Security Affairs

APRIL 7, 2025

Cybercriminals exploit compromised accounts for EDR-as-a-Service (Emergency Data Requests – EDR), targeting major platforms According to a detailed analysis conducted by Meridian Group, an increasingly complex and structured phenomenon, commonly referred to as EDR-as-a-Service, is taking hold in the cybersecurity landscape.

Cybercrime 139

Cybercrime Social Engineering Accountability Government 139

Krebs on Security

SEPTEMBER 5, 2023

Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults. “The victim profile remains the most striking thing,” Monahan wrote.

Cryptocurrency 362

Cryptocurrency Passwords Encryption Accountability 362

Security Affairs

NOVEMBER 7, 2024

SentinelLabs researchers identified a North Korea-linked threat actor targeting crypto businesses with new macOS malware as part of a campaign tracked as “Hidden Risk.” ” The attackers, linked to BlueNoroff and past RustBucket campaigns, used fake cryptocurrency news emails and a malicious app disguised as a PDF.

Malware 123

Malware Architecture Risk Cryptocurrency 123

The Last Watchdog

DECEMBER 18, 2024

Shashanka Dr. Madhu Shashanka , Chief Data Scientist, Concentric AI Generative AI in 2025 will bring transformative opportunities but heightened cybersecurity risks, including data exposure, AI misuse, and novel threats like prompt injection attacks. Organizations face rising risks of AI-driven social engineering and personal device breaches.

Risk 173

Risk Threat Detection Technology Phishing 173

Security Affairs

MARCH 24, 2025

They can also steal personal data, banking details, cryptocurrency info, emails, and passwords by scraping the files the users upload. The FBI Denver Field Office advises staying cautious online, being aware of potential risks, and keeping antivirus software updated to scan files before opening them. Reporting the incident to IC3.gov

Malware 116

Malware Scams Identity Theft Antivirus 116

Malwarebytes

MAY 3, 2022

It emerged alongside the explosion of Web3/NFT/cryptocurrency popularity, and ensures scammers get a slice of the money pie. It’s one of those odd scams, doing weird things, to accounts you have no idea about. The Airdrops of the moment are promotional tactics aimed at cryptocurrency/Web3 people. What is an Airdrop?

Cryptocurrency 135

Cryptocurrency Phishing Risk Scams 135

Malwarebytes

AUGUST 2, 2024

The Federal Bureau of Investigation (FBI) issued a public service announcement warning the public about scammers impersonating cryptocurrency exchange employees to steal funds. Armed with the information the target provided, the scammer drains the account. With cryptocurrency exchanges, this is often not true.

Cryptocurrency 122

Cryptocurrency Scams Identity Theft Accountability 122

Krebs on Security

NOVEMBER 4, 2022

Responding to a recent surge in AI-generated bot accounts, LinkedIn is rolling out new features that it hopes will help users make more informed decisions about with whom they choose to connect. For example, on October 10, 2022, there were 576,562 LinkedIn accounts that listed their current employer as Apple Inc.

Scams 316

Scams Artificial Intelligence Cryptocurrency Accountability 316

Security Affairs

MARCH 10, 2025

“Working with dozens of victims, security researchers Nick Bax and Taylor Monahan found that none of the six-figure cyberheist victims appeared to have suffered the sorts of attacks that typically preface a high-dollar crypto theft, such as the compromise of ones email and/or mobile phone accounts, or SIM-swapping attacks.”

Password Management 87

Password Management Cryptocurrency Passwords Data breaches 87

Security Affairs

DECEMBER 13, 2023

Microsoft warns that threat actors are using OAuth applications cryptocurrency mining campaigns and phishing attacks. Threat actors are using OAuth applications such as an automation tool in cryptocurrency mining campaigns and other financially motivated attacks. ” states Microsoft. . ” states Microsoft.

Cryptocurrency 133

Cryptocurrency Phishing Accountability Passwords 133

Bleeping Computer

JANUARY 20, 2022

Crypto.com has confirmed that a multi-million dollar cyber attack led to the compromise of 400 of its customer accounts. Although, the company's CEO stresses that customer funds are not at risk. Crypto.com is reportedly the world's third-largest cryptocurrency trading platform. [.].

Accountability 121

Accountability Cryptocurrency Hacking Cyber Attacks 121

Malwarebytes

APRIL 24, 2025

ELUSIVE COMET targets its victims by luring them into a Zoom video call and then taking over their PC to install malware, infiltrate their accounts, and steal their assets. Sadly, that wasn’t the case for Jake Gallen, who owns a cryptocurrency company called Emblem Vault. There was also a YouTube account. He took the bait.

Malware 133

Malware Media Accountability Cryptocurrency 133

Krebs on Security

AUGUST 25, 2023

Security consulting giant Kroll disclosed today that a SIM-swapping attack against one of its employees led to the theft of user information for multiple cryptocurrency platforms that are relying on Kroll services in their ongoing bankruptcy proceedings. The average cost to SIM swap any T-Mobile phone number was approximately $1,500.

Mobile 244

Mobile Cyber Risk Cryptocurrency Data breaches 244

Security Affairs

DECEMBER 3, 2024

The Japanese cryptocurrency platform DMM Bitcoin is closing its operations just six months after a $300 million cyber heist. DMM Bitcoin is a cryptocurrency exchange based in Japan, operated by DMM Group, a large Japanese e-commerce and entertainment conglomerate. Bitcoin (BTC), approximately $304 million (48.2

Cryptocurrency 63

Cryptocurrency Financial Services Accountability Hacking 63

Security Affairs

OCTOBER 20, 2021

Once hijacked the channel, attackers either sell it to the highest bidder or employ it in cryptocurrency scam scheme. The researchers identified around 15,000 actor accounts, most of which were created for this campaign. Hijacked channels ranged from $3 USD to $4,000 USD depending on the number of subscribers. Pierluigi Paganini.

Accountability 144

Accountability Malware Phishing Social Engineering 144

Security Affairs

FEBRUARY 3, 2025

Since 2021, the Crazy Evil gang has become a major cybercriminal group, using phishing, identity fraud, and malware to steal cryptocurrency. “Targeting of Cryptocurrency Users and Influencers: Crazy Evil explicitly victimizes the cryptocurrency space with bespoke spearphishing lures.”

Scams 84

Scams Media Cryptocurrency Cybercrime 84

SecureList

JANUARY 13, 2022

Also, we have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income. Malware infection.

Cryptocurrency 145

Cryptocurrency Malware Accountability Banking 145

eSecurity Planet

OCTOBER 22, 2024

Matanbuchus and XMRig: Used for cryptocurrency mining, these malware strains can slow down systems while surreptitiously utilizing computing resources. These groups are considered sub-teams of larger cryptocurrency scam networks, highlighting the organized and systematic nature of these phishing attacks.

Scams 124

Scams Malware Phishing Social Engineering 124

Security Affairs

OCTOBER 13, 2024

CISA adds Windows and Qualcomm bugs to its Known Exploited Vulnerabilities catalog Three new Ivanti CSA zero-day actively exploited in attacks Ukrainian national pleads guilty in U.S.

Data breaches 116

Data breaches Cryptocurrency Cybercrime Artificial Intelligence 116

Security Affairs

JUNE 27, 2019

Another cryptocurrency exchange announced to have suffered a theft, this time is the victim is the Singapore-based Bitrue. It has happened again, crooks stole funds from another cryptocurrency exchange, this time the victim is the Singapore-based Bitrue. — Bitrue (@BitrueOfficial) June 27, 2019. The attackers transferred 9.3

Cryptocurrency 102

Cryptocurrency Advertising Hacking Insurance 102

eSecurity Planet

NOVEMBER 18, 2022

This involved using an “unsecured group email account as the root user to access confidential private keys and critically sensitive data for the FTX Group companies around the world…” About $740 million in cryptocurrency has been placed into new cold wallets. Also read : The Link Between Ransomware and Cryptocurrency.

Risk 143

Risk Cybersecurity Cryptocurrency Social Engineering 143

Krebs on Security

AUGUST 30, 2022

In a blog post earlier this month, Cloudflare said it detected the account takeovers and that no Cloudflare systems were compromised. 4 it became aware of unauthorized access to information related to a limited number of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials.

Phishing 347

Phishing Mobile Authentication Accountability 347

Malwarebytes

JANUARY 10, 2024

We have seen several high-profile accounts that were taken over on X (formerly Twitter) only to be used for cryptocurrency related promotional activities, like expressing the approval of exchange-traded funds (ETFs). The @SECGov X account was compromised, and an unauthorized post was posted. You’re all set.

Accountability 108

Accountability Scams Hacking Cryptocurrency 108

Krebs on Security

OCTOBER 5, 2022

The fabricated LinkedIn identities — which pair AI-generated profile photos with text lifted from legitimate accounts — are creating major headaches for corporate HR departments and for those managing invite-only LinkedIn groups. Another “swarm” of LinkedIn bot accounts flagged by Taylor’s group.

Accountability 323

Accountability Scams Cryptocurrency Artificial Intelligence 323

Malwarebytes

MARCH 5, 2025

Invitation to a Telegram conversation The Telegram invitation was a bit more limited (European and American female users only) but extended to a larger group of 150 accounts on X. With that phone in hand, I set up a Gmail account and installed WhatsApp. USDT required Tina then asks me to create an account on a fake booking.com website.

Scams 118

Scams Accountability Mobile Cryptocurrency 118

Malwarebytes

AUGUST 26, 2021

In August of 2021, a thief stole about $600 million in cryptocurrencies from The Poly Network. Slightly more than one week later, Japanese cryptocurrency exchange Liquid was hacked and lost $97 million worth of digital coins. But we can explain the terminology, the methods, and the risks. I wish I knew. and the same value.

Cryptocurrency 118

Cryptocurrency Banking Hacking Phishing 118

Malwarebytes

JULY 19, 2021

We’ve observed a 419-style scam (also known as an advance fee scam) which combines the promise of cryptocurrency riches with WhatsApp conversation. Folks already involved in cryptocurrency would likely have suspicions raised after reading the below. It’s all about that personal touch in the land of cryptocurrency scams.

Accountability 112

Accountability Scams Cryptocurrency Banking 112

Malwarebytes

MAY 1, 2025

Phishing In phishing scams, cybercriminals trick people and businesses into handing over sensitive information like credit card numbers or login details for vital online accounts. Lured in by similar color schemes, company logos, and familiar layouts, victims log in to their account by entering their username and password.

Small Business 83

Small Business Cybersecurity Scams Passwords 83

Bleeping Computer

JANUARY 20, 2022

Crypto.com has confirmed that a multi-million dollar cyberattack led to the compromise of 483 of its customer accounts. Although, the company's CEO stresses that customer funds are not at risk. Crypto.com is reportedly the world's third-largest cryptocurrency trading platform. [.].

Accountability 93

Accountability Cryptocurrency Hacking Risk 93

Malwarebytes

JUNE 3, 2024

WhatsApp message from an unknow sender “Jay, your financial account has been added. Account Csy926. Malwarebytes blocked the domain for fraud To fully understand the message, it’s good to know that USTD stands for Tether , a cryptocurrency referred to as a stablecoin because its value is pegged to a flat currency.

Cryptocurrency 107

Cryptocurrency Scams Accountability Banking 107

SecureWorld News

JANUARY 27, 2025

In that case, users run the risk of misinterpreting key information, making wrong choices, or unwittingly exposing personally identifiable data. This unintended oversharing fuels risks that could otherwise be mitigated through accessible design. Take privacy settings as an example.

Cybersecurity 109

Cybersecurity Risk Technology Authentication 109

Malwarebytes

DECEMBER 20, 2022

If you’re a user of the Gemini cryptocurrency exchange, it’s time to be on your guard against phishing attacks. No Gemini account information or systems were impacted as a result of this third-party incident, and all funds and customer accounts remain secure. Locking down your Gemini account.

Cryptocurrency 93

Cryptocurrency Phishing Scams Accountability 93

Krebs on Security

JULY 22, 2020

As first reported here on July 16, prior to bitcoin scam messages being blasted out from such high-profile Twitter accounts @barackobama, @joebiden, @elonmusk and @billgates, several highly desirable short-character Twitter account names changed hands, including @L, @6 and @W. They would take a cut from each transaction.”

Hacking 351

Hacking Accountability Scams Media 351

Malwarebytes

JANUARY 5, 2022

There’s a lot of concern in the cryptocurrency realm at the moment. A yield farming platform “utilizing arbitrage to gain optimal yield with low risk” has gone AWOL. Site down , Twitter account deleted , no word from the team behind it explaining what happened. What is a rug pull in cryptocurrency?

Cryptocurrency 115

Cryptocurrency Scams Risk Media 115

Malwarebytes

FEBRUARY 19, 2025

With stolen passwords, the impact is even broader; hackers could wire funds from a breached online banking account into their own, or masquerade as someone on social media to ask friends and family for money. Some info stealers dont even require an additional stepthey can take cryptocurrency directly from a victims online accounts.

Malware 124

Malware Software Passwords Cryptocurrency 124

Centraleyes

DECEMBER 16, 2024

Tools like ChatGPT and Bard, powered by large language models, showcase how generative AI transforms business processesbut they also pose new risks. In a recent survey, 93% of respondents admitted to knowingly increasing their companys cybersecurity risks. The challenge? Securing these AI models and the data they generate.

Cybersecurity 98

Cybersecurity Insurance Cyber Insurance Technology 98

Trend Micro

AUGUST 10, 2022

We tracked the latest deployment of the group behind CopperStealer, this time stealing cryptocurrencies and users’ wallet account information via a malicious Chromium-based browser extension.

Cryptocurrency 98

Cryptocurrency Accountability Cyber threats Risk 98