2021 and Cybercrime - Cyber Security Informer

FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang

Krebs on Security

JANUARY 31, 2025

On January 29, the FBI and the Dutch national police seized the technical infrastructure for a cybercrime service marketed under the brands Heartsender , Fudpage and Fudtools (and many other “fud” variations). “The Cybercrime Team is on the trail of a number of buyers of the tools,” the Dutch national police said.

Phishing

Phishing Cybercrime Advertising Malware

Pakistan Arrests 21 in ‘Heartsender’ Malware Service

Krebs on Security

MAY 28, 2025

The main clientele for HeartSender were organized crime groups that tried to trick victim companies into making payments to a third party, and its alleged proprietors were publicly identified by KrebsOnSecurity in 2021 after they inadvertently infected their computers with malware.

Malware

Malware Cybercrime Antivirus Scams

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Krebs on Security

DECEMBER 19, 2024

Silent Push said Araneida is being advertised by an eponymous user on multiple cybercrime forums. Araneida Scanner’s Telegram channel bragging about how customers are using the service for cybercrime. The service’s Telegram channel boasts nearly 500 subscribers and explains how to use the tool for malicious purposes.

Hacking

Hacking Cybercrime Advertising Data breaches

Russia Charges Notorious Ransomware Developer in Rare Cybercrime Case

SecureWorld News

DECEMBER 3, 2024

In a surprising move related to international cybercrime, Russian authorities have charged Mikhail Matveev, also known as "Wazawaka," with creating ransomware to extort commercial organizations, according to Russian media outlet RIA. His alleged exploits include: The 2021 attack on Washington, D.C.'s Multiple attacks on critical U.S.

Cybercrime

Cybercrime Ransomware Healthcare Cryptocurrency

Leader of Qakbot cybercrime network indicted in U.S. crackdown

Security Affairs

MAY 24, 2025

Justice Department filed a civil forfeiture complaint to seize over $24M in crypto from Gallyamov, part of a multinational cybercrime crackdown. “These actions are the latest step in an ongoing multinational effort by the United States, France, Germany, the Netherlands, Denmark, the United Kingdom, and Canada to combat cybercrime.”

Cybercrime

Cybercrime Cryptocurrency Ransomware Malware

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

Russian Phobos ransomware operator Evgenii Ptitsyn, accused of managing attacks, was extradited from South Korea to the US to face cybercrime charges. Russian Phobos ransomware operator Evgenii Ptitsyn, suspected of playing a key role in the ransomware operations, was extradited from South Korea to the US to face cybercrime charges.

Cybercrime

Cybercrime Ransomware Healthcare Education

Law enforcement seized the domains of HeartSender cybercrime marketplaces

Security Affairs

FEBRUARY 2, 2025

and Dutch authorities seized 39 domains and servers linked to the HeartSender cybercrime group based in Pakistan. A joint law enforcement operation led to the seizure of 39 domains tied to a Pakistan-based HeartSender cybercrime group (aka Saim Raza and Manipulators Team) known for selling hacking and fraud tools.

Cybercrime

Cybercrime Advertising Phishing Hacking

U.S. Offered $10M for Hacker Just Arrested by Russia

Krebs on Security

DECEMBER 4, 2024

Matveev’s hacker identities were remarkably open and talkative on numerous cybercrime forums. image: x.com/vxunderground The golden rule of cybercrime in Russia has always been that as long as you never hack, extort or steal from Russian citizens or companies, you have little to fear of arrest. “Mother Russia will help you.

Cybercrime

Cybercrime Ransomware Cryptocurrency Government

Three Top Russian Cybercrime Forums Hacked

Krebs on Security

MARCH 4, 2021

According to Intel 471, on March 1, 2021, the administrator of the Exploit cybercrime forum claimed that a proxy server the forum used for protection from distributed denial-of-service (DDoS) attacks might have been compromised by an unknown party. The administrator stated that on Feb.

Cybercrime

Cybercrime Hacking Passwords Accountability

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

Security Affairs

NOVEMBER 21, 2024

Justice Department charged five suspects linked to the Scattered Spider cybercrime gang with wire fraud conspiracy. Justice Department charged five alleged members of the cybercrime gang Scattered Spider (also known as UNC3944 , 0ktapus ) with conspiracy to commit wire fraud. ” reads the press release published by DoJ.

Cybercrime

Cybercrime Identity Theft Cryptocurrency Phishing

From Cybercrime Saul Goodman to the Russian GRU

Krebs on Security

FEBRUARY 7, 2024

In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. Launched in 2001 under the tagline “Network terrorism,” Mazafaka would evolve into one of the most guarded Russian-language cybercrime communities. Mark Rasch , a former cybercrime prosecutor for the U.S. As well as the cost of my services.”

Cybercrime

Cybercrime Accountability Identity Theft Hacking

Cybercrime Rapper Sues Bank over Fraud Investigation

Krebs on Security

AUGUST 7, 2024

In January, KrebsOnSecurity wrote about rapper Punchmade Dev , whose music videos sing the praises of a cybercrime lifestyle. But until recently, there wasn’t much to support a conclusion that Punchmade was actually doing the cybercrime things he promotes in his songs. That record includes the Lexington, Ky.

Banking

Banking Cybercrime Accountability Retail

Oops: DanaBot Malware Devs Infected Their Own PCs

Krebs on Security

MAY 22, 2025

government today unsealed criminal charges against 16 individuals accused of operating and selling DanaBot , a prolific strain of information-stealing malware that has been sold on Russian cybercrime forums since 2018.

Malware

Malware Cybercrime Government Banking

Moldovan Police arrested a 45-year-old foreign man participating in ransomware attacks on Dutch companies

Security Affairs

MAY 13, 2025

A 45-year-old foreign man has been arrested in Moldova for allegedly participating in ransomware attacks on Dutch companies in 2021. He is internationally wanted for multiple cybercrime, including ransomware attacks, blackmail, and money laundering, targeting Dutch companies. million in damage. million euros.” million euros.”

Ransomware

Ransomware Cybercrime Malware Banking

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

One English-speaking cybercriminal who goes by the nicknames “ Pwnstar ” and “ Pwnipotent ” has been selling fake EDR services on both Russian-language and English cybercrime forums. Matt Donahue is the former FBI agent who founded Kodex in 2021. ” An ad from Pwnstar for fake EDR services.

Hacking

Hacking Accountability Government Social Engineering

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

Shefel claims the true mastermind behind the Target and other retail breaches was Dmitri Golubov , an infamous Ukrainian hacker known as the co-founder of Carderplanet, among the earliest Russian-language cybercrime forums focused on payment card fraud. “I’m also godfather of his second son.”

Advertising

Advertising Retail Cryptocurrency Marketing

GUEST ESSAY: Why the arrests of cyber criminals in 2021 will incentize attackers in 2022

The Last Watchdog

DECEMBER 16, 2021

In 2021, law enforcement continued making a tremendous effort to track down, capture and arrest ransomware operators, to take down ransomware infrastructure, and to claw back ransomware payments. Related: The targeting of supply chains. In 2022 we expect to see more aggressive and complex ransomware efforts. Central importance of identity.

CISO

CISO Ransomware Risk Authentication

Pakistani Firm Shipped Fentanyl Analogs, Scams to US

Krebs on Security

MAY 7, 2025

In November 2021, the USPTO accused Abtach of perpetrating “an egregious scheme to deceive and defraud applicants for federal trademark registrations by improperly altering official USPTO correspondence, overcharging application filing fees, misappropriating the USPTOs trademarks, and impersonating the USPTO.”

Scams

Scams Marketing Advertising Technology

FBI: $43 billion in losses are due to Business Email Compromise fraud between 2016 and 2021

Tech Republic Security

MAY 9, 2022

BEC is a growing type of cybercrime that generates billions in losses every year. The post FBI: $43 billion in losses are due to Business Email Compromise fraud between 2016 and 2021 appeared first on TechRepublic. It also involves cryptocurrency more and more, providing an additional layer of anonymity to the cybercriminals.

Cryptocurrency

Cryptocurrency Cybercrime

Member of cybercrime group Karakurt charged in the US

Security Affairs

AUGUST 23, 2024

court for his role in the Karakurt cybercrime gang. court for his role in the Russian Karakurt cybercrime gang. “Among other things, the Russian cybercrime group steals victim data and threatens to release it unless the victim pays ransom in cryptocurrency. . ” reads the press release published by DoJ.

Cybercrime

Cybercrime VPN Cryptocurrency Hacking

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Security Affairs

OCTOBER 9, 2023

A threat actor has leaked the source code for the first version of the HelloKitty ransomware on a Russian-speaking cybercrime forum. The availability of the source in the cybercrime ecosystem can allow threat actors to develop their own version of the Hello Kitty ransomware. The HelloKitty gang has been active since January 2021.

Cybercrime

Cybercrime Ransomware DDOS Encryption

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. In May 2021, cybercriminals offered more than 36,000 login credentials for.edu email accounts and advertised the data on an instant messaging platform. Pierluigi Paganini.

Cybercrime

Cybercrime Education Accountability Phishing

Anti-Money Laundering Service AMLBot Cleans House

Krebs on Security

OCTOBER 15, 2022

AMLBot , a service that helps businesses avoid transacting with cryptocurrency wallets that have been sanctioned for cybercrime activity, said an investigation published by KrebsOnSecurity last year helped it shut down three dark web services that secretly resold its technology to help cybercrooks avoid detection by anti-money laundering systems.

Cryptocurrency

Cryptocurrency Marketing Cybercrime Technology

FBI: Investment Scams Surpass BEC as Most Costly Cybercrime

SecureWorld News

MARCH 15, 2023

The FBI's Internet Crime Complaint Center (IC3) has released its 2022 Internet Crime Report , which reveals the trends and impacts of cybercrime in the United States. The report shows that phishing schemes were the most common type of cybercrime reported by victims in 2022, with 300,497 complaints. billion for BEC attacks.

Cybercrime

Cybercrime Scams Cryptocurrency Identity Theft

Ransomware attackers are growing bolder and using new extortion methods

Tech Republic Security

JULY 15, 2021

IT and OT environments are increasing targets and threat actors are using Dark Web forums to launch cybercrimes, according to Accenture's 2021 Cyber Threat Intelligence report.

Cyber threats

Cyber threats Cybercrime Ransomware

Russian Hacker “Wazawaka” Indicted for Ransomware

Krebs on Security

MAY 16, 2023

And on April 26, 2021, Matveev and his Babuk gang allegedly deployed ransomware against the Metropolitan Police Department in Washington, D.C. Prosecutors say that on May 27, 2022, Matveev conspired with Hive to ransom a nonprofit behavioral healthcare organization headquartered in Mercer County, New Jersey. Meanwhile, the U.S. 17, 1992). .”

Ransomware

Ransomware Cybercrime VPN Healthcare

Wazawaka Goes Waka Waka

Krebs on Security

FEBRUARY 14, 2022

In January, KrebsOnSecurity examined clues left behind by “ Wazawaka ,” the hacker handle chosen by a major ransomware criminal in the Russian-speaking cybercrime scene. 26, 2020, a new user named Biba99 registered on the English language cybercrime forum RaidForums. ” Around Apr.

Ransomware

Ransomware VPN Cybercrime Accountability

Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case

Security Affairs

MARCH 15, 2024

US DoJ sentenced a Moldovan national (31) to 42 months in federal prison for operating the E-Root cybercrime marketplace. Diaconu was operating the E-Root cybercrime marketplace. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, cybercrime)

Cybercrime

Cybercrime Cryptocurrency Advertising Passwords

ExCobalt Cybercrime group targets Russian organizations in multiple sectors

Security Affairs

JUNE 24, 2024

The cybercrime group ExCobalt targeted Russian organizations in multiple sectors with a previously unknown backdoor known as GoRed. Positive Technologies researchers reported that a cybercrime gang called ExCobalt targeted Russian organizations in multiple sectors with a previously unknown Golang-based backdoor known as GoRed.

Cybercrime

Cybercrime Telecommunications DNS Technology

German Police Raid DDoS-Friendly Host ‘FlyHosting’

Krebs on Security

MARCH 31, 2023

FlyHosting first advertised on cybercrime forums in November 2022, saying it was a Germany-based hosting firm that was open for business to anyone looking for a reliable place to host malware, botnet controllers, or DDoS-for-hire infrastructure. The German authorities did not name the suspects or the Internet service in question.

DDOS

DDOS Internet Internet Cybercrime

Moscow Hacker Extradited To US For Cybercrime Involvement

Security Boulevard

SEPTEMBER 5, 2024

As per recent reports, a Moscow hacker has been charged in the US on various accounts of cybercrime. Charges leveled against the hacker include allegedly stealing data, extorting victims, and laundering ransom payments since 2021. In this article, learn more about the threat actor his activities, and cover details about the charges.

Cybercrime

Cybercrime Accountability Cryptocurrency Ransomware

Crazy Evil gang runs over 10 highly specialized social media scams

Security Affairs

FEBRUARY 3, 2025

Since 2021, the Crazy Evil gang has become a major cybercriminal group, using phishing, identity fraud, and malware to steal cryptocurrency. Active since 2021, the group amassed over 3,000 followers on its public Telegram CrazyEvilCorp channel. Crazy Evil has earned over $5 million through phishing scams since 2021.

Scams

Scams Media Cryptocurrency Cybercrime

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Krebs on Security

NOVEMBER 21, 2024

technology companies between 2021 and 2023, including LastPass , MailChimp , Okta , T-Mobile and Twilio. That Joeleoli moniker registered on the cybercrime forum OGusers in 2018 with the email address joelebruh@gmail.com , which also was used to register accounts at several websites for a Joel Evans from North Carolina.

Identity Theft

Identity Theft Phishing Cryptocurrency Accountability

U.S. Authorities recovered $31 Million Related to 2021 Uranium Finance cyber heist

Security Affairs

MARCH 3, 2025

authorities have recovered $31 million in cryptocurrency stolen during the 2021 cyberattacks on Uranium Finance. authorities recovered $31 million in cryptocurrency stolen in 2021 cyberattacks on Uranium Finance, which is a decentralized finance (DeFi) protocol built on Binances BNB Chain.

Cryptocurrency

Cryptocurrency Hacking Cyber Attacks Marketing

Arrest in ‘Ransom Your Employer’ Email Scheme

Krebs on Security

NOVEMBER 22, 2021

In June 2021, the Nigerian government officially placed an indefinite ban on Twitter , restricting it from operating in Nigeria after the social media platform deleted tweets by the Nigerian president. billion in losses tied to cybercrime in 2020, and BEC fraud and romance scams alone accounted for nearly 60 percent of those losses.

Scams

Scams Cybercrime Banking Identity Theft

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Krebs on Security

FEBRUARY 26, 2025

In several posts to an English-language cybercrime forum in November, Kiberphant0m leaked some of the phone records and threatened to leak them all unless paid a ransom. More than 160 other Snowflake customers were relieved of data, including TicketMaster, Lending Tree, Advance Auto Parts and Neiman Marcus. million customers.

Hacking

Hacking Government Identity Theft Accountability

Russia Sends Cybersecurity CEO to Jail for 14 Years

Krebs on Security

JULY 26, 2023

Sachkov, 37, has been detained for nearly two years under charges that the Kremlin has kept classified and hidden from public view, and he joins a growing roster of former Russian cybercrime fighters who are now serving hard time for farcical treason convictions. Ilya Sachkov. Image: Group-IB.com. Sachkov pleaded not guilty. election. .

Cybersecurity

Cybersecurity Cybercrime Media Hacking

Feds Charge NY Man as BreachForums Boss “Pompompurin”

Krebs on Security

MARCH 17, 2023

Federal Bureau of Investigation (FBI) this week arrested a New York man on suspicion of running BreachForums , a popular English-language cybercrime forum where some of the world biggest hacked databases routinely show up for sale. Pompompurin has been something of a nemesis to the FBI for several years. In April 2022, U.S.

Data breaches

Data breaches Cybercrime Insurance Internet

E-Crime Rapper ‘Punchmade Dev’ Debuts Card Shop

Krebs on Security

JANUARY 17, 2024

The rapper and social media personality Punchmade Dev is perhaps best known for his flashy videos singing the praises of a cybercrime lifestyle. But until recently, there wasn’t much to support a conclusion that Punchmade was actually doing the cybercrime things he promotes in his songs. Punchmade Dev’s shop.

Cybercrime

Cybercrime Media Banking Accountability

The Wages of Password Re-Use: Your Money or Your Life

Krebs on Security

MAY 4, 2021

Which means when a cybercrime forum gets hacked and its user databases posted online, it is often possible to work backwards from some of the more unique passwords for each account and see where else that password was used. Mistake number two was the password for his email account was the same as his cybercrime forum admin account.

Passwords

Passwords Cybercrime Accountability Password Management

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum. Department of Justice in April.

Hacking

Hacking Energy and Utilities Cybercrime Accountability

New T-Mobile Breach Affects 37 Million Accounts

Krebs on Security

JANUARY 19, 2023

In August 2021, T-Mobile acknowledged that hackers made off with the names, dates of birth, Social Security numbers and driver’s license/ID information on more than 40 million current, former or prospective customers who applied for credit with the company.

Mobile

Mobile Accountability Data breaches Identity Theft

U.S. Justice Department Cracks Down on Scattered Spider Phishing Ring

SecureWorld News

NOVEMBER 22, 2024

The United States Department of Justice (DOJ) has unsealed charges against five individuals accused of orchestrating sophisticated phishing campaigns tied to the notorious Scattered Spider cybercrime group.

Phishing

Phishing Identity Theft Cryptocurrency Cybercrime

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Hacking

Hacking Cybercrime Ransomware Government

FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang

Pakistan Arrests 21 in ‘Heartsender’ Malware Service

Trending Sources

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Russia Charges Notorious Ransomware Developer in Rare Cybercrime Case

Leader of Qakbot cybercrime network indicted in U.S. crackdown

Russian Phobos ransomware operator faces cybercrime charges

Law enforcement seized the domains of HeartSender cybercrime marketplaces

U.S. Offered $10M for Hacker Just Arrested by Russia

Three Top Russian Cybercrime Forums Hacked

US DoJ charges five alleged members of the Scattered Spider cybercrime gang

From Cybercrime Saul Goodman to the Russian GRU

Cybercrime Rapper Sues Bank over Fraud Investigation

Oops: DanaBot Malware Devs Infected Their Own PCs

Moldovan Police arrested a 45-year-old foreign man participating in ransomware attacks on Dutch companies

FBI: Spike in Hacked Police Emails, Fake Subpoenas

An Interview With the Target & Home Depot Hacker

GUEST ESSAY: Why the arrests of cyber criminals in 2021 will incentize attackers in 2022

Pakistani Firm Shipped Fentanyl Analogs, Scams to US

FBI: $43 billion in losses are due to Business Email Compromise fraud between 2016 and 2021

Member of cybercrime group Karakurt charged in the US

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

FBI: Compromised US academic credentials available on various cybercrime forums

Anti-Money Laundering Service AMLBot Cleans House

FBI: Investment Scams Surpass BEC as Most Costly Cybercrime

Ransomware attackers are growing bolder and using new extortion methods

Russian Hacker “Wazawaka” Indicted for Ransomware

Wazawaka Goes Waka Waka

Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case

ExCobalt Cybercrime group targets Russian organizations in multiple sectors

German Police Raid DDoS-Friendly Host ‘FlyHosting’

Moscow Hacker Extradited To US For Cybercrime Involvement

Crazy Evil gang runs over 10 highly specialized social media scams

Feds Charge Five Men in ‘Scattered Spider’ Roundup

U.S. Authorities recovered $31 Million Related to 2021 Uranium Finance cyber heist

Arrest in ‘Ransom Your Employer’ Email Scheme

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Russia Sends Cybersecurity CEO to Jail for 14 Years

Feds Charge NY Man as BreachForums Boss “Pompompurin”

E-Crime Rapper ‘Punchmade Dev’ Debuts Card Shop

The Wages of Password Re-Use: Your Money or Your Life

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

New T-Mobile Breach Affects 37 Million Accounts

U.S. Justice Department Cracks Down on Scattered Spider Phishing Ring

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Stay Connected