Security Affairs

MARCH 14, 2025

The dual Russian-Israeli national was arrested in Israel in 2024 and faces charges related to his role in the ransomware operation The man is accused of being a LockBit ransomware developer from 2019 through at least February 2024. Panev received over $230,000 in laundered cryptocurrency from Khoroshev between 2022 and 2024.

Ransomware 68

Ransomware Cryptocurrency Small Business Malware 68

Security Affairs

JUNE 6, 2025

de email addresses and pay the ransom in cryptocurrency. Recently, actors linked to Play have also exploited a new SimpleHelp vulnerability ( CVE-2024-57727 ) to remotely execute malicious code, expanding their attack methods and reach in 2025. .” The Play ransomware group follows a double extortion model. de or @web[.]de

Ransomware 97

Ransomware Encryption Antivirus Cryptocurrency 97

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. Top Techniques: A Closer Look Phishing Techniques: The Evergreen Threat in Cybersecurity Initial access methods were the most common MITRE ATT&CK techniques between May and July 2024.

Cyber Attacks 59

Cyber Attacks Phishing Ransomware Cyber Insurance 59

SecureList

MARCH 5, 2025

Most active of all have been schemes for distributing popular stealers, remote access tools (RATs), Trojans that provide hidden remote access, and miners that harness computing power to mine cryptocurrency. This technique is used to hinder automatic analysis by antivirus solutions and sandboxes. Gaining persistence in the system.

Malware 106

Malware Cryptocurrency Antivirus Technology 106

SecureList

APRIL 23, 2025

The incidents that saw the Synchost process abused to inject malware were concentrated within a short period of time: between November 2024 and February 2025. All of these techniques are designed to bypass security products such as antivirus and EDR solutions, but they load the payload in different ways. smartmanagerex[.]com

Malware 139

Malware Software Encryption Internet 139

Cisco Security

JULY 7, 2025

Endpoint security still meant antivirus agents. And, the advent of Bitcoin and other cryptocurrencies has provided a relatively safe channel for ransom, extortion and other illicit payments. A Comprehensive and Rewarding Process The committee met in December at the beginning of 2024 to discuss the framework for the report.

Cyber Risk 101

Cyber Risk Media Risk Cybersecurity 101

Security Boulevard

MARCH 24, 2025

This vulnerability was patched by Apple in December 2024, but they only disclosed it recently. Cybercriminals Exploit CheckPoint Antivirus Driver in Malicious Campaign Infosecurity Magazine Threat actors are leveraging a "bring your own vulnerable driver" (BYOVD) attack to bypass Windows security measures.

Surveillance 75

Surveillance Telecommunications Spyware Data breaches 75

Malwarebytes

FEBRUARY 20, 2025

The infostealer has been around since mid-2024 (as a beta test), but its only really taken off in 2025. ACRStealer is often distributed via the tried and tested method of download as cracks and keygens , which are used in software piracy. They may even gather enough personal data to be used for identity theft or sold on the dark web.

Identity Theft 93

Identity Theft Malware Financial Services Antivirus 93

Krebs on Security

FEBRUARY 28, 2024

Malicious hackers are targeting people in the cryptocurrency space in attacks that start with a link added to the target’s calendar at Calendly , a popular application for scheduling appointments and meetings. The attackers impersonate established cryptocurrency investors and ask to schedule a video conference call. capital).

Malware 350

Malware Cryptocurrency Software Scams 350

The Hacker News

APRIL 16, 2025

Cheap Android smartphones manufactured by Chinese companies have been observed pre-installed with trojanized apps masquerading as WhatsApp and Telegram that contain cryptocurrency clipper functionality as part of a campaign since June 2024.

Antivirus 107

Antivirus Manufacturing Cryptocurrency Malware 107

Security Affairs

MAY 25, 2024

Threat actors used fake AV websites masquerading as legitimate antivirus products from Avast, Bitdefender, and Malwarebytes to distribute malware. In mid-April 2024, researchers at Trellix Advanced Research Center team spotted multiple fake AV sites used to distribute info-stealers. exe.zip), malwarebytes.pro (MBSetup.rar).

Malware 140

Malware Antivirus Cryptocurrency Hacking 140

Krebs on Security

MAY 13, 2024

In February 2024, the FBI seized LockBit’s cybercrime infrastructure on the dark web , following an apparently lengthy infiltration of the group’s operations. “The vast majority of top antiviruses have acquired behavioral analysis, which blocks 95% of crypto-lockers at their root,” Putinkrab wrote.

Cybercrime 337

Cybercrime Ransomware Accountability Malware 337

SecureList

OCTOBER 4, 2024

In a recent campaign starting in 2022, unknown malicious actors have been trying to mine cryptocurrency on victims’ devices without user consent; they’ve used large amounts of resources for distribution, but what’s more, used multiple unusual vectors for defense evasion and persistence.

Scams 145

Scams Cryptocurrency Malware Software 145

Security Boulevard

APRIL 1, 2024

Sality is known for its ability to evade detection by antivirus software through encryption and obfuscation techniques. Amadey's functionalities include remote access, keylogging, credential theft, and cryptocurrency mining. The post HYAS Threat Intel Report April 1 2024 appeared first on Security Boulevard.

Malware 63

Malware Risk Cybersecurity Cyber threats 63

Security Boulevard

JANUARY 13, 2025

Scam Sniffer 2024: Web3 Phishing Attacks Wallet Drainers Drain $494 Million ScamSniffer Research by ScamSniffer indicates that in 2024, a type of malware known as a "wallet drainer" used in some attacks caused almost $500 million in losses. This is a 67% increase year-over-year while number of victims increased by $3.7%.

Scams 89

Scams Phishing Advertising Data breaches 89

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. Top Techniques: A Closer Look Phishing Techniques: The Evergreen Threat in Cybersecurity Initial access methods were the most common MITRE ATT&CK techniques between May and July 2024.

Cyber Attacks 52

Cyber Attacks Phishing Ransomware Cyber Insurance 52

Digital Shadows

OCTOBER 29, 2024

In Q3 2024, ransomware service provider “RansomHub” emerged as the most dominant ransomware group, taking the mantle from “LockBit” and “ALPHV.” Our report spotlights five major threat actors dominating the cybersecurity landscape in 2024 that every professional should know about.

Ransomware 88

Ransomware Encryption Technology Cybercrime 88

Digital Shadows

OCTOBER 29, 2024

In Q3 2024, ransomware service provider “RansomHub” emerged as the most dominant ransomware group, taking the mantle from “LockBit” and “ALPHV.” Our report spotlights five major threat actors dominating the cybersecurity landscape in 2024 that every professional should know about.

Ransomware 52

Ransomware Encryption Technology Cybercrime 52

SecureList

JANUARY 17, 2024

Notable among these was BunnyLoader , inexpensive and feature-rich malware capable of stealing sensitive data and cryptocurrency. The ongoing evolution of loaders on dark markets is likely to see the introduction of new versions written in modern programming languages like Golang and Rust in 2024.

Marketing 141

Marketing Cryptocurrency Malware Ransomware 141

Security Affairs

SEPTEMBER 29, 2024

CISA adds new Ivanti Cloud Services Appliance Vulnerability to its Known Exploited Vulnerabilities catalog Ivanti warns of a new actively exploited Cloud Services Appliance (CSA) flaw International law enforcement operation dismantled criminal communication platform Ghost U.S.

Hacking 120

Hacking Antivirus Cybercrime Ransomware 120

Security Affairs

APRIL 28, 2024

Hackers may have accessed thousands of accounts on the California state welfare platform Brokewell Android malware supports an extensive set of Device Takeover capabilities Experts warn of an ongoing malware campaign targeting WP-Automatic plugin Cryptocurrencies and cybercrime: A critical intermingling Kaiser Permanente data breach may have impacted (..)

Cybercrime 130

Cybercrime Spyware Data breaches Antivirus 130

SecureList

FEBRUARY 19, 2025

Cryptocurrency: don’t mistake scams for real deals One of last year’s most sensational stories was the cryptocurrency game Hamster Kombat. The growing anticipation for the new cryptocurrency’s market launch was frequently exploited by cybercriminals to steal seed phrases from crypto wallets.

Phishing 82

Phishing Scams Cryptocurrency Computers and Electronics 82

Security Affairs

SEPTEMBER 22, 2024

CISA adds new Ivanti Cloud Services Appliance Vulnerability to its Known Exploited Vulnerabilities catalog Ivanti warns of a new actively exploited Cloud Services Appliance (CSA) flaw International law enforcement operation dismantled criminal communication platform Ghost U.S.

Surveillance 124

Surveillance Cryptocurrency Spyware Phishing 124

Security Affairs

JUNE 1, 2025

Czech Republic accuses China’s APT31 of a cyberattack on its Foreign Ministry New PumaBot targets Linux IoT surveillance devices App Store Security: Apple stops $2B in fraud in 2024 alone, $9B over 5 years Crooks use a fake antivirus site to spread Venom RAT and a mix of malware Iranian Man pleaded guilty to role in Robbinhood Ransomware attacks (..)

Surveillance 66

Surveillance Scams Data breaches Cybercrime 66