Advertising, Cryptocurrency and Cybersecurity

BunnyLoader, a new Malware-as-a-Service advertised in cybercrime forums

Security Affairs

OCTOBER 3, 2023

Cybersecurity researchers spotted a new malware-as-a-service (MaaS) called BunnyLoader that’s appeared in the threat landscape. Zscaler ThreatLabz researchers discovered a new malware-as-a-service (MaaS) that is called BunnyLoader, which has been advertised for sale in multiple cybercrime forums since September 4, 2023.

Advertising

Advertising Cybercrime Malware Cryptocurrency

Crooks hacked Mandiant X account to push cryptocurrency scam

Security Affairs

JANUARY 4, 2024

The X account of cybersecurity giant Mandiant was hacked, attackers used it to impersonate the Phantom crypto wallet and push a cryptocurrency scam. Crooks hacked the X account of cybersecurity firm Mandiant and used it to impersonate the Phantom crypto platform and share a cryptocurrency scam.

Scams

Scams Cryptocurrency Accountability Hacking

Google Cybersecurity Action Team Threat Horizons Report #9 Is Out!

Anton on Security

FEBRUARY 7, 2024

This quick and easy money maker serves a clear profit motive for criminal actors, as it allows threat actors to use a victim’s cloud processing power to mine for cryptocurrency in a shorter period of time. ” [ A.C. — free Related posts: Google Cybersecurity Action Team Threat Horizons Report #8 Is Out!

Cybersecurity

Cybersecurity Ransomware Passwords Cryptocurrency

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Google bans the following cryptocurrency apps for data security

CyberSecurity Insiders

AUGUST 23, 2021

If you are a cryptocurrency enthusiast and are using any of the mining apps to earn more, then this article needs your interest. Therefore, the web search giant has not only issued a ban but also pulled the following applications from the play store, as they were found exploiting the user with malevolent advertisement intentions.

Cryptocurrency

Cryptocurrency Mobile Advertising Cybersecurity

Lazarus APT Targeting Cryptocurrency, CISA Warns

SecureWorld News

APRIL 21, 2022

Cybersecurity and Infrastructure Security Agency (CISA) has issued a joint cybersecurity advisory with the Federal Bureau of Investigation (FBI) and the U.S. Treasury Department warning of a North Korean state-sponsored advanced persistent threat (APT) known as the Lazarus Group targeting cryptocurrency and blockchain companies.

Cryptocurrency

Cryptocurrency Computers and Electronics Social Engineering System Administration

Europol Dismantled a Cybercrime Ring Involved in Cryptocurrency Scams

Heimadal Security

JANUARY 16, 2023

The suspects used advertisements on social networks to lure victims […]. The post Europol Dismantled a Cybercrime Ring Involved in Cryptocurrency Scams appeared first on Heimdal Security Blog. Since June 2022, when German authorities first asked for help, the European police have supported this investigation.

Cybercrime

Cybercrime Cryptocurrency Scams Advertising

WeSteal, a shameless commodity cryptocurrency stealer available for sale

Security Affairs

MAY 2, 2021

The bold author of a new cryptocurrency stealer, dubbed WeSteal, is promising its customers a leading way to make money in 2021. According to Palo Alto Networks, the author of WeSteal, that goes online as “ComplexCodes,” started advertising the cryptocurrency stealer on underground forums in mid-February 2021.

Cryptocurrency

Cryptocurrency Malware Advertising System Administration

Scammers Are Mailing Fake Ledger Devices to Steal Cryptocurrency

Heimadal Security

JUNE 17, 2021

As advertised on the French manufacturer’s website, the Nano X wallets keep cryptocurrency secure and support over 1,100 coin types. The post Scammers Are Mailing Fake Ledger Devices to Steal Cryptocurrency appeared first on Heimdal Security Blog.

Cryptocurrency

Cryptocurrency Manufacturing Scams Advertising

IOTA cryptocurrency shuts down entire network after a coordinated attack on its Trinity wallet

Security Affairs

FEBRUARY 16, 2020

IOTA Foundation behind the IOTA cryptocurrency was forced to shut down its entire network following a cyber attack that resulted in the theft of funds. In response to the incident, the IOTA Foundation, the nonprofit organization behind the IOTA cryptocurrency , has decided to take down its entire network. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Advertising Accountability Cyber Attacks

Will cryptocurrency mining soon saturate AWS, Microsoft Azure and Google Cloud?

The Last Watchdog

JUNE 20, 2018

Cryptojacking, as defined by the Federal Trade Commission , is the use of JavaScript code to capture cryptocurrencies in users’ browsers without asking permission. Bilogorskiy: Before 2013 a lot of malware was focused on spam, DDoS and monetizing through malicious advertising and ad fraud. Bilogorskiy: Exactly. It was insane.

Cryptocurrency

Cryptocurrency Passwords Ransomware Malware

Google Cybersecurity Action Team Threat Horizons Report #9 Is Out!

Security Boulevard

FEBRUARY 7, 2024

This quick and easy money maker serves a clear profit motive for criminal actors, as it allows threat actors to use a victim’s cloud processing power to mine for cryptocurrency in a shorter period of time. ” [ A.C. — free Related posts: Google Cybersecurity Action Team Threat Horizons Report #8 Is Out!

Cybersecurity

Cybersecurity Ransomware Passwords Cryptocurrency

Beware malware posing as beta versions of legitimate apps, warns FBI

Malwarebytes

AUGUST 16, 2023

.” The agency says it’s aware of fraud schemes where the victims are contacted and directed to download mobile beta-testing apps, such as cryptocurrency exchanges, that steal money instead of investing it. The scammers claim to provide cryptocurrency tracing and promise to recover lost funds.

Cryptocurrency

Cryptocurrency Malware Advertising Mobile

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. Based on the risk score, CryptoIns experts have calculated insurance rates for cryptocurrency exchange users who can now insure their accounts against cyber threats.

Insurance

Insurance Cryptocurrency Cyber threats Marketing

North Korea's Lazarus Hackers Targeting macOS Users Interested in Crypto Jobs

The Hacker News

SEPTEMBER 27, 2022

In the latest variant of the campaign observed by cybersecurity company SentinelOne last week, decoy documents advertising positions for the Singapore-based cryptocurrency exchange firm Crypto.com. The latest disclosure builds on previous

Cryptocurrency

Cryptocurrency Advertising Malware Cybersecurity

Cryptocurrency Platform Atlas Quantum hacked, 260k users impacted

Security Affairs

AUGUST 28, 2018

The Cryptocurrency Platform Atlas Quantum suffered a security breach, information belonging to more than 260,000 users was stolen by hackers. Hackers stole information related to over 260,000 users of the Cryptocurrency Platform Atlas Quantum. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency

Cryptocurrency Hacking Data breaches Passwords

Cybersecurity for the Public Interest

Schneier on Security

MAY 3, 2019

We need policymakers who understand technology, but we also need cybersecurity technologists who understand -- and are involved in -- policy. When you broaden the definition of Internet security, many additional areas fall within the intersection of cybersecurity and policy. We need public-interest technologists.

Cybersecurity

Cybersecurity Technology Government Internet

Cybersecurity for the Public Interest

Schneier on Security

MARCH 5, 2019

We need policymakers who understand technology, but we also need cybersecurity technologists who understand -- and are involved in -- policy. When you broaden the definition of Internet security, many additional areas fall within the intersection of cybersecurity and policy. We need public-interest technologists.

Cybersecurity

Cybersecurity Technology Government Internet

Cyber Frauds force Facebook to ban Crypto ads on celebrity profiles

CyberSecurity Insiders

SEPTEMBER 7, 2021

Facebook is intending to ban cryptocurrency related advertisements on its platform from November 2021, as they are leading to online scams and money loss schemes targeting to thousands of individuals using Facebook irrespective of their age. Twitter and Google did not release any statement on this note.

Advertising

Advertising Scams Cryptocurrency Media

Group-IB experts record a massive surge of user data leaks form cryptocurrency exchanges

Security Affairs

AUGUST 7, 2018

Group-IB researchers have investigated user data leaks from cryptocurrency exchanges and has analyzed the nature of these incidents. In 2017, when cryptocurrencies were gaining momentum, their record-breaking capitalization and a spike in Bitcoin’s exchange rate led to dozens of attacks on cryptocurrency services.

Cryptocurrency

Cryptocurrency Passwords Authentication Accountability

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Apple created post-quantum cryptographic protocol PQ3 for iMessage Russian hacker is set to face trial for the hack of a local power grid Microsoft released red teaming tool PyRIT for Generative AI CISA orders federal agencies to fix ConnectWise ScreenConnect bug in a week FTC charged Avast with selling users’ browsing data to advertising companies (..)

Spyware

Spyware Cyber Insurance Hacking Advertising

FBI and Ukrainian police seized 9 crypto exchanges used by cybercriminals

Security Affairs

MAY 2, 2023

“Web resources offered users anonymous exchange of cryptocurrencies. Exchange services were advertised on closed hacker forums.” ” Many of these services are advertised on cybercrime forums, the services were offering support in both Russian and English. .” authorities.”

Cybercrime

Cybercrime Cryptocurrency Advertising Education

Ukraine President enforces Information Security Strategy

CyberSecurity Insiders

DECEMBER 29, 2021

Now, to those uninitiated, United States and United Kingdom on a combined note sent a team of cybersecurity experts to Ukraine in order to secure their critical infrastructure from Russia’s cyber attacks. The post Ukraine President enforces Information Security Strategy appeared first on Cybersecurity Insiders.

Information Security

Information Security Cryptocurrency Scams Cyber Attacks

InTheBox Threat Actor Sells Over 1,800 Web Injects on Cybercrime Forums

Heimadal Security

FEBRUARY 2, 2023

The threat actor that advertises them, called InTheBox, offers affordable deals and prices. The phishing windows are meant to steal credentials from banking, cryptocurrency exchange, and e-commerce apps imitating widely-used software, and they are compatible with various Android banking malware.

Cybercrime

Cybercrime Banking Cryptocurrency Phishing

Nexus, an emerging Android banking Trojan targets 450 financial apps

Security Affairs

MARCH 23, 2023

Cybersecurity firm experts from Cleafy warn of an emerging Android banking trojan, named Nexus, that was employed by multiple groups in attacks against 450 financial applications. Nexus is available via a Malware-as-a-Service (MaaS) subscription and is advertised on underground forums or through private channels (e.g.,

Banking

Banking Cryptocurrency Malware Advertising

Nitro Ransomware asks for Gift Cards as ransom

CyberSecurity Insiders

APRIL 30, 2021

Nitro Ransomware, a new variant of file encrypting malware is shaking up the internet by demanding Discord Nitro Gift Cards from victims instead of cryptocurrency. that allows its subscribers to upload files that are large and also offers to its users better emoji option along with HD Video streaming that is free of advertisements.

Ransomware

Ransomware Encryption Cryptocurrency Internet

Facebook Ad Campaigns hit by Malware

CyberSecurity Insiders

OCTOBER 20, 2022

In February this year, Check Point researchers revealed that a new malware named ‘Ducktail’ was behind the Facebook (FB) employees who were taking care of ad campaigns and their motive was to take hold of the direct payments made to them by customers or to hijack the ad campaigns to place their advertisements.

Malware

Malware Cryptocurrency Advertising Media

Doki, an undetectable Linux backdoor targets Docker Servers

Security Affairs

JULY 29, 2020

Cybersecurity researchers at Intezer spotted a new completely undetectable Linux malware , dubbed Doki , that exploits undocumented evasion techniques while targeting publicly accessible Docker servers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” continues the report. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Malware Advertising VPN

New SOVA Android Banking trojan is rapidly growing

Security Affairs

SEPTEMBER 11, 2021

SOVA is a new Android banking trojan that targets banking applications, cryptocurrency wallets, and shopping apps from the U.S. The authors of the SOVA banking Trojan have been advertising the product on hacking forums, in July they were looking for testers for their malicious code. and Spain. .” s explicit feature roadmap.”

Banking

Banking DDOS Cryptocurrency Mobile

Police seized Bestmixer, the mixing service washed at least $200 million in a year

Security Affairs

MAY 26, 2019

This week the Europol has dealt another blow to cybercrime, the European police along with the Dutch Fiscal Information and Investigation Service (FIOD), and Luxembourg authorities shut down Bestmixer.io, on one of the world’s leading cryptocurrency mixing services. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency

Cryptocurrency Cybercrime Advertising Cybersecurity

Investment fraud a serious money maker for criminals

Malwarebytes

JANUARY 3, 2024

But they also use e-mail, advertisements on websites, and instant messaging to trigger a potential victim’s interest. Popular investment opportunities offered by the criminals include stocks, cryptocurrencies, and pension funds. The most reported investment fraud products in the EU are cryptocurrencies.

Scams

Scams Cryptocurrency Social Engineering Internet

Your Small Business Cybersecurity Guide to the Most Common Cyberthreats

SiteLock

AUGUST 27, 2021

Research reveals that 68% of small- to medium-sized businesses have no policy to ensure cybersecurity, perhaps due to a belief that they don’t have anything worth stealing. Because many small business owners are often busy and strapped for time, cybersecurity might not be a top priority. Noisy Cybersecurity Risks for SMBs.

Small Business

Small Business Cybersecurity Phishing DDOS

Sodinokibi gang hacked law firm of the celebrities and threatens to release the docs

Security Affairs

MAY 9, 2020

Since April, the gang has started accepting the Monero cryptocurrency instead of Bitcoin to make it harder investigation by law enforcement agencies. Please vote Security Affairs for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link]. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking

Hacking Ransomware Advertising Cryptocurrency

No “Apple magic” as 11% of macOS detections last year came from malware

Malwarebytes

MARCH 5, 2024

We’re going to let you in on a little cybersecurity secret… There’s malware on Mac computers. Separately, in September 2023, Malwarebytes discovered a cybercriminal campaign that tricked Mac users into accidentally installing a type of malware that can steal passwords, browser data, cookies, files, and cryptocurrency.

Malware

Malware Adware Ransomware Social Engineering

USCYBERCOM shares five new North Korea-linked malware samples

Security Affairs

MAY 13, 2020

“On May 12, 2020, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Defense (DoD) released three Malware Analysis Reports (MARs) on malware variants used by the North Korean government.” ” reads the DHS CISA’s advisory. Pierluigi Paganini.

Malware

Malware Advertising Government Cryptocurrency

Cryptojacking campaign uses Shodan to scan for Docker hosts to hack

Security Affairs

JUNE 1, 2019

As with all cryptocurrency miners, it uses the resources of the host system to mine cryptocurrency (Monero in this instance) without the owner’s knowledge.” “An interesting characteristic of the attack is that it uses a cryptocurrency miner that it is being built from scratch instead of an existing one.”

Hacking

Hacking Cryptocurrency Advertising Accountability

Pay it safe: Group-IB aids Paxful in repelling a series of web-bot attacks

Security Affairs

OCTOBER 20, 2020

Group-IB assisted Paxful, an international peer-to-peer cryptocurrency marketplace, in countering web-bot and social engineering attacks. But it was the detection and prevention of bad bot activity that pushed Paxful to adopt an additional layer of cybersecurity and resort to Group-IB. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Social Engineering eCommerce Engineering

US dismantled and seized SSNDOB cybercrime marketplace

Security Affairs

JUNE 8, 2022

“The SSNDOB administrators created advertisements on darkweb criminal forums for the Marketplace’s services, provided customer support functions, and regularly monitored the activities of the sites, including monitoring when purchasers deposited money into their accounts.” ” reads the press release published by DoJ.

Cybercrime

Cybercrime Cryptocurrency Marketing Advertising

QwixxRAT, a new Windows RAT appears in the threat landscape

Security Affairs

AUGUST 15, 2023

The Uptycs Threat Research team discovered the QwixxRAT (aka Telegram RAT) in early August 2023 while it was advertised through Telegram and Discord platforms. The malware includes a clipper code to capture data copied to the clipboard, a technique used to extract cryptocurrency wallet information from Monero, Ethereum, and Bitcoin.

Malware

Malware Antivirus Cryptocurrency Advertising

Stealer for PIX payment system, new Lumar stealer and Rhysida ransomware

SecureList

OCTOBER 24, 2023

Introduction As a cybersecurity company, Kaspersky is constantly dealing with known and brand-new malware samples. Next, Lumar starts three different threads, each one looking for specific data: txt,doc,jpg,rdp,xls, etc files; browser cookies and cached passwords; files associated with cryptocurrency wallets.

Ransomware

Ransomware Malware Advertising Passwords

Security Affairs newsletter Round 242

Security Affairs

DECEMBER 1, 2019

Upbit cryptocurrency exchange hacked, crooks stole $48.5 A Ransomware infected the network of the cybersecurity firm Prosegur. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. million worth of ETH. Pierluigi Paganini.

Advertising

Advertising Ransomware Cryptocurrency Government

Cannabis investment scam JuicyFields ends in 9 arrests

Malwarebytes

APRIL 18, 2024

As we often see with these kinds of changes in regulatory frameworks, cybercriminals are the first to spot a window of opportunity and advertise with investment opportunities, promising a high return on low-risk investments. We don’t just report on threats—we remove them Cybersecurity risks should never spread beyond a headline.

Scams

Scams Marketing Cryptocurrency Banking

APWG: Phishing maintained near-record levels in the first quarter of 2021

Security Affairs

JUNE 13, 2021

It is interesting to tone that the phishing attacks against cryptocurrency targets broke 2 per for the first time, a circumstance that demonstrates the growing interest of cybercrime in targeting users attracted by the raise of the value of cryptocurrencies like Bitcoin.

Phishing

Phishing Advertising Cryptocurrency Encryption

Interpol: Goldfish Alpha operation reduces cryptojacking by 78%

Security Affairs

JANUARY 9, 2020

An operation coordinated by Interpol, dubbed Goldfish Alpha, dismantled an illegal cryptocurrency network operating in Southeast Asia. Interpol announced that it has coordinated a successful international operation aimed at removing cryptocurrency miners that infected routers located in Southeast Asia. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Cybercrime Internet Internet

Hackers hijacked Coincheck ‘s domain registrar account and targeted some users

Security Affairs

JUNE 4, 2020

Hackers hijacked one of the domains of the Japanese cryptocurrency exchange Coincheck and used it for spear-phishing attacks. The Japanese cryptocurrency exchange Coincheck announced that threat actors have accessed their account at the Oname.com domain registrar and hijacked one of its domain names. Pierluigi Paganini.

Accountability

Accountability Phishing DNS Cryptocurrency

BunnyLoader, a new Malware-as-a-Service advertised in cybercrime forums

Crooks hacked Mandiant X account to push cryptocurrency scam

Webinars

Trending Sources

Google Cybersecurity Action Team Threat Horizons Report #9 Is Out!

Webinars

Google bans the following cryptocurrency apps for data security

Lazarus APT Targeting Cryptocurrency, CISA Warns

Europol Dismantled a Cybercrime Ring Involved in Cryptocurrency Scams

WeSteal, a shameless commodity cryptocurrency stealer available for sale

Scammers Are Mailing Fake Ledger Devices to Steal Cryptocurrency

IOTA cryptocurrency shuts down entire network after a coordinated attack on its Trinity wallet

Will cryptocurrency mining soon saturate AWS, Microsoft Azure and Google Cloud?

Google Cybersecurity Action Team Threat Horizons Report #9 Is Out!

Beware malware posing as beta versions of legitimate apps, warns FBI

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

North Korea's Lazarus Hackers Targeting macOS Users Interested in Crypto Jobs

Cryptocurrency Platform Atlas Quantum hacked, 260k users impacted

Cybersecurity for the Public Interest

Cybersecurity for the Public Interest

Cyber Frauds force Facebook to ban Crypto ads on celebrity profiles

Group-IB experts record a massive surge of user data leaks form cryptocurrency exchanges

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

FBI and Ukrainian police seized 9 crypto exchanges used by cybercriminals

Ukraine President enforces Information Security Strategy

InTheBox Threat Actor Sells Over 1,800 Web Injects on Cybercrime Forums

Nexus, an emerging Android banking Trojan targets 450 financial apps

Nitro Ransomware asks for Gift Cards as ransom

Facebook Ad Campaigns hit by Malware

Doki, an undetectable Linux backdoor targets Docker Servers

New SOVA Android Banking trojan is rapidly growing

Police seized Bestmixer, the mixing service washed at least $200 million in a year

Investment fraud a serious money maker for criminals

Your Small Business Cybersecurity Guide to the Most Common Cyberthreats

Sodinokibi gang hacked law firm of the celebrities and threatens to release the docs

No “Apple magic” as 11% of macOS detections last year came from malware

USCYBERCOM shares five new North Korea-linked malware samples

Cryptojacking campaign uses Shodan to scan for Docker hosts to hack

Pay it safe: Group-IB aids Paxful in repelling a series of web-bot attacks

US dismantled and seized SSNDOB cybercrime marketplace

QwixxRAT, a new Windows RAT appears in the threat landscape

Stealer for PIX payment system, new Lumar stealer and Rhysida ransomware

Security Affairs newsletter Round 242

Cannabis investment scam JuicyFields ends in 9 arrests

APWG: Phishing maintained near-record levels in the first quarter of 2021

Interpol: Goldfish Alpha operation reduces cryptojacking by 78%

Hackers hijacked Coincheck ‘s domain registrar account and targeted some users

Stay Connected