Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. “The FBI is informing academic partners of identified US college and university credentials advertised for sale on online criminal marketplaces and publically accessible forums.

Cybercrime 134

Cybercrime Education Accountability Phishing 134

Security Affairs

JANUARY 18, 2020

I’m preparing the slides for my next speech and I decided to create this post while searching for interesting cybercrime statistics in 2020. Cybercrime will cost as much as $6 trillion annually by 2021. The global expense for organizations to protect their systems from cybercrime attacks will continue to grow.

Cybercrime 128

Cybercrime Small Business Data breaches Mobile 128

SecureWorld News

OCTOBER 17, 2022

A low-cost Phishing-as-a-Service (PhaaS) platform that has an open registration process could allow just about anyone with email to become a cybercriminal. While phishing campaigns are nothing new, this "as-a-service" approach is a bit concerning, as it makes it easier for people with nefarious intentions to access and use the type of attack.

Phishing 116

Phishing Cybercrime Accountability Advertising 116

Security Affairs

FEBRUARY 16, 2021

Researchers from threat intelligence Cyble have discovered threat actors abusing the Ngrok platform in a fresh phishing campaign. Researchers at the threat intelligence firm Cyble discovered a new wave of phishing attacks targeting multiple organizations that are abusing the ngrok platform, a secure and introspectable tunnel to the localhost.

Phishing 128

Phishing Cybercrime Mobile Internet 128

SecureList

APRIL 5, 2023

They have become adept at using Telegram both for automating their activities and for providing various services — from selling phishing kits to helping with setting up custom phishing campaigns — to all willing to pay. ” Links to the channels are spread via YouTube, GitHub and phishing kits they make.

Phishing 129

Phishing Marketing Scams Accountability 129

Security Affairs

APRIL 29, 2023

Atomic macOS Stealer is a new information stealer targeting macOS that is advertised on Telegram for $1,000 per month. Cyble Research and Intelligence Labs (CRIL) recently discovered a Telegram channel advertising a new information-stealing malware, named Atomic macOS Stealer (AMOS). ” concludes the report.

Advertising 86

Advertising Passwords Malware Password Management 86

Krebs on Security

APRIL 8, 2019

Almost exactly one year ago, KrebsOnSecurity reported that a mere two hours of searching revealed more than 100 Facebook groups with some 300,000 members openly advertising services to support all types of cybercrime, including spam, credit card fraud and identity theft. Facebook responded by deleting those groups.

Cybercrime 212

Cybercrime Passwords Identity Theft Accountability 212

Security Affairs

NOVEMBER 22, 2022

Aurora Stealer is an info-stealing malware that was first advertised on Russian-speaking underground forums in April 2022. The attackers used methods to deliver the malware, including phishing websites masquerading as legitimate ones, YouTube videos and fake “free software catalogue” websites. ” reads the analysis by the experts.

Cybercrime 96

Cybercrime Malware Cryptocurrency Advertising 96

Security Affairs

OCTOBER 11, 2022

Researchers warn of a new phishing-as-a-service (PhaaS) toolkit, called Caffeine, which is being used by cybercriminals. In March 2022, Mandiant researchers discovered threat actors using a shared Phishing-as-a-Service (PhaaS) platform called Caffeine. ” reads the report published by Mandiant.

Phishing 93

Phishing Cybercrime Accountability Advertising 93

Krebs on Security

MAY 16, 2019

The locations of alleged GozNym cybercrime group members. According to the indictment, the GozNym network exemplified the concept of ‘cybercrime as a service,’ in that the defendants advertised their specialized technical skills and services on underground, Russian-language, online criminal forums. Source: DOJ.

Cybercrime 181

Cybercrime Banking Small Business Computers and Electronics 181

Malwarebytes

SEPTEMBER 15, 2023

The report follows the Internet Organized Crime Assessment (IOCTA), Europol’s assessment of the cybercrime landscape and how it has changed over the last 24 months. When it comes to the most deployed tactics, the report holds no big surprises.

Cybercrime 102

Cybercrime Ransomware DDOS Backups 102

Security Affairs

JUNE 13, 2021

The Anti-Phishing Working Group (APWG) revealed that the number of phishing websites peaked at record levels in the first quarter of 2021. The Anti-Phishing Working Group (APWG) has published its new Phishing Activity Trends Report related to the first quarter of 2021. Reported Phishing Websites for Q1 2021.

Phishing 106

Phishing Advertising Cryptocurrency Encryption 106

Security Affairs

SEPTEMBER 23, 2021

Microsoft uncovered a large-scale phishing-as-a-service operation, dubbed BulletProofLink, that enabled threat actors to easily carry out malicious campaigns. BulletProofLink service was very cheap and allowed threat actors to arrange phishing campaigns without specific technical capabilities. ” concludes Microsoft.

Phishing 92

Phishing Cybercrime Advertising Hacking 92

The Hacker News

JULY 26, 2023

Following the footsteps of WormGPT, threat actors are advertising yet another cybercrime generative artificial intelligence (AI) tool dubbed FraudGPT on various dark web marketplaces and Telegram channels. Netenrich security researcher Rakesh Krishnan

Artificial Intelligence 98

Artificial Intelligence Cybercrime Advertising Phishing 98

Security Affairs

FEBRUARY 22, 2022

The Ukrainian police arrested a gang specialized in the sale of stolen payment card data through phishing attacks. The cybercrime unit of the Ukrainian police has arrested a group of cybercriminals who managed to steal payment card data from at least 70,000 people by setting up mobile fake top-up services. Pierluigi Paganini.

Phishing 87

Phishing Banking Mobile Telecommunications 87

Malwarebytes

FEBRUARY 13, 2024

The modus operandi of these threat actors involves deceiving employees through sophisticated scams and deceptive online advertisements. In this post, we explore a particular phishing scam targeting corporate users via the AnyDesk remote software and how ThreatDown can prevent the misuse of such programs by cybercriminals.

Phishing 84

Phishing Software Scams Banking 84

Security Affairs

NOVEMBER 17, 2022

A China-based financially motivated group, tracked as Fangxiao, is behind a large-scale phishing campaign dating back as far as 2019. Researchers from Cyjax reported that a China-based financially motivated group, dubbed Fangxiao, orchestrated a large-scale phishing campaign since 2017. SecurityAffairs – hacking, phishing).

Phishing 110

Phishing Adware Retail Malware 110

Malwarebytes

JUNE 3, 2021

Since the initial lockdown, we have seen the rise of certain types of cybercrime, including scams and fraud campaigns that either bank on the global COVID-19 pandemic or take advantage of potential victims that adhere to work-from-home measures. Future cybercrimes in the UK and beyond. Organized crime: Online fraud.

Cybercrime 92

Cybercrime Scams Ransomware Phishing 92

Security Affairs

JULY 26, 2023

FraudGPT is another cybercrime generative artificial intelligence (AI) tool that is advertised in the hacking underground. According to Netenrich, this generative AI bot was trained for offensive purposes, such as creating spear phishing emails, conducting BEC attacks, cracking tools, and carding. ” concludes the report.

Artificial Intelligence 96

Artificial Intelligence Cybercrime Phishing Advertising 96

Security Affairs

APRIL 15, 2020

The report focuses on phishing kits – the driving force of the phishing industry, which is hard to detect but extremely valuable in terms of fight against phishing. The growing demand for phishing kits is also reflected in its price that skyrocketed last year by 149 percent and exceeded $300 per item.

Phishing 100

Phishing Marketing Advertising Cyber threats 100

Identity IQ

AUGUST 14, 2023

Spam vs. Phishing: What’s the Difference? Among these threats, spam and phishing are two commonly misunderstood but distinct challenges. In this blog, we shed light on the differences between spam and phishing and provide valuable insights to help you avoid falling victim to these malicious activities What is Spam?

Phishing 52

Phishing Identity Theft Authentication Passwords 52

Security Affairs

NOVEMBER 26, 2019

A group under the Magecart umbrella adopted a new tactic that leverages on MiTM and phishing attacks to target sites using external payment processors. The name Fullz House comes from two different attack techniques, the phishing, and the web skimming. The [phishing] pages are part of a framework,” they wrote.

Phishing 98

Phishing Cybercrime Advertising Software 98

Security Affairs

AUGUST 5, 2019

A crook involved in a spear phishing scheme and that was in Kenya is facing up to 20 years in the US federal prison for stealing thousands of dollars from US universities. Amil Hassan Raage, 48, pleaded guilty last week in a southern California court to fraudulently receiving almost $750,000 as part of a spear phishing scheme.

Phishing 101

Phishing Banking Advertising Accountability 101

Security Affairs

NOVEMBER 25, 2018

Researchers at AppRiver uncovered a very trivial phishing campaign targeting the streaming service Spotify, anyway, it is important to share info about it. Security researchers at AppRiver uncovered a phishing campaign targeting the popular streaming service Spotify. Clicking on the button, users are redirected to a phishing page.

Phishing 87

Phishing Accountability Advertising Passwords 87

Security Affairs

APRIL 25, 2019

Experts at Proofpoint discovered that free code repositories on GitHub have been abused since at least 2017 to host phishing websites. Researchers at Proofpoint reported that crooks are abusing free code repositories on GitHub to host phishing websites and bypass security defenses. SecurityAffairs – GitHub, cybercrime).

Phishing 88

Phishing Advertising Accountability Cybercrime 88

Hot for Security

MARCH 1, 2021

UK’s national reporting center for fraud and cybercrime (Action Fraud) is warning citizens to watch out for travel-related fraud following the government’s announcement last week that it would lift travel restrictions.

Scams 98

Scams Cybercrime Advertising Cryptocurrency 98

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. Secure web- phishing. In the first six months of 2020, CERT-GIB blocked a total of 9 304 phishing web resources, which is an increase of 9 percent compared to the previous year.

Phishing 104

Phishing Ransomware Spyware Banking 104

Security Affairs

SEPTEMBER 20, 2019

Cofense researchers spotted a phishing campaign that is targeting taxpayers in the United States to infect them with the Amadey malware. Security experts at Cofense uncovered a phishing campaign that is targeting taxpayers in the United States attempting to infect them with a new piece of malware named Amadey. Pierluigi Paganini.

Phishing 84

Phishing Social Engineering Malware Advertising 84

Security Affairs

FEBRUARY 24, 2020

Racoon malware , Legion, Mohazo, and Racealer, is an infostealer that recently appeared in the threat landscape that is advertised in hacking forums. According to a report published by security firm CyberArk, Raccoon is mostly delivered through Exploit Kits and Phishing Campaigns. ” reads the report published by CyberArk.

Cybercrime 89

Cybercrime Malware Cryptocurrency Advertising 89

Security Affairs

JANUARY 27, 2019

The Cobalt cybercrime gang has been using Google App Engine to distribute malware through PDF decoy documents. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – Cobalt, Google App Engine).

Engineering 87

Engineering Cybercrime Banking Advertising 87

Security Affairs

OCTOBER 5, 2020

The hackers carried out spear-phishing attacks against the Swiss universities in an attempt of tricking its employees into providing their access data. The SonntagsZeitung also added that hackers attempted to breach the University of Zurich, but the employees at the university recognised the phishing attempts and neutralized them.

Advertising 144

Advertising Phishing Cybercrime Hacking 144

Security Affairs

NOVEMBER 16, 2018

According to Group-IB’s report findings, Asia is one of the most actively attacked regions in the world, the company presented latest cybercrime trends. Spear phishing remains the major vector of attack: approximately 56% of all money siphoned off from ICO were stolen using phishing.

Cybercrime 85

Cybercrime Hacking Banking Phishing 85

Malwarebytes

JUNE 30, 2021

A coordinated effort between global law enforcement agencies—led by the Dutch National Police—shut down a VPN service that was advertised on cybercrime forums. ” The takedown now marks at least the third time this year that law enforcement agencies across the world have come together to stop cybercrime.

VPN 129

VPN Cybercrime Encryption Advertising 129

Security Affairs

APRIL 21, 2024

carmaker with phishing attacks Law enforcement operation dismantled phishing-as-a-service platform LabHost Previously unknown Kapeka backdoor linked to Russian Sandworm APT Cisco warns of a command injection escalation flaw in its IMC.

Data breaches 100

Data breaches Phishing Ransomware Malware 100

Security Affairs

APRIL 24, 2023

EvilExtractor is a new “all-in-one” info stealer for Windows that is being advertised for sale on dark web cybercrime forums. FortiGuard Labs observed this malware in a phishing email campaign on 30 March, which we traced back to the samples included in this blog.” ” concludes the report.

Cybercrime 92

Cybercrime Malware Education Phishing 92

IT Security Guru

NOVEMBER 20, 2023

From protecting sensitive corporate data to safeguarding our personal information, the battle against cybercrime is ongoing. Spear Phishing While phishing remains one of the most prevalent methods cybercriminals use, spear phishing represents a refined form of the traditional phishing technique.

Scams 118

Scams Phishing Backups Education 118

Krebs on Security

DECEMBER 29, 2020

In almost every category — from epic breaches and ransomware to cybercrime justice and increasingly aggressive phishing and social engineering scams — 2020 was a year that truly went to eleven. But it was hardly a dull one for computer security news junkies.

Scams 275

Scams Social Engineering Cybercrime Advertising 275