SecureList

FEBRUARY 24, 2025

We observed these files to contain information about the projects, as well as instructions on how to compile their code. stealer that collects information such as saved credentials, cryptocurrency wallet data and browsing history, packs it into a.7z files, possibly generated using AI tools. Snippets of README.md

Cryptocurrency 119

Cryptocurrency Software Encryption Internet 119

Security Affairs

NOVEMBER 24, 2024

Stolen information offered for sale on the carding website included bank account, credit card, and debit card numbers and associated information for conducting transactions. seized $283,000 in cryptocurrency from an account linked to Sami as part of actions against the illicit activities of PopeyeTools.

Cybercrime 135

Cybercrime Cryptocurrency Banking Accountability 135

Malwarebytes

NOVEMBER 22, 2024

Meta provided insight this week into the company’s efforts in taking down more than 2 million accounts that were connected to pig butchering scams on their owned platforms, Facebook and Instagram. Once the victim places enough trust in the scammer, they bring the victim into a cryptocurrency investment scheme.

Accountability 127

Accountability Scams Cryptocurrency Identity Theft 127

Security Affairs

MARCH 10, 2025

Experts warn of a large-scale cryptocurrency miner campaign targeting Russian users with SilentCryptoMiner. A Telegram channel and a popular YouTube account with 340,000 subscribers also spread the malware. This is a covert miner able to mine multiple cryptocurrencies (ETH, ETC, XMR, RTM and others) using various algorithms.

Cryptocurrency 94

Cryptocurrency Malware Social Engineering Antivirus 94

SecureWorld News

NOVEMBER 22, 2024

The attacks have resulted in millions of dollars in theft, including cryptocurrency and sensitive corporate data, showcasing the ongoing threat of organized cybercrime. Scattered Spider has gained infamy for its high-profile cyberattacks, including the ransomware assault on MGM Casino in 2023 , which caused widespread disruption.

Phishing 108

Phishing Identity Theft Cryptocurrency Cybercrime 108

Krebs on Security

DECEMBER 29, 2024

Fittingly, Radaris now pimps OneRep as a service when consumers request that their personal information be removed from the data broker’s website. Instead, we doubled down and published all of the supporting evidence that wasn’t included in the original story, leaving little room for doubt about its conclusions.

Scams 256

Scams Cybercrime Cryptocurrency Social Engineering 256

Security Affairs

NOVEMBER 21, 2024

Victims included gaming, telecom, and cryptocurrency firms, with losses reaching millions in stolen cryptocurrency and data from hundreds of thousands of accounts. Victims included gaming, telecom, and cryptocurrency firms, with losses reaching millions in stolen cryptocurrency and data from hundreds of thousands of accounts.

Cybercrime 114

Cybercrime Identity Theft Cryptocurrency Phishing 114

Security Affairs

DECEMBER 25, 2024

authorities attributed the theft of $308 million cryptocurrency from DMM Bitcoin to North Korean cyber actors. authorities linked the $308 million cyber heist targeting cryptocurrency company DMM Bitcoin to North Korea-linked threat actors. On June 1st, the Japanese cryptocurrency exchange DMM Bitcoin announced that crooks stole 4,502.9

Cryptocurrency 128

Cryptocurrency Social Engineering Hacking Cybercrime 128

Security Affairs

APRIL 7, 2025

Cybercriminals exploit compromised accounts for EDR-as-a-Service (Emergency Data Requests – EDR), targeting major platforms According to a detailed analysis conducted by Meridian Group, an increasingly complex and structured phenomenon, commonly referred to as EDR-as-a-Service, is taking hold in the cybersecurity landscape.

Cybercrime 141

Cybercrime Social Engineering Accountability Government 141

Security Affairs

NOVEMBER 15, 2024

. “Ilya Lichtenstein was sentenced today to five years in prison for his involvement in a money laundering conspiracy arising from the hack and theft of approximately 120,000 bitcoin from Bitfinex, a global cryptocurrency exchange.” Billion in stolen cryptocurrency stolen during the 2016 hack of Bitfinex.

Cryptocurrency 110

Cryptocurrency Hacking Government Accountability 110

Krebs on Security

APRIL 30, 2025

. “tylerb”) fled the United Kingdom in February 2023, after a rival cybercrime gang hired thugs to invade his home, assault his mother, and threaten to burn him with a blowtorch unless he gave up the keys to his cryptocurrency wallet. His extradition to the United States was first reported last week by Bloomberg. ” U.S.

Identity Theft 214

Identity Theft Phishing Cryptocurrency Cybercrime 214

Security Affairs

MARCH 24, 2025

The FBI warns that threat actors use malicious online document converters to steal users sensitive information and infect their systems with malware. They can also steal personal data, banking details, cryptocurrency info, emails, and passwords by scraping the files the users upload. ” reads the alert.

Malware 121

Malware Scams Identity Theft Antivirus 121

Security Affairs

APRIL 14, 2025

Threat actors deploy malicious NPM packages to steal PayPal credentials and hijack cryptocurrency transfers. The packages were uploaded to the repository in early March by a threat actor known as tommyboy_h1 and tommyboy_h2 , and were used to steal PayPal credentials and hijack cryptocurrency transfers.

Cryptocurrency 109

Cryptocurrency Hacking Accountability Cybercrime 109

Security Affairs

MARCH 10, 2025

“Working with dozens of victims, security researchers Nick Bax and Taylor Monahan found that none of the six-figure cyberheist victims appeared to have suffered the sorts of attacks that typically preface a high-dollar crypto theft, such as the compromise of ones email and/or mobile phone accounts, or SIM-swapping attacks.”

Password Management 92

Password Management Cryptocurrency Passwords Data breaches 92

eSecurity Planet

OCTOBER 22, 2024

Lumma stealer: Designed to harvest personal information and sensitive data from infected devices. Matanbuchus and XMRig: Used for cryptocurrency mining, these malware strains can slow down systems while surreptitiously utilizing computing resources. In an attack, you can restore your system without losing critical files.

Scams 123

Scams Malware Phishing Social Engineering 123

Krebs on Security

NOVEMBER 14, 2024

But not long after KrebsOnSecurity reported in April that Shefel/Rescator also was behind the theft of Social Security and tax information from a majority of South Carolina residents in 2012, Mr. Shefel began contacting this author with the pretense of setting the record straight on his alleged criminal hacking activities.

Advertising 297

Advertising Retail Cryptocurrency Cybercrime 297

Security Affairs

DECEMBER 3, 2024

The Japanese cryptocurrency platform DMM Bitcoin is closing its operations just six months after a $300 million cyber heist. DMM Bitcoin is a cryptocurrency exchange based in Japan, operated by DMM Group, a large Japanese e-commerce and entertainment conglomerate. Bitcoin (BTC), approximately $304 million (48.2

Cryptocurrency 66

Cryptocurrency Financial Services Accountability Hacking 66

Security Affairs

OCTOBER 13, 2024

The Mexican Drug Cartels Want You Casio: Notice of Partial Service Outage and Information Leak Caused by Ransomware Attack He founded a “startup” to access sanctioned Russian websites: the cyber police of Khmelnytskyi region exposed the hacker Hacked ‘AI Girlfriend’ Data Shows Prompts Describing Child Sexual Abuse Malware Over 300,000!

Data breaches 121

Data breaches Cryptocurrency Cybercrime Artificial Intelligence 121

Security Affairs

DECEMBER 2, 2024

INTERPOL also issued a Purple Notice to warn countries about emerging fraudulent activities involving cryptocurrencies. The authorities have warned of “USDT Token Approval Scam” that allows scammers access to the victims’ cryptocurrency wallets and make unauthorized transactions. The operation led to 27 arrests and 19 indictments.

Cryptocurrency 132

Cryptocurrency Phishing Scams Cybercrime 132

Security Affairs

MARCH 4, 2025

Threat actors use weak credential brute force to gain access to target systems, then deploy cryptocurrency miners and crimeware with capabilities like data exfiltration, persistence, self-termination, and pivot attacks. West Coast to deploy info stealers and crypto miners. The malware disables remote access to entrench itself further.

Cryptocurrency 111

Cryptocurrency Malware Passwords Hacking 111

Security Affairs

APRIL 2, 2025

It can steal accounts, send messages, steal crypto, monitor browsing, intercept SMS, and more. Judging by the analysis of transactions, they were able to transfer about $270,000 in various cryptocurrencies to their crypto wallets.” “the authors of the new version of Triada are actively monetizing their efforts.

Cryptocurrency 126

Cryptocurrency Malware Firmware Mobile 126

Malwarebytes

MAY 1, 2025

Phishing In phishing scams, cybercriminals trick people and businesses into handing over sensitive information like credit card numbers or login details for vital online accounts. Lured in by similar color schemes, company logos, and familiar layouts, victims log in to their account by entering their username and password.

Small Business 87

Small Business Cybersecurity Scams Passwords 87

SecureWorld News

DECEMBER 3, 2024

law enforcement for years , with the FBI offering a $10 million reward for information leading to his arrest. indictments and sanctions, Matveev has operated openly in Russia, even mocking attempts to hold him accountable. Matveev has been a target of U.S. Despite U.S.

Cybercrime 104

Cybercrime Ransomware Healthcare Cryptocurrency 104

Security Affairs

APRIL 7, 2025

. “PoisonSeed threat actors are targeting enterprise organizations and individuals outside the cryptocurrency industry.They have been phishing CRM and bulk email providers credentials to export email lists and send bulk spam from the accounts. ” reads the report published by Silent Push. ” continues the report.

Scams 78

Scams Cryptocurrency Phishing Cybercrime 78

Penetration Testing

JULY 2, 2025

A new macOS information stealer, a potential AMOS variant, targets crypto users and Ledger Live accounts, stealing passwords and wallet data using stealthy daemonization and local admin prompt tactics.

Passwords 104

Passwords Accountability Cryptocurrency Malware 104

Security Affairs

JUNE 6, 2025

Department of State offers a reward of up to $10 million for information nation-state actors linked to the RedLine infostealer and its alleged author, Russian national Maxim Alexandrovich Rudometov. Through Eurojust, authorities were able to quickly exchange information and coordinate actions to take down the infostealers.”

Malware 89

Malware Passwords Identity Theft Government 89

Security Affairs

NOVEMBER 1, 2024

LottieFiles confirmed a supply chain attack on Lottie-Player, and threat actors targeted cryptocurrency wallets to steal funds. Several Lottie-Player users reported that their websites began displaying a pop-up, urging visitors to connect their cryptocurrency wallets. of @lottiefiles/lottie-player to npm.

Cryptocurrency 111

Cryptocurrency Hacking Accountability Mobile 111

Security Affairs

NOVEMBER 7, 2024

” The attackers, linked to BlueNoroff and past RustBucket campaigns, used fake cryptocurrency news emails and a malicious app disguised as a PDF. The latest campaign mirrors an August 2024 macOS malware attack and uses notarized malware signed with hijacked Apple developer accounts.

Malware 128

Malware Architecture Risk Cryptocurrency 128

SecureWorld News

FEBRUARY 14, 2025

If a store has limited contact information and no or too good to be true customer reviews, this is also a red flag," Machin said. Use secure payment methods Avoid wire transfers, prepaid gift cards, or cryptocurrency for online purchases for Valentine's Day. Someone genuine would not be asking for that information," Machin said.

Scams 83

Scams Cybercrime Phishing Social Engineering 83

SecureList

APRIL 25, 2025

Specifically, they can modify cryptocurrency wallet addresses during transfer attempts, replace links in browsers, send arbitrary text messages and intercept replies, and steal login credentials for messaging and social media apps. The downloaded payload attempts to steal the victim’s cryptocurrency using various methods.

Cryptocurrency 74

Cryptocurrency Malware Firmware Accountability 74

Security Affairs

JULY 1, 2025

Europol has taken down a massive cryptocurrency fraud ring that scammed over 5,000 people worldwide, laundering around €460 million ($540 million). Law enforcement arrested five members of a criminal network engaged in cryptocurrency investment fraud and performed 5 searches between the Canary Islands and Madrid. France, and Estonia.

Scams 73

Scams Cryptocurrency Banking Social Engineering 73

SecureWorld News

MAY 14, 2025

Top cybercrime categories: Phishing/spoofing: 193,407 complaints Extortion: 86,415 complaints Personal data breaches: 64,882 complaints Cryptocurrency-related scams: Nearly 150,000 complaints involved cryptocurrency, accounting for $9.3 billion in losses. In his introductory comments in the report, B.

Cybercrime 82

Cybercrime Scams Cryptocurrency Internet 82

Security Affairs

FEBRUARY 3, 2025

Since 2021, the Crazy Evil gang has become a major cybercriminal group, using phishing, identity fraud, and malware to steal cryptocurrency. “Targeting of Cryptocurrency Users and Influencers: Crazy Evil explicitly victimizes the cryptocurrency space with bespoke spearphishing lures.”

Scams 89

Scams Media Cryptocurrency Cybercrime 89

Webroot

MAY 9, 2025

Little do you know, clicking that link could open the door for scammers to steal your identity, empty your bank account, or even plant malicious software (malware) on your device. The goal is to get you to give up sensitive personal details that can be used to hack into your accounts, and they are alarmingly successful.

Scams 75

Scams Mobile Banking VPN 75

SecureList

JUNE 23, 2025

We believe it is connected to SparkCat and also targets the cryptocurrency assets of its victims. Tapping these opened WebView, revealing an online store named TikToki Mall that accepted cryptocurrency as payment for consumer goods. Our initial search led us to a bunch of cryptocurrency apps. PUT /api/putImages HTTP/1.1

Spyware 125

Spyware Malware Cryptocurrency Scams 125

Security Affairs

DECEMBER 20, 2024

The Raccoon stealer was first spotted in April 2019, it was designed to steal victims credit card data, email credentials, cryptocurrency wallets, and other sensitive data. FBI identified more than 50 million unique credentials and forms of identification (email addresses, bank accounts, cryptocurrency addresses, credit card numbers, etc.)

Cryptocurrency 66

Cryptocurrency Identity Theft Cybercrime Malware 66

SecureList

DECEMBER 16, 2024

Verdict: Partially fulfilled Evolution and market dynamics of Bitcoin mixers and cleaning services In 2024, there was no significant increase in the number of services advertising cryptocurrency “cleaning” solutions. We also expect to see the emergence of closed forums and an increase in invitation-only access models.

Marketing 103

Marketing Data breaches Cryptocurrency Malware 103