SecureList

DECEMBER 16, 2024

Review of last year’s predictions The number of services providing AV evasion for malware (cryptors) will increase We continuously monitor underground markets for the emergence of new “cryptors,” which are tools specifically designed to obfuscate the code within malware samples.

Marketing 103

Marketing Data breaches Cryptocurrency Malware 103

Krebs on Security

MAY 28, 2025

This wasnt just a scam operation – it was essentially a cybercrime university that empowered fraudsters globally, NCCIA Director Abdul Ghaffar said at a press briefing. Prior to folding their operations behind WeCodeSolutions, Shahzad and others arrested this month operated as a web hosting group calling itself The Manipulaters.

Malware 215

Malware Cybercrime Antivirus Scams 215

Krebs on Security

DECEMBER 29, 2024

Maybe it’s indelicate to celebrate the birthday of a cybercrime blog that mostly publishes bad news, but happily many of 2024’s most engrossing security stories were about bad things happening to bad guys. Image: Shutterstock, Dreamansions. KrebsOnSecurity.com turns 15 years old today!

Scams 256

Scams Cybercrime Cryptocurrency Social Engineering 256

Krebs on Security

NOVEMBER 14, 2024

Shefel claims the true mastermind behind the Target and other retail breaches was Dmitri Golubov , an infamous Ukrainian hacker known as the co-founder of Carderplanet, among the earliest Russian-language cybercrime forums focused on payment card fraud. “I’m also godfather of his second son.” “Hi, how are you?”

Advertising 297

Advertising Retail Cryptocurrency Cybercrime 297

SecureWorld News

FEBRUARY 4, 2025

Cybercrime has been steadily on the rise for the past years. Localization is a combination of measures aimed at adapting your business, product, and messaging to the requirements of the local market and tastes of the local customers. Nearly 3 billion records were stolen in the U.S., Canada, and the U.K.,

Marketing 105

Marketing Cybersecurity eCommerce Data breaches 105

Krebs on Security

FEBRUARY 26, 2025

At the end of 2023, malicious hackers learned that many companies had uploaded sensitive customer records to accounts at the cloud data storage service Snowflake that were protected with little more than a username and password (no multi-factor authentication needed).

Hacking 285

Hacking Government Identity Theft Accountability 285

SecureWorld News

FEBRUARY 3, 2025

In a significant victory against cybercrime, U.S. Cybercrime as a service: an evolving threat As cybercriminals continue to develop more sophisticated and accessible tools, law enforcement agencies worldwide are struggling to keep pace. For every criminal group disrupted, multiple others remain active or emerge to take their place."

Phishing 113

Phishing Cybercrime Scams Authentication 113

Security Affairs

OCTOBER 20, 2024

CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog North Korea-linked APT37 exploited IE zero-day in a recent attack Omni Family Health data breach impacts 468,344 individuals Iran-linked actors target critical infrastructure organizations macOS HM Surf flaw in TCC allows bypass Safari privacy settings Two Sudanese (..)

Data breaches 124

Data breaches Cybercrime Cyber Insurance Marketing 124

Krebs on Security

APRIL 10, 2025

But experts say these groups are now directly targeting customers of international financial institutions, while dramatically expanding their cybercrime infrastructure and support staff. Until recently, the so-called “ Smishing Triad ” mainly impersonated toll road operators and shipping companies. Image: Prodaft.

Banking 272

Banking Phishing Mobile Retail 272

Malwarebytes

OCTOBER 15, 2024

Unlike any other season in America, election season might bring the highest volume of advertisements sent directly to people’s homes, phones, and email accounts—and the accuracy and speed at which they come can feel invasive. The reasons could be obvious. When asked who , specifically, they were worried about, 73% said cybercriminals.

Scams 140

Scams Identity Theft Cybercrime Accountability 140

Security Affairs

NOVEMBER 29, 2024

Rockstar 2FA targets Microsoft 365 accounts and bypasses multi-factor authentication with adversary-in-the-middle (AitM) attacks. “The revamped phishing kit is still operating under the PaaS model, with marketing and communications observed on ICQ, Telegram, and Mail.ru. ” reads the report published by Trustwave.

Phishing 119

Phishing Accountability Authentication Advertising 119

SecureWorld News

FEBRUARY 14, 2025

Last year saw a 110% rise in cybercrime in the lead up to Valentine's Day. And 2025 will be no different, as increasingly sophisticated online hackers seek to take advantage of Valentine's themed email traffic, social media advertisements, or marketing campaigns, and exploit heightened emotions and a desire to connect.

Scams 84

Scams Cybercrime Phishing Social Engineering 84

Security Affairs

OCTOBER 28, 2024

Melillo, who spoke alongside Milan’s chief prosecutor Marcello Viola, said that authorities have uncovered “a massive market of confidential information.”

Computers and Electronics 140

Computers and Electronics Banking Marketing Hacking 140

Malwarebytes

MAY 1, 2025

Phishing In phishing scams, cybercriminals trick people and businesses into handing over sensitive information like credit card numbers or login details for vital online accounts. Lured in by similar color schemes, company logos, and familiar layouts, victims log in to their account by entering their username and password.

Small Business 92

Small Business Cybersecurity Scams Passwords 92

Malwarebytes

FEBRUARY 4, 2025

And yet, if artificial intelligence achieves what is called an agentic model in 2025, novel and boundless attacks could be within reach, as AI tools take on the roles of agents that independently discover vulnerabilities, steal logins, and pry into accounts. These are real threats, but they are not novel.

Artificial Intelligence 144

Artificial Intelligence Small Business Malware Technology 144

Malwarebytes

MARCH 20, 2025

This blog post was co-authored with Elie Berreby, Senior SEO Strategist Criminals are highly interested in online marketing and advertising tools that they can leverage as part of their ongoing malware campaigns. We believe this is because the threat actors are primarily interested in harvesting Google accounts.

Scams 67

Scams Accountability Phishing Advertising 67

Malwarebytes

DECEMBER 2, 2024

That enormous sum represents a company’s downtime during a ransomware attack, any reputational damage it suffers, and the lengthy recovery process of rebuilding databases and reestablishing workplace accounts and permissions.

Ransomware 129

Ransomware Backups Small Business Malware 129

Security Affairs

JUNE 15, 2025

CISA adds Wazuh, and WebDAV flaws to its Known Exploited Vulnerabilities catalog Exposed eyes: 40,000 security cameras vulnerable to remote hacking Operation Secure: INTERPOL dismantles 20,000+ malicious IPs in major cybercrime crackdown Over 80,000 servers hit as Roundcube RCE bug gets rapidly exploited A flaw could allow recovery of the phone number (..)

Spyware 65

Spyware Data breaches Cybercrime Scams 65

SecureWorld News

JULY 27, 2025

Wholesalers and so-called fraud shops clean and index those records, advertising credit card dumps or "fullz" (full identity packages) on dozens of multilingual darknet markets. We're facing a new era of cybercrime fueled by malware-as-a-service (MaaS), and ransomware-as-a-service (RaaS).

Phishing 59

Phishing Marketing Cybercrime Encryption 59

Security Affairs

JUNE 22, 2025

CISA adds Apple products, and TP-Link routers flaws to its Known Exploited Vulnerabilities catalog Attackers target Zyxel RCE vulnerability CVE-2023-28771 India-based car-sharing company Zoomcar suffered a data breach impacting 8.4M

Data breaches 67

Data breaches DDOS Internet Internet 67

BH Consulting

JUNE 30, 2025

Data is their business, and business is good The black market in personal data is the focus of this year’s Internet Organised Crime Threat Assessment (IOCTA). The annual report from Europol’s European Cybercrime Centre draws upon thousands of investigations that Europol supported over the past year.

Scams 59

Scams DNS Marketing Accountability 59

Security Affairs

MAY 4, 2025

CISA adds Yii Framework and Commvault Command Center flaws to its Known Exploited Vulnerabilities catalog Ireland’s DPC fined TikTok 530M for sending EU user data to China Microsoft sets all new accounts passwordless by default Luxury department store Harrods suffered a cyberattack U.S.

Cybercrime 77

Cybercrime Cyber Attacks Malware Phishing 77

Security Affairs

MARCH 27, 2025

is known for offering high-speed internet and competitive pricing in markets where it competes with larger providers. million accounts. It operates mainly in the Midwest and Southeast regions, serving residential and business customers. The ransomware group steals victims’ data to pressure them into paying a “generous fee.”

Hacking 83

Hacking Telecommunications Data breaches Internet 83

Krebs on Security

NOVEMBER 5, 2024

At the end of 2023, malicious hackers learned that many large companies had uploaded huge volumes of sensitive customer data to Snowflake accounts that were protected with little more than a username and password (no multi-factor authentication required). prosecutors and federal law enforcement agencies. “Negotiate a deal in Telegram.”

Cybercrime 306

Cybercrime Mobile Media Telecommunications 306

Digital Shadows

NOVEMBER 26, 2024

Key Points Phishing incidents rose during the reporting period (August 1 to October 31, 2024), accounting for 46% of all customer incidents. Cloud services alerts increased by 20% due to rising cloud account usage, while malicious file alerts in phishing attacks remain high, exploiting users’ tendencies to open files.

Cyber Attacks 59

Cyber Attacks Phishing Ransomware Cyber Insurance 59

Security Affairs

MAY 13, 2025

The company operates both physical stores and online services, with a strong presence in the UK and some international markets. However, importantly, the data does not include useable card or payment details, and it also does not include any account passwords.”

Data breaches 65

Data breaches Cyber Attacks Passwords Social Engineering 65

Security Affairs

JULY 5, 2025

Sanctions Russia’s Aeza Group for aiding crooks with bulletproof hosting Qantas confirms customer data breach amid Scattered Spider attacks CVE-2025-6554 is the fourth Chrome zero-day patched by Google in 2025 U.S.

Data breaches 65

Data breaches Spyware Cybercrime Malware 65

Jane Frankland

JANUARY 12, 2025

Threat Actors Cybersecurity threats are growing more complex and persistent, driven by the heightened activities of nation-state actors and increasingly sophisticated cybercrime groups. Organised Cybercrime Groups Up Their Game Cybercriminals arent resting on old tactics with cybercrime expected to hit $12 trillion in 2025.

Cybersecurity 130

Cybersecurity CISO Insurance IoT 130

SecureWorld News

DECEMBER 27, 2024

Identity theft will evolve: Stolen identities will fuel new fraud schemes, like creating crypto accounts in victims names. Market Consolidation of GenAI Tools: The GenAI market may scale down to a few robust and reliable GenAI tools, creating global standards and improving tool quality.

Cybersecurity 123

Cybersecurity CISO Risk Government 123

Trend Micro

JUNE 10, 2025

6 Alerts Back Unread All Inside the criminal mind: Trend’s deep dive into cybercrime. Each team can independently sign off on an image, ensuring accountability and reducing deployment risk. Under Attack? close Read report > Cloud security that leads: Centralized, multi-layered protection now named a CNAPP Leader by IDC.

Cyber Risk 52

Cyber Risk Risk Network Security Insurance 52

Krebs on Security

NOVEMBER 26, 2024

However, this person’s identity may not remain a secret for long: A careful review of Kiberphant0m’s daily chats across multiple cybercrime personas suggests they are a U.S. ‘REVERSESHELL’ The account @Kiberphant0m was assigned the Telegram ID number 6953392511. The Telegram ID for this account is 5408575119.

DDOS 339

DDOS Cybercrime Accountability Government 339

Security Affairs

FEBRUARY 12, 2025

Vinnik set up numerous such shell companies and financial accounts across the globe to allow BTC-e to conduct its business. This guilty plea reflects the Departments ongoing commitment to use all tools to fight money laundering, police crypto markets, and recover restitution for victims. In February, the U.S.

Cryptocurrency 79

Cryptocurrency Computers and Electronics Identity Theft Ransomware 79

GlobalSign

JULY 16, 2025

He brings more to his work than writing skills, with a background that includes marketing communications, brand building, lead generation, public relations, and product marketing. Log in to your account to purchase At the next step, you will be redirected to our secure account setup process. It is his background that.

IoT 52

IoT Identity Theft Computers and Electronics Authentication 52

SecureWorld News

MARCH 5, 2025

has imposed new tariffs on Canada, Mexico, and China, setting off a geopolitical and economic ripple effect that extends beyond supply chains and global markets. That headache is real, of course, but accountants and lawyers will step up to sort it out," said Mike Wilkes , Former CISO, MLS; Adjunct Professor, NYU. cybersecurity vendors.

Cyber Risk 128

Cyber Risk Risk Cyber Insurance Small Business 128

Krebs on Security

FEBRUARY 18, 2025

Happily, the broad deployment of more secure chip-based payment cards in the United States has weakened the carding market. But a flurry of innovation from cybercrime groups in China is breathing new life into the carding industry, by turning phished card data into mobile wallets that can be used online and at main street stores.

Phishing 324

Phishing Mobile Scams Banking 324

Security Affairs

FEBRUARY 21, 2025

Experts speculate that B1acks Stash used the free card release as a marketing strategy. The decision to releasefree samples aims at attracting new customers and gain notoriety in the cybercrime ecosystem. million payment card data dating from 2019 to 2022 on a cybercrime forum. ” reads the analysis published by D3 Lab.

Cybercrime 107

Cybercrime Banking Backups Marketing 107

Trend Micro

JULY 2, 2025

6 Alerts Back Unread All Inside the criminal mind: Trend’s deep dive into cybercrime. It offers previously out-of-reach opportunities for business leaders to anticipate market trends and make better decisions. Under Attack? For organisations to intelligently automate mundane processes and free talent to work on higher value work.

Cyber Risk 91

Cyber Risk Risk Cyber threats Artificial Intelligence 91