Krebs on Security

NOVEMBER 5, 2024

At the end of 2023, malicious hackers learned that many large companies had uploaded huge volumes of sensitive customer data to Snowflake accounts that were protected with little more than a username and password (no multi-factor authentication required). prosecutors and federal law enforcement agencies. .”

Cybercrime 306

Cybercrime Mobile Media Telecommunications 306

SecureWorld News

DECEMBER 11, 2024

seeks to close critical cybersecurity gaps in the United States telecommunications infrastructure. telecommunications system. telecommunications networks are no longer a soft target for cyber adversaries. telecommunications networks, it is past time to ensure that those networks are secure. cybersecurity.

Telecommunications 113

Telecommunications Hacking Government Encryption 113

SecureWorld News

JANUARY 23, 2025

It called for improved transparency and accountability from technology providers, and emphasized the need for robust supply chain security measures. LAPSUS$ cybercrime group analysis (2023): The board's investigation into the LAPSUS$ hacking group highlighted its innovative and aggressive tactics. These attacks have targeted U.S.

Telecommunications 127

Telecommunications Artificial Intelligence Cyber threats Cybersecurity 127

Krebs on Security

NOVEMBER 26, 2024

However, this person’s identity may not remain a secret for long: A careful review of Kiberphant0m’s daily chats across multiple cybercrime personas suggests they are a U.S. ‘REVERSESHELL’ The account @Kiberphant0m was assigned the Telegram ID number 6953392511. The Telegram ID for this account is 5408575119.

DDOS 339

DDOS Cybercrime Accountability Government 339

Security Affairs

MARCH 23, 2025

International Press Newsletter Cybercrime Blockchain gaming platform WEMIX hacked to steal $6.1 million Babuk2 Ransomware: Extortion Attempts Based on False Claims Western Alliance Bank notifies 21,899 customers of data breach Cybercriminals Exploit Checkpoints Driver in a BYOVD Attack!

Spyware 70

Spyware Data breaches Cybercrime Banking 70

Security Affairs

JANUARY 5, 2025

in Major Breach, U.S. in Major Breach, U.S.

Spyware 70

Spyware Data breaches Hacking Telecommunications 70

Krebs on Security

FEBRUARY 1, 2021

The service, marketed in the underground under the name “ SMS Bandits ,” has been responsible for blasting out huge volumes of phishing lures spoofing everything from COVID-19 pandemic relief efforts to PayPal, telecommunications providers and tax revenue agencies. ” SMS Bandits offered an SMS phishing (a.k.a.

Phishing 363

Phishing Telecommunications Advertising Mobile 363

Krebs on Security

OCTOBER 31, 2023

” Infoblox determined that until May 2023, domains ending in.info accounted for the bulk of new registrations tied to the malicious link shortening service, which Infoblox has dubbed “ Prolific Puma.” is overseen by the National Telecommunications and Information Administration (NTIA), an executive branch agency of the U.S.

Phishing 352

Phishing Telecommunications Malware Scams 352

Krebs on Security

NOVEMBER 3, 2022

” Kurittu said he and others who worked on the investigation into Kivimaki’s previous cybercrimes couldn’t shake the suspicion that the infamous cybercriminal was also behind the Vastaamo extortion. “There were also other projects and databases.” ”

Data breaches 273

Data breaches Cybercrime Telecommunications Accountability 273

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. Accounting for humans.

Cybersecurity 214

Cybersecurity Cybercrime Education Government 214

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. Internal Revenue Service website for months: Anyone seeking to create an account to view their tax records online would soon be required to provide biometric data to a private company in Virginia — ID.me.

Cryptocurrency 331

Cryptocurrency Cybercrime Computers and Electronics Scams 331

Security Affairs

JULY 6, 2021

The alleged perpetrator, who turned out to be a citizen of Morocco, was arrested in May by the Moroccan police based on the data about his cybercrimes that was provided by Group-IB. The further analysis of Dr Hex’ digital footprint revealed his association with other malicious activities. Original post at [link].

Cybercrime 107

Cybercrime Phishing Banking Telecommunications 107

Security Affairs

MARCH 23, 2022

Yesterday the cybercrime gang leaked 37GB of source code stolen from Microsoft’s Azure DevOps server. Microsoft has now confirmed that the attackers have compromised the account of one of its employees gaining limited access to source code repositories. No customer code or data was involved in the observed activities.

Accountability 107

Accountability VPN Hacking Social Engineering 107

Krebs on Security

AUGUST 19, 2020

According to interviews with several sources, this hybrid phishing gang has a remarkably high success rate, and operates primarily through paid requests or “bounties,” where customers seeking access to specific companies or accounts can hire them to target employees working remotely at home.

Phishing 364

Phishing VPN Social Engineering Media 364

Security Affairs

MARCH 30, 2024

AT&T confirmed that a data breach impacted 73 million current and former customers after its data were leaked on a cybercrime forum. million current AT&T account holders and approximately 65.4 million former account holders.” ” reads a statement published by the telecommunication giant.

Data breaches 145

Data breaches Telecommunications Cybercrime Hacking 145

Security Affairs

JANUARY 20, 2023

Bad news for T-Mobile, the company disclosed a new data breach that resulted in the theft of data belonging to 37 customer accounts. T-Mobile suffered a new data breach, threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts. ” reads the press release published by the company.

Data breaches 98

Data breaches Mobile Accountability Telecommunications 98

Security Affairs

FEBRUARY 23, 2024

Australian telecommunications provider Tangerine disclosed a data breach that impacted roughly 230,000 individuals. The telecommunications provider pointed out that no financial information (credit or debit card numbers, banking details) has been compromised. Access to the affected legacy database has also been closed.”continues

Data breaches 137

Data breaches Telecommunications Banking Mobile 137

Security Affairs

JANUARY 2, 2022

The Lapsus$ ransomware group defaced all the sites publishing a ransom note that claims that they had access to Impresa’s Amazon Web Services account. The gang also targeted the South American telecommunication providers Claro and Embratel. Source TheRecord. At this time the websites of the company are in maintenance mode.

Media 145

Media Ransomware Telecommunications Accountability 145

Security Affairs

JUNE 14, 2021

We call on all states to urgently identify and disrupt ransomware criminal networks operating from within their borders, and hold those networks accountable for their actions,” reads the statement. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, ransomware).

Ransomware 114

Ransomware Cybercrime Telecommunications Accountability 114

Security Affairs

MARCH 18, 2022

Mandiant researchers discovered a new Unix rootkit named Caketap, which is used to steal ATM banking data, while investigating the activity of the LightBasin cybercrime group (aka UNC1945 ). CrowdStrike researchers reported that at least 13 telecommunication companies were compromised by the group since 2019.

Banking 145

Banking Telecommunications System Administration Hacking 145

Security Affairs

JUNE 29, 2020

According to the experts, the malware was developed by the Russian cybercrime crew known as Evil Corp , which was behind the Dridex Trojan , and multiple ransomware like Locky , Bart, Jaff , and BitPaymer. Most of the victims belong to the manufacturing industry, followed by IT and media and telecommunications sectors.

Ransomware 125

Ransomware Telecommunications Manufacturing Malware 125

Security Affairs

MARCH 16, 2020

Hackers have stolen O2 customers’ data from a database run by Aerial Direct , one of the largest UK partners of the telecommunications services provider. To reassure you, the database did not include any passwords or financial details, such as bank account number or credit card information.” Pierluigi Paganini.

Data breaches 138

Data breaches Telecommunications Passwords Advertising 138

Security Affairs

OCTOBER 22, 2023

North Korea-linked APT groups actively exploit JetBrains TeamCity flaw Multiple APT groups exploited WinRAR flaw CVE-2023-38831 Californian IT company DNA Micro leaks private mobile phone data Threat actors have been exploiting CVE-2023-4966 in Citrix NetScaler ADC/Gateway devices since August A flaw in Synology DiskStation Manager allows admin account (..)

Ransomware 130

Ransomware Telecommunications Data breaches Mobile 130

Security Affairs

FEBRUARY 22, 2022

The cybercrime unit of the Ukrainian police has arrested a group of cybercriminals who managed to steal payment card data from at least 70,000 people by setting up mobile fake top-up services. Once obtained the data, crooks used it to empty their victims’ bank accounts. 190 (Fraud) of the Criminal Code of Ukraine.

Phishing 104

Phishing Banking Mobile Telecommunications 104

Security Affairs

OCTOBER 7, 2024

Telecommunications giant Comcast is notifying approximately 238,000 customers impacted by the Financial Business and Consumer Solutions (FBCS) data breach. According to the agency, compromised information may include names, dates of birth, Social Security numbers, and account information. Later, the company determined that over 4.25

Data breaches 137

Data breaches Telecommunications Accountability Ransomware 137

Security Affairs

JUNE 9, 2024

New York Times source code compromised via exposed GitHub token SolarWinds fixed multiple flaws in Serv-U and SolarWinds Platform Pandabuy was extorted twice by the same threat actor UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces Chinese threat actor exploits old ThinkPHP flaws since October 2023 A new Linux (..)

Data breaches 133

Data breaches Banking Hacking Malware 133

Malwarebytes

APRIL 2, 2024

Telecommunications giant AT&T has finally confirmed that 73 million current and former customers have been caught up in a massive dark web data leak. million current AT&T account holders and approximately 65.4 million former account holders. However, it also said that it believes that the leak affects 7.6 Take your time.

Data breaches 145

Data breaches Passwords Phishing Accountability 145

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe.

Government 98

Government Malware Telecommunications Cybercrime 98

Security Affairs

JUNE 9, 2024

Last week, the RansomHub ransomware group claimed to have stolen the information of over 2 million customers from the American telecommunications company Frontier Communications. The RansomHub group claimed to have stolen 5GB of data from the telecommunications giant. concludes the letter reads.

Data breaches 106

Data breaches Identity Theft Telecommunications Cybercrime 106

Security Affairs

APRIL 10, 2024

AT&T initially denied any data breach, below is the statement from the telecomunication giant : “Based on our investigation Thursday, the information that appeared in an internet chat room does not appear to have come from our systems,” Later, the telecommunications company retracted its initial denial and confirmed the data breach.

Data breaches 133

Data breaches Telecommunications Identity Theft Hacking 133

Security Affairs

AUGUST 18, 2021

million current postpaid customer accounts, as well as more than 40 million records of former and prospective customers. Importantly, no phone numbers, account numbers, PINs, passwords, or financial information were compromised in any of these files of customers or prospective customers.” Pierluigi Paganini.

Data breaches 104

Data breaches Mobile Telecommunications Accountability 104

SecureWorld News

JANUARY 27, 2023

The United States Department of Justice (DOJ) recently announced that it has successfully taken down the HIVE ransomware network, an international cybercrime ring that had been responsible for stealing and encrypting the data of more than 1,500 companies from 80 different countries. Cybercrime is a constantly evolving threat.

Ransomware 98

Ransomware Cybercrime Cryptocurrency Telecommunications 98

Security Affairs

OCTOBER 6, 2022

.” The arrest is the result of Operation Guardian led by AFP which became aware of a number of text messages demanding some Optus customers transfer $2000 to a bank account or face their personal information being used for financial crimes. The database belonging to the company was leaked on a cybercrime forum.

Data breaches 98

Data breaches Scams Telecommunications Financial Services 98

Security Affairs

FEBRUARY 10, 2022

. “The Federal Bureau of Investigation is issuing this announcement to inform mobile carriers and the public of the increasing use of Subscriber Identity Module (SIM) swapping by criminals to steal money from fiat and virtual currency accounts.” Use a variation of unique passwords to access online accounts.

Mobile 107

Mobile Cryptocurrency Accountability Authentication 107

Security Affairs

OCTOBER 5, 2022

Bad news for the Australian telecommunications industry, the largest company in the country Telstra suffered a data breach. Australia’s largest telecommunications company Telstra disclosed a data breach through a third-party supplier. It seems that the security breach also impacted other companies.

Data breaches 98

Data breaches Telecommunications Accountability Information Security 98

Security Affairs

APRIL 23, 2022

Telecommunication giant T-Mobile confirmed the LAPSUS$ extortion group gained access to its networks in March. The popular investigator and journalist Brian Krebs first surmised that the LAPSUS$ gang has breached T-Mobile after he reviewed a copy of the private chat messages between members of the cybercrime group. ” wrote Krebs.

Mobile 104

Mobile VPN Social Engineering Telecommunications 104

SecureWorld News

AUGUST 28, 2023

RELATED: Lapsus$ Returns One Week After 7 Teenage Hackers Arrested ] The extent of Kurtaj's involvement in cybercrimes is staggering. This marked a turning point in the battle against cybercrime and served as a stark reminder that even the most skilled threat actors can be brought to justice. and Brazil. and another in Brazil.

Cybercrime 98

Cybercrime Social Engineering Telecommunications Hacking 98