SecureList

NOVEMBER 23, 2021

Then we will go through the key events of 2021 relating to attacks on financial organizations. Analysis of forecasts for 2021. The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. We also saw attackers relying on 0-days.

Cryptocurrency 107

Cryptocurrency Banking Cybercrime Ransomware 107

Security Affairs

JULY 14, 2023

The malware was spotted the first time in May 2021, but has been operating under the radar for more than two years. 509 certificates, we assess that some of these second stage C2s have been active since at least October 2021. The researchers identified 41,000 nodes communicating with second-stage C2s within a 28-day window.

Malware 83

Malware Advertising Cybercrime Passwords 83

Malwarebytes

MAY 11, 2021

Both the Australian Cyber Security Centre (ACSC) and the US Federal Bureau of Investigation (FBI) have issued warnings about an ongoing cybercrime campaign that is using Avaddon ransomware. In February 2021 a researcher found a flaw in the Avaddon encryption routine that allowed them to create a free decryptor. Free decryptor.

Ransomware 108

Ransomware VPN Encryption Cybercrime 108

Security Affairs

DECEMBER 18, 2022

Samba addressed multiple high-severity vulnerabilities Former Twitter employee sentenced to 3.5 years in jail for spying on behalf of Saudi Arabia Social Blade discloses security breach Data of 5.7M Samba addressed multiple high-severity vulnerabilities Former Twitter employee sentenced to 3.5

Data breaches 93

Data breaches Hacking DDOS VPN 93

SecureList

MAY 10, 2021

Q1 2021 saw the appearance of two new botnets. Cybercriminals exploited several critical vulnerabilities in programs installed on victim devices, including the newly discovered CVE-2021-3007. Botnet operators use infected devices to carry out DDoS attacks or mine cryptocurrency. News overview.

DDOS 98

DDOS Cryptocurrency Media Marketing 98

Security Affairs

JUNE 20, 2021

Are the DDoS and the fire linked?

Data breaches 100

Data breaches DDOS Small Business Ransomware 100

SecureList

DECEMBER 14, 2022

While the impact of these destructive cyber-attacks paled in comparison to the effects of the kinetic attacks taking place at the same time, it should be noted that this capability could in theory be directed against any country outside of the context of an armed conflict and under the pretense of traditional cybercrime activity.

DDOS 133

DDOS Ransomware Government Energy and Utilities 133

Security Affairs

MARCH 19, 2022

The AvosLocker ransomware-as-a-service emerged in the threat landscape in September 2021, since January the group expanded its targets by implementing the support for encrypting Linux systems, specifically VMware ESXi servers. Consider installing and using a VPN. Avoid reusing passwords for multiple accounts.

Ransomware 99

Ransomware DDOS Passwords Backups 99

Security Affairs

NOVEMBER 14, 2021

Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server GravityRAT returns disguised as an end-to-end encrypted chat app Intel and AMD address high severity vulnerabilities in products and drivers New evolving Abcbot DDoS botnet targets Linux systems Retail giant Costco discloses data breach, payment card data exposed (..)

Spyware 53

Spyware Data breaches Ransomware Retail 53

Security Affairs

JANUARY 23, 2022

from the Lympo NTF platform.

VPN 80

VPN Ransomware Spyware DDOS 80

SecureList

MAY 12, 2021

Botnet owners (botmasters) sell access to the victim machines in bulk as a resource that can be monetized in many ways, such as organizing DDoS attacks, distributing spam or, in the case of ransomware, by piggybacking on this initial infection to get a foothold in a potential target. REvil operators have demanded the highest ransoms in 2021.

Ransomware 125

Ransomware Encryption Malware Cybercrime 125

Krebs on Security

MARCH 23, 2022

Microsoft and identity management platform Okta both this week disclosed breaches involving LAPSUS$ , a relatively new cybercrime group that specializes in stealing data from big companies and threatening to publish it unless a ransom demand is paid. ” LAPSUS$ leader Oklaqq a.k.a.

Social Engineering 288

Social Engineering Accountability Mobile Passwords 288

Krebs on Security

JANUARY 11, 2022

More commonly, the infected PC or stolen VPN credentials the gang used to break in were purchased from a cybercriminal middleman known as an initial access broker. This post examines some of the clues left behind by “ Wazawaka ,” the hacker handle chosen by a major access broker in the Russian-speaking cybercrime scene.

DDOS 263

DDOS Accountability Cybercrime Ransomware 263

SecureList

AUGUST 3, 2022

Politically-motivated cyberattacks dominated the DDoS landscape in the second quarter of 2022 just as they did in the previous reporting period. The pro-Russian hacktivists Killnet, which first surfaced in January 2022, claimed responsibility for DDoS attacks on the websites of various European organizations from April through June.

DDOS 108

DDOS Government Marketing IoT 108

Security Affairs

JUNE 4, 2021

PrivacyAffairs released the Dark Web Index 2021, the document provides the prices for illegal services/products available in the black marketplaces. And there are even more specialized products such as DDoS attacks, email databases, and malware. DDoS Attacks. The New York one is four times more expensive. Hackers love it.

Accountability 114

Accountability Marketing Hacking Cryptocurrency 114

Security Affairs

NOVEMBER 25, 2020

Group-IB , a global threat hunting and intelligence company, has presented its annual Hi-Tech Crime Trends 2020/2021 report. In the report, the company examines key shifts in the cybercrime world internationally between H2 2019 and H1 2020 and gives forecasts for the coming year. Tb per second and 809 million packets per second.

Banking 132

Banking Ransomware Phishing Marketing 132