Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 94

Data breaches Malware Mobile Spyware 94

Security Affairs

MARCH 11, 2019

Experts observed the STOP ransomware installing the Azorult password-stealing Trojan to steal account credentials, cryptocurrency wallets, and more. In July, the experts discovered a new sophisticated version of the AZORult Spyware that was involved in a large email campaign on July 18. ” concludes BleepingComputer.

Encryption 85

Encryption Ransomware Cryptocurrency Passwords 85

Security Affairs

FEBRUARY 13, 2022

US seizes $3.6 to replace Chinese equipment Hackers breached a server of National Games of China days before the event Russian Gamaredon APT is targeting Ukraine since October Israeli surveillance firm QuaDream emerges from the dark Argo CD flaw could allow stealing sensitive data from Kubernetes Apps.

Spyware 73

Spyware Surveillance Ransomware Hacking 73

SecureList

NOVEMBER 22, 2022

Unlike common stealers, this malware gathered data that can be used to identify the victims, such as browsing histories, social networking account IDs and Wi-Fi networks. Cryptocurrency targeted attacks. More cryptocurrency-related threats: fake hardware wallets, smart contract attacks, DeFi hacks, and more.

Cryptocurrency 86

Cryptocurrency Mobile Ransomware Banking 86

Security Affairs

APRIL 26, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware 95

Spyware Hacking Advertising Antivirus 95

Webroot

MAY 12, 2021

Since cryptocurrencies were, are and will continue to be impactful technologies, surely NFTs are a topic worth exploring. NFTs use the same blockchain ledger technology to verify uniqueness that cryptocurrencies rely on to prove ownership. Two-factor authentication for accounts managing NFTs is strongly recommended by marketplaces.

Cryptocurrency 91

Cryptocurrency Marketing Phishing Authentication 91

Security Affairs

JANUARY 23, 2022

from the Lympo NTF platform.

VPN 80

VPN Ransomware Spyware DDOS 80

eSecurity Planet

JUNE 16, 2022

Restoration is offered in exchange for a ransom, usually in cryptocurrencies. Crimeware and spyware. On the other hand, spyware malware can breach a device and access specific functions like webcams, website history, cookies, or even record conversations on a phone. See the Top Rootkit Scanners. Other methods.

Backups 141

Backups Ransomware Firewall Malware 141

Security Affairs

JULY 16, 2020

The malware targets 226 applications to steal account credentials, including Gmail, Google Play services, Uber, Amazon, Netflix and Outlook. The list of targeted apps includes cryptocurrency wallet applications (i.e. The feature allows controlling multiple aspects of a device without having complete administration rights on them.

Malware 89

Malware Banking Mobile Spyware 89

Security Boulevard

MAY 3, 2021

MI5 said the faked LinkedIn accounts are created and operation by nation-state spy agencies, with an intent to recruit individuals or gather sensitive information. The cryptocurrency sector that enables ransomware crime should be more closely regulated. The message said " DHL: Your parcel is arriving, track here <link> ".

Ransomware 124

Ransomware Passwords Scams Government 124

Security Affairs

JULY 13, 2019

Hackers compromised a Canonical GitHub account, Ubuntu source code was not impacted. New FinFisher spyware used to spy on iOS and Android users in 20 countries. Hackers stole $32 million from Bitpoint cryptocurrency exchange. Croatia government agencies targeted with news SilentTrinity malware.

Data breaches 51

Data breaches Spyware Advertising Government 51

Malwarebytes

APRIL 11, 2023

There are crawlers that can search your phone for personally identifiable information (PII), account credentials, banking-related or credit card data in seconds. There are many categories of malware that cybercriminals could install through juice jacking, including adware, cryptominers, ransomware, spyware, or Trojans.

Mobile 98

Mobile Banking Malware Spyware 98

SecureList

FEBRUARY 16, 2023

These sites referenced public figures and humanitarian groups, offering to accept cash in cryptocurrency, something that should have raised a red flag in itself. For example, one website offered users to obtain a COVID vaccination certificate by entering their British National Health Service (NHS) account credentials.

Phishing 89

Phishing Scams Accountability Energy and Utilities 89

Security Affairs

AUGUST 25, 2019

Twitter bans 936 accounts that attempted to sow political discord in Hong Kong. App tainted with Ahmyst Open-source spyware appeared on Google Play Store twice. Employees abused systems at Ukrainian nuclear power plant to mine cryptocurrency. A backdoor mechanism found in tens of Ruby libraries. Texas attackers demand $2.5

Small Business 50

Small Business Spyware Data breaches Advertising 50

SecureList

AUGUST 30, 2023

While investigating an infection of a cryptocurrency company in Southeast Asia, we found Gopuram coexisting on target computers with AppleJeus , a backdoor attributed to the Lazarus. The threat actor specifically targeted cryptocurrency companies. We observed that they have a specific interest in cryptocurrency companies.

Malware 72

Malware Spyware Cryptocurrency Government 72

Security Affairs

MARCH 19, 2019

We expect that that other APTs like Silence , MoneyTaker , and Cobalt will stage multiple attacks on cryptocurrency exchanges in the near future,” – says Dmitry Volkov. Users’ accounts from government resources are either sold on underground forums or used in targeted attacks on government agencies for the purpose of espionage or sabotage.

Banking 80

Banking Government Passwords Marketing 80

Spinone

NOVEMBER 1, 2019

Spyware – malware that spies on the computer to collect the information about a product, a company, a person. The most widespread spyware are keyloggers and trojans. Account Hijacking – a type of identity theft, when a hacker hacks and steals someone’s account to perform malicious actions.

Passwords 40

Passwords Social Engineering Malware Encryption 40

SecureList

AUGUST 15, 2022

For instance, J-Lightning Application purported to help users to invest into a Polish oil refinery, a Russian energy company, a Chinese cryptocurrency exchange and an American investment fund. Yemen rose to second place with 17.97%; the Trojan-Spy.AndroidOS.Agent.aas spyware was the threat most often encountered by users in that country.

Mobile 92

Mobile Adware Banking Malware 92

Security Affairs

MAY 21, 2021

CyberNews researchers found that crooks could abuse cryptocurrency exchange API keys and steal cryptocurrencies. CyberNews researchers found that cybercriminals are able to abuse cryptocurrency exchange API keys and steal cryptocurrencies from their victims’ accounts without being granted withdrawal rights.

Cryptocurrency 79

Cryptocurrency Accountability Marketing Passwords 79

eSecurity Planet

FEBRUARY 16, 2021

Additional features of botnets include spam, ad and click fraud, and spyware. Cybersecurity vendors like Panda Security suggest the best way to defend against crimeware is using a combination of antivirus, anti-spyware, firewalls, and threat detection technology. Jump ahead: Adware. Bots and botnets. Browser hijacker. RAM scraper.

Malware 105

Malware Adware Spyware Antivirus 105

SecureList

MAY 27, 2022

In January, we reported a malicious campaign targeting companies that work with cryptocurrencies, smart contracts, decentralized finance and blockchain technology: the attackers are interested in fintech in general. The campaign has two goals: gathering information and stealing cryptocurrency. Other malware.

Phishing 102

Phishing Spyware Firmware Malware 102

SecureList

DECEMBER 1, 2023

However, they included an additional module that constantly monitored the messenger and sent data to the spyware creator’s C2 server. This included all contacts, sent and received messages with attached files, names of chats/channels, name and phone number of the account owner – the target’s entire correspondence.

Malware 90

Malware Ransomware Encryption Energy and Utilities 90

SecureList

MARCH 1, 2021

The word “covid” in various combinations was typically used in the names of packages hiding spyware and banking Trojans, adware or Trojan droppers. In particular, advertisers can display targeted offerings, and attackers can access accounts with various services, such as online banking. Pandemic theme in mobile threats.

Mobile 131

Mobile Malware Adware Banking 131

Security Affairs

MAY 8, 2020

H2 2019 has proved the tendency of past several years: mail remains the main method of delivering ransomware, spyware, backdoors and other malware, being used by cyber crooks in 94 percent of cases. They, in turn, let spyware and backdoors move ahead and become the second most popular malware with a 35-percent share.

Phishing 56

Phishing Spyware Banking Malware 56

eSecurity Planet

OCTOBER 21, 2022

From ransomware attacks locking businesses out of their data until they pay potentially millions of dollars to spyware tracking users’ every move through their infected device, the effects of malware can be devastating. This note will provide instructions on how to pay the ransom, usually through difficult-to-trace means like cryptocurrency.

Malware 69

Malware Adware Spyware Antivirus 69

SecureList

NOVEMBER 18, 2022

VileRAT is a Python implant, part of an evasive and highly intricate attack campaign against foreign exchange and cryptocurrency trading companies. The attackers distribute this password-stealing Trojan under the guise of game cheats in an attempt to steal accounts, card numbers, crypto-wallets and more.

Malware 99

Malware Computers and Electronics Adware Cryptocurrency 99

Security Boulevard

JANUARY 25, 2022

Dancho Danchev’s Primary Contact Points for this Project – Email/XMPP/Jabber/OMEMO and PGP Key Accounts. Dancho Danchev’s Privacy and Security Research Compilation – Medium Account Research Compilation – [PDF]. Exposing a Currently Active Cyber Jihad Social Media Twitter Accounts – An OSINT Analysis.

Cybercrime 96

Cybercrime Hacking Scams Ransomware 96

SecureList

AUGUST 5, 2021

In Q2 2021, corporate accounts continued to be one of the most tempting targets for cybercriminals. A fake notification about a Microsoft Teams meeting or a request to view an important document traditionally takes the victim to a phishing login page asking for corporate account credentials. Quarterly highlights. The corporate sector.

Phishing 116

Phishing Banking Scams Computers and Electronics 116

Security Affairs

MARCH 27, 2023

The threat actor abused Bitly shortener and an ad hoc BlogSpot account to protect the malicious code, lastly stored in an encrypted zip archive hosted on Mega.nz. Lower.exe, a sample of “GCleaner” spyware, historically, this piece of malware was initially faking CCleaner to drop additional malware ( link ).

Malware 84

Malware Social Engineering Encryption Marketing 84

Security Affairs

APRIL 28, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime 97

Cybercrime Spyware Data breaches Antivirus 97

SecureList

MARCH 7, 2024

To get access to the content (or contest), phishing sites prompted the victim to sign in to one of their gaming accounts. If the victim entered their credentials on the phishing form, the account was hijacked. The information could later be used to steal both funds from victims’ accounts and their identities.

Phishing 94

Phishing Scams Cryptocurrency Accountability 94

Security Affairs

JUNE 30, 2019

European law enforcement agencies arrested 6 individuals involved in $27M cryptocurrency theft. Crooks stole millions from Bitrue Cryptocurrency Exchange. Flaws in EA Games Login exposed accounts of 300 Million Gamers to hack. Regin spyware involved in attack against the Russian tech giant Yandex.

B2B 63

B2B Cryptocurrency Spyware Hacking 63

SecureList

SEPTEMBER 26, 2022

NullMixer is a dropper that includes more than just specific malware families; it drops a wide variety of malicious binaries to infect the machine with, such as backdoors, bankers, downloaders, spyware and many others. To get more information about a user’s Facebook account, Disbuk queries Facebook Graph API. ColdStealer.

Malware 107

Malware Cryptocurrency Passwords Software 107

SecureList

NOVEMBER 14, 2023

Using a malicious script, the attackers redirected their targets’ incoming email to an email address controlled by the attackers, gathering data from the compromised accounts. This politician became the target of a previously undiscovered “zero-day” attack aimed at infecting his phone with spyware. Drone hacking!

Hacking 101

Hacking Energy and Utilities Media Malware 101