Krebs on Security

FEBRUARY 4, 2025

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled , English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. The email address used for those accounts was f.grimpe@gmail.com. io , and rdp[.]sh. lol and nulled[.]it.

eCommerce 241

eCommerce Cybercrime Accountability Hacking 241

Krebs on Security

JANUARY 7, 2025

Besieged by scammers seeking to phish user accounts over the telephone, Apple and Google frequently caution that they will never reach out unbidden to users this way. The phishers also abused legitimate Google services to send Tony an email from google.com, and to send a Google account recovery prompt to all of his signed-in devices.

Phishing 352

Phishing Cryptocurrency Accountability Social Engineering 352

Security Affairs

NOVEMBER 24, 2024

seized the stolen credit card marketplace PopeyeTools and charged its operators, this is a major success against cybercrime. PopeyeTools was a dark web marketplace specializing in selling stolen credit cards and cybercrime tools, facilitating fraud and illicit online activities since 2016. million in revenue. million in revenue.

Cybercrime 136

Cybercrime Cryptocurrency Banking Accountability 136

The Last Watchdog

MAY 15, 2025

Small businesses make up 90% of all companies worldwide and account for half of global GDP. And thanks to an explosion of inexpensive cybercrime-as-a-service offerings on the dark web, launching an attack is easier and cheaper than ever.

Small Business 113

Small Business Cybercrime Cyber Insurance Phishing 113

Krebs on Security

MAY 28, 2025

A report from the Pakistani media outlet Dawn states that authorities there arrested 21 people alleged to have operated Heartsender, a spam delivery service whose homepage openly advertised phishing kits targeting users of various Internet companies, including Microsoft 365, Yahoo, AOL, Intuit, iCloud and ID.me.

Malware 215

Malware Cybercrime Antivirus Scams 215

Krebs on Security

NOVEMBER 14, 2024

That investigation detailed how the 38-year-old Shefel adopted the nickname Rescator while working as vice president of payments at ChronoPay , a Russian financial company that paid spammers to advertise fake antivirus scams, male enhancement drugs and knockoff pharmaceuticals. “I’m also godfather of his second son.”

Advertising 297

Advertising Retail Cryptocurrency Cybercrime 297

Krebs on Security

DECEMBER 29, 2024

Maybe it’s indelicate to celebrate the birthday of a cybercrime blog that mostly publishes bad news, but happily many of 2024’s most engrossing security stories were about bad things happening to bad guys. Image: Shutterstock, Dreamansions. KrebsOnSecurity.com turns 15 years old today! The homepage of Stark Industries Solutions.

Scams 256

Scams Cybercrime Cryptocurrency Social Engineering 256

Krebs on Security

MAY 7, 2025

The authorities called it “the biggest money laundering case in the history of Pakistan,” and named a number of businesses based in Texas that allegedly helped move the proceeds of cybercrime. com were paid for by the same account advertising a number of scam websites selling logo and web design services.

Scams 293

Scams Marketing Advertising Technology 293

Malwarebytes

OCTOBER 15, 2024

Unlike any other season in America, election season might bring the highest volume of advertisements sent directly to people’s homes, phones, and email accounts—and the accuracy and speed at which they come can feel invasive. The reasons could be obvious. When asked who , specifically, they were worried about, 73% said cybercriminals.

Scams 140

Scams Identity Theft Cybercrime Accountability 140

Security Affairs

MARCH 24, 2025

” Fake file converters and download tools may perform advertised tasks but can provide resulting files containing hidden malware, giving criminals access to victims’ devices. If users fall victim to this scam, immediately contact their financial institutions, secure their accounts, and change all passwords using a trusted device.

Malware 122

Malware Identity Theft Scams Antivirus 122

Security Affairs

NOVEMBER 29, 2024

Rockstar 2FA targets Microsoft 365 accounts and bypasses multi-factor authentication with adversary-in-the-middle (AitM) attacks. Authors advertise Rockstar 2FA as a phishing-as-a-service toolkit that bypasses 2FA, harvests cookies, and features FUD links, antibot tools, and custom themes. ” concludes the report.

Phishing 119

Phishing Accountability Authentication Advertising 119

Security Affairs

OCTOBER 20, 2024

CISA adds Fortinet products and Ivanti CSA bugs to its Known Exploited Vulnerabilities catalog Nation-state actor exploited three Ivanti CSA zero-days Dutch police dismantled dual dark web market ‘Bohemia/Cannabia’ macOS HM Surf flaw in TCC allows bypass Safari privacy settings Iran-linked actors target critical infrastructure organizations (..)

Data breaches 124

Data breaches Cybercrime Cyber Insurance Marketing 124

SecureWorld News

MARCH 20, 2025

Phishing plays straight out of the cybercrime playbook "March Madness brings heightened cybersecurity risks this year, especially with the expansion of sports gambling beyond traditional office pools creating new attack vectors for credential harvesting and financial fraud," warns J. Awareness and vigilance.

Scams 95

Scams Social Engineering Phishing Mobile 95

SecureWorld News

FEBRUARY 14, 2025

Last year saw a 110% rise in cybercrime in the lead up to Valentine's Day. And 2025 will be no different, as increasingly sophisticated online hackers seek to take advantage of Valentine's themed email traffic, social media advertisements, or marketing campaigns, and exploit heightened emotions and a desire to connect.

Scams 84

Scams Cybercrime Phishing Social Engineering 84

Security Affairs

FEBRUARY 3, 2025

The gang targets high-value victims, also called “mammoths,” for digital asset theft, including cryptocurrencies, payment cards, online banking accounts, and non-fungible tokens (NFTs). Crazy Evil actively recruits affiliates by advertising its cybercriminal network with specific skill requirements.

Scams 90

Scams Media Cryptocurrency Cybercrime 90

SecureList

DECEMBER 16, 2024

In 2024, our expert observations indicate that commercial advertising for these cryptors have indeed gained momentum. In some cases, these attacks result in significant data breaches, such as the case where attackers allegedly accessed Ticketmaster’s Snowflake cloud account by breaching a third-party contractor.

Marketing 103

Marketing Data breaches Cryptocurrency Malware 103

Zero Day

JUNE 6, 2025

The data in question was posted on a Russian cybercrime forum on May 15 and then uploaded again on June 3, apparently garnering attention from other cybercriminals and potential buyers. Collectively, they could easily put affected customers at risk for account takeovers and identity theft. million former account holders.

Password Management 128

Password Management Passwords Identity Theft Artificial Intelligence 128

Malwarebytes

FEBRUARY 4, 2025

And yet, if artificial intelligence achieves what is called an agentic model in 2025, novel and boundless attacks could be within reach, as AI tools take on the roles of agents that independently discover vulnerabilities, steal logins, and pry into accounts. Importantly, the attack methods here are not new. But sometimes the AI pushes back.

Artificial Intelligence 144

Artificial Intelligence Small Business Malware Technology 144

Malwarebytes

MARCH 20, 2025

This blog post was co-authored with Elie Berreby, Senior SEO Strategist Criminals are highly interested in online marketing and advertising tools that they can leverage as part of their ongoing malware campaigns. We believe this is because the threat actors are primarily interested in harvesting Google accounts.

Scams 66

Scams Accountability Phishing Advertising 66

eSecurity Planet

MAY 11, 2025

Instead of relying on traditional phishing or cracked software sites, they build convincing AI-themed platforms often advertised via legitimate-looking Facebook groups and viral social media campaigns, said Shmuel Uzan, a researcher at Morphisec. It often comes bundled with tools labeled Get Cookie + Pass, used for hijacking user accounts.

Malware 87

Malware Scams Media Artificial Intelligence 87

Krebs on Security

JULY 3, 2025

But a new report finds the accused continues to operate a slew of established accounts at American tech companies — including Facebook , Github , PayPal and Twitter/X. Lizhi’s case makes clear, just because someone is sanctioned doesn’t necessarily mean big tech companies are going to suspend their online accounts.

Scams 223

Scams Accountability Government Technology 223

Malwarebytes

FEBRUARY 19, 2025

With stolen passwords, the impact is even broader; hackers could wire funds from a breached online banking account into their own, or masquerade as someone on social media to ask friends and family for money. Some info stealers dont even require an additional stepthey can take cryptocurrency directly from a victims online accounts.

Malware 130

Malware Software Passwords Cryptocurrency 130

Zero Day

JUNE 22, 2025

Indeed, we follow strict guidelines that ensure our editorial content is never influenced by advertisers. Here's how to check if your accounts are at risk and what to do next.   Recycled credentials leaked online from company A could be used to access your account from company B, for example.

Passwords 101

Passwords Data breaches Password Management Identity Theft 101

Malwarebytes

MARCH 17, 2025

While Google searches are probably one of the most common tasks for any vacation planning, the results that people see can be manipulated through a type of cybercrime called malvertising , short for “malicious advertising. Your most sensitive accounts shouldnt just have a unique password. Use a password manager and 2FA.

Scams 99

Scams Passwords VPN Backups 99

SecureWorld News

JULY 27, 2025

Wholesalers and so-called fraud shops clean and index those records, advertising credit card dumps or "fullz" (full identity packages) on dozens of multilingual darknet markets. We're facing a new era of cybercrime fueled by malware-as-a-service (MaaS), and ransomware-as-a-service (RaaS).

Phishing 59

Phishing Marketing Cybercrime Encryption 59

Malwarebytes

MAY 8, 2025

In that same report, the FBI advises consumers to check the URL to make sure the site is authentic before clicking on an advertisement. com account[.]datedeath[.]com com account[.]turnkeycashsite[.]com Education: Phishing is getting more sophisticated and users need to be aware of how to best protect themselves. cc vye-starr[.]net

Phishing 104

Phishing Authentication Engineering Banking 104

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. Cloud services alerts increased by 20% due to rising cloud account usage, while malicious file alerts in phishing attacks remain high, exploiting users’ tendencies to open files.

Cyber Attacks 59

Cyber Attacks Phishing Ransomware Cyber Insurance 59

Krebs on Security

NOVEMBER 5, 2024

At the end of 2023, malicious hackers learned that many large companies had uploaded huge volumes of sensitive customer data to Snowflake accounts that were protected with little more than a username and password (no multi-factor authentication required). prosecutors and federal law enforcement agencies. “Negotiate a deal in Telegram.”

Cybercrime 306

Cybercrime Mobile Telecommunications Hacking 306

Zero Day

JUNE 20, 2025

Indeed, we follow strict guidelines that ensure our editorial content is never influenced by advertisers. Here's how to check if your accounts are at risk and what to do next.   Recycled credentials leaked online from company A could be used to access your account from company B, for example.

Passwords 106

Passwords Data breaches Password Management Identity Theft 106

Krebs on Security

NOVEMBER 26, 2024

However, this person’s identity may not remain a secret for long: A careful review of Kiberphant0m’s daily chats across multiple cybercrime personas suggests they are a U.S. ‘REVERSESHELL’ The account @Kiberphant0m was assigned the Telegram ID number 6953392511. The Telegram ID for this account is 5408575119.

DDOS 339

DDOS Cybercrime Accountability Government 339

Krebs on Security

MARCH 10, 2020

FBI officials last week arrested a Russian computer security researcher on suspicion of operating deer.io , a vast marketplace for buying and selling stolen account credentials for thousands of popular online services and stores. also is a favored marketplace for people involved in selling phony social media accounts.

Accountability 359

Accountability Advertising Hacking Cybercrime 359

Krebs on Security

MAY 28, 2020

The United Kingdom’s anti-cybercrime agency is running online ads aimed at young people who search the Web for services that enable computer crimes, specifically trojan horse programs and DDoS-for-hire services. law enforcement agents in connection with various cybercrime investigations. FLATTENING THE CURVE.

Cybercrime 309

Cybercrime DDOS Advertising Hacking 309

Krebs on Security

APRIL 8, 2019

Almost exactly one year ago, KrebsOnSecurity reported that a mere two hours of searching revealed more than 100 Facebook groups with some 300,000 members openly advertising services to support all types of cybercrime, including spam, credit card fraud and identity theft. Facebook responded by deleting those groups.

Cybercrime 272

Cybercrime Passwords Identity Theft Accountability 272

Krebs on Security

FEBRUARY 4, 2021

Facebook, Instagram , TikTok , and Twitter this week all took steps to crack down on users involved in trafficking hijacked user accounts across their platforms. Facebook said it targeted a number of accounts tied to key sellers on OGUsers, as well as those who advertise the ability to broker stolen account sales.

Accountability 345

Accountability Hacking Media Mobile 345

Krebs on Security

MARCH 13, 2019

Online advertising firm Sizmek Inc. [ NASDAQ: SZMK ] says it is investigating a security incident in which a hacker was reselling access to a user account with the ability to modify ads and analytics for a number of big-name advertisers. The starting bid was $800. A screenshot shared by the dark web seller.

Accountability 272

Accountability Passwords Advertising Penetration Testing 272

Krebs on Security

MAY 16, 2019

The locations of alleged GozNym cybercrime group members. They’re also related to the 2016 arrest of Krasimir Nikolov , a 47-year-old Bulgarian man who was extradited to the United States to face charges for allegedly cashing out bank accounts that were compromised by the GozNym malware. Source: DOJ. Vladimir Gorin , a.k.a

Cybercrime 248

Cybercrime Banking Small Business Computers and Electronics 248

Krebs on Security

JUNE 6, 2023

One of the most expensive aspects of any cybercriminal operation is the time and effort it takes to constantly create large numbers of new throwaway email accounts. The service in question — kopeechka[.]store ” “Are you working on large volumes and are costs constantly growing? The service in question — kopeechka[.]store

Accountability 272

Accountability Scams Cryptocurrency Advertising 272