Krebs on Security

NOVEMBER 14, 2024

In February, he and Ermakov were arrested on charges of operating a short-lived ransomware affiliate program in 2021 called Sugar (a.k.a. Shefel claims his Sugar ransomware affiliate program was a bust, and never generated any profits. Sugar Locker), which targeted single computers and end-users instead of corporations.

Advertising 274

Advertising Retail Cryptocurrency Cybercrime 274

Security Affairs

DECEMBER 22, 2024

US authorities charged a dual Russian and Israeli national for being a developer of the LockBit ransomware group. Rostislav Panev, 51, a dual Russian-Israeli national, was charged as a LockBit ransomware developer. The man is accused of being a LockBit ransomware developer from 2019 through at least February 2024.

Ransomware 118

Ransomware Small Business Antivirus Malware 118

Krebs on Security

MARCH 7, 2022

Three stories here last week pored over several years’ worth of internal chat records stolen from the Conti ransomware group, the most profitable ransomware gang in operation today. This final post on the Conti conversations explores different schemes that Conti pursued to invest in and steal cryptocurrencies.

Ransomware 279

Ransomware Cryptocurrency DDOS Scams 279

The Last Watchdog

DECEMBER 16, 2021

In 2021, law enforcement continued making a tremendous effort to track down, capture and arrest ransomware operators, to take down ransomware infrastructure, and to claw back ransomware payments. These transformations for ransomware groups will become the source of new attacks. Related: The targeting of supply chains.

CISO 262

CISO Ransomware Risk Authentication 262

Krebs on Security

JANUARY 28, 2022

In December 2021, researchers discovered a new ransomware-as-a-service named ALPHV (a.k.a. “ BlackCat “), considered to be the first professional cybercrime group to create and use a ransomware strain written in the Rust programming language. Image: Varonis. ” Meanwhile, the U.S.

Ransomware 338

Ransomware Accountability Cybercrime Malware 338

eSecurity Planet

DECEMBER 21, 2021

There are few guarantees in the IT industry, but one certainty is that as the world steps into 2022, ransomware will continue to be a primary cyberthreat. The dangers from ransomware have risen sharply since WannaCry and NotPetya hit the scene in 2017, and this year has been no different. Cryptocurrency Fuels Ransomware.

Cryptocurrency 140

Cryptocurrency Ransomware Cybercrime Social Engineering 140

Krebs on Security

FEBRUARY 1, 2024

Three Americans were charged this week with stealing more than $400 million in a November 2022 SIM-swapping attack. government did not name the victim organization, but there is every indication that the money was stolen from the now-defunct cryptocurrency exchange FTX , which had just filed for bankruptcy on that same day.

Cryptocurrency 315

Cryptocurrency Ransomware Government Retail 315

Krebs on Security

FEBRUARY 20, 2024

authorities have seized the darknet websites run by LockBit , a prolific and destructive ransomware group that has claimed more than 2,000 victims worldwide and extorted over $120 million in payments. LockBit members have executed attacks against thousands of victims in the United States and around the world, according to the U.S.

Ransomware 331

Ransomware Cybercrime Encryption Insurance 331

Security Affairs

SEPTEMBER 22, 2022

Trend Micro researchers warn of an ongoing crypto mining campaign targeting Atlassian Confluence servers affected by the CVE-2022-26134 vulnerability. “We observed the active exploitation of CVE-2022-26134 , an unauthenticated remote code execution (RCE) vulnerability with a critical rating of 9.8 ” concludes the report.

Cryptocurrency 136

Cryptocurrency Firewall Malware Hacking 136

Security Affairs

NOVEMBER 21, 2024

Victims included gaming, telecom, and cryptocurrency firms, with losses reaching millions in stolen cryptocurrency and data from hundreds of thousands of accounts. Victims included gaming, telecom, and cryptocurrency firms, with losses reaching millions in stolen cryptocurrency and data from hundreds of thousands of accounts.

Cybercrime 109

Cybercrime Identity Theft Cryptocurrency Phishing 109

Security Affairs

MAY 24, 2025

indicted Russian Rustam Gallyamov for leading the Qakbot botnet, which infected 700K+ devices and was used in ransomware attacks. authorities have indicted Russian national Rustam Gallyamov, the leader of the Qakbot operation, which infected over 700,000 computers and facilitated ransomware attacks. and abroad.

Cybercrime 119

Cybercrime Cryptocurrency Ransomware Malware 119

eSecurity Planet

FEBRUARY 24, 2025

Over 200,000 internal messages from the notorious ransomware group Black Basta have surfaced online exposing deep divisions, ransom negotiations, and internal dysfunction. Cybersecurity experts are now poring over the data, uncovering a rare inside look at how one of the most feared ransomware groups operates and potentially unravels.

Ransomware 67

Ransomware Phishing Healthcare Cryptocurrency 67

eSecurity Planet

JANUARY 6, 2022

About the only consensus on cybersecurity in 2022 is that things will get uglier, but in what ways? Third-party security, ransomware , artificial intelligence (AI) and decentralized finance (DeFi) are some of the threats you can expect to see more of this year – with the potential for far worse results than we’ve seen in the past.

Ransomware 136

Ransomware Cybersecurity Artificial Intelligence CISO 136

Krebs on Security

DECEMBER 29, 2022

Thanks to your readership and support, I was able to spend more time in 2022 on some deep, meaty investigative stories — the really satisfying kind with the potential to affect positive change. Some of that work is highlighted in the 2022 Year in Review review below.

Cryptocurrency 309

Cryptocurrency Cybercrime Computers and Electronics Scams 309

Security Affairs

MARCH 14, 2025

The US Justice Department announced that the LockBit ransomware developer Rostislav Panev was extradited from Israel to the U.S. The US Justice Department announced that one of the LockBit ransomware developer, Rostislav Panev (51), has been extradited to the United States. reads the press release published by DoJ.

Ransomware 63

Ransomware Cryptocurrency Small Business Malware 63

Security Affairs

JANUARY 11, 2025

Department of Justice charged three Russian citizens with operating crypto-mixing services that helped crooks launder cryptocurrency. that helped crooks launder cryptocurrency. were allegedly used for laundering funds from ransomware and cybercrimes. was active from 2018 to 2022, while Sinbad.io and Sinbad.io Blender.io

Cybercrime 72

Cybercrime Cryptocurrency Hacking Ransomware 72

SecureList

SEPTEMBER 8, 2022

H1 2022 in numbers. In H1 2022, malicious objects were blocked at least once on 31.8% Percentage of ICS computers on which malicious objects were blocked, January – June 2020, 2021, and 2022. 15 countries and territories with the highest percentage of ICS computers on which malicious objects were blocked, H1 2022.

Spyware 124

Spyware Cryptocurrency Phishing Ransomware 124

Krebs on Security

SEPTEMBER 26, 2024

The government also indicted and sanctioned a top Russian cybercriminal known as Taleon , whose cryptocurrency exchange Cryptex has evolved into one of Russia’s most active money laundering networks. A 2016 screen shot of the Joker’s Stash homepage. The links have been redacted. Petersburg and financial institutions in the West.

Cryptocurrency 310

Cryptocurrency Cybercrime Retail Government 310

Security Boulevard

MARCH 16, 2023

Ben is disappointed: FBI reports huge rise in cryptocurrency investment scams. The post Scams Lost US $10 BILLION in 2022 — Crypto Fraud Grows Fast appeared first on Security Boulevard. Why am I not surprised?

Scams 140

Scams Cryptocurrency Social Engineering Internet 140

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. Emerging in 2007 as a banking trojan, QakBot (a.k.a. Today’s operation is not the first time the U.S.

Hacking 315

Hacking Malware Ransomware Government 315

SecureList

NOVEMBER 10, 2022

Cryptocurrency prices were dropping from the end of 2021 and throughout the first half of 2022. Apart from cryptocurrency theft they extort digital money or illicitly mine it using victim’s devices instead of their own. Cybercriminals pay neither for equipment, nor for electricity, which is rather expensive in 2022.

Cryptocurrency 133

Cryptocurrency Malware Software Ransomware 133

Security Affairs

JULY 23, 2022

DoJ seized $500,000 worth of Bitcoin from North Korea-linked threat actors who are behind the Maui ransomware. Department of Justice (DoJ) has seized $500,000 worth of Bitcoin from North Korean threat actors who used the Maui ransomware to target several organizations worldwide. ” reads the announcement published by DoJ.

Ransomware 145

Ransomware Healthcare Cryptocurrency Encryption 145

SecureList

DECEMBER 16, 2024

In general, the number of unique threads discussing drainers on underground markets increased from 55 in 2022 to 129 in 2024, which is remarkable. Stealers and drainers to see a rise in their promotion as services on the dark web Cryptocurrencies have been a prime target for cybercriminals for years.

Marketing 104

Marketing Data breaches Cryptocurrency Malware 104

Security Affairs

JULY 15, 2022

Microsoft researchers linked the Holy Ghost ransomware (H0lyGh0st) operation to North Korea-linked threat actors. The Microsoft Threat Intelligence Center (MSTIC) researchers linked the activity of the Holy Ghost ransomware (H0lyGh0st) operation to a North Korea-linked group they tracked as DEV-0530. ” concludes Microsoft.

Ransomware 144

Ransomware Cryptocurrency Government Small Business 144

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. technology companies during the summer of 2022. stole at least $800,000 from at least five victims between August 2022 and March 2023. 9, 2024, U.S.

Social Engineering 359

Social Engineering Mobile Cybercrime Passwords 359

SecureList

AUGUST 15, 2022

IT threat evolution in Q2 2022. IT threat evolution in Q2 2022. IT threat evolution in Q2 2022. According to Kaspersky Security Network, in Q2 2022: 5,520,908 mobile malware, adware and riskware attacks were blocked. Number of attacks targeting users of Kaspersky mobile solutions, Q1 2020 — Q2 2022 ( download ).

Mobile 140

Mobile Adware Banking Malware 140

Malwarebytes

JANUARY 22, 2023

According to blockchain data platform Chainalysis , ransomware revenue “plummeted” from $765.6 The data is based on an analysis of the cryptocurrency addresses known to be controlled by ransomware attackers. Number of attacks Ransomware attacks make headlines, but that doesn’t mean we learn about all of them.

Ransomware 94

Ransomware Backups Cryptocurrency Risk 94

Security Affairs

DECEMBER 22, 2022

billion worth of cryptocurrency and other virtual assets in the past five years. billion) in cryptocurrency and other virtual assets in the past five years. Cyber security and intelligence experts believe that attacks aimed at the cryptocurrency industry will continue to increase next year. trillion won ($1.2 billion (about 2.7

Cryptocurrency 139

Cryptocurrency Cybercrime Media Government 139

Security Affairs

DECEMBER 14, 2023

French police arrested a Russian national who is suspected of laundering money resulting from the criminal activity of the Hive ransomware gang. The French authorities arrested in Paris a Russian national who is suspected of laundering criminal proceeds for the Hive ransomware gang. anti-cybercrime (Ofac).”

Ransomware 139

Ransomware Cryptocurrency Cybercrime Manufacturing 139

Anton on Security

JULY 7, 2022

for “ransomware” in the cloud] observed was where attackers were seen brute forcing SQL databases, cloning a database table into a new table , encrypting the data, and proceeding to drop the original table. ” [A.C.?—?cloud cloud ransomware isn’t really ‘a ware’, but a RansomOp where humans?—?not not malware?

Cybersecurity 246

Cybersecurity Cryptocurrency Ransomware Education 246

Malwarebytes

APRIL 26, 2022

Rogue Google ads caused no end of misery for cryptocurrency enthusiasts, costing them roughly $4.31 This is an astonishing slice of cryptocurrency cash to lose for the sake of clicking on something in a search engine. pic.twitter.com/aucIcnsCd7 — SlowMist (@SlowMist_Team) April 21, 2022. Bad ads are at it again.

Cryptocurrency 127

Cryptocurrency Phishing Engineering Scams 127

Webroot

JULY 25, 2022

The RSA Conference 2022 – one of the world’s premier IT security conferences – was held June 6th-9th in San Francisco. But attendees and presenters alike made up for it with their eagerness to explore emerging IT security trends that have developed over the past year – a venue like RSA Conference 2022 delivered on tenfold.

Cyber Insurance 136

Cyber Insurance Insurance Marketing Ransomware 136

Security Affairs

JANUARY 31, 2022

Threat actors stole $80M worth of cryptocurrency from the Qubit DeFi platform by exploiting a flaw in the smart contract code used in an Ethereum bridge. The DeFi platform Qubit Finance was victim of a cyber heist, threat actors stole around $80 million in cryptocurrency last week. SecurityAffairs – hacking, REvil ransomware).

Cryptocurrency 98

Cryptocurrency Hacking Accountability Ransomware 98

SecureList

MAY 27, 2022

IT threat evolution in Q1 2022. IT threat evolution in Q1 2022. IT threat evolution in Q1 2022. In January, we reported a malicious campaign targeting companies that work with cryptocurrencies, smart contracts, decentralized finance and blockchain technology: the attackers are interested in fintech in general.

Phishing 132

Phishing Spyware Firmware Malware 132

SecureWorld News

FEBRUARY 16, 2023

A joint Cybersecurity Advisory (CSA) has revealed that the Democratic People's Republic of Korea (DPRK) is doing its best to become the New Kids on the Block (NKOTB) of ransomware. The CSA provides updates to earlier alerts of malicious cyber actor activities involving DPRK ransomware campaigns—namely Maui and H0lyGh0st ransomware.

Healthcare 116

Healthcare Ransomware Cryptocurrency Cybercrime 116

Malwarebytes

MARCH 17, 2022

Cryptocurrency wallet attacks. People new to cryptocurrency often gravitate to services which take the hassle out of setting everything up. Some folks may feel the above process isn’t as secure as storing their cryptocurrency on standalone devices. Ransomware supply chain triple-threat. Below, we dig into a few of those.

Cryptocurrency 128

Cryptocurrency Backups Phishing Password Management 128

CyberSecurity Insiders

APRIL 19, 2022

A study conducted by Cybersecurity Firm Mandiant confirms that ransomware actors are increasingly targeting virtualization platforms to extort ransom in large amounts. M-Trends 2022 report not only disclosed what threat actors are doing, but has also offered ways to mitigate risks.

Ransomware 120

Ransomware Cyber Insurance Insurance Cryptocurrency 120