2021, Accountability, Cybercrime and Hacking

Three Top Russian Cybercrime Forums Hacked

Krebs on Security

MARCH 4, 2021

Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. A note posted by a Verified forum administrator concerning the hack of its registrar in January. Everyone’s account passwords were forcibly reset.

Cybercrime

Cybercrime Hacking Passwords Accountability

From Cybercrime Saul Goodman to the Russian GRU

Krebs on Security

FEBRUARY 7, 2024

In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. Launched in 2001 under the tagline “Network terrorism,” Mazafaka would evolve into one of the most guarded Russian-language cybercrime communities. The Facebook account for Aleksey Safronov. As well as the cost of my services.”

Cybercrime

Cybercrime Accountability Identity Theft Hacking

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum. Department of Defense. USDoD’s InfraGard sales thread on Breached.

Hacking

Hacking Energy and Utilities Cybercrime Accountability

FBI: Investment Scams Surpass BEC as Most Costly Cybercrime

SecureWorld News

MARCH 15, 2023

The FBI's Internet Crime Complaint Center (IC3) has released its 2022 Internet Crime Report , which reveals the trends and impacts of cybercrime in the United States. The report shows that phishing schemes were the most common type of cybercrime reported by victims in 2022, with 300,497 complaints. billion for BEC attacks.

Cybercrime

Cybercrime Scams Cryptocurrency Identity Theft

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking

Hacking Cybercrime Ransomware Government

LockBit ransomware gang claims to have breached accountancy firm Xeinadin

Security Affairs

DECEMBER 23, 2023

The LockBit ransomware claims to have hacked accountancy firm Xeinadin threatens to leak the alleged stolen data. The LockBit ransomware claims responsibility for hacking the Xeinadin accountancy firm and threatens to disclose the alleged stolen data. Account balances. tb of customer data is alleged. And much more.

Accountability

Accountability Ransomware Data breaches Hacking

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime

Cybercrime Banking Malware Ransomware

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. In 2017, crooks launched a phishing campaign against universities to compromise.edu accounts. ” reads the alert published by the FBI.

Cybercrime

Cybercrime Education Accountability Phishing

Red Cross Hack Linked to Iranian Influence Operation?

Krebs on Security

FEBRUARY 16, 2022

The ICRC said the hacked servers contained data relating to the organization’s Restoring Family Links services, which works to reconnect people separated by war, violence, migration and other causes. In their online statement about the hack (updated on Feb. 9, 2021, using an unpatched critical vulnerability (CVE-2021-40539).

Hacking

Hacking Ransomware Media Accountability

Cybercrime Statistics in 2019

Security Affairs

JANUARY 18, 2020

I’m preparing the slides for my next speech and I decided to create this post while searching for interesting cybercrime statistics in 2020. Cybercrime will cost as much as $6 trillion annually by 2021. The global expense for organizations to protect their systems from cybercrime attacks will continue to grow.

Cybercrime

Cybercrime Small Business Data breaches Mobile

Over 3.7 million accounts were compromised in the FlexBooker data breach

Security Affairs

JANUARY 7, 2022

million accounts. Threat actors compromised the FlexBooker accounts of more than 3.7 Stolen data are now available for sale on multiple cybercrime forums. FlexBooker recommends users stay vigilant and review account statements and credit reports for suspicious transactions. million accounts. ” states HIBP.

Data breaches

Data breaches Accountability Passwords Cybercrime

Cybersecurity CEO: 5 Cybercrime Trends to Watch for in 2021

Herjavec Group

DECEMBER 16, 2020

As we look ahead to 2021, what trends can we expect to emerge and continue when it comes to cyber? What should C-suite executives account for in their cybersecurity roadmaps and risk registers? Ransomware, the fastest-growing type of cybercrime, will claim a new victim? To Your Success in 2021 and beyond , .

Cybercrime

Cybercrime Cybersecurity Digital transformation CISO

SEC announces sanctions against entities over email account hacking

Security Affairs

SEPTEMBER 1, 2021

Securities and Exchange Commission (SEC) announced sanctions against several organizations over email account hacking. Securities and Exchange Commission (SEC) announced sanctions against eight entities belonging to three companies over email account hacking due to cybersecurity failures. Pierluigi Paganini.

Accountability

Accountability Hacking Financial Services Cybersecurity

HAEICHI-II: Interpol arrested +1,000 suspects linked to various cybercrimes

Security Affairs

NOVEMBER 27, 2021

HAEICHI-II: Interpol arrested 1,003 individuals charged for several cybercrimes, including romance scams, investment frauds, and online money laundering. of), Laos, Malaysia, Maldives, Philippines, Romania, Singapore, Slovenia, Spain, Thailand, and Vietnam) between June and September 2021. ” concludes the announcement.

Cybercrime

Cybercrime Scams Banking Malware

German police seized the darknet marketplace Nemesis Market

Security Affairs

MARCH 23, 2024

An operation conducted by the Federal Criminal Police Office in Germany (BKA) and the Frankfurt cybercrime combating unit (ZIT) led to the seizure of the infrastructure of the darknet marketplace Nemesis Market in Germany and Lithuania. The Nemesis Market recently reached over 150,000 users and over 1,100 seller accounts registered worldwide.

Marketing

Marketing Cybercrime DDOS Internet

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

Security Affairs

APRIL 30, 2023

Threat actors are gaining access to AT&T email accounts in an attempt to hack into the victim’s cryptocurrency exchange accounts. Some users with AT&T email addresses wrote on Reddit that they have been hacked, and some of them claim they had the same issue for months.

Cryptocurrency

Cryptocurrency Accountability Passwords Hacking

Who’s Behind the SWAT USA Reshipping Service?

Krebs on Security

NOVEMBER 6, 2023

Last week, KrebsOnSecurity broke the news that one of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. ” There are two clues supporting the conclusion that Apathyp and Fearlless are the same person. However, in Sept.

Passwords

Passwords Cybercrime Accountability Hacking

The fire in the OVH datacenter also impacted APTs and cybercrime groups

Security Affairs

MARCH 13, 2021

The fire at the OVH datacenter in Strasbourg also impacted the command and control infrastructure used by several nation-state APT groups and cybercrime gangs. The servers were used by cybercrime gangs and APT groups, including Iran-linked Charming Kitten and APT39 groups, the Bahamut cybercrime group, and the Vietnam-linked OceanLotus APT.

Cybercrime

Cybercrime Malware Hacking Accountability

New ‘Karakurt’ cybercrime gang focuses on data theft and extortion

Security Affairs

DECEMBER 11, 2021

Accenture researchers detailed the activity of a new sophisticated cybercrime group, called Karakurt, behind recent cyberattacks. The activity of the group was first spotted in June 2021, but the group has been more active in Q3 2021. In June 2021 the gang registered the domains hosting its leak sites, karakurt[.]group

Cybercrime

Cybercrime VPN Ransomware Hacking

AT&T confirmed that a data breach impacted 73 million customers

Security Affairs

MARCH 30, 2024

AT&T confirmed that a data breach impacted 73 million current and former customers after its data were leaked on a cybercrime forum. The seller, who goes online with the moniker MajorNelson, claims that the data was obtained from an unnamed AT&T division by @ ShinyHunters in 2021. million former account holders.”

Data breaches

Data breaches Telecommunications Cybercrime Hacking

BEC Tops FBI Internet Crime Report 2021

SecureWorld News

MARCH 28, 2022

While it should come as no surprise that cybercrime broke pretty much every record in 2021, the actual numbers behind the crimes are quite revealing. Cybercrime in the last five years. The first section of the report provides an overview of what cybercrime has looked like in the last five years. Ransomware in 2021.

Internet

Internet Internet Cybercrime Ransomware

$10M Is Yours If You Can Get This Guy to Leave Russia

Krebs on Security

MAY 4, 2023

government this week put a $10 million bounty on the head of a Russian man who for the past 18 years operated Try2Check , one of the cybercrime underground’s most trusted services for checking the validity of stolen credit card data. was used to register an account with the username “Nordex” at bankir[.]com

Marketing

Marketing Cybercrime Accountability Cryptocurrency

The worst cyber attacks of 2021

Security Affairs

JANUARY 3, 2022

Which are the cyber attacks of 2021 that had the major impact on organizations worldwide in terms of financial losses and disruption of the operations? The systems at the company were infected with the Phoenix Locker, a variant of ransomware tracked as Hades that was part of the arsenal of the cybercrime group known as Evil Corp.

Cyber Attacks

Cyber Attacks Ransomware Insurance Hacking

The Have I Been Pwned service now includes 441K accounts stolen by RedLine malware

Security Affairs

DECEMBER 31, 2021

The Have I Been Pwned data breach notification service now includes credentials for 441K accounts that were stolen by RedLine malware. The service now includes credentials for 441K accounts stolen by the popular info-stealer. Internationally sourced data, exfiltrated in Sept and Aug 2021. SecurityAffairs – hacking, malware).

Accountability

Accountability Malware Data breaches Passwords

Twitter says recently leaked user data are from 2021 breach

Security Affairs

DECEMBER 13, 2022

Twitter confirmed that the recent leak of members’ profile information resulted from the 2021 data breach disclosed in August 2022. Twitter confirmed that the recent data leak of millions of profiles resulted from the 2021 data breach that the company disclosed in August 2022. Source: Twitter account @sonoclaudio.

Data breaches

Data breaches Accountability Media Hacking

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Security Affairs

FEBRUARY 27, 2021

‘Hotarus Corp’ Ransomware operators hacked Ecuador’s largest private bank, Banco Pichincha, and the country’s Ministry of Finance. ?A breach #infosec #deepwebnews @FinanzasEc @EcuCERT_EC pic.twitter.com/WTbXz8EYLx — Security Chronicle (@SecurChronicle) February 23, 2021. Pierluigi Paganini.

Hacking

Hacking Banking Ransomware Passwords

Florida man sentenced to prison for SIM Swapping conspiracy that led to theft of $1M in cryptocurrency

Security Affairs

OCTOBER 30, 2023

The man was sentenced for his role in a hacking scheme that led to the theft of approximately $1M worth of cryptocurrency from dozens of victims. Persad and his co-conspirators hacked the email accounts of the victims, hijacked their cell phone numbers, and took over their online cryptocurrency accounts.

Cryptocurrency

Cryptocurrency Accountability Hacking Cybercrime

Info stealers and how to protect against them

Security Affairs

DECEMBER 18, 2023

. “Cashout bank logs” typically refer to a type of cybercrime where individuals gain unauthorized access to banking information, often through phishing attacks or hacking, and then use that information to withdraw money or make unauthorized transactions. For example, both ransomware and info stealers target Bitcoin.

Banking

Banking Cybercrime Malware Accountability

Wazawaka Goes Waka Waka

Krebs on Security

FEBRUARY 14, 2022

In January, KrebsOnSecurity examined clues left behind by “ Wazawaka ,” the hacker handle chosen by a major ransomware criminal in the Russian-speaking cybercrime scene. ” The @fuck_maze account messaged me a few times on Twitter, but largely stayed silent until Jan.

VPN

VPN Ransomware Cybercrime Accountability

Cyber Security Roundup for April 2021

Security Boulevard

MARCH 31, 2021

A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. How not to disclosure a Hack. UK fashion retailer FatFace angered customers in its handling of a customer data theft hack. conduct employee phishing tests.

Energy and Utilities

Energy and Utilities Ransomware Banking Hacking

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

The Last Watchdog

APRIL 5, 2022

As the dust settles following the recently disclosed hack of NewsCorp , important lessons are emerging for the cybersecurity and journalism communities. ” Only 4 percent of respondents to an FCC poll said their organization received a new J-1 visa in 2021, and 46 percent said their bureaus were understaffed because of a lack of visas.

Hacking

Hacking Passwords Firewall Internet

Morgan Stanley discloses data breach after the hack of a third-party vendor

Security Affairs

JULY 8, 2021

The American multinational investment bank and financial services firm Morgan Stanley discloses a data breach caused by the hack of an Accellion FTA server of a third-party vendor. The hack of the FTA server took place in March, but the hacker had access to the data of Morgan Stanley customers in May. ” reads the letter.

Data breaches

Data breaches Hacking Banking Financial Services

Remcos RAT campaign targets US accounting and tax return preparation firms

Security Affairs

APRIL 16, 2023

Microsoft warns of a new Remcos RAT campaign targeting US accounting and tax return preparation firms ahead of Tax Day. Tax Day, Microsoft has observed a new Remcos RAT campaign targeting US accounting and tax return preparation firms. Ahead of the U.S. The phishing attacks began in February 2023, the IT giant reported.

Accountability

Accountability Phishing Financial Services Surveillance

AT&T is notifying millions of customers of data breach after a third-party vendor hack

Security Affairs

MARCH 10, 2023

AT&T is warning some of its customers that some of their information was exposed after the hack of a third-party vendor’s system. AT&T is notifying millions of customers that some of their information was exposed after a third-party vendor was hacked. Social Security Number, account passwords).

Data breaches

Data breaches Hacking Wireless Telecommunications

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Security Affairs

FEBRUARY 10, 2022

The FBI reported that US citizens have lost more than $68 million to SIM swapping attacks in 2021, the number of complaints since 2018 and associated losses have increased almost fivefold. In 2021, IC3 received 1,611 SIM swapping complaints with adjusted losses of more than $68 million.”

Mobile

Mobile Cryptocurrency Authentication Accountability

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

.'” MRMURZA Faceless is a project from MrMurza , a particularly talkative member of more than a dozen Russian-language cybercrime forums over the past decade. MrMurza’s Faceless advertised on the Russian-language cybercrime forum ProCrd. was used for an account “Hackerok” at the accounting service klerk.ru

Malware

Malware Passwords Accountability Advertising

Organizations paid at least $602 million to ransomware gangs in 2021

Security Affairs

FEBRUARY 13, 2022

Organizations have paid more than $600 million in cryptocurrency during 2021, nearly one-third to the Conti ransomware gang. and Australia have published a joint advisory warning of an increased globalised threat of ransomware worldwide in 2021. Last week, cybersecurity agencies from the U.K., added the company. .”

Ransomware

Ransomware Cryptocurrency Cybercrime Malware

Ranzy Locker ransomware hit tens of US companies in 2021

Security Affairs

OCTOBER 26, 2021

“Unknown cyber criminals using Ranzy Locker ransomware had compromised more than 30 US businesses as of July 2021. Review domain controllers, servers, workstations, and active directories for new or unrecognized user accounts. Use double authentication when logging into accounts or services. ” reads the flash alert.

Ransomware

Ransomware Firmware Antivirus Accountability

DOJ Cybercrime Watchdog’s First Settlement Signals Crackdown on Small Businesses

Security Boulevard

APRIL 7, 2023

The post DOJ Cybercrime Watchdog’s First Settlement Signals Crackdown on Small Businesses appeared first on Security Boulevard. For more on the CMMC and the st eps that must be taken to comply with it, watch Apptega’s recent presentation with Valiant-X Enterprise , a CMMC 2.0 certified RPO.

Small Business

Small Business Cybercrime Insurance Government

News Alert: HostingAdvice poll finds one in three Americans hacked upon visiting sketchy websites

The Last Watchdog

JULY 18, 2023

July 18, 2022 – Around 30,000 websites get hacked every day , with the majority of those cyberattacks due to human error. This has projected costs associated with cybercrimes to hit the tens of trillions by 2025, highlighting the vital need for web hosts to implement staunch security. Gainesville, Fla.,

Hacking

Hacking DDOS Small Business Spyware

Twitter confirms zero-day used to access data of 5.4 million accounts

Security Affairs

AUGUST 5, 2022

million accounts was caused by the exploitation of a zero-day flaw. million Twitter accounts that were obtained by exploiting a now-fixed vulnerability in the popular social media platform. The threat actor offered for sale the stolen data on the popular hacking forum Breached Forums. ” reads the Twitter’s advisory.

Accountability

Accountability Data breaches Authentication Media

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Prosecutors in Northern California indicted Kislitsin in 2014 for his alleged role in stealing account data from Formspring.

Cybersecurity

Cybersecurity Cybercrime Hacking Technology

Spanish police dismantled SIM swapping gang who stole money from victims’ bank accounts

Security Affairs

FEBRUARY 10, 2022

Spanish National Police has arrested eight alleged members of a crime organization who were able to steal money from the bank accounts of the victims through SIM swapping attacks. Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Banking

Banking Accountability Mobile Cryptocurrency

A database containing data of +8.9 million Zacks users was leaked online

Security Affairs

JUNE 13, 2023

million Zacks Investment Research users was leaked on a cybercrime forum. A database containing personal information of 8,929,503 Zacks Investment Research users emerged on a popular hacking forum on June 10, 2023. Customers are also recommended to monitor financial accounts and consumer credit reports. ” reported HIBP.

Data breaches

Data breaches Passwords Cybercrime Encryption

Three Top Russian Cybercrime Forums Hacked

From Cybercrime Saul Goodman to the Russian GRU

Trending Sources

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

FBI: Investment Scams Surpass BEC as Most Costly Cybercrime

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

LockBit ransomware gang claims to have breached accountancy firm Xeinadin

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

FBI: Compromised US academic credentials available on various cybercrime forums

Red Cross Hack Linked to Iranian Influence Operation?

Cybercrime Statistics in 2019

Over 3.7 million accounts were compromised in the FlexBooker data breach

Cybersecurity CEO: 5 Cybercrime Trends to Watch for in 2021

SEC announces sanctions against entities over email account hacking

HAEICHI-II: Interpol arrested +1,000 suspects linked to various cybercrimes

German police seized the darknet marketplace Nemesis Market

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

Who’s Behind the SWAT USA Reshipping Service?

The fire in the OVH datacenter also impacted APTs and cybercrime groups

New ‘Karakurt’ cybercrime gang focuses on data theft and extortion

AT&T confirmed that a data breach impacted 73 million customers

BEC Tops FBI Internet Crime Report 2021

$10M Is Yours If You Can Get This Guy to Leave Russia

The worst cyber attacks of 2021

The Have I Been Pwned service now includes 441K accounts stolen by RedLine malware

Twitter says recently leaked user data are from 2021 breach

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Florida man sentenced to prison for SIM Swapping conspiracy that led to theft of $1M in cryptocurrency

Info stealers and how to protect against them

Wazawaka Goes Waka Waka

Cyber Security Roundup for April 2021

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

Morgan Stanley discloses data breach after the hack of a third-party vendor

Remcos RAT campaign targets US accounting and tax return preparation firms

AT&T is notifying millions of customers of data breach after a third-party vendor hack

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Giving a Face to the Malware Proxy Service ‘Faceless’

Organizations paid at least $602 million to ransomware gangs in 2021

Ranzy Locker ransomware hit tens of US companies in 2021

DOJ Cybercrime Watchdog’s First Settlement Signals Crackdown on Small Businesses

News Alert: HostingAdvice poll finds one in three Americans hacked upon visiting sketchy websites

Twitter confirms zero-day used to access data of 5.4 million accounts

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Spanish police dismantled SIM swapping gang who stole money from victims’ bank accounts

A database containing data of +8.9 million Zacks users was leaked online

Stay Connected