SecureWorld News

JUNE 16, 2021

When it comes to hacking and cybercrime, sometimes all the focus is on the one who launches the attack. DOJ prosecutors say Oleg Koshkin, a 41-year-old Russian national, operated a crypting service used to conceal Kelihos malware from antivirus software. One of those threat actors was just convicted in a United States courtroom.

Antivirus 52

Antivirus Malware Software Cryptocurrency 52

Security Affairs

APRIL 19, 2021

Avast researchers analyzed the activity of a simple cryptocurrency malware dubbed HackBoss that allowed its operators to earn over $560K. The antivirus company Avast analyzed the case of a simple malware dubbed HackBoss and how it allowed its operators to earn more $560K worth of cryptocurrency since November 2018.

Cryptocurrency 144

Cryptocurrency Malware Hacking Banking 144

Security Affairs

JUNE 27, 2021

Researchers have discovered a strain of cryptocurrency-mining malware, tracked as Crackonosh, that abuses Windows Safe mode to avoid detection. . Researchers from Avast have spotted a strain of cryptocurrency miner, tracked as Crackonosh, that abuses Windows Safe mode to avoid detection. SecurityAffairs – hacking, Crackonosh).

Antivirus 108

Antivirus Cryptocurrency Malware Software 108

Schneier on Security

MAY 14, 2020

The first of the new malware variants, COPPERHEDGE , is described as a Remote Access Tool (RAT) "used by advanced persistent threat (APT) cyber actors in the targeting of cryptocurrency exchanges and related entities." It's interesting to see the US government take a more aggressive stance on foreign malware.

Government 306

Government Malware Antivirus Cryptocurrency 306

Security Affairs

MARCH 28, 2019

The group is considered responsible for the massive WannaCry ransomware attack, a string of SWIFT attacks in 2016, and the Sony Pictures hack. In 2018, the Lazarus APT group targeted several cryptocurrency exchanges , including the campaign tracked as Operation AppleJeus discovered in August 2018. ” Kaspersky says. .

Cryptocurrency 88

Cryptocurrency Malware Advertising Antivirus 88

Security Boulevard

MARCH 30, 2022

Introduction: Hacking forums often double up as underground marketplaces where cybercriminals buy, rent, and sell all kinds of malicious illegal products, including software, trojans, stealers, exploits, and leaked credentials. BlackGuard detects antivirus processes. This allows it to bypass antivirus and string-based detection.

Malware 98

Malware Hacking Antivirus Passwords 98

Digital Shadows

JUNE 7, 2021

It’s been a pretty big year so far for cryptocurrency. Cryptocurrencies’ current total market cap sits just above $1.7 The cryptocurrency exchange Coinbase recently launched an IPO, India has reversed a ban on cryptocurrencies, and ransomware groups continue to demand payment in anonymity-based cryptocurrency.

Cryptocurrency 52

Cryptocurrency Phishing Advertising Antivirus 52

Security Affairs

NOVEMBER 26, 2021

Morphisec researchers spread cryptocurrency malware dubbed Babadeda in attacks aimed at crypto and NFT communities. Morphisec researchers spotted a new crypto-malware strain, tracked as Babadeda, targeting cryptocurrency, non-fungible token (NFT), and DeFi passionates through Discord channels. SecurityAffairs – hacking, babadeda).

Cryptocurrency 121

Cryptocurrency Malware Antivirus Phishing 121

Security Affairs

JANUARY 7, 2022

Experts warn that the popular antivirus product Norton 360 has installed a cryptocurrency miner on its customers’ computers. Many users ignore that Norton 360 comes with a cryptomining feature, dubbed Norton Crypto, that could allow them to earn money mining Ethereum (ETH) cryptocurrency while the customer’s computer is idle.

Energy and Utilities 93

Energy and Utilities Cryptocurrency Antivirus Hacking 93

CyberSecurity Insiders

JANUARY 20, 2022

Cryptocurrency has been subjected to a rapidly changing balance of laws for the government to try and control it through regulation. Indeed, Vice recently reported that the US tax authorities had placed sanctions on 57 cryptocurrency addresses and one popular exchange due to their connections with money laundering. Staying ahead.

Cryptocurrency 127

Cryptocurrency Marketing Scams Government 127

Security Affairs

SEPTEMBER 2, 2020

The malware has been active since at least December 2018, it targets cryptocurrency users as a triple threat. The malware uses the victim’s resource to mine cryptocurrency, steals cryptocurrency wallet-related files, and replaces wallet addresses in the clipboard to hijack cryptocurrency payments.

Cryptocurrency 132

Cryptocurrency Antivirus Malware Advertising 132

Security Affairs

JUNE 23, 2021

One of the fathers of antivirus software, the entrepreneur John McAfee has been found dead in a Barcelona prison cell while he was waiting for extradition to the US. The investigators suppose that the income was directed into bank accounts and cryptocurrency exchange accounts in the names of nominees. Pierluigi Paganini.

Cryptocurrency 132

Cryptocurrency Banking Accountability Antivirus 132

Security Affairs

AUGUST 20, 2019

Your IP address represents your digital identity online, hacking it not only allows attackers to access your device or your accounts, but it may cause even bigger damage. Cybercriminals are interested in hacking your IP address for various reasons. The hacked and stolen IPs are often used for carrying out illegal activities.

Hacking 91

Hacking VPN Internet Internet 91

Security Affairs

MARCH 7, 2022

SharkBot banking malware was able to evade Google Play Store security checks masqueraded as an antivirus app. The trojan allows to hijack users’ mobile devices and steal funds from online banking and cryptocurrency accounts. sellsourcecode.alpha) Powerful Cleaner, Antivirus (com.pagnotto28.sellsourcecode.supercleaner).

Banking 81

Banking Antivirus Mobile Malware 81

Security Affairs

JANUARY 7, 2021

Both exchanges are structured in a way that probably wouldn’t obligate them to comply with law enforcement requests and both were founded by Chinese nationals that moved their business to countries that are more friendly to cryptocurrency exchanges. SecurityAffairs – hacking, Ryuk ransomware). ” concludes the report.

Ransomware 130

Ransomware Cryptocurrency Antivirus Banking 130

Security Affairs

JUNE 17, 2021

Russian national Oleg Koshkin was convicted for operating a “crypting” service used to obfuscate the Kelihos bot from antivirus software. ”The websites promised to render malicious software fully undetectable by nearly every major provider of antivirus software. .”The SecurityAffairs – hacking, Kelihos).

Antivirus 102

Antivirus Malware Cryptocurrency Software 102

Security Affairs

AUGUST 15, 2023

“To avoid detection by antivirus software, the RAT employs command and control functionality through a Telegram bot. The malware includes a clipper code to capture data copied to the clipboard, a technique used to extract cryptocurrency wallet information from Monero, Ethereum, and Bitcoin.

Malware 93

Malware Antivirus Cryptocurrency Advertising 93

Security Affairs

JULY 3, 2023

“What’s more concerning is that a large portion of antivirus software has proven ineffective against the Meduza stealer binary, either failing to detect it statically or dynamically” reads the analysis published by Uptycs. ” The administrator offers access to the stolen data through a management console.

Password Management 84

Password Management Passwords Malware Antivirus 84

Security Affairs

JUNE 22, 2021

The Windows botnet has been active since late 2017, it was mainly used to mine cryptocurrency, but it was also involved in DDoS attacks in 2018. Experts pointed out that the number of infected systems could be far greater because data provided by AVAST are only related to systems running their antivirus solution. Pierluigi Paganini.

DNS 128

DNS Cryptocurrency Internet Internet 128

Security Affairs

AUGUST 21, 2022

The scripts will also infect the victim’s computer with the Raccoon Stealer info-stealing trojan which allows operators to steal login credentials, cookies, auto-fill data, and credit cards saved on web browsers, along with cryptocurrency wallets. SecurityAffairs – hacking, WordPress). Pierluigi Paganini.

DDOS 93

DDOS Malware Antivirus Firewall 93

Security Affairs

APRIL 29, 2023

ViperSoftX is a JavaScript-based Remote Access Trojan (RAT) and cryptocurrency stealer that was first analyzed by Fortinet in February 2020. ViperSoftX also checks for active antivirus products running on the machine. ” reads the analysis published by Trend Micro. ” concludes the report.

Encryption 88

Encryption Malware Cryptocurrency Software 88

Security Affairs

DECEMBER 1, 2020

Microsoft warns of Vietnam-linked Bismuth group that is deploying cryptocurrency miner while continues its cyberespionage campaigns. Researchers from Microsoft reported that the Vietnam-linked Bismuth group, aka OceanLotus , Cobalt Kitty , or APT32 , is deploying cryptocurrency miners while continues its cyberespionage campaigns.

Cryptocurrency 94

Cryptocurrency Antivirus Manufacturing Government 94

Security Affairs

NOVEMBER 15, 2021

The trojan allows to hijack users’ mobile devices and steal funds from online banking and cryptocurrency accounts. At the time of writing, SharkBot appears to have a very low detection rate by antivirus solutions since. SecurityAffairs – hacking, SharkBot). login credentials, personal information, current balance, etc.).

Banking 125

Banking Mobile Social Engineering Malware 125

Security Affairs

AUGUST 21, 2022

The loader is also designed to gather system information, retrieve a list of installed antivirus solutions, cryptocurrency wallets, banking, and mail apps, and exfiltrate the information to a remote server. SecurityAffairs – hacking, Log4Shell). That’s not all. ” concludes the report. . ” concludes the report.

Banking 91

Banking Malware Antivirus Phishing 91

CyberSecurity Insiders

JANUARY 5, 2023

Though Fortinet that is into the business of selling security solutions such as firewalls and antivirus solutions has fixed the flaw, it appears to be too late, as hackers are buying and selling details of compromised devices on some hacking forums. But for reasons they made the information public in Jan 2023.

VPN 52

VPN Ransomware Antivirus Firewall 52

Security Affairs

APRIL 27, 2021

Microsoft announced an improvement of its Defender antivirus that will leverage Intel’s Threat Detection Technology (TDT) to detect processes associated with crypto-miners. Cryptojacking malware allows threat actors to secretly mine for cryptocurrency abusing computational resources of the infected devices. Pierluigi Paganini.

Technology 74

Technology Malware Threat Detection Antivirus 74

Security Affairs

MAY 8, 2022

SecurityAffairs – hacking, newsletter). If you want to also receive for free the newsletter with the international press subscribe here. To nominate, please visit:? Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

IoT 84

IoT DNS Antivirus DDOS 84

Security Affairs

APRIL 26, 2020

SecurityAffairs – newsletter, hacking). Are Maze operators behind the attack on the IT services giant Cognizant? Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware 92

Spyware Hacking Advertising Antivirus 92

Security Affairs

SEPTEMBER 14, 2019

Researchers at Z s caler have spotted a new malware dubbed InnfiRAT that infects victims’ systems to steal cryptocurrency wallet data. . Researchers at Z s caler have discovered a new Trojan dubbed InnfiRAT that implements many standard Trojan capabilities along with the ability to steal cryptocurrency wallet data. .

Cryptocurrency 89

Cryptocurrency Malware Advertising Antivirus 89

Security Affairs

DECEMBER 19, 2022

The botnet was involved in stealing users’ credentials and data, mining cryptocurrencies abusing victims’ resources, and setting up proxies to funnel other people’s internet traffic through infected machines and routers. SecurityAffairs – hacking, Glupteba botnet). Pierluigi Paganini.

DNS 99

DNS Antivirus Cryptocurrency Software 99

Security Affairs

JANUARY 2, 2020

The Google Chrome extension was injecting JavaScript code on web pages to steal passwords and private keys from cryptocurrency wallets and cryptocurrency portals. At the time of writing, the installers for the desktop app of the Shitcoin Wallet are not detected as malicious by major antivirus solutions. Pierluigi Paganini.

Passwords 67

Passwords Cryptocurrency Advertising Antivirus 67

The Last Watchdog

SEPTEMBER 28, 2022

Related: The threat of ‘business logic’ hacks. According to a new study, phishing attacks rose 61 percent in 2022, with cryptocurrency fraud increasing 257 percent year-over-year. To prevent malicious scams, companies should do the following: •Install high-quality antivirus software and spam filters.

Phishing 124

Phishing Scams Cybercrime Passwords 124

Security Affairs

FEBRUARY 22, 2021

Excel documents created with the APOMacroSploit builder are capable of bypassing antivirus software, Windows Antimalware Scan Interface (AMSI), and even Gmail and other email-based phishing detection. BitRAT implements multiple features, including mining cryptocurrencies and RAT features. SecurityAffairs – hacking, apomacrosploit).

Malware 111

Malware Antivirus Phishing Cryptocurrency 111

CyberSecurity Insiders

AUGUST 26, 2022

A ransomware attack occurs when somebody hacks a person’s or company’s computer system and demands a ransom payment in return. CryptoLocker: Another cryptocurrency attack took place in 2013 at the hands of a piece of ransomware called CryptoLocker. What Is a Ransomware Attack?

Ransomware 123

Ransomware Education Software Malware 123

Security Affairs

APRIL 14, 2019

The crooks used malicious emails purporting to be legitimate from such entities as Western Union, Norton AntiVirus and the IRS to spread the malware. The malware was developed to steal credentials, financial data, personal information, then the crooks offered them on the dark web marketplaces.

Cryptocurrency 90

Cryptocurrency Identity Theft Advertising Accountability 90

Security Affairs

SEPTEMBER 5, 2022

While previous variants of the dropper relied on Accessibility permissions to automatically install the Sharkbot malware, this new one asks the victim to install the malware as a fake update for the antivirus. The trojan allows to hijack users’ mobile devices and steal funds from online banking and cryptocurrency accounts.

Banking 92

Banking Malware Mobile Accountability 92

Krebs on Security

MARCH 22, 2022

When I first began writing about Vrublevsky in 2009 as a reporter for The Washington Post , ChronoPay and its sister firm Red & Partners (RNP) were earning millions setting up payment infrastructure for fake antivirus peddlers and spammers pimping male enhancement drugs. The latest document in the hacked archive is dated April 2021.

Banking 185

Banking Marketing DDOS Risk 185