Security Affairs

FEBRUARY 10, 2022

Spanish National Police has arrested eight alleged members of a crime organization who were able to steal money from the bank accounts of the victims through SIM swapping attacks. Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Banking 106

Banking Accountability Mobile Cryptocurrency 106

Malwarebytes

FEBRUARY 7, 2024

I reached out to the person that owns the account to find out if he knew how his account got compromised. These apps would then spread further from the compromised user account. If you find your account has posted a message like this, you should assume that someone else has full control over your Facebook account.

Scams 133

Scams Passwords Identity Theft Accountability 133

SecureList

JUNE 5, 2023

Some of these sites do not deliver Satacom themselves, but use legitimate advertising plugins that the attackers abuse to inject malicious ads into the webpages. The reason for using the last cryptocurrency transaction of a specific wallet to retrieve the C2 address is that the server address can be changed by the threat actors at any time.

Cryptocurrency 78

Cryptocurrency DNS Malware Encryption 78

Security Affairs

JANUARY 2, 2020

The Poloniex cryptocurrency exchange is forcing users to reset their passwords following a data leak. . Another bad news for the community of the virtual currencies communities, the Poloniex cryptocurrency exchange has forced its users to reset their passwords following a data leak. . This is a real email!

Passwords 59

Passwords Cryptocurrency Data breaches Advertising 59

Security Affairs

APRIL 15, 2020

Google has removed 49 new Chrome browser extensions from its official Web Store that hide the code to hijack cryptocurrency wallets. Google has removed 49 new Chrome browser extensions from its official Web Store that contain the code to steal sensitive information and hijack cryptocurrency wallets. Pierluigi Paganini.

Cryptocurrency 93

Cryptocurrency Advertising Phishing Passwords 93

Krebs on Security

OCTOBER 31, 2022

A 26-year-old Ukrainian man is awaiting extradition from The Netherlands to the United States on charges that he acted as a core developer for Raccoon , a popular “malware-as-a-service” offering that helped paying customers steal passwords and financial data from millions of cybercrime victims. stolen with the help of Raccoon.

Malware 292

Malware Identity Theft Cybercrime Accountability 292

Security Affairs

NOVEMBER 15, 2019

On Thursday, US authorities arrested two crooks charging them with stealing $550,000 in cryptocurrency from at least 10 victims using SIM swapping. American law enforcement has declared war to sim swapping scammers and announced the arrest of two individuals for stealing $550,000 in Cryptocurrency. In May, the U.S.

Cryptocurrency 81

Cryptocurrency Identity Theft Accountability Media 81

Krebs on Security

MAY 4, 2023

As noted in the Secret Service’s criminal complaint (PDF), the Try2Check service was first advertised on the closely-guarded Russian cybercrime forum Mazafaka , by someone using the handle “ KreenJo.” ” That handle used the same ICQ instant messenger account number ( 555724 ) as a Mazafaka denizen named “ Nordex.”

Marketing 235

Marketing Cybercrime Accountability Cryptocurrency 235

Security Affairs

AUGUST 28, 2018

The Cryptocurrency Platform Atlas Quantum suffered a security breach, information belonging to more than 260,000 users was stolen by hackers. Hackers stole information related to over 260,000 users of the Cryptocurrency Platform Atlas Quantum. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency 44

Cryptocurrency Hacking Data breaches Passwords 44

Security Affairs

JANUARY 2, 2024

Palo Alto Networks’s Unit 42 first observed the malware in November 2023 reporting that it has been advertised on the hacking forum Hackforums since April 30, 2023. The content of the messages attempted to trick the recipients into opening a password-protected RAR archive. net on 2023-04-30.

Malware 114

Malware Passwords Cryptocurrency Hacking 114

Security Affairs

FEBRUARY 10, 2022

. “The Federal Bureau of Investigation is issuing this announcement to inform mobile carriers and the public of the increasing use of Subscriber Identity Module (SIM) swapping by criminals to steal money from fiat and virtual currency accounts.” Use a variation of unique passwords to access online accounts.

Mobile 91

Mobile Cryptocurrency Authentication Accountability 91

Security Affairs

SEPTEMBER 16, 2020

Hackers blasted in through the weak password of the SQL Server server. Once the hackers gained access to a system, they downloaded an initial assm.exe file to achieve persistence and to add a backdoor account for future access. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Malware 138

Malware Cryptocurrency Advertising Accountability 138

Security Affairs

AUGUST 7, 2018

Group-IB researchers have investigated user data leaks from cryptocurrency exchanges and has analyzed the nature of these incidents. In 2017, when cryptocurrencies were gaining momentum, their record-breaking capitalization and a spike in Bitcoin’s exchange rate led to dozens of attacks on cryptocurrency services.

Cryptocurrency 48

Cryptocurrency Passwords Authentication Accountability 48

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. Based on the risk score, CryptoIns experts have calculated insurance rates for cryptocurrency exchange users who can now insure their accounts against cyber threats.

Insurance 62

Insurance Cryptocurrency Cyber threats Marketing 62

Security Affairs

MARCH 17, 2020

Last week, security experts from MalwareHunterTeam detected new ransomware dubbed CoronaVirus has been distributed through a malicious web site that was advertising a legitimate system optimization software and utilities from WiseCleaner. exe,’ which is the Kpot password-stealing Trojan. One of these files is, ‘file1.exe,’

Ransomware 99

Ransomware Cryptocurrency Advertising Passwords 99

Security Affairs

MARCH 11, 2019

Experts observed the STOP ransomware installing the Azorult password-stealing Trojan to steal account credentials, cryptocurrency wallets, and more. The STOP ransomware made the headlines because it is installing password-stealing Trojans on the victims’ machines. ” concludes BleepingComputer.

Encryption 84

Encryption Ransomware Cryptocurrency Passwords 84

Security Affairs

MARCH 26, 2020

which is a Shopify-like platform that has been hosting hundreds of online shops used for the sale of hacked accounts and stolen user data. The Russian man also advertised the platform on other hacking forums. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Firsov was arrested at the John F.

Cybercrime 113

Cybercrime Advertising Hacking Accountability 113

Security Affairs

JANUARY 31, 2019

Palo Alto Networks discovered a piece of Mac malware dubbed CookieMiner that is targeting browser cookies associated with cryptocurrency exchanges and wallet service websites. The malware targets cookies associated with cryptocurrency exchanges such as Binance , Coinbase, Poloniex, Bittrex, Bitstamp, and MyEtherWallet.

Malware 86

Malware Cryptocurrency Authentication Advertising 86

Security Affairs

SEPTEMBER 16, 2022

The RedLine malware allows operators to steal several pieces of information, including credentials, credit card data, cookies, autocomplete information stored in browsers, cryptocurrency wallets, credentials stored in VPN clients and FTP clients. “Cybercriminals actively hunt for gaming accounts and gaming computer resources.

Malware 85

Malware Cryptocurrency Hacking Passwords 85

Security Boulevard

FEBRUARY 7, 2024

My favorite quotes from the report follow below: “ Credential abuse resulting in cryptomining remains a persistent issue , with threat actors continuing to exploit weak or nonexistent passwords to gain unauthorized access to cloud instances, while some threat actors are shifting to broader threat objectives.” [ A.C. — the

Cybersecurity 69

Cybersecurity Ransomware Passwords Cryptocurrency 69

Krebs on Security

JUNE 6, 2023

One of the most expensive aspects of any cybercriminal operation is the time and effort it takes to constantly create large numbers of new throwaway email accounts. However, far more interesting is their program for rewarding people who choose to sell Kopeechka usernames and passwords for working email addresses.

Accountability 212

Accountability Scams Cryptocurrency Advertising 212

Security Affairs

JUNE 1, 2019

As with all cryptocurrency miners, it uses the resources of the host system to mine cryptocurrency (Monero in this instance) without the owner’s knowledge.” The same threat actors used also another Docker Hub repository, associated with the ‘ marumira ‘ account, in previous attacks. We can shut it down.

Hacking 91

Hacking Cryptocurrency Advertising Accountability 91

Webroot

JANUARY 13, 2021

By scouring the dark web for stolen data belonging to any of the top 25 largest gaming firms, over a million unique and newly uploaded accounts were discovered. Additionally, researchers found credentials for over 500,000 gaming company employees exposed in previous data breaches but used for multiple accounts.

Cryptocurrency 66

Cryptocurrency Data breaches Accountability Healthcare 66

Security Affairs

MARCH 6, 2021

In January, experts noticed on the popular Raid Forums an advertisement for the Verified’s database containing registered users’ data and their private messages, posts, and threads. The attackers also managed to transfer $150,000 worth of cryptocurrency from Verified’s wallet to a wallet under his control. Source FlashPoint.

Cybercrime 145

Cybercrime DDOS Hacking Passwords 145

Security Affairs

MAY 20, 2020

Early last year, it caught the attention of global cybersecurity experts by posting on one of the forums the sale of a database with 773 million e-mail addresses and 21 million unique passwords.” It has been estimated that the man amassed billions of unique username-password combinations. Pierluigi Paganini.

Cybercrime 60

Cybercrime Passwords Advertising Hacking 60

Security Affairs

SEPTEMBER 21, 2019

US authorities have indicted two men, Elliot Gunton and Anthony Tyler Nashatka, for hacking the cryptocurrency exchange EtherDelta in 2017. Clearly the access to the CEO account allowed the hacker to breach the company. Gunton tricked a mobile telco’s operator into adding a call forwarding number to Coburn’s mobile account.

Hacking 79

Hacking DNS Cryptocurrency Accountability 79

Security Affairs

SEPTEMBER 27, 2022

Threat actors behind the new ‘Erbium’ information-stealing malware are distributing it as fake cracks and cheats for popular video games to steal victims’ credentials and cryptocurrency wallets. The Malware-as-a-Service (MaaS) was advertised on a Dark Web forum by a Russian-speaking threat actor.

Malware 81

Malware Password Management Authentication Passwords 81

Security Affairs

APRIL 19, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Scams 85

Scams Phishing Advertising DDOS 85

Security Affairs

MAY 6, 2020

The agents seized electronic equipment, external hard drives and hardware cryptocurrency wallets, all worth around €100 000. They used stolen credentials to gain access to other online accounts that shared the same username and passwords. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Computers and Electronics 73

Computers and Electronics Hacking Cryptocurrency Accountability 73

Krebs on Security

SEPTEMBER 17, 2020

” Once inside of a target organization, the hackers stole source code, software code signing certificates, customer account data and other information they could use or resell. APT41’s activities span from the mid-2000s to the present day. Security analysts and U.S.

Antivirus 356

Antivirus Hacking Government Software 356

Security Affairs

AUGUST 24, 2019

. “He would then convert the profit made from selling financial details online into cryptocurrency , and store these in multiple accounts.” million in cryptocurrency stored in the wallets belonging to West, but the fluctuating value of Bitcoin and other digital currencies brought the seized funds down to £922, 978.14.

Cryptocurrency 80

Cryptocurrency Scams Cybercrime Phishing 80

SC Magazine

JUNE 25, 2021

Malicious hackers are increasingly mobbing the video game industry, with major companies suffering data breaches, having their source code sold or leaked online and games serving as playgrounds to push malware or mine cryptocurrencies. billion attacks tracked by the company across different countries.

Computers and Electronics 121

Computers and Electronics Media Marketing Cryptocurrency 121

Security Affairs

MARCH 13, 2020

Once obtained a new SIM, crooks can operate with the victim’s mobile account, intercepting or initiating calls, accessing SMSs (including authorizations codes sent by bank and cryptocurrency exchanges) and to authorize transactions. Fraudsters are always coming up with new ways to steal money from the accounts of unsuspecting victims.

Banking 114

Banking Cybercrime Mobile Accountability 114

Security Affairs

MARCH 10, 2023

. “In addition, the samples identified by ThreatFabric featured configurations with Target lists made of more than 400 banking and financial institutions , including several cryptocurrency wallets , with an increase of more than 6 times with comparison to its previous variants, including financial institutions from all continents.”

Banking 98

Banking Malware Cryptocurrency Engineering 98

Security Affairs

SEPTEMBER 2, 2018

The Loki Bot attacks started in July and aimed at stealing passwords from browsers, messaging applications, mail and FTP clients, and cryptocurrency wallets. “The malware’s key objective is to steal passwords from browsers, messaging applications, mail and FTP clients, and cryptocurrency wallets. Pierluigi Paganini.

Social Engineering 54

Social Engineering Cryptocurrency Advertising Malware 54

Security Affairs

SEPTEMBER 19, 2018

In the first half of 2018, researchers at Kaspersky Lab said that the most popular attack vector against IoT devices remains cracking Telnet passwords (75,40%), followed by cracking SSH passwords (11,59%). Top 10 countries from which Kaspersky traps were hit by Telnet password attacks is led by Brazil, China, and Japan.

IoT 81

IoT Passwords Malware Advertising 81

Malwarebytes

JUNE 8, 2022

SSNDOB advertised its services on dark web forums and offered customer support for buyers. We’ve noted the gradual emergence of Bitcoin ATMs in scams previously; here, cryptocurrency ATMs are more popular as a payment method to SSNDOB than other dubious online services. The Bitcoin boon.

DDOS 100

DDOS Cryptocurrency Scams Data breaches 100