Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. ”] Kislitsin was hired by Group-IB in January 2013, nearly six months after the Formspring hack. Department of Justice.

Cybersecurity 258

Cybersecurity Cybercrime Hacking Technology 258

Security Affairs

JANUARY 25, 2024

The 2023 RedSense report covers long-term observations we have made regarding intel trends and interconnectivity. These observations were made by analyzing numerous 2023 threat findings and discoveries, and include references to case studies that were reported on by RedSense throughout the year.

Ransomware 100

Ransomware Cybercrime Malware Data breaches 100

Security Affairs

NOVEMBER 2, 2023

Rapid7 researchers warn of the suspected exploitation of a recently disclosed critical security flaw (CVE-2023-46604) in the Apache ActiveMQ. Cybersecurity researchers at Rapid7 are warning of the suspected exploitation of the recently disclosed critical vulnerability CVE-2023-46604 in the Apache ActiveMQ. before 5.18.3

Ransomware 115

Ransomware Cybercrime Software Encryption 115

Security Affairs

APRIL 11, 2023

Microsoft has addressed a zero-day vulnerability, tracked as CVE-2023-28252 , in the Windows Common Log File System (CLFS), which is actively exploited in ransomware attacks. Microsoft fixed the issue with the release of Patch Tuesday security updates for April 2023. ” reads the analysis published by Kaspersky. .

Cybercrime 89

Cybercrime Ransomware Education Media 89

Thales Cloud Protection & Licensing

OCTOBER 11, 2023

Protect Your Organization from Cybercrime-as-a-Service Attacks madhav Thu, 10/12/2023 - 04:53 In years gone by, only large enterprises needed to be concerned with cybercrime. However, Cybercrime-as-a-Service (CaaS) offerings have essentially democratized cybercrime. What is Cybercrime-as-a-Service?

Cybercrime 78

Cybercrime Encryption DDOS Backups 78

Security Affairs

OCTOBER 9, 2023

A threat actor has leaked the source code for the first version of the HelloKitty ransomware on a Russian-speaking cybercrime forum. The availability of the source in the cybercrime ecosystem can allow threat actors to develop their own version of the Hello Kitty ransomware.

Cybercrime 114

Cybercrime Ransomware DDOS Encryption 114

Security Affairs

FEBRUARY 13, 2024

Maintainers behind the Ransomfeed platform have released Q3 Report 2023 including activities of 185 criminal groups operating worldwide. The months of May, June, July, and August each presented unique challenges in the realm of cybersecurity. Let us now delve into the detailed breakdown of the days.

Ransomware 101

Ransomware Data collection Hacking Cybersecurity 101

Security Affairs

MAY 20, 2023

The group was spotted deploying the Clop ransomware in opportunistic attacks in April 2023. — Microsoft Threat Intelligence (@MsftSecIntel) May 18, 2023 The Clop ransomware is just the newest strain the cybercrime gang has used to attacks in the wild. ” reads one of the tweets published by the experts.

Cybercrime 85

Cybercrime Ransomware Security Intelligence Hacking 85

Security Affairs

OCTOBER 4, 2023

The DRM Report Q2 2023 report provides a detailed insight into the ransomware threat landscape during the period between May and August 2023. Ransomware, a menace that has evolved into a formidable adversary, takes center stage in our examination of the cyber threat landscape during the second quarter of 2023.

Ransomware 103

Ransomware Data collection Cyber threats Hacking 103

The Last Watchdog

JUNE 12, 2023

The cybersecurity community is waiting for the next shoe to drop in the wake of the audacious MOVEit-Zellis hack orchestrated by the infamous Russian hacking collective, Clop. ” Post SolarWinds This is a prime example of what multi-stage supply chain hacks have morphed into two years after the milestone SolarWinds hack.

Hacking 193

Hacking Risk Cyber threats Cybercrime 193

Security Affairs

JANUARY 11, 2024

The X account of cybersecurity firm Mandiant was likely hacked through a brute-force password attack, the company revealed. Last week, threat actors hacked the X account of cybersecurity firm Mandiant and used it to impersonate the Phantom crypto platform and share a cryptocurrency scam. ” the company said on X.

Accountability 115

Accountability Hacking Cryptocurrency Cybersecurity 115

Security Affairs

JANUARY 19, 2024

Ransomware groups claimed that they successfully targeted 4191 victims in 2023, Cybernews researchers report. of attacks in 2023), while summer was the most active for ransomware attacks (30.4%). The top 10 groups, based on the number of victims, collectively account for 59% of the total victims in 2023.

Ransomware 116

Ransomware Manufacturing Retail Insurance 116

eSecurity Planet

JANUARY 5, 2023

After a year that saw massive ransomware attacks and open cyber warfare, the biggest question in cybersecurity for 2023 will likely be how much of those attack techniques get commoditized and weaponized. 2023, he predicted, “will not be any easier when it comes to keeping users’ data safe and private.”

Ransomware 145

Ransomware CISO Software Cybercrime 145

Security Affairs

DECEMBER 26, 2023

The Rhysida ransomware group claimed to have hacked Abdali Hospital, a multi-specialty hospital located in Jordan. pic.twitter.com/6uHMDcNhTC — Dominic Alvieri (@AlvieriD) December 26, 2023 The group published images of stolen documents as proof of the hack. The Rhysida ransomware group has been active since May 2023.

Hacking 118

Hacking Ransomware Manufacturing Healthcare 118

CyberSecurity Insiders

MARCH 3, 2023

Third is the news related to cybercrime and might interest the male folks! AI driven stats revealed that nearly half of them were actively taking part in hacking forums as active users. LockBit Ransomware group took a claim of the incident on February 28th 2023 and is reportedly demanding $10 million to free up the data from malware.

Cybersecurity 127

Cybersecurity Encryption Ransomware Password Management 127

The Last Watchdog

NOVEMBER 16, 2023

2023 – Given the sharpening complexity of cyber threats, our digital and physical infrastructure faces mounting challenges. As the US’s critical infrastructure stands on high alert , cybersecurity firm Bridewell, spotlights the critical trends and emerging dangers cyber teams must watch out for in 2024. Houston, Texas, USA – 16 Nov.

Cybercrime 100

Cybercrime Malware Technology Cyber threats 100

Security Affairs

JANUARY 30, 2024

The company is working to restore the impacted systems and is investigating the incident with the help of leading cybersecurity firms, The Cactus ransomware operation has been active since March 2023, despite the threat actors use a double-extortion model, their data leak site has yet to be discovered.

Ransomware 122

Ransomware Hacking Data breaches Digital transformation 122

Security Affairs

NOVEMBER 23, 2023

AutoZone disclosed a data breach resulting from the hack of their MOVEit Transfer installation. The car parts giant is notifying 184,995 individuals that the massive MOVEit hacking campaign compromised their personal information. ” reads the Notice Letter published by the Main Attorney General. percent and 26.0

Data breaches 105

Data breaches Hacking Retail Identity Theft 105

Security Affairs

NOVEMBER 25, 2023

The Rhysida ransomware group claimed to have hacked the Chinese state-owned energy conglomerate China Energy Engineering Corporation. Last week, FBI and CISA published a joint Cybersecurity Advisory (CSA) to warn of Rhysida ransomware attacks. The Rhysida ransomware group has been active since May 2023.

Ransomware 115

Ransomware Hacking Engineering Manufacturing 115

Security Affairs

MAY 15, 2023

DRM Dashboard Ransomware Monitor released the first quarterly report for the year 2023 about the activities of ransomware groups globally. DRM Dashboard Ransomware Monitor, an independent platform of cybersecurity monitoring, is pleased to release the quarterly the DRM-Report for the first quarter of 2023.

Ransomware 76

Ransomware Cybercrime Cybersecurity Hacking 76

Security Affairs

APRIL 24, 2023

Print management software provider PaperCut confirmed ongoing active exploitation of CVE-2023-27350 vulnerability. On April 19th, Print management software provider PaperCut confirmed that it is aware of the active exploitation of the CVE-2023-27350 vulnerability. ” The CVE-2023-27350 (CVSS score – 9.8)

Cybercrime 73

Cybercrime Software Education Ransomware 73

SecureWorld News

MARCH 29, 2024

Just to illustrate the scope of the issue, the Malwarebytes Threat Intelligence team spotted more than 800 malvertising campaigns in only the first six months of 2023, noting that the number of attacks that flew under researchers' radar was likely much higher. The prevention dilemma In light of the escalating threat, the U.S.

Cybercrime 82

Cybercrime Advertising Engineering Antivirus 82

SecureWorld News

DECEMBER 14, 2022

Frank Abagnale, one of the world's most respected authorities on forgery, embezzlement, secure documents, cybercrime, and scams—and subject of the 2002 movie Catch Me If You Can — kicked off Vision 2023: Looking Ahead at Cyber Threats , a half-day educational event held live and recorded on December 13th. Secret Service.

Social Engineering 70

Social Engineering CISO Education Cybercrime 70

Security Affairs

JANUARY 13, 2024

Akira ransomware targets Finnish organizations GitLab fixed a critical zero-click account hijacking flaw Juniper Networks fixed a critical RCE bug in its firewalls and switches Vast Voter Data Leaks Cast Shadow Over Indonesia ’s 2024 Presidential Election Researchers created a PoC for Apache OFBiz flaw CVE-2023-51467 Team Liquid’s wiki leak exposes (..)

VPN 103

VPN Cybercrime Ransomware Hacking 103

ForAllSecure

APRIL 21, 2023

Hacking has gone through several eras over the years, each with its own unique characteristics and motivations. Understanding the history of computer hacking is important for understanding its impact on technology and society, the current state of cybersecurity, and for developing effective strategies for protecting against cyber threats.

Hacking 75

Hacking Cybersecurity Internet Internet 75

SecureWorld News

JUNE 27, 2023

In a significant victory against cybercrime, Joseph James O'Connor, a U.K. citizen known by the moniker "PlugwalkJoe," has been sentenced to five years in prison for his involvement in a wide range of cybercrimes. Follow SecureWorld News for more stories related to cybersecurity.

Hacking 68

Hacking Cybercrime Cryptocurrency Accountability 68

Security Affairs

NOVEMBER 29, 2023

The Rhysida ransomware group claimed to have hacked King Edward VII’s Hospital in London. The Rhysida ransomware group claimed to have hacked King Edward VII’s Hospital in London and added it to the list of victims on its Tor leak site. The Rhysida ransomware group has been active since May 2023. Data from the Royal Family!

Ransomware 108

Ransomware Hacking Manufacturing Healthcare 108

Krebs on Security

JANUARY 30, 2024

Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. stole at least $800,000 from at least five victims between August 2022 and March 2023. 9, 2024, U.S. technology companies during the summer of 2022.

Social Engineering 327

Social Engineering Mobile Cybercrime Passwords 327

Security Affairs

SEPTEMBER 10, 2023

Recently the Rhysida ransomware group made the headlines because it announced the hack of Prospect Medical Holdings and the theft of sensitive information from the organization. Now the cybersecurity researcher Dominic Alvieri first noticed that the ransomware gang claimed to have breached other three US hospitals.

Hacking 122

Hacking Ransomware Healthcare Cyber Attacks 122

Security Affairs

FEBRUARY 2, 2024

Operation Synergia was led by Interpol and ran from September to November 2023 involving law enforcement agencies from 50 countries. The international law enforcement operation was launched to curb the escalation and professionalisation of transnational cybercrime. ” reads the press release published by Interpol.

Cybercrime 90

Cybercrime Banking Phishing Malware 90

Security Affairs

OCTOBER 8, 2023

QakBot threat actors are still operational after the August takedown Ransomware attack on MGM Resorts costs $110 Million Cybersecurity, why a hotline number could be important? Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches 98

Data breaches Cybercrime Ransomware Hacking 98

Security Affairs

MAY 26, 2024

million individuals North Korea-linked Kimsuky used a new Linux backdoor in recent attacks International Press – Newsletter Cybercrime Healthcare company WebTPA discloses breach affecting 2.5 Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter) Fix it now!

Healthcare 97

Healthcare Spyware Data breaches Banking 97

CyberSecurity Insiders

MARCH 24, 2023

By John Weiler FBI arrests Breached hacking forum leader, smartphones hijacked without any user involvement and 330,000 customers compromised in Australia by a data breach. Here are the latest threats and advisories for the week of March 24, 2023. according to a new report by cybersecurity company Jumpsec.

Financial Services 52

Financial Services Ransomware Cybercrime Hacking 52

Security Affairs

MAY 11, 2024

“On or about December 24, 2023, the Ohio Lottery detected unauthorized access to our internal office network as a result of a cybersecurity incident that resulted in the exposure of the data we maintain. The incident did not impact the gaming network,” reads the notice of data breach sent to the impacted individuals.

Data breaches 100

Data breaches Identity Theft Cybercrime Cyber Attacks 100

Security Affairs

JANUARY 21, 2024

Admin of the BreachForums hacking forum sentenced to 20 years supervised release Russia-linked Midnight Blizzard APT hacked Microsoft corporate emails VF Corp December data breach impacts 35 million customers China-linked APT UNC3886 exploits VMware zero-day since 2021 Ransomware attacks break records in 2023: the number of victims rose by 128% U.S.

Artificial Intelligence 93

Artificial Intelligence VPN Hacking Firewall 93

Security Affairs

OCTOBER 15, 2023

FBI and CISA published a new advisory on AvosLocker ransomware More than 17,000 WordPress websites infected with the Balada Injector in September Ransomlooker, a new tool to track and analyze ransomware groups’ activities Apple releases iOS 16 update to fix CVE-2023-42824 on older devices Phishing, the campaigns that are targeting Italy A new (..)

DDOS 92

DDOS Data breaches Cybercrime Ransomware 92

BH Consulting

JUNE 13, 2023

Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Target the human, swipe the cash: Verizon DBIR 2023 highlights crime trends Manage the human risk and mind your money: those are two key takeaways from Verizon’s 2023 Data Breach Investigations Report.

Social Engineering 52

Social Engineering Data breaches Scams DDOS 52