Security Affairs

SEPTEMBER 23, 2021

Microsoft uncovered a large-scale phishing-as-a-service operation, dubbed BulletProofLink, that enabled threat actors to easily carry out malicious campaigns. BulletProofLink service was very cheap and allowed threat actors to arrange phishing campaigns without specific technical capabilities. ” concludes Microsoft.

Phishing 89

Phishing Cybercrime Advertising Hacking 89

Security Affairs

AUGUST 12, 2021

Microsoft warns of a long-running spear-phishing campaign that has targeted Office 365 customers in multiple attacks since July 2020. Microsoft revealed that a year-long spear-phishing campaign has targeted Office 365 customers in multiple attacks starting with July 2020. SecurityAffairs – hacking, cybercrime).

Phishing 115

Phishing Passwords Encryption Cybercrime 115

Security Affairs

NOVEMBER 26, 2020

Carding Action 2020 targeted crooks selling/purchasing compromised card data on sites selling stolen cred itcard data and darkweb marketplaces. The three-month anti-cybercrime effort targeted traders of compromised card details and prevented approximately €40 million in losses. .

Cybercrime 89

Cybercrime eCommerce Banking Marketing 89

Security Affairs

APRIL 19, 2020

This post includes the details of the Coronavirus-themed attacks launched from April 12 to April 18, 2020. PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. Coronavirus-themed attacks April 05 – April 11, 2020. adrotate banner=”9″].

Scams 105

Scams Malware Phishing Surveillance 105

Security Affairs

JUNE 13, 2021

The Anti-Phishing Working Group (APWG) revealed that the number of phishing websites peaked at record levels in the first quarter of 2021. The Anti-Phishing Working Group (APWG) has published its new Phishing Activity Trends Report related to the first quarter of 2021. Reported Phishing Websites for Q1 2021.

Phishing 104

Phishing Advertising Cryptocurrency Encryption 104

Security Affairs

OCTOBER 2, 2022

German police arrested one individual suspected of having stolen €4 million from users via large-scale phishing campaigns. Germany’s Bundeskriminalamt (BKA) arrested an individual (24) suspected of having stolen €4,000,000 from internet users via phishing attacks along with a two accomplices who are suspected. Pierluigi Paganini.

Phishing 93

Phishing Banking DDOS Accountability 93

Security Affairs

DECEMBER 18, 2023

“Cashout bank logs” typically refer to a type of cybercrime where individuals gain unauthorized access to banking information, often through phishing attacks or hacking, and then use that information to withdraw money or make unauthorized transactions.

Banking 114

Banking Cybercrime Malware Accountability 114

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020.

Ransomware 74

Ransomware VPN Cybercrime Advertising 74

Security Affairs

MAY 25, 2022

The Nigeria Police Force has arrested the suspected leader of the SilverTerrier cybercrime group as a result of an international operation. The Nigeria Police Force has arrested the suspected leader of the SilverTerrier cybercrime gang (aka TMT ) after a year-long investigation codenamed “Operation Delilah.”

Cybercrime 122

Cybercrime Healthcare Cybersecurity Phishing 122

SecureWorld News

JANUARY 28, 2021

2020 was a wake-up call for more than healthcare pandemic preparedness. It also exposed some huge security and privacy vulnerabilities, which many cybercrooks have exploited thousands of times throughout 2020 for remote workers. Training must be more frequent and go beyond covering phishing and passwords. 15-20 minutes).

IoT 54

IoT Phishing Mobile Passwords 54

Security Affairs

DECEMBER 18, 2020

Cybercrime organizations continue to be very active while pharmaceutical organizations are involved in the development of a COVID-19 vaccine and medicines to cure the infections. Recently, IBM warned of attacks against the COVID-19 vaccine cold chain that begun in September 2020. ” continues the report.

Phishing 141

Phishing Cybercrime Internet Internet 141

Security Affairs

OCTOBER 30, 2021

INTERPOL published the African Cyberthreat Assessment Report 2021, a report that analyzes evolution of cybercrime in Africa. A new report published by INTERPOL, titled the African Cyberthreat Assessment Report 2021 , sheds the light on cybercrime in Africa.

Cybercrime 76

Cybercrime Scams DDOS Banking 76

Security Affairs

MARCH 6, 2023

German police announced to have dismantled an international cybercrime gang behind the DoppelPaymer ransomware operation. DoppelPaymer ransomware has been active since June 2019 , in November 2020 Microsoft Security Response Center (MSRC) warned customers of the DoppelPaymer ransomware and provided useful information on the threat.

Ransomware 77

Ransomware Cybercrime Malware Phishing 77

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). in May 2020. in May 2020. law enforcement, then he was extradited to the U.S. Polite, Jr.

Cybercrime 106

Cybercrime Hacking Software Phishing 106

Security Affairs

JUNE 10, 2021

Group-IB, a global threat hunting and adversarial cyber intelligence company specializing in the investigation and prevention of high-tech cybercrime, has published a comprehensive analysis of fraud cases on a global scale. . Insurance companies around the world are now suffering from phishing.

Scams 95

Scams Banking Retail Insurance 95

Security Affairs

OCTOBER 28, 2021

“AbstractEmu does not exploit zero-click remote exploits, instead it exploits very contemporary vulnerabilities (CVE-2020-0041, CVE-2020-0069, CVE-2019-2215 and CVE-2020-0041 ) from 2019 and 2020 to target the largest number of devices as possible. . SecurityAffairs – hacking, cybercrime).

Malware 95

Malware Cybercrime Mobile Banking 95

Security Affairs

JULY 11, 2022

A large-scale phishing campaign leveraging the Anubis Network is targeting Brazil and Portugal since March 2022. A large-scale phishing campaign is targeting Internet-end users in Brazil and Portugal since March 2022. Figure 1: High-level diagram of the ANUBIS phishing network and its components (2020).

Phishing 100

Phishing Social Engineering Banking Engineering 100

SecureList

FEBRUARY 1, 2022

However, almost as soon as development began, serious questions arose about the security of the service’s data storage and the possibility of it being misused. In 2020, Proteus went bankrupt. That’s why we decided to test our assumption and delve into the security landscape of telehealth in 2020 and 2021.

Phishing 120

Phishing Healthcare IoT Authentication 120

Security Affairs

JULY 11, 2020

A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces. Nikulin used data stolen from Linkedin to launch spear-phishing attacks against employees at other companies, including Dropbox. Pierluigi Paganini.

Hacking 79

Hacking Cybercrime Data breaches Advertising 79

Security Affairs

MARCH 16, 2020

“Upon further examination, we determined that the unauthorised user appeared to have initially gained access on 9 February 2020, and could have gained access to a database in which we store user data.” ” @troyhunt pic.twitter.com/HfAwV7gtVq — Sylvia van Os (@SylvieLorxu) March 12, 2020. .”

Data breaches 106

Data breaches Passwords Advertising Accountability 106

Security Affairs

MARCH 4, 2021

Group-IB published a report titled “Ransomware Uncovered 2020-2021 ”. analyzes ransomware landscape in 2020 and TTPs of major threat actors. Group-IB , a global threat hunting and adversary-centric cyber intelligence company, has presented its new report “Ransomware Uncovered 2020-2021 ”. The gold rush of 2020.

Ransomware 119

Ransomware Cybercrime Malware Marketing 119

Security Affairs

MAY 27, 2022

The source code of Cerberus was released in September 2020 on underground hacking forums after its operators failed an auction. “The Threat Actor behind ERMAC used the leaked code from a well-known malware variant named “Cerberus” and modified the code to sell the Android botnets in cybercrime forums. ” concludes Cyble.

Banking 140

Banking Malware Cybercrime Phishing 140

Security Affairs

JUNE 2, 2023

A new botnet malware dubbed Horabot is targeting Spanish-speaking users in Latin America since at least November 2020. The botnet is used to deliver a banking trojan and spam tool to the infected systems, Horabot has been active since at least November 2020. ” reads the analysis published by Talos. ” concludes the report.

Banking 74

Banking Phishing Accountability Malware 74

Security Affairs

MARCH 13, 2020

In the last weeks, security experts reported many Coronavirus-themed attacks carried out by cybercrime gangs, now experts warn of similar attacks from nation – s tate actors. pic.twitter.com/yAWuWt6Qkq — IssueMakersLab (@issuemakerslab) February 27, 2020. ” reads the analysis published by VinCSS.

Cybercrime 107

Cybercrime Malware Advertising Phishing 107

Security Affairs

JANUARY 30, 2023

Sports fashion retail JD Sports discloses a data breach that explosed data of about 10M customers who placed orders between 2018 and 2020. UK sports fashion chain JD Sports disclosed a data breach that exposed customer data from orders placed between November 2018 and October 2020. The affected JD Sports group brands are JD, Size?,

Data breaches 92

Data breaches Retail Passwords Scams 92

Security Affairs

MARCH 21, 2020

Day after day the number of Coronavirus-themed attacks increases, fraudsters have launched a phishing campaign to deliver keyloggers on users’ PC. Experts from IBM X-Force have uncovered a new Coronavirus-themed phishing campaign aimed at delivering keyloggers on users’ PC. SecurityAffairs – coronavirus, cybercrime).

Phishing 106

Phishing Advertising Malware Cybercrime 106

Security Affairs

JULY 21, 2021

In March 2020, MalwareHunterTeam uncovered a Coronavirus (COVID-19)-themed campaign that was distributing a malware downloader that delivers the FormBook information-stealing Trojan. “On February 6, 2020 a new era began: the era of the Formbook successor called XLoader. ” states the report published by CheckPoint.

Spyware 101

Spyware Malware Cybercrime Advertising 101

Security Affairs

OCTOBER 18, 2020

Researchers from FireEye’s Mandiant observed FIN11 hackers using spear-phishing messages distributing a malware downloader dubbed FRIENDSPEAK. ” The attack chain starts when the victims enable the macro embedded in an Excel spreadsheet that came with the phishing e-mails. . ” reads the analysis published by FireEye.

Ransomware 129

Ransomware Malware Telecommunications Advertising 129

Security Affairs

NOVEMBER 22, 2021

” said Demetrius Comes, GoDaddy’s Chief Information Security Officer. The investigation revealed that attackers exploited a vulnerability to gain access to the following customer information: Up to 1.2 The exposure of email addresses presents risk of phishing attacks.

Data breaches 121

Data breaches Passwords Accountability Phishing 121

Security Affairs

APRIL 21, 2024

The attackers mostly used Cisco vulnerabilities CVE-2020-3259 and CVE-2023-20269. Akira operators were also observed using external-facing services such as Remote Desktop Protocol (RDP), spear phishing, and the abuse of valid credentials.

Ransomware 105

Ransomware Encryption Antivirus VPN 105

Security Affairs

DECEMBER 28, 2020

Threat intelligence analyst Bank_Security is specialized in cybercrime and fraud. pic.twitter.com/yR193Mt3CS — Bank Security (@Bank_Security) December 28, 2020. He told me that he wants to avoid possible bank fraud via SIM swap, phishing, or vishing attempts. ” Bank Security told me.

Mobile 128

Mobile Banking Data breaches Phishing 128

Security Affairs

SEPTEMBER 24, 2023

The campaign has a low detection rate even though BBTok first appeared in the threat landscape in 2020. The payload is being delivered via phishing emails that use multiple file types. The phishing messages include a malicious link. ” reads the report published by Check Point.

Banking 118

Banking Phishing Malware Hacking 118

Security Affairs

AUGUST 11, 2022

The Conti ransomware gang is using BazarCall phishing attacks as an initial attack vector to access targeted networks. BazarCall attack, aka call back phishing, is an attack vector that utilizes targeted phishing methodology and was first used by the Ryuk ransomware gang in 2020/2021.

Ransomware 82

Ransomware Social Engineering Phishing Engineering 82

Security Affairs

FEBRUARY 2, 2020

An ongoing phishing campaign launched by TA505 is using attachments featuring HTML redirectors for delivering malicious Excel docs. pic.twitter.com/mcRyEBUmQH — Microsoft Security Intelligence (@MsftSecIntel) January 30, 2020. TA505 hacking group has been active since 2014 focusing on Retail and banking sectors.

Malware 79

Malware Security Intelligence Banking Phishing 79

Security Affairs

JANUARY 10, 2024

According to DoJ, ShinyHunters posted sales of hacked data from more than 60 companies between April 2020 and July 2021. Then they sent phishing emails to company employees that were designed to look like they came from legitimate businesses and included links to the fake login pages.

Identity Theft 105

Identity Theft Hacking Cryptocurrency Advertising 105

Security Affairs

AUGUST 24, 2021

The FBI shared info about OnePercent Group that has been actively targeting US organizations in ransomware attacks since at least November 2020. OnePercent Group actors compromise victims through a phishing email in which an attachment is opened by the user. The attachment’s macros infect the system with the IcedID1 banking trojan.

Ransomware 124

Ransomware Encryption Banking Phishing 124

Security Affairs

DECEMBER 1, 2020

New blog: The threat actor BISMUTH, which has been running increasingly complex targeted attacks, deployed coin miners in campaigns from July to August 2020. Learn how the group tried to stay under the radar using threats perceived to be less alarming: [link] — Microsoft Security Intelligence (@MsftSecIntel) November 30, 2020.

Cryptocurrency 94

Cryptocurrency Antivirus Manufacturing Government 94