launched from March 29 to April 04, 2020. March 30, 2020 – Your colleague was infected with COVID19, this is the latest phishing lure. Coronavirus-themed attacks March 15 – March 21, 2020. Coronavirus-themed attacks March 22 – March 28, 2020.

Advertising

Advertising Phishing Malware Cybercrime

NetWalker ransomware operators have made $25 million since March 2020

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020.

Ransomware

Ransomware VPN Cybercrime Advertising

Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

Krebs on Security

FEBRUARY 4, 2021

Facebook told KrebsOnSecurity it seized hundreds of accounts — mainly on Instagram — that have been stolen from legitimate users through a variety of intimidation and harassment tactics, including hacking, coercion, extortion, sextortion , SIM swapping , and swatting. THE MIDDLEMEN.

Accountability

Accountability Hacking Media Mobile

Ransom-what? Learning from Hacked Hackers

SecureWorld News

JANUARY 19, 2023

That is how James McQuiggan, CISSP, Security Awareness Advocate for KnowBe4, kicked off the recent SecureWorld Remote Sessions webcast titled, "Ransomware, Ransom-war, and Ran-some-where: What We Can Learn When the Hackers Get Hacked." Some scary statistics: Ransomware attacks increased 13% from 2020 to 2021.

Hacking

Hacking Backups Ransomware Retail

Energy giant Shell discloses data breach caused by Accellion FTA hack

Security Affairs

MARCH 23, 2021

billion in 2020. ” Since the disclosure of the vulnerabilities in Accellion FTA multiple cybercrime groups targeted organizations worldwide. SecurityAffairs – hacking, Shell). The post Energy giant Shell discloses data breach caused by Accellion FTA hack appeared first on Security Affairs. Pierluigi Paganini.

Data breaches

Data breaches Hacking Cybercrime Cyber Attacks

Alleged Extortioner of Psychotherapy Patients Faces Trial

Krebs on Security

NOVEMBER 16, 2023

In a 2,200-page report, Finnish authorities laid out how they connected the extortion spree to Kivimäki, a notorious hacker who was convicted in 2015 of perpetrating tens of thousands of cybercrimes, including data breaches, payment fraud, operating a botnet and calling in bomb threats.

Cybercrime

Cybercrime Hacking Data breaches Banking

Who’s Behind the SWAT USA Reshipping Service?

Krebs on Security

NOVEMBER 6, 2023

Last week, KrebsOnSecurity broke the news that one of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. ” But the triploo@mail.ru However, in Sept. and gezze@mail.ru.

Passwords

Passwords Cybercrime Accountability Hacking

From Cybercrime Saul Goodman to the Russian GRU

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Trending Sources

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

'PlugwalkJoe' Gets 5 Years in Prison for 2020 Twitter Hack

Breached Data Indexer ‘Data Viper’ Hacked

Pwn2Own 2020 Day1 -researchers earned $180K for hacking Windows, Ubuntu, and macOS

No, I Did Not Hack Your MS Exchange Server

Russian Cybercrime group is exploiting Zerologon flaw, Microsoft warns

3 hacking forums have been hacked and database have been leaked online

Cybercrime Statistics in 2019

Safer internet day – Cybercrime facts Infographic

Top data breaches of 2020 – Security Affairs

FBI: Compromised US academic credentials available on various cybercrime forums

Teen behind 2020 Twitter hack pleads guilty

Reading the FBI IC3’s ‘2020 Internet Crime Report’

Malicious Domain in SolarWinds Hack Turned into ‘Killswitch’

Coronavirus-themed attacks February 1 – March 15, 2020

Hacker ‘PlugwalkJoe’ pleads guilty to 2020 Twitter breach

15 billion credentials available in the cybercrime marketplaces

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

UNC2447 cybercrime gang exploited SonicWall Zero-Day before it was fixed

TeamTNT cybercrime gang expands its arsenal to target thousands of orgs worldwide

Ex-Canadian government employee admits to being a member of the Russian cybercrime gang NetWalker

DarkIRC botnet is targeting the critical Oracle WebLogic CVE-2020-14882

Carding Action 2020: Group-IB supports Europol-backed operation saving €40 million

ZingoStealer crimeware released for free in the cybercrime ecosystem

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

Coronavirus-themed attacks April 19 – April 25, 2020

Coronavirus-themed attacks March 15 – March 21, 2020

Cybersecurity CEO: 5 Cybercrime Trends to Watch for in 2021

Top cybersecurity Predictions for 2020

Indian video on demand giant ZEE5 has been hacked

FIN11 cybercrime group is behind recent wave of attacks on FTA servers

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Yevgeniy Nikulin, Russian hacker behind Dropbox and LinkedIn hacks found guilty

Asian media firm E27 hacked, attackers asked for a “donation”

Coronavirus-themed attacks March 29 – April 04, 2020

NetWalker ransomware operators have made $25 million since March 2020

Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

Ransom-what? Learning from Hacked Hackers

Energy giant Shell discloses data breach caused by Accellion FTA hack

Alleged Extortioner of Psychotherapy Patients Faces Trial

Who’s Behind the SWAT USA Reshipping Service?

Stay Connected