Advertising, Cryptocurrency, Hacking and Passwords

Crooks hacked Mandiant X account to push cryptocurrency scam

Security Affairs

JANUARY 4, 2024

The X account of cybersecurity giant Mandiant was hacked, attackers used it to impersonate the Phantom crypto wallet and push a cryptocurrency scam. Crooks hacked the X account of cybersecurity firm Mandiant and used it to impersonate the Phantom crypto platform and share a cryptocurrency scam.

Scams

Scams Cryptocurrency Accountability Hacking

U.S. and Australian police arrested Firebird RAT author and operator

Security Affairs

APRIL 14, 2024

The Australian man developed and sold Firebird to customers on a dedicated hacking forum. The RAT allowed customers to access and control their victims’ computers remotely, its author advertised its stealing capabilities. The Australian man faces twelve counts of computer offenses. ” reported the DoJ. ” reported the DoJ.

Computers and Electronics

Computers and Electronics Advertising Cryptocurrency Malware

Tainted password-cracking software for industrial systems used to spread P2P Sality bot

Security Affairs

JULY 15, 2022

Threat actors behind the campaign used multiple accounts across several social media platforms to advertise password-cracking software for Programmable Logic Controller (PLC), Human-Machine Interface (HMI), and project files. The password cracking software also acts as a dropper for the Sality P2P bot. Pierluigi Paganini.

Passwords

Passwords Software Firmware Malware

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

CryptoCore hacker group stole over $200M from cryptocurrency exchanges

Security Affairs

JUNE 24, 2020

The CryptoCore hacker group that is believed to be operating out of Eastern Europe has stolen around $200 million from online cryptocurrency exchanges. Experts from ClearSky states that a hacker group tracked as CryptoCore, which is believed to be operating out of Eastern Europe, has stolen around $200 million from cryptocurrency exchanges.

Cryptocurrency

Cryptocurrency Phishing Accountability Passwords

WeSteal, a shameless commodity cryptocurrency stealer available for sale

Security Affairs

MAY 2, 2021

The bold author of a new cryptocurrency stealer, dubbed WeSteal, is promising its customers a leading way to make money in 2021. According to Palo Alto Networks, the author of WeSteal, that goes online as “ComplexCodes,” started advertising the cryptocurrency stealer on underground forums in mid-February 2021.

Cryptocurrency

Cryptocurrency Malware Advertising System Administration

Will cryptocurrency mining soon saturate AWS, Microsoft Azure and Google Cloud?

The Last Watchdog

JUNE 20, 2018

Cryptojacking, as defined by the Federal Trade Commission , is the use of JavaScript code to capture cryptocurrencies in users’ browsers without asking permission. Bilogorskiy: Before 2013 a lot of malware was focused on spam, DDoS and monetizing through malicious advertising and ad fraud. Bilogorskiy: Exactly. It was insane.

Cryptocurrency

Cryptocurrency Passwords Ransomware Malware

Cryptocurrency Platform Atlas Quantum hacked, 260k users impacted

Security Affairs

AUGUST 28, 2018

The Cryptocurrency Platform Atlas Quantum suffered a security breach, information belonging to more than 260,000 users was stolen by hackers. Hackers stole information related to over 260,000 users of the Cryptocurrency Platform Atlas Quantum. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency

Cryptocurrency Hacking Data breaches Passwords

Someone emptied a $1 billion BitCoin wallet ahead of Presidential Election

Security Affairs

NOVEMBER 4, 2020

Yesterday almost $1 billion worth of cryptocurrency contained in a password-protected BitCoin wallet was moved to another wallet. Someone has transferred almost $1 billion worth of cryptocurrency contained in a password-protected BitCoin wallet to another wallet. SecurityAffairs – hacking, BitCoin wallet).

Cryptocurrency

Cryptocurrency Passwords Advertising Hacking

Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case

Security Affairs

MARCH 15, 2024

“Buyers could search for compromised computer credentials on E-Root, such as usernames and passwords that would allow buyers to access remote computers for purposes of stealing private information or manipulating the contents of the remote computer. ” reads the press release published by DoJ.

Cybercrime

Cybercrime Cryptocurrency Advertising Passwords

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Security Affairs

APRIL 6, 2020

Experts uncovered a hacking campaign that is breaching Docker clusters to deploy a new crypto-mining malware tracked as Kinsing. Cloud security firm Aqua Security uncovered a hacking campaign carried out during the past months, hackers are scanning the Internet for Docker servers running API ports exposed without a password.

Cryptocurrency

Cryptocurrency Malware Advertising VPN

Google removed 49 Chrome Extensions that were hijacking cryptocurrency wallets

Security Affairs

APRIL 15, 2020

Google has removed 49 new Chrome browser extensions from its official Web Store that hide the code to hijack cryptocurrency wallets. Google has removed 49 new Chrome browser extensions from its official Web Store that contain the code to steal sensitive information and hijack cryptocurrency wallets. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Advertising Phishing Passwords

Experts warn of JinxLoader loader used to spread Formbook and XLoader

Security Affairs

JANUARY 2, 2024

Palo Alto Networks’s Unit 42 first observed the malware in November 2023 reporting that it has been advertised on the hacking forum Hackforums since April 30, 2023. The content of the messages attempted to trick the recipients into opening a password-protected RAR archive. net on 2023-04-30.

Malware

Malware Passwords Cryptocurrency Hacking

Poloniex forces password reset following a data leak

Security Affairs

JANUARY 2, 2020

The Poloniex cryptocurrency exchange is forcing users to reset their passwords following a data leak. . Another bad news for the community of the virtual currencies communities, the Poloniex cryptocurrency exchange has forced its users to reset their passwords following a data leak. . This is a real email!

Passwords

Passwords Cryptocurrency Data breaches Advertising

Experts reported the hack of several supercomputers across Europe

Security Affairs

MAY 17, 2020

Organizations managing supercomputers across Europe reported their systems have been compromised to deploy cryptocurrency miners. Crooks have compromised supercomputers across Europe to deploy cryptocurrency miners, incidents have been already reported in the UK, Germany, and Switzerland. SecurityAffairs – supercomputers, hacking).

Hacking

Hacking Cryptocurrency Advertising Malware

Two men arrested for stealing $550,000 in cryptocurrency with Sim Swapping

Security Affairs

NOVEMBER 15, 2019

On Thursday, US authorities arrested two crooks charging them with stealing $550,000 in cryptocurrency from at least 10 victims using SIM swapping. American law enforcement has declared war to sim swapping scammers and announced the arrest of two individuals for stealing $550,000 in Cryptocurrency. In May, the U.S. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Identity Theft Accountability Media

One of the hackers behind EtherDelta hack also involved in TalkTalk hack

Security Affairs

SEPTEMBER 21, 2019

US authorities have indicted two men for hacking the exchange EtherDelta in December 2017, one of them was also accused of TalkTalk hack. US authorities have indicted two men, Elliot Gunton and Anthony Tyler Nashatka, for hacking the cryptocurrency exchange EtherDelta in 2017. SecurityAffairs – TalkTalk, hacking).

Hacking

Hacking DNS Cryptocurrency Accountability

Shitcoin Wallet Chrome extension steals crypto-wallet private keys and passwords

Security Affairs

JANUARY 2, 2020

Security expert discovered a Google Chrome extension named Shitcoin Wallet that steals passwords and wallet private keys. Harry Denley, director of security at the MyCrypto , discovered that the Google Chrome extension named Shitcoin Wallet is stealing passwords and wallet private keys. SecurityAffairs – Shitcoin Wallet , hacking).

Passwords

Passwords Cryptocurrency Advertising Antivirus

5 Ways to Protect Yourself from IP Address Hacking

Security Affairs

AUGUST 20, 2019

Your IP address represents your digital identity online, hacking it not only allows attackers to access your device or your accounts, but it may cause even bigger damage. Cybercriminals are interested in hacking your IP address for various reasons. The hacked and stolen IPs are often used for carrying out illegal activities.

Hacking

Hacking VPN Internet Internet

Cryptojacking campaign uses Shodan to scan for Docker hosts to hack

Security Affairs

JUNE 1, 2019

As with all cryptocurrency miners, it uses the resources of the host system to mine cryptocurrency (Monero in this instance) without the owner’s knowledge.” “An interesting characteristic of the attack is that it uses a cryptocurrency miner that it is being built from scratch instead of an existing one.”

Hacking

Hacking Cryptocurrency Advertising Accountability

New MrbMiner malware infected thousands of MSSQL DBs

Security Affairs

SEPTEMBER 16, 2020

According to security firm Tencent, the team of hackers has been active over the past few months by hacking into Microsoft SQL Servers (MSSQL) to install a crypto-miner. Hackers blasted in through the weak password of the SQL Server server. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Malware

Malware Cryptocurrency Advertising Accountability

CVE-2019-11707 Firefox Zero-Day exploited to infect employees at cryptocurrency exchanges

Security Affairs

JUNE 20, 2019

Researchers discovered that recently patched Firefox zero-day (CVE-2019-11707) has been exploited to deliver Windows and Mac malware to cryptocurrency exchanges. According to Martin, other cryptocurrency organizations were hit by similar attacks. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency

Cryptocurrency Malware Advertising Passwords

$10M Is Yours If You Can Get This Guy to Leave Russia

Krebs on Security

MAY 4, 2023

As noted in the Secret Service’s criminal complaint (PDF), the Try2Check service was first advertised on the closely-guarded Russian cybercrime forum Mazafaka , by someone using the handle “ KreenJo.” investigators that they had access to a wealth of personal information tied to a cryptocurrency exchange Kulkov had used.

Marketing

Marketing Cybercrime Accountability Cryptocurrency

Xwo Malware scans the Internet for Exposed Services, Default Passwords

Security Affairs

APRIL 5, 2019

Researchers at AT&T Alien Labs have spotted a malware called Xwo that is actively scanning the Internet for exposed web services and default passwords. Experts at AT&T Alien Labs discovered a new piece of malware called Xwo that is actively scanning the Internet for exposed web services and default passwords.

Internet

Internet Internet Passwords Malware

Statc Stealer, a new sophisticated info-stealing malware

Security Affairs

AUGUST 10, 2023

The malicious code also targets cryptocurrency wallets and can capture credentials, passwords, and even data from messaging apps like Telegram. The infection chain starts when victims are tricked into clicking on an ads that appears like an authentic Google advertisement. The user inadvertently downloads the Initial Sample file.

Malware

Malware Encryption Advertising Cryptocurrency

Analysis of BlackGuard – a new info stealer malware being sold in a Russian hacking forum

Security Boulevard

MARCH 30, 2022

Introduction: Hacking forums often double up as underground marketplaces where cybercriminals buy, rent, and sell all kinds of malicious illegal products, including software, trojans, stealers, exploits, and leaked credentials. It has the capability to steal history, passwords, autofill information, and downloads. PWS.Blackguard.

Malware

Malware Hacking Antivirus Passwords

Hackers breached four prominent underground cybercrime forums

Security Affairs

MARCH 6, 2021

A suspicious wave of attacks resulted in the hack of four cybercrime forums Verified, Crdclub, Exploit, and Maza since January. Since January, a series of mysterious cyberattacks that resulted in the hack of popular Russian-language cybercrime forums. usernames, partially obfuscated password hashes, email addresses).

Cybercrime

Cybercrime DDOS Hacking Passwords

LockBit ransomware gang claims to have stolen data from PayBito crypto exchange

Security Affairs

FEBRUARY 5, 2022

PayBito is a bitcoin and cryptocurrency exchange for major cryptocurrencies including Bitcoin Cash, Bitcoin, Ethereum, HCX, Litecoin, Ethereum Classic. The group also claims to have stolen email and password hashes that can be easily decrypted due to the use of a “weak hash algorithm.” SecurityAffairs – hacking, PayBito).

Ransomware

Ransomware Cryptocurrency Hacking Advertising

Group-IB experts record a massive surge of user data leaks form cryptocurrency exchanges

Security Affairs

AUGUST 7, 2018

Group-IB researchers have investigated user data leaks from cryptocurrency exchanges and has analyzed the nature of these incidents. In 2017, when cryptocurrencies were gaining momentum, their record-breaking capitalization and a spike in Bitcoin’s exchange rate led to dozens of attacks on cryptocurrency services.

Cryptocurrency

Cryptocurrency Passwords Authentication Accountability

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

Krebs on Security

SEPTEMBER 17, 2020

Justice Department this week indicted seven Chinese nationals for a decade-long hacking spree that targeted more than 100 high-tech and online gaming companies. Security firm FireEye dubbed that hacking blitz “one of the broadest campaigns by a Chinese cyber espionage actor we have observed in recent years.” Image: FBI.

Antivirus

Antivirus Hacking Government Software

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Security Affairs

FEBRUARY 10, 2022

Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts. Do not provide your mobile number account information over the phone to representatives that request your account password or pin. Use a variation of unique passwords to access online accounts.

Mobile

Mobile Cryptocurrency Authentication Accountability

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. Based on the risk score, CryptoIns experts have calculated insurance rates for cryptocurrency exchange users who can now insure their accounts against cyber threats.

Insurance

Insurance Cryptocurrency Cyber threats Marketing

Experts warn of self-spreading malware targeting gamers looking for cheats on YouTube

Security Affairs

SEPTEMBER 16, 2022

The RedLine malware allows operators to steal several pieces of information, including credentials, credit card data, cookies, autocomplete information stored in browsers, cryptocurrency wallets, credentials stored in VPN clients and FTP clients. SecurityAffairs – hacking, YouTube). ” reads the report published by Kaspersky.

Malware

Malware Cryptocurrency Hacking Passwords

New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms

Security Affairs

SEPTEMBER 17, 2018

Palo Alto Network researchers discovered a new malware, tracked as XBash, that combines features from ransomware, cryptocurrency miners, botnets, and worms. The malicious code combines features from different families of malware such as ransomware, cryptocurrency miners, botnets, and worms. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Malware Ransomware Cybercrime

Modular Cryptojacking malware uses worm abilities to spread

Security Affairs

MARCH 13, 2019

Security experts at 360 Total Security have discovered a new modular cryptocurrency malware that implements worm capabilities to spread. The Monero cryptocurrency miner uses a worm module (Systemctl.exe) dubbed PsMiner written in the Go language which includes exploit modules used to hack into vulnerable servers.

Malware

Malware Cryptocurrency Advertising Passwords

FBI shuts down the Russian-based hacker platform DEER.IO

Security Affairs

MARCH 26, 2020

was shut down by the FBI today, and its suspected administrator – alleged Russian hacker Kirill Victorovich Firsov – was arrested and charged with crimes related to the hacking of U.S. which is a Shopify-like platform that has been hosting hundreds of online shops used for the sale of hacked accounts and stolen user data.

Cybercrime

Cybercrime Advertising Hacking Accountability

New strain of Clipsa malware launches brute-force attacks on WordPress sites

Security Affairs

AUGUST 8, 2019

Avast spotted a new strain of Clipsa malware that is used to mine and steal cryptocurrencies along with carrying out brute-force attacks on WordPress sites. Clipsa is a malware that is well known to cyber security community is able to steal cryptocurrency via clipoard hijacking and mine cryptocurrency after installing a miner. .

Malware

Malware Cryptocurrency Passwords Internet

MEGA Chrome browser extension hacked, bogus version stole users’ credentials

Security Affairs

SEPTEMBER 6, 2018

The MEGA Chrome browser extension had been hacked and replaced with a one that steals users’ credentials for popular web services. Uninstall it now because the Chrome extension for MEGA file storage service had been hacked and replaced with a one that steals users’ credentials for popular web services (i.e. WARNING !!!!!!!

Hacking

Hacking Cryptocurrency Advertising Accountability

Masad Stealer Malware exfiltrates data via Telegram

Security Affairs

SEPTEMBER 29, 2019

Experts at Juniper Threat Labs have discovered a new piece of malware dubbed Masad Stealer that exfiltrate s cryptocurrency wallet files via Telegram. The malware could steals files, browser information, and cryptocurrency wallet data and send them to the botmasters using a Telegram. SecurityAffairs – hacking, malware).

Malware

Malware Cryptocurrency Advertising Marketing

Raccoon Malware, a success case in the cybercrime ecosystem

Security Affairs

FEBRUARY 24, 2020

Racoon malware , Legion, Mohazo, and Racealer, is an infostealer that recently appeared in the threat landscape that is advertised in hacking forums. The malware is cheap compared to similar threats, it is able to steal sensitive data from about 60 applications, including (browsers, cryptocurrency wallets, email and FTP clients).

Cybercrime

Cybercrime Malware Cryptocurrency Advertising

Crooks target Ukraine’s IT Army with a tainted DDoS tool

Security Affairs

MARCH 10, 2022

Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. Once downloaded, these files infect unwitting users rather than delivering the tools originally advertised.” Liberator is advertised as a DDoS tool to launch attacks against “Russian propaganda websites.”

DDOS

DDOS Digital transformation Malware Advertising

Attackers use a new CoronaVirus Ransomware to cover Kpot Infostealer infections

Security Affairs

MARCH 17, 2020

Last week, security experts from MalwareHunterTeam detected new ransomware dubbed CoronaVirus has been distributed through a malicious web site that was advertising a legitimate system optimization software and utilities from WiseCleaner. exe,’ which is the Kpot password-stealing Trojan. One of these files is, ‘file1.exe,’

Ransomware

Ransomware Cryptocurrency Advertising Passwords

Erbium info-stealing malware, a new option in the threat landscape

Security Affairs

SEPTEMBER 27, 2022

Threat actors behind the new ‘Erbium’ information-stealing malware are distributing it as fake cracks and cheats for popular video games to steal victims’ credentials and cryptocurrency wallets. The Malware-as-a-Service (MaaS) was advertised on a Dark Web forum by a Russian-speaking threat actor. Pierluigi Paganini.

Malware

Malware Password Management Authentication Passwords

Bad OPSEC allowed researchers to uncover Mars stealer operation????

Security Affairs

MARCH 31, 2022

The malicious code allows stealing user credentials stored in various browsers, as well as many different cryptocurrency wallets. The malware targets multiple cryptocurrency wallets, the most stolen plugin using Mars Stealer is the crypto wallet MetaMask, followed by Coinbase. They used stolen information to pay advertising campaigns.

Cryptocurrency

Cryptocurrency Malware Cybercrime Advertising

Security Service of Ukraine arrested the popular hacker Sanix who sold billions of stolen credentials

Security Affairs

MAY 20, 2020

The Ukrainian Secret Service (SSU) has arrested a hacker known as Sanix, who was selling billions of stolen credentials on hacking forums and Telegram channels. It has been estimated that the man amassed billions of unique username-password combinations. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cybercrime

Cybercrime Passwords Advertising Hacking

Crooks hacked Mandiant X account to push cryptocurrency scam

U.S. and Australian police arrested Firebird RAT author and operator

Webinars

Trending Sources

Tainted password-cracking software for industrial systems used to spread P2P Sality bot

Webinars

CryptoCore hacker group stole over $200M from cryptocurrency exchanges

WeSteal, a shameless commodity cryptocurrency stealer available for sale

Will cryptocurrency mining soon saturate AWS, Microsoft Azure and Google Cloud?

Cryptocurrency Platform Atlas Quantum hacked, 260k users impacted

Someone emptied a $1 billion BitCoin wallet ahead of Presidential Election

Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Google removed 49 Chrome Extensions that were hijacking cryptocurrency wallets

Experts warn of JinxLoader loader used to spread Formbook and XLoader

Poloniex forces password reset following a data leak

Experts reported the hack of several supercomputers across Europe

Two men arrested for stealing $550,000 in cryptocurrency with Sim Swapping

One of the hackers behind EtherDelta hack also involved in TalkTalk hack

Shitcoin Wallet Chrome extension steals crypto-wallet private keys and passwords

5 Ways to Protect Yourself from IP Address Hacking

Cryptojacking campaign uses Shodan to scan for Docker hosts to hack

New MrbMiner malware infected thousands of MSSQL DBs

CVE-2019-11707 Firefox Zero-Day exploited to infect employees at cryptocurrency exchanges

$10M Is Yours If You Can Get This Guy to Leave Russia

Xwo Malware scans the Internet for Exposed Services, Default Passwords

Statc Stealer, a new sophisticated info-stealing malware

Analysis of BlackGuard – a new info stealer malware being sold in a Russian hacking forum

Hackers breached four prominent underground cybercrime forums

LockBit ransomware gang claims to have stolen data from PayBito crypto exchange

Group-IB experts record a massive surge of user data leaks form cryptocurrency exchanges

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Group-IB and CryptoIns introduce the world’s first insurance against cyber threats for cryptocurrency exchanges

Experts warn of self-spreading malware targeting gamers looking for cheats on YouTube

New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms

Modular Cryptojacking malware uses worm abilities to spread

FBI shuts down the Russian-based hacker platform DEER.IO

New strain of Clipsa malware launches brute-force attacks on WordPress sites

MEGA Chrome browser extension hacked, bogus version stole users’ credentials

Masad Stealer Malware exfiltrates data via Telegram

Raccoon Malware, a success case in the cybercrime ecosystem

Crooks target Ukraine’s IT Army with a tainted DDoS tool

Attackers use a new CoronaVirus Ransomware to cover Kpot Infostealer infections

Erbium info-stealing malware, a new option in the threat landscape

Bad OPSEC allowed researchers to uncover Mars stealer operation????

Security Service of Ukraine arrested the popular hacker Sanix who sold billions of stolen credentials

Stay Connected