Krebs on Security

AUGUST 25, 2023

Security consulting giant Kroll disclosed today that a SIM-swapping attack against one of its employees led to the theft of user information for multiple cryptocurrency platforms that are relying on Kroll services in their ongoing bankruptcy proceedings. ” A phishing message targeting FTX users that went out en masse today.

Mobile 207

Mobile Cyber Risk Cryptocurrency Data breaches 207

Security Affairs

FEBRUARY 3, 2022

Threat actors have stolen $325 million in cryptocurrency leveraging a bug in the Wormhole communication bridge. The offer was embedded within an Ethereum transaction sent to the attacker’s account:” continues Elliptic. “Wormhole has offered the attacker a $10 million “bounty” to return the funds. Pierluigi Paganini.

Cryptocurrency 83

Cryptocurrency Hacking Accountability Network Security 83

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. The messages said recipients had earned an investment credit at a cryptocurrency trading platform called moonxtrade[.]com. A DIRECT QUOT The domain quot[.]pw

Scams 252

Scams DDOS Cryptocurrency Accountability 252

Digital Shadows

JUNE 7, 2021

It’s been a pretty big year so far for cryptocurrency. Cryptocurrencies’ current total market cap sits just above $1.7 The cryptocurrency exchange Coinbase recently launched an IPO, India has reversed a ban on cryptocurrencies, and ransomware groups continue to demand payment in anonymity-based cryptocurrency.

Cryptocurrency 52

Cryptocurrency Phishing Advertising Antivirus 52

SecureList

JULY 5, 2023

The higher the global popularity of cryptocurrencies and the more new ways of storing them, the wider the arsenal of tools used by malicious actors who are after digital money. This story covers two fundamentally different methods of email attacks on the two most popular ways of storing cryptocurrency: hot and cold wallets. ripple.com.

Scams 101

Scams Phishing Cryptocurrency Social Engineering 101

Krebs on Security

MAY 4, 2023

” That handle used the same ICQ instant messenger account number ( 555724 ) as a Mazafaka denizen named “ Nordex.” ” In February 2005, Nordex posted to Mazafaka that he was in the market for hacked bank accounts, and offered 50 percent of the take. In 2017, U.S.

Marketing 244

Marketing Cybercrime Accountability Cryptocurrency 244

SecureList

MAY 6, 2024

With trillions of dollars of digital payments made every year, it is no wonder that attackers target electronic wallets, online shopping accounts and other financial assets, inventing new techniques and reusing good old ones. Online shopping brands were the most popular lure, accounting for 41.65% of financial phishing attempts.

Phishing 100

Phishing Banking Mobile Scams 100

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers. A single bitcoin is trading at around $45,000.

Cryptocurrency 239

Cryptocurrency Cybercrime Computers and Electronics Scams 239

Krebs on Security

NOVEMBER 6, 2018

that has been tracking down individuals engaged in unauthorized “SIM swaps” — a complex form of mobile phone fraud that is often used to steal large amounts of cryptocurrencies and other items of value from victims. SIM swapping attacks primarily target individuals who are visibly active in the cryptocurrency space.

Mobile 243

Mobile Cryptocurrency Accountability Passwords 243

Security Affairs

NOVEMBER 16, 2018

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. In 2017-2018 hackers’ interest in cryptocurrency exchanges ramped up. Thus, 60% of the total amount was stolen from Coincheck , a Japanese cryptocurrency exchange.

Cybercrime 81

Cybercrime Hacking Banking Phishing 81

Security Affairs

DECEMBER 29, 2023

One of the key significant improvements are support of more software clients (including browser-based cryptocurrency wallets), upgraded credit card (CC) grabber, and additional advanced mechanisms for password storage dump on various platforms to extract credentials and tokens.

Password Management 118

Password Management Cryptocurrency Passwords Authentication 118

Security Affairs

JANUARY 2, 2022

The cyberattacks against the cryptocurrency industry are a profitable business for threat actors, according to the experts, $12.1 billion worth of cryptocurrencies have been stolen in the last decade. “Cryptocurrency crime stands in direct proportion to the size of the cryptocurrency market. Threat actors stole $3.18

Cryptocurrency 99

Cryptocurrency Scams Marketing Hacking 99

Krebs on Security

AUGUST 16, 2018

An entrepreneur and virtual currency investor is suing AT&T for $224 million, claiming the wireless provider was negligent when it failed to prevent thieves from hijacking his mobile account and stealing millions of dollars in cryptocurrencies. A copy of his complaint is here (PDF). ” AN ‘IDENTITY CRISIS’?

Mobile 236

Mobile Cryptocurrency Accountability Authentication 236

SecureList

JANUARY 17, 2024

In 2023, for instance, there was a significant rise in posts offering login credentials and passwords for various personal and work accounts. Notable among these was BunnyLoader , inexpensive and feature-rich malware capable of stealing sensitive data and cryptocurrency. The dark market is already replete with such services.

Marketing 111

Marketing Cryptocurrency Malware Ransomware 111

Krebs on Security

DECEMBER 14, 2023

The story on the Flashback author featured redacted screenshots that were taken from Ika’s BlackSEO account (see image above). The day after that story ran, Ika posted a farewell address to his mates, expressing shock and bewilderment over the apparent compromise of his BlackSEO account. ru under the handle “ r-fac1.”

Cybercrime 233

Cybercrime Accountability Advertising Computers and Electronics 233

Troy Hunt

JUNE 11, 2018

Running Have I Been Pwned (HIBP) has presented some fascinating insights into all sorts of aspects of how data breaches affect us; the impact on the individual victims such as you and I, of course, but also how they affect the companies involved and increasingly, the role of government and law enforcement in dealing with these incidents.

Cryptocurrency 128

Cryptocurrency Cybercrime Data breaches Passwords 128

CyberSecurity Insiders

JULY 11, 2022

However, the French telecom operator is urging its customers to be vigilant of any suspicious activity taking place with/in their accounts is providing a dedicated customer care centre to notify any discrepancies.

Mobile 119

Mobile Ransomware Encryption Cryptocurrency 119

Security Affairs

MARCH 30, 2021

The expert determined the number of cryptocurrencies that were mined to a mining pool account by inspecting the mining pool. Half of the images discovered by the expert were using a shared mining pool, by he estimated that threat actors mined US$200,000 worth of cryptocurrencies in a two-year period.

Cryptocurrency 100

Cryptocurrency Accountability Architecture Software 100

Krebs on Security

APRIL 11, 2022

Online scams that try to separate the unwary from their cryptocurrency are a dime a dozen, but a great many seemingly disparate crypto scam websites tend to rely on the same dodgy infrastructure providers to remain online in the face of massive fraud and abuse complaints from their erstwhile customers. The ark-x2[.]org “Why choose us?

Scams 201

Scams Cryptocurrency Media Hacking 201

CyberSecurity Insiders

JUNE 23, 2023

Patrick Loyola is the student who filed the suit as the University failed to protect the data storage servers that stored highly sensitive information about former and present students. A student has launched legal action against an educational institute in the latest case.

Ransomware 92

Ransomware Consumer Protection Encryption Healthcare 92

Security Affairs

JANUARY 23, 2021

Once the hackers gained access to a system, they downloaded an initial assm.exe file to achieve persistence and to add a backdoor account for future access. Upon creating the account, the malicious code connects to the C2 to download a Monero (XMR) cryptocurrency miner that runs on the local server.

Software 106

Software Cryptocurrency Accountability Malware 106

Schneier on Security

OCTOBER 9, 2023

It’s also a contest about control and power, about how resources should be distributed and who should be held accountable. These philosophies are hot among the cryptocurrency crowd, like the disgraced former billionaire Sam Bankman-Fried , who at one time possessed sudden wealth in search of a cause.

Risk 319

Risk Artificial Intelligence Technology Surveillance 319

Malwarebytes

MAY 5, 2022

The FBI has released a public service announcement regarding the ever-present threat of Business Email Compromise (BEC). The rise of cryptocurrency in BEC fraud. As with so many forms of online criminal activity, law enforcement is noticing an increase in cryptocurrency use. Email accounts? 6 tips to avoid BEC scams.

Cryptocurrency 71

Cryptocurrency Scams Authentication Accountability 71

Malwarebytes

MAY 6, 2022

If Carl-Bot was present in the channel prior to the compromise, its purpose has been changed and not for the better. The site right now is a blank page save for mention of a Twitter account, which has no content or likes posted to it. Even a trusted Discord channel can turn rogue if someone compromises the right account.

Phishing 94

Phishing Password Management Cryptocurrency Scams 94

SecureList

MARCH 7, 2024

To get access to the content (or contest), phishing sites prompted the victim to sign in to one of their gaming accounts. If the victim entered their credentials on the phishing form, the account was hijacked. The information could later be used to steal both funds from victims’ accounts and their identities.

Phishing 102

Phishing Scams Cryptocurrency Accountability 102

Identity IQ

APRIL 6, 2022

Whether we’re ordering groceries or looking for new shoes, all we need to do is create an account, fill out some basic personal details and log in. But what happens when that account is compromised – or when we think that account is compromised? Ride-share driver scam. Crypto wallet scams. How to Help Avoid Tech Support Scams.

Scams 124

Scams Identity Theft Accountability Banking 124

Security Affairs

JANUARY 3, 2024

For the tool to function, the operator must input a list of compromised email accounts to be scanned. It’s noteworthy that most of the victim accounts identified were predominantly from the U.K. and various EU countries, including but not limited to Spain, France, Poland, Italy, Germany, Switzerland, among others.

Artificial Intelligence 111

Artificial Intelligence Banking Scams Cybercrime 111

Malwarebytes

MARCH 19, 2021

Internet crime is ever present, and with the ongoing pandemic, levels of scams and fraud were exceptionally high in 2020. According to IC3, BEC can also be called Email Account Compromise (EAC). that involved a victim providing a form of ID to a bad actor.

Scams 68

Scams Internet Internet Identity Theft 68

Security Boulevard

MARCH 17, 2022

The estimated value of greater Decentralized Finance and cryptocurrencies surpassed half a trillion dollars in market capitalization in 2018, and then one trillion for the first time in 2021 ( 1 ). Since then, cryptocurrency values reached new records during the pandemic. Cryptocurrencies Are Established Via Blockchain Security.

Cyber Attacks 98

Cyber Attacks Cryptocurrency Marketing Software 98

Security Affairs

AUGUST 6, 2023

Reptile Rootkit employed in attacks against Linux systems in South Korea New PaperCut flaw in print management software exposes servers to RCE attacks A cyberattack impacted operations of multiple hospitals in several US states Married couple pleaded guilty to laundering billions in cryptocurrency stolen from Bitfinex in 2016 Malicious packages in (..)

Malware 72

Malware Cybercrime Cryptocurrency Social Engineering 72

Krebs on Security

FEBRUARY 27, 2019

com , a cryptocurrency mining service that has been heavily abused to force hacked Web sites to mine virtual currency. Coinhive took a whopping 30 percent of the cut of all Monero currency mined by its code, and this presented something of a conflict of interest when it came to stopping the rampant abuse of its platform. 26, 2019.

Cryptocurrency 202

Cryptocurrency Hacking Accountability Internet 202

Identity IQ

FEBRUARY 8, 2024

Transactions on the dark web are typically conducted using cryptocurrencies such as Bitcoin to maintain anonymity. You probably use the deep web all the time — examples may include bank accounts, your email, and login-restricted content such as news or streaming entertainment. The FBI shut down the Silk Road in October 2013.

Identity Theft 98

Identity Theft Cryptocurrency Government Engineering 98

SecureWorld News

APRIL 28, 2022

Insights were shared by 35 speakers who volunteered their time to present on a variety of topics and with varying backgrounds, accompanied by 18 exhibitors sharing their latest and greatest offerings. And we might be able to freeze that money in the domestic account.

CISO 71

CISO Cybersecurity Cryptocurrency Accountability 71

Malwarebytes

JULY 19, 2022

In a nutshell, it’s an extensive form of information theft, the likes of which could result in someone’s identity being fully stolen and their financial and other online accounts being taken over. PayPal phishing sites are a dime a dozen due to the number of people and companies using it as another form of payment method.

Phishing 108

Phishing Social Engineering Accountability Engineering 108

SecureList

MARCH 29, 2023

Meanwhile, cryptocurrency became a prominent target for those seeking monetary gain. The amount of cryptocurrency-related phishing grew significantly in 2022, and with an endless array of new coins, NFT and other DeFi projects, scammers are continuously duping users. Key findings Phishing Financial phishing accounted for 36.3%

Banking 76

Banking Phishing Cryptocurrency Mobile 76

SecureWorld News

JUNE 8, 2021

After all, the conventional wisdom is that ransomware gangs demand cryptocurrency so they can move the funds anonymously and with impunity. According to Webster's Dictionary, the legal definition of a clear and present danger is a risk or threat to safety or other public interests that is serious and imminent.

Ransomware 110

Ransomware Passwords VPN Accountability 110

Security Affairs

FEBRUARY 18, 2021

PaloAlto Network warns of the WatchDog botnet that uses exploits to take over Windows and Linux servers and mine cryptocurrency. While there is currently no indication of additional cloud compromising activity at present (i.e. ” concludes Palo Alto.

Cryptocurrency 137

Cryptocurrency Hacking Accountability Software 137