Krebs on Security

DECEMBER 5, 2022

In December 2021, Google filed a civil lawsuit against two Russian men thought to be responsible for operating Glupteba , one of the Internet’s largest and oldest botnets. ” A report from the Polish computer emergency response team (CERT Orange Polksa) found Glupteba was the biggest malware threat in 2021.

Cybercrime 308

Cybercrime Malware Internet Internet 308

Krebs on Security

NOVEMBER 6, 2023

Last week, KrebsOnSecurity broke the news that one of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure.

Passwords 313

Passwords Cybercrime Accountability Hacking 313

Krebs on Security

APRIL 3, 2024

Roughly nine years ago, KrebsOnSecurity profiled a Pakistan-based cybercrime group called “ The Manipulaters ,” a sprawling web hosting network of phishing and spam delivery platforms. 2021 piece, when one of Saim Raza’s known email addresses — bluebtcus@gmail.com — pleaded to have the story taken down.

Phishing 299

Phishing Cybercrime Malware Advertising 299

Krebs on Security

AUGUST 2, 2022

The underground cybercrime forums are now awash in pleas from people who are desperately seeking a new supplier of abundant, cheap, and reliably clean proxies to restart their businesses. 1, 2021: 15-Year-Old Malware Proxy Network VIP72 Goes Dark. Last week, a seven-year-old proxy service called 911[.]re The disruption at 911[.]re

Malware 324

Malware Cybercrime Internet Internet 324

Krebs on Security

SEPTEMBER 26, 2024

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash , a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. The answer involved Bitcoin, but also Taleon’s new service.

Cryptocurrency 310

Cryptocurrency Cybercrime Retail Government 310

Krebs on Security

APRIL 18, 2023

” MRMURZA Faceless is a project from MrMurza , a particularly talkative member of more than a dozen Russian-language cybercrime forums over the past decade. MrMurza’s Faceless advertised on the Russian-language cybercrime forum ProCrd. ” Russian corporate records indicate this entity was liquidated in 2021.

Malware 305

Malware Passwords Accountability Advertising 305

Krebs on Security

JUNE 28, 2022

On December 7, 2021, Google announced it was suing two Russian men allegedly responsible for operating the Glupteba botnet, a global malware menace that has infected millions of computers over the past decade. But on Dec.

Passwords 321

Passwords Malware Internet Internet 321

Krebs on Security

JULY 18, 2022

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. FORUM ACTIVITY?

VPN 358

VPN Computers and Electronics Antivirus Software 358

Krebs on Security

JULY 25, 2023

In a report released July 12, researchers at Lumen’s Black Lotus Labs called the AVrecon botnet “one of the largest botnets targeting small-office/home-office (SOHO) routers seen in recent history,” and a crime machine that has largely evaded public attention since first being spotted in mid-2021. com, super-socks[.]com,

Malware 244

Malware VPN Internet Internet 244

Krebs on Security

DECEMBER 8, 2022

.” While CLOP as a money making collective is a fairly young organization, security experts say CLOP members hail from a group of Threat Actors (TA) known as “TA505,” which MITRE’s ATT&CK database says is a financially motivated cybercrime group that has been active since at least 2014.

Healthcare 331

Healthcare Backups Ransomware Insurance 331

Krebs on Security

JUNE 6, 2023

The crypto scam affiliate program “Project Impulse,” advertising in 2021. According to the FBI , financial losses from cryptocurrency investment scams dwarfed losses for all other types of cybercrime in 2022 , rising from $907 million in 2021 to $2.57 Image: Trend Micro. billion last year.

Accountability 262

Accountability Scams Cryptocurrency Advertising 262

Krebs on Security

APRIL 12, 2022

Department of Justice (DOJ) said today it seized the website and user database for RaidForums , an extremely popular English-language cybercrime forum that sold access to more than 10 billion consumer records stolen in some of the world’s largest data breaches since 2015.

Government 263

Government Identity Theft Mobile Data breaches 263

Krebs on Security

AUGUST 17, 2023

Nevertheless, Cyberthreat reported that Devilscream was arrested by Indonesian police in late 2021 as part of a collaboration between INTERPOL and the U.S. 16Shop documentation instructing operators on how to deploy the kit. Image: ZeroFox. Federal Bureau of Investigation (FBI).

Phishing 242

Phishing Passwords Hacking Internet 242

Krebs on Security

SEPTEMBER 2, 2021

Here’s the story of a cybercrime group that compromises up to 100,000 email inboxes per day, and apparently does little else with this access except siphon gift card and customer loyalty program data that can be resold online.

Accountability 349

Accountability Authentication Passwords Hacking 349

Krebs on Security

JULY 21, 2022

Nolan said her nightmare began in late 2021 with a Twitter direct message from someone who was following many of the same cryptocurrency influencers she followed. Nolan’s case may be especially bad because she was already interested in crypto investing when the scammer reached out.

Scams 330

Scams Cryptocurrency Marketing Internet 330

Security Boulevard

DECEMBER 5, 2022

In December 2021, Google filed a civil lawsuit against two Russian men thought to be responsible for operating Glupteba, one of the Internet's largest and oldest botnets.

Cybercrime 52

Cybercrime Internet Internet Web Fraud 52

Krebs on Security

JUNE 7, 2022

They didn’t specify what additional topics the series would scrutinize, but Netflix’s teaser for the show suggests it concerns cybercrimes that result in deadly, real-world kinetic attacks. “What starts out virtual can get real all too quickly — and when the web is worldwide, so are the consequences.”

Cybercrime 343

Cybercrime Internet Internet Web Fraud 343

Krebs on Security

SEPTEMBER 1, 2021

Over the past 15 years, a cybercrime anonymity service known as VIP72 has enabled countless fraudsters to mask their true location online by routing their traffic through millions of malware-infected systems. based Internet address for more than a decade — a remarkable achievement for such a high-profile cybercrime service.

Malware 352

Malware Cybercrime Internet Internet 352

Krebs on Security

SEPTEMBER 13, 2024

The security firm CrowdStrike dubbed the group “ Scattered Spider ,” a recognition that the MGM hackers came from different hacker cliques scattered across an ocean of Telegram and Discord servers dedicated to financially-oriented cybercrime. ” Beige members were implicated in two stories published here in 2020.

Cybercrime 330

Cybercrime Accountability Mobile Hacking 330

Krebs on Security

APRIL 27, 2022

Donahue is co-founder of Kodex , a company formed in February 2021 that builds security portals designed to help tech companies “manage information requests from government agencies who contact them, and to securely transfer data & collaborate against abuses on their platform.” A sample Kodex dashboard. Image: Kodex.us.

Mobile 239

Mobile Government Media Technology 239

Krebs on Security

FEBRUARY 28, 2023

In each case, the goal of the attackers was the same: Phish T-Mobile employees for access to internal company tools, and then convert that access into a cybercrime service that could be hired to divert any T-Mobile user’s text messages and phone calls to another device.

Mobile 340

Mobile Phishing Authentication Advertising 340

Krebs on Security

MARCH 31, 2022

That was in March 2021, but there are similar fake EDR services on offer today. 30, Bug posted a sales thread to the cybercrime forum Breached[.]co In July 2021, Sen. And it tracked the activities of a teenage hacker from the United Kingdom who was reportedly arrested multiple times for sending fake EDRs.

Government 319

Government Accountability Education Media 319

Krebs on Security

SEPTEMBER 30, 2024

A California man accused of failing to pay taxes on tens of millions of dollars allegedly earned from cybercrime also paid local police officers hundreds of thousands of dollars to help him extort, intimidate and silence rivals and former business partners, the government alleges. They’re active-duty.” at Iza’s behest.

Cryptocurrency 325

Cryptocurrency Government Internet Internet 325

Krebs on Security

MARCH 22, 2023

In November 2022, researchers at Google’s Project Zero warned about active attacks on Samsung mobile phones which chained together three security vulnerabilities that Samsung patched in March 2021, and which would have allowed an app to add or read any files on the device.

Malware 329

Malware eCommerce Mobile Marketing 329

Krebs on Security

MAY 22, 2023

This email address is also connected to accounts on several Russian cybercrime forums, including “ __edman__ ,” who had a history of selling “logs” — large amounts of data stolen from many bot-infected computers — as well as giving away access to hacked Internet of Things (IoT) devices.

Scams 310

Scams DDOS Cryptocurrency Accountability 310

Krebs on Security

MARCH 29, 2022

” On April 5, 2021, Everlynn posted a new sales thread to the cybercrime forum cracked[.]to But KT said each time Everlynn gets released from police custody, they go right back to committing the same cybercrimes. The phony message sent in November 2021 via the FBI’s email system.

Accountability 292

Accountability Government Hacking Social Engineering 292

Krebs on Security

JANUARY 30, 2025

Edwards said Funnull is a textbook example of an increasing trend Silent Push calls “infrastructure laundering,” wherein crooks selling cybercrime services will relay some or all of their malicious traffic through U.S. cloud providers. ” A Suncity gambling site promoted via Funnull. .”

Accountability 255

Accountability Scams Passwords Data collection 255

Krebs on Security

FEBRUARY 9, 2022

The crackdown — the second closure of major card fraud shops by Russian authorities in as many weeks — comes closely behind Russia’s arrest of 14 alleged affiliates of the REvil ransomware gang , and has many in the cybercrime underground asking who might be next. K’s message for Trump’s Dumps users.

Cybercrime 313

Cybercrime Marketing Identity Theft Retail 313