The Hacker News

MAY 18, 2023

A cybercrime enterprise known as Lemon Group is leveraging millions of pre-infected Android smartphones worldwide to carry out their malicious operations, posing significant supply chain risks.

Cybercrime 93

Cybercrime Mobile Advertising Media 93

Security Affairs

JANUARY 20, 2023

Bad news for T-Mobile, the company disclosed a new data breach that resulted in the theft of data belonging to 37 customer accounts. T-Mobile suffered a new data breach, threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts.

Data breaches 70

Data breaches Mobile Accountability Telecommunications 70

SecureWorld News

AUGUST 16, 2021

T-Mobile is investigating a post made on an underground forum that claims 100 million user accounts have been compromised in a data breach. The hacker, who spoke with VICE's Motherboard in an online chat, said the data came from T-Mobile USA and involves "full customer info.". Hacker steals millions of T-Mobile users' info.

Data breaches 95

Data breaches Mobile Accountability Wireless 95

Security Affairs

JANUARY 18, 2020

I’m preparing the slides for my next speech and I decided to create this post while searching for interesting cybercrime statistics in 2020. Cybercrime will cost as much as $6 trillion annually by 2021. The global expense for organizations to protect their systems from cybercrime attacks will continue to grow.

Cybercrime 118

Cybercrime Small Business Data breaches Mobile 118

Security Affairs

DECEMBER 29, 2021

T-Mobile discloses a new data breach that impacted a “very small number of customers” who were victim of SIM swap attacks. T-Mobile has suffered another security breach, threat actors gained access to the accounts of “a small number of” customers.’. ” a T-Mobile Spokesperson told BleepingComputer.

Data breaches 120

Data breaches Mobile Wireless Accountability 120

Krebs on Security

APRIL 6, 2021

To my mind, this just reinforces the need to remove mobile phone numbers from all of your online accounts wherever feasible. The HaveIBeenPwned project, which collects and analyzes hundreds of database dumps containing information about billions of leaked accounts, has incorporated the data into his service. According to a Jan.

Mobile 343

Mobile Accountability Passwords Authentication 343

CyberSecurity Insiders

APRIL 22, 2022

Nigeria has announced a clampdown on 73 million mobile numbers as they failed to link their SIMS to the NIN database. And reports are in that nearly one-third of the entire mobile user’s database was blocked from making any outgoing calls because of privacy, security, and issues related to compliance.

Mobile 111

Mobile Identity Theft Banking Government 111

CyberSecurity Insiders

MARCH 16, 2023

trillion by 2025, and among the guestimate, half of the amount is expected to be made through phishing targeting mobiles and tablets. And as more individuals are using personal mobile phones for office use, it can also compromise business security via personal devices- especially in the realm of remote work or WFH culture.

Cybercrime 94

Cybercrime Social Engineering Mobile Spyware 94

Krebs on Security

AUGUST 25, 2023

19, 2023, someone targeted a T-Mobile phone number belonging to a Kroll employee “in a highly sophisticated ‘SIM swapping’ attack.” ” T-Mobile has not yet responded to requests for comment. . ” T-Mobile has not yet responded to requests for comment.

Mobile 207

Mobile Cyber Risk Cryptocurrency Data breaches 207

Security Affairs

APRIL 23, 2022

Telecommunication giant T-Mobile confirmed the LAPSUS$ extortion group gained access to its networks in March. Telecom company T-Mobile on Friday revealed that LAPSUS$ extortion gang gained access to its networks. ” LAPSUS$ leader White/Lapsus Jobs looking up the Department of Defense in T-Mobile’s internal Atlas system.

Mobile 93

Mobile VPN Social Engineering Telecommunications 93

Krebs on Security

AUGUST 6, 2020

A group of thieves thought to be responsible for collecting millions in fraudulent small business loans and unemployment insurance benefits from COVID-19 economic relief efforts gathered personal data on people and businesses they were impersonating by leveraging several compromised accounts at a little-known U.S.

Accountability 351

Accountability Identity Theft Hacking Insurance 351

Security Affairs

JUNE 25, 2023

citizen, who was involved in the attack on Twitter in 2020, was sentenced to five years in prison for cybercrime offenses. Joseph James O’Connor, aka PlugwalkJoe (24), the hacker who was involved in the attacks on Twitter in 2020, was sentenced to five years in prison for cybercrime offenses.

Cybercrime 81

Cybercrime Cryptocurrency Accountability Media 81

SecureWorld News

MAY 3, 2023

T-Mobile has fallen victim to yet another data breach, its second one in 2023 , adding to the already long list of breaches the telecom giant has experienced in recent years. T-Mobile also recommended that customers review their account information and update their PINs to a new one of their choosing.

Data breaches 81

Data breaches Mobile Risk Identity Theft 81

Security Affairs

MAY 1, 2023

T-Mobile disclosed the second data breach of 2023, threat actors had access to the personal information of hundreds of customers since February. T-Mobile suffered the second data breach of 2023, threat actors had access to the personal information of hundreds of customers starting in late February 2023.

Data breaches 67

Data breaches Mobile Identity Theft Accountability 67

Krebs on Security

JANUARY 30, 2024

In each attack, the victims saw their email and financial accounts compromised after suffering an unauthorized SIM-swap, wherein attackers transferred each victim’s mobile phone number to a new device that they controlled. Prosecutors say Noah Michael Urban of Palm Coast, Fla., Twilio disclosed in Aug. According to an Aug.

Social Engineering 327

Social Engineering Mobile Cybercrime Passwords 327

Krebs on Security

MARCH 13, 2019

[ NASDAQ: SZMK ] says it is investigating a security incident in which a hacker was reselling access to a user account with the ability to modify ads and analytics for a number of big-name advertisers. He acknowledged that the purloined account had the ability to add or modify the advertising creatives that get run on customer ad campaigns.

Accountability 220

Accountability Passwords Advertising Penetration Testing 220

Security Affairs

OCTOBER 17, 2022

Interpol has announced the arrests of 75 individuals as part of a coordinated international operation against an organized cybercrime ring called Black Axe. Interpol arrested 75 individuals as part of a coordinated global operation, codenamed Operation Jackal, against the cybercrime ring Black Axe. and the U.S.) Pierluigi Paganini.

Cybercrime 91

Cybercrime Scams Banking Mobile 91

Security Affairs

NOVEMBER 27, 2021

HAEICHI-II: Interpol arrested 1,003 individuals charged for several cybercrimes, including romance scams, investment frauds, and online money laundering. The authorities blocked 2,350 bank accounts linked to the illicit proceeds of online financial crime and intercepted over 27 million dollars. Pierluigi Paganini.

Cybercrime 103

Cybercrime Scams Banking Malware 103

Security Affairs

AUGUST 18, 2021

T-Mobile has confirmed that hackers have stolen records belonging to 48.6 Recently T-Mobile has launched an investigation into a possible security breach after a threat actor started offering for sale 100 million T-Mobile customer records on the dark web. The post T-Mobile data breach has impacted 48.6 Pierluigi Paganini.

Data breaches 98

Data breaches Mobile Telecommunications Wireless 98

SecureWorld News

NOVEMBER 20, 2023

Federal Communications Commission (FCC) has adopted new rules aimed at enhancing security measures for cell phone accounts. SIM swapping involves the unauthorized transfer of a user's account to a SIM card controlled by malicious actors, achieved by convincing the victim's wireless carrier to make the change. Commissioner Anna M.

Mobile 88

Mobile Wireless Artificial Intelligence Accountability 88

Security Affairs

AUGUST 22, 2021

T-Mobile data breach could be worse than initially thought, an update to the investigation reveals that over 54 million individuals were impacted. T-Mobile data breach could be worse than initially thought, according to an update to the investigation over 54 million customers had their data compromised. ” reads the update.

Data breaches 112

Data breaches Mobile Accountability Phishing 112

Security Affairs

MAY 30, 2022

Experts warn of a new ongoing WhatsApp OTP scam that could allow attackers to hijack users’ accounts through phone calls. Recently CloudSEK founder Rahul Sasi warned of an ongoing WhatsApp OTP scam that could allow threat actors to hijack users’ accounts through phone calls. Follow me on Twitter: @securityaffairs and Facebook.

Scams 136

Scams Accountability Mobile Hacking 136

Security Affairs

DECEMBER 28, 2020

Threat intelligence analyst discovered a threat actor that is selling a database of the Italian mobile service provider Ho mobile. Ho mobile is an Italian mobile telephone service offered by Vodafone Enabler Italia, an Italian virtual mobile telephone operator. SecurityAffairs – hacking, Ho Mobile).

Mobile 124

Mobile Banking Data breaches Phishing 124

Krebs on Security

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum. Department of Defense. USDoD’s InfraGard sales thread on Breached.

Hacking 362

Hacking Energy and Utilities Cybercrime Accountability 362

Security Affairs

JULY 10, 2023

Resecurity identified the emergence of adversarial mobile Android-based Antidetect Tooling for Mobile OS-Based Fraud. Resecurity has identified the emergence of adversarial mobile Android-based tools (called “mobile anti-detects”), like Enclave and McFly, as a new frontier in fraud tradecraft evolution.

Mobile 56

Mobile Banking Firmware Software 56

Krebs on Security

SEPTEMBER 29, 2021

In February, KrebsOnSecurity wrote about a novel cybercrime service that helped attackers intercept the one-time passwords (OTPs) that many websites require as a second authentication factor in addition to passwords. The OTP interception service featured earlier this year — Otp[.]agency

Passwords 324

Passwords Mobile Authentication Banking 324

Security Affairs

FEBRUARY 10, 2022

Spanish National Police has arrested eight alleged members of a crime organization who were able to steal money from the bank accounts of the victims through SIM swapping attacks. Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts.

Banking 99

Banking Accountability Mobile Cryptocurrency 99

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. These services, too, have been outsourced.

Cybercrime 140

Cybercrime Banking Malware Ransomware 140

CSO Magazine

MAY 19, 2023

Cybercrime gang Lemon Group has managed to get malware known as Guerrilla preinstalled on about 8.9 million Android-based smartphones, watches, TVs, and TV boxes globally, according to Trend Micro. To read this article in full, please click here

Malware 119

Malware Cybercrime Mobile Advertising 119

Krebs on Security

FEBRUARY 1, 2021

Authorities in the United Kingdom have arrested a 20-year-old man for allegedly operating an online service for sending high-volume phishing campaigns via mobile text messages. One of SMS Bandits’ key offerings: An “auto-shop” web panel for selling stolen account credentials.

Phishing 333

Phishing Telecommunications Mobile Advertising 333

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. Chaput said that at one point last week the volume of bot accounts being registered for the crypto spam campaign started overwhelming the servers that handle new signups at Mastodon.social.

Scams 252

Scams DDOS Cryptocurrency Accountability 252

Krebs on Security

JANUARY 10, 2024

14, 2021, by executing an unauthorized SIM-swap that involved an employee at his mobile phone provider who switched Dellone’s phone number over to a new device the attackers controlled. Dellone says the crooks then used his phone number to break into his account at Coinbase and siphon roughly $100,000 worth of cryptocurrencies.

Cryptocurrency 286

Cryptocurrency Government Cybercrime Accountability 286

Malwarebytes

JUNE 8, 2021

Tampering with web sessions depending on mobile carrier is pretty smart. A Latvian woman has been charged for their alleged role in a transnational cybercrime organisation. Said funds would then be laundered across a variety of bank accounts “controlled by the defendant and others”. Over time, it evolved. How bad is it really?

Cybercrime 108

Cybercrime Malware Banking Phishing 108

Security Affairs

JANUARY 22, 2023

Roaming Mantis threat actors were observed using a new variant of their mobile malware Wroba to hijack DNS settings of Wi-Fi routers. Researchers from Kaspersky observed Roaming Mantis threat actors using an updated variant of their mobile malware Wroba to compromise Wi-Fi routers and hijack DNS settings. Agent.eq (a.k.a

DNS 87

DNS Mobile Malware Hacking 87

Krebs on Security

NOVEMBER 28, 2023

One of the cybercrime underground’s more active sellers of Social Security numbers, background and credit reports has been pulling data from hacked accounts at the U.S. REAL POLICE, FAKE EDRS JackieChan also sells access to hacked email accounts belonging to law enforcement personnel in the United States and abroad.

Accountability 240

Accountability Cybercrime Mobile Advertising 240

Krebs on Security

APRIL 28, 2020

But you probably didn’t know that these fraudsters also can use caller ID spoofing to trick your bank into giving up information about recent transactions on your account — data that can then be abused to make their phone scams more believable and expose you to additional forms of identity theft.

Scams 359

Scams Banking Accountability Financial Services 359

BH Consulting

AUGUST 31, 2023

Having policies and procedures to secure social media accounts and minimise the potential for incidents can help. Recently, a client with several different social media accounts and a large team of people working on them approached BH Consulting to review its security and policies around them. More than 4.7

Media 52

Media Accountability Authentication Passwords 52