SecureWorld News

JANUARY 27, 2023

The United States Department of Justice (DOJ) recently announced that it has successfully taken down the HIVE ransomware network, an international cybercrime ring that had been responsible for stealing and encrypting the data of more than 1,500 companies from 80 different countries. Cybercrime is a constantly evolving threat.

Ransomware 85

Ransomware Cybercrime Cryptocurrency Telecommunications 85

Security Affairs

JUNE 29, 2020

According to the experts, the malware was developed by the Russian cybercrime crew known as Evil Corp , which was behind the Dridex Trojan , and multiple ransomware like Locky , Bart, Jaff , and BitPaymer. Most of the victims belong to the manufacturing industry, followed by IT and media and telecommunications sectors.

Ransomware 90

Ransomware Telecommunications Manufacturing Malware 90

Security Affairs

JUNE 14, 2021

We call on all states to urgently identify and disrupt ransomware criminal networks operating from within their borders, and hold those networks accountable for their actions,” reads the statement. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, ransomware).

Ransomware 103

Ransomware Cybercrime Telecommunications Accountability 103

Security Affairs

JANUARY 2, 2022

The Lapsus$ ransomware group defaced all the sites publishing a ransom note that claims that they had access to Impresa’s Amazon Web Services account. The gang also targeted the South American telecommunication providers Claro and Embratel. Source TheRecord. At this time the websites of the company are in maintenance mode.

Media 140

Media Ransomware Telecommunications Accountability 140

Security Affairs

FEBRUARY 22, 2022

The cybercrime unit of the Ukrainian police has arrested a group of cybercriminals who managed to steal payment card data from at least 70,000 people by setting up mobile fake top-up services. Once obtained the data, crooks used it to empty their victims’ bank accounts. 190 (Fraud) of the Criminal Code of Ukraine.

Phishing 83

Phishing Banking Mobile Telecommunications 83

Security Affairs

MARCH 26, 2023

NCA infiltrates the cybercriminal underground with fake DDoS-for-hire sites Pwn2Own Vancouver 2023 awarded $1,035,000 and a Tesla for 27 0-days CISA announced the Pre-Ransomware Notifications initiative China-linked hackers target telecommunication providers in the Middle East City of Toronto is one of the victims hacked by Clop gang using GoAnywhere (..)

Data breaches 78

Data breaches DDOS Backups Ransomware 78

Security Affairs

APRIL 20, 2023

In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing campaigns on Ukraine, with the country accounting for over 60% of observed Russian targeting. On September 2022, the Sandworm group was observed impersonating telecommunication providers to target Ukrainian entities with malware.

Phishing 87

Phishing Education Accountability Telecommunications 87

Security Affairs

SEPTEMBER 24, 2023

Government of Bermuda blames Russian threat actors for the cyber attack City of Dallas has set a budget of $8.5

Cyber Attacks 85

Cyber Attacks Firewall Data breaches Telecommunications 85

IT Security Guru

DECEMBER 1, 2022

During the last few years, we have all become witnesses to intense cybercrime and sophisticated cyberattacks. As cybercrime continues to increase, the human element can play the most important role in cybersecurity posture and hygiene. These training programs imitate cyberattacks and educate people about existing malware.

Cyber threats 111

Cyber threats Cybersecurity Education Risk 111

SecureWorld News

JUNE 18, 2023

According to a recent report , bots accounted for a staggering 47.4% Gaming (58.7%) and telecommunications (47.7%) had the highest bad bot traffic on their websites and applications. These unsolicited messages often contain malware, phishing links, or other deceptive content, intending to deceive unsuspecting recipients.

Passwords 73

Passwords Antivirus Identity Theft Internet 73

SecureWorld News

NOVEMBER 22, 2021

According to the Federal Bureau of Investigation (FBI), losses due to BEC scams since 2013 total around $28 billion dollars and it is the most profitable cybercrime there is. Your escalation procedures for BEC may be slightly different than for malware or other incidents. BEC-IRP Section 5: Recovery.

Scams 82

Scams Cybercrime Accountability Banking 82

Security Boulevard

JUNE 26, 2023

Mismanagement of user accounts – using admin privileges to upgrade user access may result in a data breach for personal profit or copying files with customer information. A lack of security features to upgrade or downgrade a user may result in mismanagement of user accounts. Health Insurance Portability and Accountability Act (HIPAA).

Data breaches 52

Data breaches Healthcare Telecommunications Financial Services 52

Security Affairs

JULY 31, 2022

Once obtained the credentials, an attacker can add an administrator account and use it to obtain full access to the device and perform actions such as watching live footage from the camera as shown below. An attacker can conduct this attack by capturing one unencrypted ONVIF request authenticated with the WS-UsernameToken schema.

Surveillance 144

Surveillance Authentication Telecommunications Manufacturing 144

Security Affairs

AUGUST 25, 2018

AdvisorsBot was uncovered in malicious email campaigns, attributed to the TA555 threat actor, targeting hotels, restaurants, and telecommunications entities. The campaigns appear to primarily target hotels, restaurants, and telecommunications, and are distributed by an actor we track as TA555.” ” continues the analysis.

Telecommunications 46

Telecommunications Malware Advertising Engineering 46

Malwarebytes

APRIL 1, 2022

When LAPSUS first grabbed the attention of the cybersecurity community, they had already compromised companies like Impresa, the largest media conglomerate in Brazil; Claro, one of Brazil’s telecommunications operators; and Brazil’s Ministry of Health. It is said that they use stolen code to better hide their malware.

Hacking 87

Hacking Social Engineering Telecommunications Cybersecurity 87

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. This bold about-face dumbfounded many longtime Norton users because antivirus firms had spent years broadly classifying all cryptomining programs as malware. A single bitcoin is trading at around $45,000.

Cryptocurrency 233

Cryptocurrency Cybercrime Computers and Electronics Scams 233

Krebs on Security

DECEMBER 14, 2023

The malware used in the Target breach included the text string “ Rescator ,” which also was the handle chosen by the cybercriminal who was selling all of the cards stolen from Target customers. For starters, the text string “Rescator” was found in some of the malware used in the Target breach.

Cybercrime 225

Cybercrime Accountability Advertising Computers and Electronics 225

SecureList

DECEMBER 14, 2022

For instance, according to the New York Times, in 2003, the United States made plans for a huge cyberattack to freeze billions of dollars in Saddam Hussein’s bank accounts and cripple his government before the invasion of Iraq. However, the plan was not approved because the government feared collateral damage. Key insights.

DDOS 131

DDOS Ransomware Government Energy and Utilities 131

SecureList

MAY 11, 2023

Security researchers discovered an archive that contained test builds of the malware for a number of less common platforms, including macOS and FreeBSD, as well as for various non-standard processor architectures, such as MIPS and SPARC. Meanwhile, the malware itself evolved, adding an LDAP-based self-spreading mechanism.

Ransomware 115

Ransomware Malware Architecture Telecommunications 115

SecureList

MAY 12, 2021

Botmasters and account resellers are tasked with providing initial access inside the victim’s network. Well-known malware families are involved in the biggest and most wide-reaching campaigns. But it is worth pointing out that not all members of this ecosystem originate from the cybercrime underworld.

Ransomware 123

Ransomware Encryption Malware Cybercrime 123

Security Affairs

NOVEMBER 29, 2019

The most common objective of such attacks is cyberespionage and disruption of major telecommunications companies’ work. The telecommunications sector: Are providers ready for 5G? If they manage to compromise a telecommunications company, they can then also compromise its customers for surveillance or sabotage purposes.

Banking 86

Banking Telecommunications Marketing Internet 86

SecureList

JUNE 20, 2022

However, the only actors that deliver the entire narrative of a cyberattack – discussing accountability and international law – are nation states. Cyber attribution is a necessary step to accountability in cyberspace. [2] Why would anyone want to know details of technical attribution? Tool-based attribution (i.e.,

Energy and Utilities 84

Energy and Utilities Data collection Malware Cybersecurity 84

eSecurity Planet

JANUARY 28, 2021

Overall cybercrime costs are expected to reach $10.5 The two-tier program includes business development opportunities, training, joint marketing, partner collateral, marketing co-op funds, sales leads and field account planning. According to a joint study by CBInsights and PwC, Cybersecurity startups received over $10.7 SentinelOne.

Cybersecurity 87

Cybersecurity Artificial Intelligence Threat Detection Marketing 87

SecureList

MAY 10, 2021

News broke in January of the FreakOut malware, which attacks Linux devices. This loophole was previously exploited by ADB.Miner, Ares, IPStorm, Fbot, Trinity, and other malware. Linux botnets continued to account for almost all DDoS traffic (99.90%). News overview. Q1 2021 saw the appearance of two new botnets. Attack geography.

DDOS 96

DDOS Cryptocurrency Media Marketing 96

Digital Shadows

NOVEMBER 1, 2022

For Lockbit, who have been the most active group since early 2021, it is possible that the current war between Russia and Ukraine may take law enforcement focus away from cybercrime as many western law enforcement agencies are likely more preoccupied with stopping Russian nation state sponsored activity.

Cyber threats 52

Cyber threats Ransomware Media Data breaches 52

SecureList

FEBRUARY 16, 2021

In October, telecommunications firm Telenor Norway was another to fall victim. The bulk of C&C servers in control of DDoS botnets in Q4 2020 were located in the US, which accounted for 36.30% of the total number of servers. Extortionists’ activity regularly made the news throughout 2020. Botnet distribution by country.

DDOS 129

DDOS Cryptocurrency Marketing Internet 129

Security Affairs

NOVEMBER 25, 2020

In the report, the company examines key shifts in the cybercrime world internationally between H2 2019 and H1 2020 and gives forecasts for the coming year. The past year — a harrowing period for the world economy — culminated in the spike of cybercrime. The most severe financial damage has occurred as a result of ransomware activity.

Banking 132

Banking Ransomware Phishing Marketing 132

SecureWorld News

FEBRUARY 18, 2021

billion from banks in Vietnam, Bangladesh, Taiwan, Mexico, Malta, and Africa by hacking the banks' computer networks and sending fraudulent Society for Worldwide Interbank Financial Telecommunication (SWIFT) messages. And they've been able to dupe a few of them into downloading malware.

Hacking 99

Hacking Cryptocurrency Computers and Electronics Banking 99

SecureList

NOVEMBER 14, 2023

The malware posed as ransomware, demanding money from the victims for “decrypting” their data. Using a malicious script, the attackers redirected their targets’ incoming email to an email address controlled by the attackers, gathering data from the compromised accounts. Verdict: prediction not fulfilled ❌ 7.

Hacking 102

Hacking Energy and Utilities Media Malware 102

Security Affairs

OCTOBER 22, 2023

North Korea-linked APT groups actively exploit JetBrains TeamCity flaw Multiple APT groups exploited WinRAR flaw CVE-2023-38831 Californian IT company DNA Micro leaks private mobile phone data Threat actors have been exploiting CVE-2023-4966 in Citrix NetScaler ADC/Gateway devices since August A flaw in Synology DiskStation Manager allows admin account (..)

Ransomware 108

Ransomware Telecommunications Data breaches Mobile 108