Accountability, Cryptocurrency and Telecommunications

The Crypto Game of Lazarus APT: Investors vs. Zero-days

SecureList

OCTOBER 23, 2024

For several months, the attackers were building their social media presence, regularly making posts on X (formerly Twitter) from multiple accounts and promoting their game with content produced by generative AI and graphic designers. Is that really all this game has to offer?

Engineering

Engineering Accountability Social Engineering Cryptocurrency

Privacy Roundup: Week 12 of Year 2025

Security Boulevard

MARCH 24, 2025

While MFA is primarily a security feature, its primary privacy benefit is adding another layer of security to prevent unauthorized access to information contained in particular important or sensitive accounts. Specifically, it was fetching account icons and defaulted to opening password reset pages over HTTP.

Surveillance

Surveillance Telecommunications Data breaches Spyware

Canadian Man Arrested in Snowflake Data Extortions

Krebs on Security

NOVEMBER 5, 2024

At the end of 2023, malicious hackers learned that many large companies had uploaded huge volumes of sensitive customer data to Snowflake accounts that were protected with little more than a username and password (no multi-factor authentication required). “The rest is just ransom.” banks, ISPs, and mobile phone providers.

Cybercrime

Cybercrime Mobile Media Telecommunications

Security Affairs newsletter Round 516 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 23, 2025

Tornado Cash Delisting LayerX Labs Identifies New Phishing Campaign Targeted at Mac Users Malware Jaguar Land Rover Breached by HELLCAT Ransomware Group Using Its Infostealer PlaybookThen a Second Hacker Strikes ClearFakes New Widespread Variant: Increased Web3 Exploitation for Malware Delivery StilachiRAT analysis: From system reconnaissance to cryptocurrency (..)

Spyware

Spyware Data breaches Cybercrime Banking

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers. A single bitcoin is trading at around $45,000.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

T-Mobile customers were hit with SIM swapping attacks

Security Affairs

FEBRUARY 27, 2021

The telecommunications giant T-Mobile disclosed a data breach after some of its customers were apparently affected by SIM swap attacks. The telecommunications provider T-Mobile has disclosed a data breach after it became aware that some of its customers were allegedly victims of SIM swap attacks.

Mobile

Mobile Data breaches Telecommunications Identity Theft

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

According to interviews with several sources, this hybrid phishing gang has a remarkably high success rate, and operates primarily through paid requests or “bounties,” where customers seeking access to specific companies or accounts can hire them to target employees working remotely at home.

Phishing

Phishing VPN Social Engineering Media

Store manager admits SIM swapping his customers

Malwarebytes

MARCH 19, 2024

A 42-year-old manager at an unnamed telecommunications company has admitted SIM swapping customers at his store. Armed with an email and password—which are easily bought online— and the 2FA code, an attacker could take over the victim’s online accounts. Contact the account provider if you find you no longer have access yourself.

Social Engineering

Social Engineering Computers and Electronics Mobile Identity Theft

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Security Affairs

FEBRUARY 10, 2022

. “The Federal Bureau of Investigation is issuing this announcement to inform mobile carriers and the public of the increasing use of Subscriber Identity Module (SIM) swapping by criminals to steal money from fiat and virtual currency accounts.” Use a variation of unique passwords to access online accounts.

Mobile

Mobile Cryptocurrency Accountability Authentication

Medical research data Advarra stolen after SIM swap

Malwarebytes

NOVEMBER 6, 2023

The intruder used this to access some of the employee’s accounts, including LinkedIn, as well as their work account. In 2022, Octo Tempest began selling SIM swaps to other criminals and performing account takeovers of high-net-worth individuals in order to steal their cryptocurrency.

Ransomware

Ransomware Backups Accountability Social Engineering

Octo Tempest cybercriminal group is "a growing concern"—Microsoft

Malwarebytes

OCTOBER 27, 2023

In a security blog about Octo Tempest Microsoft states: “Octo Tempest monetized their intrusions in 2022 by selling SIM swaps to other criminals and performing account takeovers of high-net-worth individuals to steal their cryptocurrency.”

Social Engineering

Social Engineering Engineering Ransomware Backups

Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware

Security Affairs

JANUARY 31, 2024

The list of targets includes multiple Fortune 500 companies operating in various industry sectors, such as: Global government and military departments National telecommunications companies Defense contractors Technology firms Banking, finance, and accounting institutions Worldwide consulting services Aerospace, aviation, and engineering entities After (..)

VPN

VPN Malware Authentication Small Business

Documents Unsealed: North Korea's Global Hacking Campaign

SecureWorld News

FEBRUARY 18, 2021

And the targets in this case are widespread: banks, ATMs, cryptocurrency exchanges, online casinos, movie studios such as Sony Pictures, and theater chains such as AMC. million from an Indonesian cryptocurrency company in September 2018; and $11.8 It shows the nation-state's sweeping efforts to steal $1.3 The list goes on.

Hacking

Hacking Cryptocurrency Computers and Electronics Banking

Social media influencers targeted by identity thieves

Malwarebytes

MARCH 19, 2024

This comes in the form of get-rich-quick schemes, cryptocurrency related advice, stock investment, financial planning, or just about anything people can do to make money. Unless their account falls into the wrong hands. Protect your social media accounts by using Cyrus, powered by Malwarebytes.

Media

Media Scams Accountability Banking

HIVE Ransomware Shut Down by International Law Enforcement

SecureWorld News

JANUARY 27, 2023

According to the DOJ , the HIVE ransomware network had been operating for several years, using the "ransomware-as-a-service" model to target a wide range of businesses and critical infrastructure sectors, including government facilities, telecommunication companies, manufacturing, information technology, and healthcare and public health.

Ransomware

Ransomware Cybercrime Cryptocurrency Telecommunications

Over 1 Billion Individual Data Leaked Due to Alleged Chinese Police Database Hacking

Hacker Combat

JULY 8, 2022

“Roughly 12 billion compromised accounts have been published on the Dark Web as of late.” A renowned cryptocurrency exchange company said it had tightened its verification procedures to stop fraud schemes like using the stolen information to get into other people’s financial records.

Hacking

Hacking Telecommunications Mobile Government

DDoS attacks in Q4 2020

SecureList

FEBRUARY 16, 2021

While the resource was down, cryptocurrency newbies were invited to download a copy of Bitcoin Core via a torrenting service. Cybercriminals used the names of well-known APT groups to intimidate victims, demanded ransoms in cryptocurrency, and carried out demonstration attacks to back up their threats. Botnet distribution by country.

DDOS

DDOS Cryptocurrency Marketing Internet

Nvidia, the ransomware breach with some plot twists

Malwarebytes

MARCH 3, 2022

The LAPSUS$ group is a relative newcomer to the ransomware scene, but it has made a name for itself by bringing down big targets like Impresa, the largest media conglomerate in Portugal, Brazil’s Ministry of Health, and Brazilian telecommunications operator Claro. Image courtesy of The Verge.

Ransomware

Ransomware Password Management Passwords Hacking

Ransomware world in 2021: who, how and why

SecureList

MAY 12, 2021

Botmasters and account resellers are tasked with providing initial access inside the victim’s network. Finally, negotiations with the victims may be handled by yet another team and when the ransom is paid out, a whole new set of skills is needed to launder the cryptocurrency obtained.

Ransomware

Ransomware Encryption Malware Cybercrime

Advanced threat predictions for 2024

SecureList

NOVEMBER 14, 2023

Using a malicious script, the attackers redirected their targets’ incoming email to an email address controlled by the attackers, gathering data from the compromised accounts. It determined that the injection point was situated within the connection between two Egyptian telecommunication providers. Drone hacking!

Hacking

Hacking Malware Energy and Utilities Government

What Is Encryption? Definition, How it Works, & Examples

eSecurity Planet

DECEMBER 7, 2023

ECC is used for email encryption, cryptocurrency digital signatures, and internet communication protocols. For example, The Health Insurance Portability and Accountability Act (HIPAA) requires security features such as encryption to protect patients’ health information.

Encryption

Encryption Passwords IoT Firewall

Ten Years Later, New Clues in the Target Breach

Krebs on Security

DECEMBER 14, 2023

The story on the Flashback author featured redacted screenshots that were taken from Ika’s BlackSEO account (see image above). The day after that story ran, Ika posted a farewell address to his mates, expressing shock and bewilderment over the apparent compromise of his BlackSEO account. ru under the handle “ r-fac1.”

Cybercrime

Cybercrime Accountability Advertising Computers and Electronics

DDoS attacks in Q1 2021

SecureList

MAY 10, 2021

Botnet operators use infected devices to carry out DDoS attacks or mine cryptocurrency. Ransomwarers were likely spurred on by the upward movement of cryptocurrency prices, which continued in Q1 2021. Several cryptocurrency exchanges could not cope with the resulting influx of sign-ups and suffered downtime. Attack geography.

DDOS

DDOS Cryptocurrency Media Marketing

Cyber Security Informer

The Crypto Game of Lazarus APT: Investors vs. Zero-days

Privacy Roundup: Week 12 of Year 2025

Trending Sources

Canadian Man Arrested in Snowflake Data Extortions

Security Affairs newsletter Round 516 by Pierluigi Paganini – INTERNATIONAL EDITION

Happy 13th Birthday, KrebsOnSecurity!

T-Mobile customers were hit with SIM swapping attacks

Voice Phishers Targeting Corporate VPNs

Store manager admits SIM swapping his customers

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Medical research data Advarra stolen after SIM swap

Octo Tempest cybercriminal group is "a growing concern"—Microsoft

Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware

Documents Unsealed: North Korea's Global Hacking Campaign

Social media influencers targeted by identity thieves

HIVE Ransomware Shut Down by International Law Enforcement

Over 1 Billion Individual Data Leaked Due to Alleged Chinese Police Database Hacking

DDoS attacks in Q4 2020

Nvidia, the ransomware breach with some plot twists

Ransomware world in 2021: who, how and why

Advanced threat predictions for 2024

What Is Encryption? Definition, How it Works, & Examples

Ten Years Later, New Clues in the Target Breach

DDoS attacks in Q1 2021

Stay Connected