Security Affairs

JUNE 11, 2023

Microsoft researchers warn of banking adversary-in-the-middle (AitM) phishing and BEC attacks targeting banking and financial organizations. Microsoft discovered multi-stage adversary-in-the-middle (AiTM) phishing and business email compromise (BEC) attacks against banking and financial services organizations.

Phishing 89

Phishing Banking Financial Services Authentication 89

Security Affairs

OCTOBER 4, 2023

Threat actors exploited an open redirection vulnerability in the job search platform Indeed to carry out phishing attacks. Researchers from the cybersecurity firm Menlo Security reported that threat actors exploited an open redirection vulnerability in the job search platform Indeed in phishing attacks.

Phishing 114

Phishing Insurance Manufacturing Banking 114

Security Affairs

JULY 6, 2021

The alleged perpetrator, who turned out to be a citizen of Morocco, was arrested in May by the Moroccan police based on the data about his cybercrimes that was provided by Group-IB. Almost each of the scripts contained in the phishing kit had its creator’s nickname, Dr HeX, and contact email address.

Cybercrime 95

Cybercrime Phishing Banking Telecommunications 95

Security Affairs

DECEMBER 18, 2023

Our research team also found some bank logs for sale, info stealers were possibly used to steal these logs. Bank logs : These are sets of data containing sensitive information about a bank account. Bank logs : These are sets of data containing sensitive information about a bank account.

Banking 115

Banking Cybercrime Malware Accountability 115

Security Affairs

AUGUST 21, 2022

A new Grandoreiro banking malware campaign is targeting organizations in Mexico and Spain, Zscaler reported. Zscaler ThreatLabz researchers observed a Grandoreiro banking malware campaign targeting organizations in the Spanish-speaking nations of Mexico and Spain. ” reads the post published by Zscaler. Pierluigi Paganini.

Banking 90

Banking Malware Antivirus Phishing 90

Security Affairs

FEBRUARY 22, 2022

The Ukrainian police arrested a gang specialized in the sale of stolen payment card data through phishing attacks. The cybercrime unit of the Ukrainian police has arrested a group of cybercriminals who managed to steal payment card data from at least 70,000 people by setting up mobile fake top-up services. Pierluigi Paganini.

Phishing 82

Phishing Banking Mobile Telecommunications 82

Security Affairs

OCTOBER 2, 2022

German police arrested one individual suspected of having stolen €4 million from users via large-scale phishing campaigns. Germany’s Bundeskriminalamt (BKA) arrested an individual (24) suspected of having stolen €4,000,000 from internet users via phishing attacks along with a two accomplices who are suspected.

Phishing 91

Phishing Banking DDOS Accountability 91

Security Affairs

APRIL 11, 2020

Monte dei Paschi, one of the biggest Italian banks, suffered a cyber attack, hackers accessed the mailboxes of some employees and sent emails to clients. Italian state-owned bank Monte dei Paschi discloses a security breach, hackers have accessed the mailboxes of some employees and sent emails to clients. Pierluigi Paganini.

Banking 127

Banking Cyber Attacks Advertising Cybercrime 127

Security Affairs

SEPTEMBER 12, 2021

A new banking trojan dubbed maxtrilha (due to its encryption key) has been discovered in the last few days and targeting customers of European and South American banks. The new maxtrilha trojan is being disseminated and targeting several banks around the world. Figure 1: High-level diagram of maxtrilha banking trojan.

Banking 124

Banking Malware Internet Internet 124

Security Affairs

AUGUST 8, 2022

LogoKit – Threat actors leveraging Open Redirect Vulnerabilities popular in online services and apps to bypass spam filters in phishing campaigns. Using highly trusted service domains like Snapchat and other online-services, they create special URLs which lead to malicious resources with phishing kits. Resecurity, Inc.

Phishing 94

Phishing Passwords Threat Detection Cybercrime 94

Security Affairs

JANUARY 3, 2023

Experts warn of a new malware campaign using sensitive information stolen from a bank as a lure to spread the remote access trojan BitRAT. Qualys experts spotted a new malware campaign spreading a remote access trojan called BitRAT using sensitive information stolen from a bank as a lure in phishing messages.

Banking 89

Banking Malware Phishing DDOS 89

Security Affairs

NOVEMBER 10, 2020

Researchers from Kaspersky Lab spotted a new Android banking Trojan, dubbed Ghimob, that is able to steal data from 112 financial Apps. Ghimob is a new Android banking Trojan discovered by Kaspersky that is able to steal data from 112 financial apps. ” concludes the report. ” concludes the report.

Banking 101

Banking Mobile Malware Spyware 101

Security Affairs

NOVEMBER 17, 2022

A China-based financially motivated group, tracked as Fangxiao, is behind a large-scale phishing campaign dating back as far as 2019. Researchers from Cyjax reported that a China-based financially motivated group, dubbed Fangxiao, orchestrated a large-scale phishing campaign since 2017. SecurityAffairs – hacking, phishing).

Phishing 108

Phishing Adware Retail Malware 108

Security Affairs

NOVEMBER 12, 2021

Threat actors are increasingly using the HTML smuggling technique in phishing campaigns, Microsoft researchers warn. Microsoft experts warn that threat actors are increasingly using the HTML smuggling technique in phishing campaigns to stealthily deliver threats. — Microsoft Security Intelligence (@MsftSecIntel) July 23, 2021.

Phishing 102

Phishing Banking Passwords Firewall 102

Security Affairs

MARCH 31, 2021

Experts warn that cybercriminals are targeting Indonesia’s major banks posing as bank representatives or customer support team members on Twitter. To lure victims, cybercriminals pose as bank representatives or customer support team members on Twitter. From January to early March 2021, this scheme grew in scope 2.5-fold

Banking 92

Banking Scams Accountability Media 92

Security Affairs

NOVEMBER 18, 2021

The BrazKing Android banking trojan is back with significant improvements and dynamic banking overlays to avoid detection. Researchers from IBM spotted a new version of the BrazKing Android banking trojan that pull fake overlay screens from the command and control (C2) server in real-time. Pierluigi Paganini.

Banking 89

Banking Malware Antivirus Phishing 89

Security Affairs

DECEMBER 25, 2021

The phishing messages use weaponized Word or Excel attachments to install the Dridex banking Trojan. “This letter is to inform you that you have been exposed to a coworker who tested positive for OMICRON variant of COVID-19 sometime between December 18th and 20th,” reads a phishing message shared by Bleeping Computer.

Phishing 126

Phishing Passwords Banking Malware 126

Security Affairs

AUGUST 5, 2019

A crook involved in a spear phishing scheme and that was in Kenya is facing up to 20 years in the US federal prison for stealing thousands of dollars from US universities. Amil Hassan Raage, 48, pleaded guilty last week in a southern California court to fraudulently receiving almost $750,000 as part of a spear phishing scheme.

Phishing 97

Phishing Banking Advertising Accountability 97

Security Affairs

SEPTEMBER 18, 2020

Web-phishing targeting various online services almost doubled during the COVID-19 pandemic , it accounted for 46 percent of the total number of fake web pages. They are followed by banking Trojans , whose share in the total amount of malicious attachments showed growth for the first time in a while. Secure web- phishing.

Phishing 103

Phishing Ransomware Spyware Banking 103

Security Affairs

JANUARY 3, 2024

Resecurity has uncovered a cybercriminal faction known as “ GXC Team “, who specializes in crafting tools for online banking theft, ecommerce deception, and internet scams. Upon detection, it alters the banking information of the intended recipient (like the victim’s supplier) to details specified by the perpetrator.

Artificial Intelligence 118

Artificial Intelligence Banking Scams Cybercrime 118

Security Affairs

OCTOBER 23, 2023

Criminal activities conducted by the group are smishing , phishing and vishing campaigns, and the ‘son in distress’ scam. They then contacted those clients informing them that due to a computer error they had entered a loan and had to return it.” ” said the Spanish Police.

Computers and Electronics 87

Computers and Electronics Scams Cybercrime Phishing 87

Security Affairs

FEBRUARY 19, 2019

According to a new research conducted by Group-IB experts, 74 percent of Russian banks were not ready for cyberattacks. Even so, 74 percent of Russian banks were not ready for cyberattacks , 29 percent were found to be actively infected with malware, and in 52 percent of cases traces of past attacks were detected.

Banking 76

Banking Marketing Cybercrime Information Security 76

Security Affairs

DECEMBER 20, 2023

The six-month operation (July-December 2023) targeted organizations involved in seven types of online scams: business email compromise (BEC), ecommerce fraud, investment fraud, voice phishing , money laundering associated with illegal online gambling, romance scams , and online sextortion schemes.

Scams 96

Scams eCommerce Banking Cybercrime 96

Security Affairs

MARCH 31, 2023

million with phishing campaigns. “Some of the people involved, who live in Ukraine, created more than 100 phishing sites aimed at European users. . “Some of the people involved, who live in Ukraine, created more than 100 phishing sites aimed at European users. Later, they appropriated money from their accounts.”

Banking 83

Banking Phishing Scams Cybercrime 83

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. businesses called #ShieldsUp.

Cybersecurity 214

Cybersecurity Cybercrime Education Passwords 214

Security Affairs

DECEMBER 26, 2023

Researchers at NCC Group reported that in November they observed the return of the infamous banking malware Carbanak in ransomware attacks. The cybersecurity firm NCC Group reported that in November the banking malware Carbanak was observed in ransomware attacks.

Malware 115

Malware Ransomware Banking Healthcare 115

Security Affairs

OCTOBER 30, 2021

INTERPOL published the African Cyberthreat Assessment Report 2021, a report that analyzes evolution of cybercrime in Africa. A new report published by INTERPOL, titled the African Cyberthreat Assessment Report 2021 , sheds the light on cybercrime in Africa.

Cybercrime 79

Cybercrime Scams DDOS Banking 79

Security Affairs

SEPTEMBER 26, 2023

The banking Trojan was used to target 56 European banks and steal sensitive information from the devices of their customers. Xenomorph shares similarities with the Alien banking trojan, but it has functionalities radically different from the Alien’s one. In March, experts warned of a new variant tracked as Xenomorph.C

Malware 111

Malware Banking Phishing Engineering 111

Security Affairs

MARCH 13, 2020

European authorities dismantled two cybercrime organizations responsible for stealing millions through SIM hijacking. European authorities managed to dismantle the operations of two cybercrime gangs responsible for stealing millions through SIM hijacking. The authorities arrested tens of individuals in Spain and Romania. .

Banking 114

Banking Cybercrime Mobile Accountability 114

Security Affairs

APRIL 3, 2024

This malware was first identified in 2019 and was initially attributed to SOLAR SPIDER’s phishing campaigns, which delivered the JSOutProx RAT to financial institutions across Africa, the Middle East, South Asia, and Southeast Asia.

Banking 97

Banking Financial Services Malware Phishing 97

Security Affairs

APRIL 6, 2023

The experts pointed out that crooks engaged in phishing activities have started to rely on the popular instant messaging platform more in recent months. On Telegram is possible to find channels that offer: Free phishing kits that can be used to target users of a large number of global and local brands. ” Phishing-as-a-Service.

Phishing 89

Phishing Scams Social Engineering Banking 89

Security Affairs

JUNE 10, 2021

Group-IB, a global threat hunting and adversarial cyber intelligence company specializing in the investigation and prevention of high-tech cybercrime, has published a comprehensive analysis of fraud cases on a global scale. . Insurance companies around the world are now suffering from phishing.

Scams 95

Scams Banking Retail Insurance 95

Security Affairs

DECEMBER 28, 2020

Threat intelligence analyst Bank_Security is specialized in cybercrime and fraud. The dump allegedly includes 2,500,000 customers' PII Data, Phone Numbers & ICCID that can be exploited for SIM swap attacks to empty Bank accounts. pic.twitter.com/yR193Mt3CS — Bank Security (@Bank_Security) December 28, 2020.

Mobile 130

Mobile Banking Data breaches Phishing 130

Security Affairs

SEPTEMBER 6, 2022

Researchers discovered a previously undocumented software control panel, named TeslaGun, used by a cybercrime gang known as TA505. Researchers from cybersecurity firm PRODAFT have discovered a previously undocumented software control panel, tracked as TeslaGun, used by a cybercrime group known as TA505.

Cybercrime 91

Cybercrime Banking Malware Retail 91

Security Affairs

JUNE 2, 2023

The botnet is used to deliver a banking trojan and spam tool to the infected systems, Horabot has been active since at least November 2020. The bot allows operators to control the victim’s Outlook mailbox, steal contacts’ email addresses, and send phishing emails with malicious HTML attachments. ” concludes the report.

Banking 71

Banking Phishing Accountability Malware 71

Security Affairs

JANUARY 7, 2023

Cyber researchers warn of a modified Zoom app that was used by threat actors in a phishing campaign to deliver the IcedID Malware. Cyble researchers recently uncovered a phishing campaign targeting users of the popular video conferencing and online meeting platform Zoom to deliver the IcedID malware. ” concludes the report.

Malware 87

Malware Phishing Banking Hacking 87

Security Affairs

OCTOBER 17, 2023

According to Statista.com, the impact of cybercrime is expected to reach almost $13 trillion this year. With 85% of campaigns targeting victims with phishing emails containing malicious links, another form of a social engineering attack, education and cyber vigiliance remain a high priority.

Social Engineering 113

Social Engineering Ransomware Engineering Phishing 113