Security Affairs

DECEMBER 28, 2024

The Italian Cnaipic (National Cybercrime Center for the Protection of Critical Infrastructure) of the Postal Police is investigating the cyberattacks and is helping victims into mitigating the offensive. With the renewed support for Ukraine from the Italian government, this group has resumed targeting certain Italian websites.”

DDOS 131

DDOS Artificial Intelligence Government Cybercrime 131

Krebs on Security

MAY 15, 2025

In what experts are calling a novel legal outcome, the 22-year-old former administrator of the cybercrime community Breachforums will forfeit nearly $700,000 to settle a civil lawsuit from a health insurance company whose customer data was posted for sale on the forum in 2023. Conor Brian Fitzpatrick , a.k.a.

Healthcare 241

Healthcare Insurance Data breaches Government 241

Security Affairs

FEBRUARY 17, 2025

Dutch police seized 127 servers of the bulletproof hosting service Zservers/XHost after government sanctions. In 2022, a Russian cybercriminal purchased IP addresses from Zservers, almost certainly for use as Lockbit chat servers to discuss ransomware operations. ” reads the announcement published by the US Treasury.

Cybercrime 77

Cybercrime Ransomware Hacking Advertising 77

Security Affairs

DECEMBER 1, 2024

In 2022, the Federal Bureau of Investigation (FBI) warned of an uptick in fake profiles designed to exploit victims financially. These services allow attackers with minimal technical expertise to execute advanced attacks, democratizing cybercrime. An example of this misuse is the creation of fraudulent social media profiles using GAI.

Artificial Intelligence 138

Artificial Intelligence Phishing Cybercrime Media 138

eSecurity Planet

FEBRUARY 10, 2025

In a stark warning to organizations and everyday users alike, cybersecurity experts and government agencies have sounded the alarm over a new breed of Gmail-targeted phishing attacks. This surge highlights a broader trend toward automation in cybercrime and signals that no email platform is immune.

Phishing 113

Phishing Artificial Intelligence Password Management Accountability 113

Security Affairs

NOVEMBER 15, 2024

In February 2022, Ilya Lichtenstein (35) and his wife, Heather Morgan (32), were arrested for alleged conspiracy to launder $4.5 Since the arrest of the couple, the government has seized another approximately $475 million tied to the cyber heist. .” reads the press release published by DoJ.

Cryptocurrency 110

Cryptocurrency Hacking Government Accountability 110

Security Affairs

MARCH 10, 2025

authorities seized $23M in crypto linked to a $150M Ripple wallet theft, experts believe the incident is linked to the 2022 LastPass breach. authorities seized $23M in crypto tied to a $150M Ripple hack, suspected to have been carried out by hackers from the 2022 LastPass breach. ” reads the complaint. ” However.

Password Management 93

Password Management Cryptocurrency Passwords Data breaches 93

SecureWorld News

FEBRUARY 13, 2025

According to a 2023 study by Sumsub , deepfake fraud attempts increased by 704% between 2022 and 2023. Attackers now impersonate executives, government officials, and even family members to gain trust and manipulate victims. The future of deepfake security As deepfake technology advances, so must defensive strategies.

Social Engineering 96

Social Engineering Authentication Identity Theft Engineering 96

Security Affairs

JULY 18, 2025

Based on information from open sources, government experts linked multiple Phobos ransomware variants to Phobos intrusions due to observed similarities in Tactics, Techniques, and Procedures (TTPs). Phobos operation uses a ransomware-as-a-service (RaaS) model, it has been active since May 2019.

Ransomware 133

Ransomware Encryption Malware Cybercrime 133

Security Boulevard

FEBRUARY 14, 2025

And get the latest on ransomware trends and on cybercrime legislation and prevention! government is urging software makers to adopt secure application-development practices that help prevent buffer overflow attacks. So how can governments more effectively tackle national-security cyberthreats from profit-seeking cybercriminals?

Banking 63

Banking Cybercrime Cybersecurity Ransomware 63

Security Affairs

JUNE 6, 2025

The bounty is part of the US DoS’s Rewards for Justice program , which offers payouts for tips on foreign government hackers targeting U.S. After Russia’s invasion of Ukraine in February 2022, Rudometov reportedly fled to Krasnodar, Russia. critical infrastructure in violation of the Computer Fraud and Abuse Act (CFAA).”

Malware 90

Malware Passwords Identity Theft Government 90

Security Affairs

APRIL 30, 2025

PRODAFT researchers warn of Russia-linked APT group Nebulous Mantis targeting NATO-related defense organizations Nebulous Mantis, a Russian-speaking cyber espionage group (aka Cuba, STORM-0978 , Tropical Scorpius , UNC2596 ), used RomCom RAT and Hancitor since 2019 to target critical infrastructure, governments, and NATO-linked entities.

Encryption 107

Encryption Ransomware Malware Phishing 107

The Last Watchdog

MARCH 10, 2025

In 2023, victims reported nearly 900,000 cybercrime complaints to the FBI. billion a significant 22% increase from the losses in 2022. In fact, 59% of government leaders report that their inability to synthesize data across people, operations, and finances weakens organizational agility. Altogether, losses eclipsed $12.5

Energy and Utilities 100

Energy and Utilities Cyber threats Financial Services Government 100

Security Affairs

DECEMBER 17, 2024

” The Remote Access Trojan (RAT) has been active since July 2022. One of these virtual private servers was exclusively employed in attacks against entities across Taiwan, including commercial firms and at least one municipal government organization. Another VPS node was used to target a U.S.

Architecture 114

Architecture Malware IoT Internet 114

Malwarebytes

MAY 1, 2025

Government-backed groups and customers of commercial surveillance vendors (that’s sanitized corporate-speak for spyware) were responsible for over half the attacks that the researchers were able to attribute. However, as it points out, some of these groups involved in cybercrime also maintain strong links to the Russian government.

Spyware 85

Spyware Mobile Technology Government 85

Security Affairs

APRIL 17, 2025

Mustang Panda has been active since at least 2012, targeting American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. In the 2022 campaigns, threat actors used European Union reports on the conflict in Ukraine and Ukrainian government reports as lures.

Encryption 121

Encryption Government Malware Hacking 121

SecureWorld News

JULY 21, 2025

Against this backdrop, Microsoft recently launched its European Security Program (ESP) , a comprehensive cybersecurity initiative aimed at supporting European governments against increasingly sophisticated cyber threats, particularly those powered by artificial intelligence. times increase in ransomware attacks compared to the previous year.

Cybersecurity 70

Cybersecurity Technology Cybercrime Cyber threats 70

Security Affairs

FEBRUARY 11, 2025

and Swiss governments sought the suspects, and Switzerland has requested their extradition. The 8Base ransomware group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. Both the U.S.

Ransomware 77

Ransomware Encryption Backups Malware 77

Security Affairs

MARCH 14, 2025

The ransomware gang and its affiliates targeted hospitals, schools, nonprofit organizations, critical infrastructure, and government and law-enforcement agencies. Panev received over $230,000 in laundered cryptocurrency from Khoroshev between 2022 and 2024.

Ransomware 70

Ransomware Cryptocurrency Small Business Malware 70

Malwarebytes

MAY 1, 2025

The attack was largely reminiscent of a 2022 YouTube account hack that repurposed a 2018 interview with Apple CEO Tim Cook to fool viewers into following a separate cryptocurrency scam. In 2023, famous YouTube tech personality Linus Sebastian suffered a hack of three different YouTube channels associated with his company, Linus Media Group.

Small Business 91

Small Business Cybersecurity Scams Passwords 91

Security Affairs

APRIL 28, 2025

In the aftermath, several alternative forums emerged, some demanded entry fees, fueling confusion and raising the risk of scams or government-run honeypots. BreachForums was an English-language cybercrime forum that emerged in March 2022 as a successor to the dismantled RaidForums.

Risk 87

Risk Hacking Cybercrime Scams 87

Centraleyes

JUNE 26, 2025

The improvement follows a cascade of regulatory crackdowns after the 2022 Optus and Medibank breaches, which exposed the records of millions and put board directors on notice. Australia’s national cybercrime agency says the self-reported average cost of an incident fell 8 % year-on-year, with a double-digit drop among large enterprises.

Cyber Insurance 52

Cyber Insurance Insurance Backups Healthcare 52

Krebs on Security

JULY 10, 2025

The breaches have been linked to a prolific but loosely-affiliated cybercrime group dubbed “ Scattered Spider ,” whose other recent victims include multiple airlines. Jubair allegedly used the handles “Earth2Star” and “Star Ace,” and was a core member of a prolific SIM-swapping group operating in 2022.

Cybercrime 242

Cybercrime Social Engineering Retail Mobile 242

SecureWorld News

DECEMBER 27, 2024

Greater Collaboration Between Governments and the Private Sector: Initiatives to share threat intelligence will strengthen, fostering a collective defense strategy against increasingly sophisticated cyber adversaries. AI Governance Across Supply Chains: U.S.-based Major AI-Driven Cyberattack in the U.S.:

Cybersecurity 123

Cybersecurity CISO Risk Government 123

SecureWorld News

JANUARY 7, 2025

government's efforts to combat state-sponsored cyber threats. According to the Treasury Department , "Between summer 2022 and fall 2023, Flax Typhoon actors used infrastructure tied to Integrity Tech during their computer network exploitation activities against multiple victims." critical infrastructure.

Cybersecurity 117

Cybersecurity Cyber threats Government VPN 117

Krebs on Security

NOVEMBER 26, 2024

However, this person’s identity may not remain a secret for long: A careful review of Kiberphant0m’s daily chats across multiple cybercrime personas suggests they are a U.S. government agencies and emergency first responders. 15, 2022. Army soldier who is or was recently stationed in South Korea. Also on Nov.

DDOS 339

DDOS Cybercrime Accountability Government 339

Security Affairs

MAY 25, 2025

Silent Ransom Group targeting law firms, the FBI warns Leader of Qakbot cybercrime network indicted in U.S. local government networks U.S. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches 70

Data breaches Cybercrime Malware Ransomware 70

Krebs on Security

JANUARY 27, 2025

President Trump last week issued a flurry of executive orders that upended a number of government initiatives focused on improving the nation’s cybersecurity posture. Pekoske was appointed by Trump in 2017 and had his 5-year tenure renewed in 2022 by former President Joe Biden. Image: Shutterstock. Greg Meland.

Cybersecurity 293

Cybersecurity Government Cryptocurrency Artificial Intelligence 293

Security Affairs

JULY 17, 2025

” Stormous is a pro-Russia ransomware group active since early 2022. The group has targeted at least 150 organizations, focusing on sectors like healthcare, hospitality, technology, business services, and government. . “According to a July 15, 2025, update, the files have been published.” UAE, France, and Brazil.

Healthcare 79

Healthcare Ransomware Insurance Data breaches 79

Graham Cluley

JULY 21, 2025

The hacking group NoName057(16) has been operating since 2022, launching cyber attacks on government organisations, media bodies, critical infrastructure, and private companies in Ukraine, America, Canada, and across Europe in a seeming attempt to silence voices that the group considers anti-Russian.

Cybercrime 69

Cybercrime Cyber Attacks Media Government 69

Krebs on Security

MAY 29, 2024

.” The arrest coincided with the seizure of the 911 S5 website and supporting infrastructure, which the government says turned computers running various “free VPN” products into Internet traffic relays that facilitated billions of dollars in online fraud and cybercrime. The prices page for 911 S5, circa July 2022. $28

VPN 361

VPN Cybercrime Government Internet 361

The Last Watchdog

DECEMBER 16, 2021

REvil and BlackMatter are not “shutting down” due to external pressure from the government and law enforcement agencies. And there will be loosely affiliated networks of solo operators that pick and choose who they work with through a robust cybercrime underground, just like rotating new drummers through a band.

CISO 262

CISO Ransomware Risk Authentication 262

Krebs on Security

MAY 16, 2023

A Russian man identified by KrebsOnSecurity in January 2022 as a prolific and vocal member of several top ransomware groups was the subject of two indictments unsealed by the Justice Department today. prosecutors say Mikhail Pavolovich Matveev , a.k.a. An FBI wanted poster for Matveev. 17, 1992). .

Ransomware 338

Ransomware Cybercrime Healthcare VPN 338

Krebs on Security

JANUARY 30, 2024

technology companies during the summer of 2022. stole at least $800,000 from at least five victims between August 2022 and March 2023. The government says Urban went by the aliases “ Sosa ” and “ King Bob ,” among others. A graphic depicting how 0ktapus leveraged one victim to attack another.

Social Engineering 363

Social Engineering Cybercrime Mobile Identity Theft 363

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. government has used court orders to remotely disinfect systems compromised with malware. Today’s operation is not the first time the U.S.

Hacking 333

Hacking Malware Ransomware Government 333

Krebs on Security

JANUARY 10, 2024

Mora said it’s unclear if the bitcoin address that holds his client’s stolen money is being held by the government or by the anonymous hackers. “The government doesn’t need the crypto as evidence, but in a forfeiture action the money goes to the government,” Rasch said. federal court.”

Cryptocurrency 357

Cryptocurrency Government Cybercrime Accountability 357

Krebs on Security

SEPTEMBER 13, 2023

In December 2022, KrebsOnSecurity broke the news that a cybercriminal using the handle “ USDoD ” had infiltrated the FBI ‘s vetted information sharing network InfraGard , and was selling the contact information for all 80,000 members. government inboxes. But on Sept. defense contractors. Department of Defense.

Cybercrime 356

Cybercrime Passwords Authentication Malware 356