Security Affairs

MARCH 24, 2025

” Fake file converters and download tools may perform advertised tasks but can provide resulting files containing hidden malware, giving criminals access to victims’ devices. They can also steal personal data, banking details, cryptocurrency info, emails, and passwords by scraping the files the users upload.

Malware 122

Malware Scams Identity Theft Antivirus 122

Security Affairs

NOVEMBER 5, 2024

UNC5537 is systematically compromising Snowflake customer instances using stolen customer credentials, advertising victim data for sale on cybercrime forums, and attempting to extort many of the victims.” ” UNC5537 used stolen credentials obtained via infostealer malware.

Unstructured Data 127

Unstructured Data Cybercrime Media Hacking 127

Security Affairs

JUNE 9, 2025

Indicators of BADBOX 2.0 To reduce exposure to unauthorized residential proxy networks, monitor home network traffic, check IoT devices for suspicious activity, avoid unofficial app stores, and keep all systems updated, especially by patching known and internet-facing vulnerabilities promptly.

IoT 145

IoT Internet Internet Advertising 145

Security Affairs

FEBRUARY 3, 2025

Crazy Evil actively recruits affiliates by advertising its cybercriminal network with specific skill requirements. The cybercrime gang focused on targeting the Web3 and decentralized finance industry. The group maintains a strong presence on dark web forums and collaborates with other cybercrime gangs and malware developers.

Scams 90

Scams Media Cryptocurrency Cybercrime 90

SecureWorld News

MARCH 20, 2025

Phishing plays straight out of the cybercrime playbook "March Madness brings heightened cybersecurity risks this year, especially with the expansion of sports gambling beyond traditional office pools creating new attack vectors for credential harvesting and financial fraud," warns J.

Scams 95

Scams Social Engineering Phishing Mobile 95

Security Affairs

NOVEMBER 29, 2024

Authors advertise Rockstar 2FA as a phishing-as-a-service toolkit that bypasses 2FA, harvests cookies, and features FUD links, antibot tools, and custom themes. .” reads the report published by Trustwave. The subscription fee for the PhaaS is $200 for two weeks, $350 for a month, US$180 for a two-week API renewal service.

Phishing 119

Phishing Accountability Authentication Advertising 119

Security Affairs

NOVEMBER 30, 2024

Some of the malicious apps were promoted through deceptive advertising on social media. SpyLoan apps exploit social engineering to gain sensitive user data and excessive permissions, leading to extortion, harassment, and financial loss. Some apps were suspended by Google from Google Play while others were updated by the developers.

Social Engineering 135

Social Engineering Media Mobile Scams 135

Zero Day

JUNE 6, 2025

The data in question was posted on a Russian cybercrime forum on May 15 and then uploaded again on June 3, apparently garnering attention from other cybercriminals and potential buyers. But in this age of cybercrime, these numbers have become vulnerable. Privacy Policy | | Cookie Settings | Advertise | Terms of Use

Password Management 128

Password Management Passwords Identity Theft Artificial Intelligence 128

Security Affairs

MARCH 2, 2025

Headquartered in Davenport, Iowa, and listed on Nasdaq under the ticker LEE, Lee Enterprises describes itself as a leading source of trusted local news and information, with robust digital platforms and innovative advertising solutions. Yet, the information weve uncovered might offer a different perspective.

Ransomware 83

Ransomware Cybercrime Encryption Healthcare 83

Security Affairs

MARCH 27, 2025

The researchers recommend avoiding clicking on sponsored search results and always verifying the advertiser by checking the details behind the URL to ensure it’s the legitimate brand owner. Crooks can bypass Google controls that prevent fake ads, outbidding legitimate brands and rank higher in sponsored search results.

Malware 74

Malware Data collection Advertising Media 74

Security Affairs

MARCH 13, 2025

Medusa operates a.onion data leak site, divulging victims alongside countdowns to the release of information. At this stage, Medusa concurrently advertises sale of the data to interested parties before the countdown timer ends. Ransom demands are posted on the site, with direct hyperlinks to Medusa affiliated cryptocurrency wallets.

Ransomware 76

Ransomware Encryption Cryptocurrency Insurance 76

Security Affairs

JANUARY 29, 2025

The threat actors behind Aquabot have been advertising it as a DDoS-as-a-service on platforms like Telegram under various misleading names, such as Cursinq Firewall and The Eye Botnet. They often claim it is for DDoS mitigation testing, but experts pointed out that it spreads Mirai malware and is used for real attacks.

DDOS 74

DDOS Firmware Malware Firewall 74

Security Affairs

JULY 23, 2025

French authorities announced the arrest in Ukraine of an alleged administrator of the long-running cybercrime forum XSS.is. A joint investigation conducted by French police, Ukrainian authorities, and Europol led to the arrest of the suspected administrator of the major Russian-speaking cybercrime forum xss.is. ”” The xss.is

Cybercrime 77

Cybercrime Hacking Advertising Mobile 77

Security Affairs

JULY 18, 2024

The cybercrime group FIN7 is advertising a security evasion tool in multiple underground forums, cybersecurity company SentinelOne warns. SentinelOne researchers warn that the financially motivated group FIN7 is using multiple pseudonyms to advertise a security evasion tool in several criminal underground forums.

Advertising 143

Advertising Cybercrime Hacking Antivirus 143

Security Affairs

OCTOBER 3, 2023

Zscaler ThreatLabz researchers discovered a new malware-as-a-service (MaaS) that is called BunnyLoader, which has been advertised for sale in multiple cybercrime forums since September 4, 2023. Cybersecurity researchers spotted a new malware-as-a-service (MaaS) called BunnyLoader that’s appeared in the threat landscape.

Advertising 142

Advertising Cybercrime Malware Cryptocurrency 142

Krebs on Security

JANUARY 24, 2023

The plea comes just months after Emelyantsev was extradited from Bulgaria, where he told investigators, “America is looking for me because I have enormous information and they need it.” “Thanks to you, we are now developing in the field of information security and anonymity! But that action did not name any defendants.

Cybercrime 322

Cybercrime Advertising IoT Malware 322

Krebs on Security

JUNE 22, 2022

.” The DOJ’s statement doesn’t mention that RSOCKS has been in operation since 2014, when access to the web store for the botnet was first advertised on multiple Russian-language cybercrime forums. Even today, the RUSdot Mailer is advertised for sale at the top of the RUSdot community forum.

Advertising 338

Advertising Cybercrime System Administration Hacking 338

Security Affairs

JULY 9, 2020

More than 15 billion username and passwords are available on cybercrime marketplaces, including over 5 billion unique credentials, states the experts. Experts reported that brute-force cracking tools and account checkers are available on cybercrime marketplaces and forums for an average of $4. ” continues the report.

Cybercrime 145

Cybercrime Antivirus Marketing Accountability 145

Security Affairs

MARCH 6, 2021

A suspicious wave of attacks resulted in the hack of four cybercrime forums Verified, Crdclub, Exploit, and Maza since January. Since January, a series of mysterious cyberattacks that resulted in the hack of popular Russian-language cybercrime forums. No other information looked to be compromised in the attack.”

Cybercrime 145

Cybercrime DDOS Hacking Passwords 145

Security Affairs

OCTOBER 10, 2020

Microsoft has uncovered Zerologon attacks that were allegedly conducted by the infamous TA505 Russia-linked cybercrime group. Microsoft spotted a series of Zerologon attacks allegedly launched by the Russian cybercrime group tracked as TA505 , CHIMBORAZO and Evil Corp. Pierluigi Paganini. SecurityAffairs – hacking, Zerologon).

Cybercrime 142

Cybercrime Security Intelligence Authentication Banking 142

Krebs on Security

OCTOBER 8, 2020

There’s an old adage in information security: “Every company gets penetration tested, whether or not they pay someone for the pleasure.” ” Many organizations that do hire professionals to test their network security posture unfortunately tend to focus on fixing vulnerabilities hackers could use to break in.

Cybercrime 361

Cybercrime Malware Penetration Testing Ransomware 361

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. “The FBI is informing academic partners of identified US college and university credentials advertised for sale on online criminal marketplaces and publically accessible forums.

Cybercrime 145

Cybercrime Education Accountability Phishing 145

Security Affairs

MARCH 15, 2024

US DoJ sentenced a Moldovan national (31) to 42 months in federal prison for operating the E-Root cybercrime marketplace. Diaconu was operating the E-Root cybercrime marketplace. Authorities reported that over 350,000 credentials were advertised for sale on the marketplace. The authorities also seized the exchange platform.

Cybercrime 137

Cybercrime Cryptocurrency Advertising Passwords 137

Security Affairs

DECEMBER 26, 2022

The FBI warns of cybercriminals using search engine advertisement services to impersonate brands and defraud users. The FBI is warning of cyber criminals using search engine advertisement services to impersonate brands and direct users to websites that were used to defraud users. ” reads the advisory published by the FBI.

Advertising 98

Advertising Engineering Education Internet 98

Security Affairs

MARCH 27, 2023

The malware was advertised on cybercrime forums since early March, it is under active development and its operators planned to add new features to capture data from Apple’s Safari browser and the Notes app. It can infect Catalina and subsequent macOS versions running on Intel M1 and M2 CPUs.

Cybercrime 98

Cybercrime Malware Passwords Advertising 98

Security Affairs

APRIL 29, 2023

Atomic macOS Stealer is a new information stealer targeting macOS that is advertised on Telegram for $1,000 per month. Cyble Research and Intelligence Labs (CRIL) recently discovered a Telegram channel advertising a new information-stealing malware, named Atomic macOS Stealer (AMOS).

Advertising 98

Advertising Malware Passwords Password Management 98

Security Affairs

NOVEMBER 22, 2022

Aurora Stealer is an info-stealing malware that was first advertised on Russian-speaking underground forums in April 2022. Threat actors behind this malware also advertised its loader capabilities, the malicious code in fact is able to deploy a next-stage payload using a PowerShell command. ” reads the analysis by the experts.

Cybercrime 98

Cybercrime Malware Cryptocurrency Advertising 98

Krebs on Security

JULY 25, 2023

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. SocksEscort began in 2009 as “ super-socks[.]com SocksEscort began in 2009 as “ super-socks[.]com com, super-socks[.]com,

Malware 246

Malware VPN Internet Internet 246

Security Affairs

AUGUST 13, 2020

A threat actor has released the databases of Utah-based gun exchange and hunting sites for free on a cybercrime forum. On August 10th, a hacker has leaked online the databases of Utah-based gun exchange for free on a cybercrime forum. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking 145

Hacking Data breaches Cybercrime Passwords 145

Security Affairs

OCTOBER 6, 2023

The creation of a dedicated emergency number for cybersecurity could provide an effective solution to this rapidly growing challenge The growing threat of cybercrime is calling for new and innovative defense strategies. This would have a long-term impact on cybercrime prevention, helping to create a society more aware of digital threats.

Cybersecurity 135

Cybersecurity Cybercrime Computers and Electronics Education 135

Security Affairs

MARCH 14, 2020

. “The information on cyber attack was confirmed by Prime Minister Andrej Babiš, who was informed by Jaroslav Šmíd, who now manages the National Office for Cyber ??and and Information Security.” Our cybercrime specialists are already in place. SecurityAffairs – COVID-19, cybercrime).

Cyber Attacks 145

Cyber Attacks Cybercrime Advertising Media 145

Security Affairs

AUGUST 11, 2020

Avaddon ransomware operators, like other cybercrime groups, decided to launch a data leak site where publish data of victims who refuse to pay a ransom demand. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Ransomware 144

Ransomware Cybercrime Advertising Hacking 144

Security Affairs

MAY 27, 2024

Experts warn of a new ATM malware family that is advertised in the cybercrime underground, it was developed to target Europe. A threat actor is advertising a new ATM malware family that claims to be able of compromised 99% of devices in Europe.

Malware 145

Malware Banking Advertising Cybercrime 145

Security Affairs

MARCH 26, 2020

that is hosting various cybercrime products and services were being sold. companies for customers’ personal information.” The Russian man also advertised the platform on other hacking forums. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – cybercrime, DEER.IO).

Cybercrime 144

Cybercrime Advertising Hacking Accountability 144

Security Affairs

DECEMBER 22, 2020

VPN bulletproof services are widely adopted by cybercrime organizations to carry out malicious activities, including ransomware and malware attacks, e-skimming breaches, spear-phishing campaigns, and account takeovers. Many of these services are advertised on online forums dedicated to discussing criminal activity. day to $190/year.

VPN 142

VPN Cybercrime Advertising Accountability 142

Security Affairs

JUNE 30, 2021

“DoubleVPN was heavily advertised on both Russian and English-speaking underground cybercrime forums as a means to mask the location and identities of ransomware operators and phishing fraudsters. SecurityAffairs – hacking, cybercrime ). ” reads the press release published by the EUROPOL. Pierluigi Paganini.

Cybercrime 144

Cybercrime VPN Encryption Advertising 144

Security Affairs

FEBRUARY 12, 2020

The FBI’s Internal Crime Complaint Center (IC3) released the FBI 2019 Internet Crime Report , a document that outlines cybercrime trends over the past year. The figure that most of all capture our attention is that victims of cybercrime activities lost $3.5 Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Internet 143

Internet Internet Cybercrime Scams 143