Banking, Cybercrime, Malware and Phishing

Disneyland Malware Team: It’s a Puny World After All

Krebs on Security

NOVEMBER 16, 2022

A financial cybercrime group calling itself the Disneyland Team has been making liberal use of visually confusing phishing domains that spoof popular bank brands using Punycode , an Internet standard that allows web browsers to render domain names with non-Latin alphabets like Cyrillic. Bank customers. Bank customers.

Malware

Malware Banking Phishing DDOS

Police arrest suspect linked to notorius OPERA1ER cybercrime gang

Bleeping Computer

JULY 5, 2023

Law enforcement has detained a suspect believed to be a key member of the OPERA1ER cybercrime group, which has targeted mobile banking services and financial institutions in malware, phishing, and Business Email Compromise (BEC) campaigns. [.]

Cybercrime

Cybercrime Banking Mobile Phishing

Grandoreiro banking malware targets Mexico and Spain

Security Affairs

AUGUST 21, 2022

A new Grandoreiro banking malware campaign is targeting organizations in Mexico and Spain, Zscaler reported. Zscaler ThreatLabz researchers observed a Grandoreiro banking malware campaign targeting organizations in the Spanish-speaking nations of Mexico and Spain. ” reads the post published by Zscaler.

Banking

Banking Malware Antivirus Phishing

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

Krebs on Security

FEBRUARY 8, 2021

Cyber cops in Ukraine carried out an arrest and several raids last week in connection with the author of a U-Admin , a software package used to administer what’s being called “one of the world’s largest phishing services.” The U-Admin phishing panel interface. Image: fr3d.hk/blog. ” U-Admin, a.k.a.

Phishing

Phishing Scams Banking Mobile

InTheBox Threat Actor Sells Over 1,800 Web Injects on Cybercrime Forums

Heimadal Security

FEBRUARY 2, 2023

1,894 web injects (overlays of phishing windows) are for sale on Russian cybercrime forums. The phishing windows are meant to steal credentials from banking, cryptocurrency exchange, and e-commerce apps imitating widely-used software, and they are compatible with various Android banking malware.

Cybercrime

Cybercrime Banking Cryptocurrency Phishing

Tedrade banking malware families target users worldwide

Security Affairs

JULY 19, 2020

The Tetrade term coined by Kaspersky experts to refer four large banking trojan families developed and spread by Brazilian crooks worldwide. The Brazilian cybercrime underground is recognized as the most focuses on the development and commercialization of banking trojans. File types vary from Visual Basic Script to LNK.”

Banking

Banking Malware Phishing Advertising

ERMAC 2.0 Android Banking Trojan targets over 400 apps

Security Affairs

MAY 27, 2022

A new version of the ERMAC Android banking trojan is able to target an increased number of apps. The ERMAC Android banking trojan version 2.0 ERMAC was first spotted by researchers from Threatfabric in July 2021, it is based on the popular banking trojan Cerberus. A new #Android banker ERMAC 2.0 already has an active campaign.

Banking

Banking Malware Cybercrime Phishing

Carbanak malware returned in ransomware attacks

Security Affairs

DECEMBER 26, 2023

Researchers at NCC Group reported that in November they observed the return of the infamous banking malware Carbanak in ransomware attacks. The cybersecurity firm NCC Group reported that in November the banking malware Carbanak was observed in ransomware attacks. ” reads the report published by NCC Group.

Malware

Malware Ransomware Banking Healthcare

Feds Target $100M ‘GozNym’ Cybercrime Network

Krebs on Security

MAY 16, 2019

Law enforcement agencies in the United States and Europe today unsealed charges against 11 alleged members of the GozNym malware network, an international cybercriminal syndicate suspected of stealing $100 million from more than 41,000 victims with the help of a stealthy banking trojan by the same name. Source: DOJ.

Cybercrime

Cybercrime Banking Small Business Computers and Electronics

New variant of BBTok Trojan targets users of +40 banks in LATAM

Security Affairs

SEPTEMBER 24, 2023

A new variant of a banking trojan, called BBTok, targets users of over 40 banks in Latin America, particularly Brazil and Mexico. Check Point researchers warn of a new variant of a banking trojan, called BBTok, that is targeting users of over 40 banks in Latin America. The phishing messages include a malicious link.

Banking

Banking Phishing Malware Hacking

Financial cyberthreats in 2023

SecureList

MAY 6, 2024

A significant share of scam, phishing and malware attacks is about money. Methodology In this report, we present an analysis of financial cyberthreats in 2023, focusing on banking Trojans and phishing pages that target online banking, shopping accounts, cryptocurrency wallets and other financial assets. of attacks.

Phishing

Phishing Banking Mobile Scams

Operation Synergia led to the arrest of 31 individuals

Security Affairs

FEBRUARY 2, 2024

An international law enforcement operation, named Synergia, led to the arrest of 31 individuals involved in ransomware, banking malware, and phishing attacks. The international law enforcement operation was launched to curb the escalation and professionalisation of transnational cybercrime.

Cybercrime

Cybercrime Banking Phishing Malware

Picus Threat Library Is Updated for Trojans Targeting Banks in Latin America

Security Boulevard

DECEMBER 30, 2021

Picus Labs has updated the Picus Threat Library with new attack methods for Krachulka, Lokorrito, Zumanek Trojans that are targeting banks in Brazil, Mexico, and Spain. In this blog, techniques used by these malware families will be explored. Banking trojans have a significant role in the cybercrime scene in Latin America.

Banking

Banking Malware Spyware Phishing

Hackers abusing the Ngrok platform phishing attacks

Security Affairs

FEBRUARY 16, 2021

Researchers from threat intelligence Cyble have discovered threat actors abusing the Ngrok platform in a fresh phishing campaign. Researchers at the threat intelligence firm Cyble discovered a new wave of phishing attacks targeting multiple organizations that are abusing the ngrok platform, a secure and introspectable tunnel to the localhost.

Phishing

Phishing Cybercrime Mobile Internet

What is Phishing?

Identity IQ

FEBRUARY 7, 2023

What is Phishing? One of the most common techniques used to exploit web users is the phishing scam. This article will cover what phishing is, cybercriminals’ different approaches, and how to prevent yourself from becoming a victim. What is Phishing? How Does Phishing Work? Spear Phishing.

Phishing

Phishing Identity Theft Scams Banking

Xenomorph malware is back after months of hiatus and expands the list of targets

Security Affairs

SEPTEMBER 26, 2023

A new campaign is spreading Xenomorph malware to Android users in the United States, Spain, Portugal, Italy, Canada, and Belgium. Researchers from ThreatFabric uncovered a new campaign spreading Xenomorph malware to Android users in the United States and all over the world. reads the report published by Threat Fabric. “In

Malware

Malware Banking Phishing Engineering

INTERPOL Arrests 31 in Global Operation, Identifies 1,900+ Ransomware-Linked IPs

The Hacker News

FEBRUARY 2, 2024

An INTERPOL-led collaborative operation targeting phishing, banking malware, and ransomware attacks has led to the identification of 1,300 suspicious IP addresses and URLs. Involving 60 law

Ransomware

Ransomware Cybercrime Banking Phishing

Info stealers and how to protect against them

Security Affairs

DECEMBER 18, 2023

Info stealers, the type of malware with its purpose in the name, can cripple businesses and everyday users alike. Info stealers, also known as information stealers, are a type of malicious software (malware) designed to covertly collect sensitive and personal information from a victim’s computer or network.

Banking

Banking Cybercrime Malware Accountability

Mobile Malware Uses Deepfakes, Social Engineering to Bypass Biometric Authentication

SecureWorld News

FEBRUARY 15, 2024

A sophisticated form of mobile malware dubbed "GoldPickaxe" has been uncovered, which collects facial recognition data to produce deepfake videos, enabling hackers to bypass biometric authentication protections on banking apps. The malware has been active since 2023, specifically targeting victims in Vietnam and Thailand.

Social Engineering

Social Engineering Mobile Authentication Engineering

TrickBot indictment reveals the scale and complexity of organized cybercrime

Malwarebytes

JUNE 8, 2021

Sometimes, it’s used even if an attack being discussed is a basic phish, or maybe some very generic malware. This isn’t a good thing when tackling malware developments. ” Have you ever stopped to consider “what, exactly, are we up against” when dealing with malware? “How bad is it, really?”

Cybercrime

Cybercrime Malware Banking Phishing

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

Security Affairs

JULY 6, 2021

The alleged perpetrator, who turned out to be a citizen of Morocco, was arrested in May by the Moroccan police based on the data about his cybercrimes that was provided by Group-IB. Almost each of the scripts contained in the phishing kit had its creator’s nickname, Dr HeX, and contact email address.

Cybercrime

Cybercrime Phishing Banking Telecommunications

Dodge online banking fraudsters with these 12 cybersecurity tips

IT Security Guru

FEBRUARY 13, 2023

study tested the security of 13 of the UK’s most popular online banking sites between September and November 2022. Financially motivated cybercrime, using malware and phishing , is growing at a rapid pace. A recent Which? Be wary of transfers: Only transfer money to parties you trust.

Banking

Banking Cybersecurity Antivirus Phishing

State of Malware 2024: What consumers need to know

Malwarebytes

FEBRUARY 6, 2024

Released today, the Malwarebytes State of Malware 2024 report takes a deep dive into the latest developments in the world of cybercrime. Passwords Google and Microsoft made good on their promise to back passkeys , an encryption-based alternative to passwords that can’t be stolen, guessed, cracked, or phished. This is changing.

Malware

Malware Passwords Identity Theft Banking

IcedID malware campaign targets Zoom users

Security Affairs

JANUARY 7, 2023

Cyber researchers warn of a modified Zoom app that was used by threat actors in a phishing campaign to deliver the IcedID Malware. Cyble researchers recently uncovered a phishing campaign targeting users of the popular video conferencing and online meeting platform Zoom to deliver the IcedID malware. Pierluigi Paganini.

Malware

Malware Phishing Banking Hacking

Indian Bank Hit in $13.5M Cyberheist After FBI ATM Cashout Warning

Krebs on Security

AUGUST 17, 2018

12, KrebsOnSecurity carried an exclusive : The FBI was warning banks about an imminent “ATM cashout” scheme about to unfold across the globe, thanks to a data breach at an unknown financial institution. The Blacksburg bank is now suing its insurance provider for refusing to fully cover the loss. On Sunday, Aug.

Banking

Banking Accountability Data breaches Malware

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. Client-side attacks on the wane.

Cybercrime

Cybercrime Banking Malware Ransomware

How to Identify and Avoid Holiday Phishing Scams

Identity IQ

AUGUST 31, 2023

How to Identify and Avoid Holiday Phishing Scams IdentityIQ The holiday season brings joy, celebrations, and… a surge in online scams. Holiday phishing scams are an ongoing issue that ramps up when folks are feeling the most festive. What Is a Phishing Scam? How Does Phishing Work? What Are the Types of Phishing Attacks?

Scams

Scams Phishing Identity Theft Banking

Remote Monitoring & Management software used in phishing attacks

Malwarebytes

FEBRUARY 13, 2024

In this post, we explore a particular phishing scam targeting corporate users via the AnyDesk remote software and how ThreatDown can prevent the misuse of such programs by cybercriminals. Attackers could trick them by sending them to a typical phishing page or making them download malware, all of which are good options.

Phishing

Phishing Software Scams Banking

Hackers accessed staff mailboxes at Italian bank Monte dei Paschi

Security Affairs

APRIL 11, 2020

Monte dei Paschi, one of the biggest Italian banks, suffered a cyber attack, hackers accessed the mailboxes of some employees and sent emails to clients. Italian state-owned bank Monte dei Paschi discloses a security breach, hackers have accessed the mailboxes of some employees and sent emails to clients. Pierluigi Paganini.

Banking

Banking Cyber Attacks Advertising Cybercrime

Phishing, the campaigns that are targeting Italy

Security Affairs

OCTOBER 12, 2023

This post analyzed the numerous phishing campaigns targeting users and organizations in Italy. Phishing is a ploy to trick users into revealing personal or financial information through an e-mail, Web site, and even through instant messaging. Phishing can also be used as a precursor attack to drop malware.

Phishing

Phishing Scams Education Passwords

BitRAT campaign relies on stolen sensitive bank data as a lure

Security Affairs

JANUARY 3, 2023

Experts warn of a new malware campaign using sensitive information stolen from a bank as a lure to spread the remote access trojan BitRAT. Qualys experts spotted a new malware campaign spreading a remote access trojan called BitRAT using sensitive information stolen from a bank as a lure in phishing messages.

Banking

Banking Malware Phishing DDOS

The new maxtrilha trojan is being disseminated and targeting several banks

Security Affairs

SEPTEMBER 12, 2021

A new banking trojan dubbed maxtrilha (due to its encryption key) has been discovered in the last few days and targeting customers of European and South American banks. The new maxtrilha trojan is being disseminated and targeting several banks around the world. Figure 1: High-level diagram of maxtrilha banking trojan.

Banking

Banking Malware Internet Internet

US Harbors Prolific Malicious Link Shortening Service

Krebs on Security

OCTOBER 31, 2023

The top-level domain for the United States — US — is home to thousands of newly-registered domains tied to a malicious link shortening service that facilitates malware and phishing scams, new research suggests. domains as among the most prevalent in phishing attacks over the past year. US phishing domains.

Phishing

Phishing Telecommunications Malware Scams

Disneyland Malware Team: It’s a Puny World After All

Security Boulevard

NOVEMBER 16, 2022

A financial cybercrime group calling itself the Disneyland Team has been making liberal use of visually confusing phishing domains that spoof popular bank brands using Punycode, an Internet standard that allows web browsers to render domain names with non-Latin alphabets like Cyrillic and Ukrainian.

Malware

Malware Cybercrime Banking Phishing

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. Emerging in 2007 as a banking trojan, QakBot (a.k.a. government has used court orders to remotely disinfect systems compromised with malware.

Hacking

Hacking Malware Ransomware Government

Alert: Carbanak Malware Strikes Again With Updated Tactics

Security Boulevard

JANUARY 7, 2024

Recent reports have highlighted the return of the Carbanak Malware. As per the reports, it’s a banking malware used in ransomware attacks that leverages updated tactics for increased effectiveness. In this blog, we’ll […] The post Alert: Carbanak Malware Strikes Again With Updated Tactics appeared first on TuxCare.

Malware

Malware Banking Ransomware Software

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Security Affairs

NOVEMBER 15, 2018

Group-IB has detected massive campaigns targeting Russian financial institutions posing as the Central Bank of Russia. The emails were disguised to look as if they come from the Central Bank of Russia and FinCERT, the Financial Sector Computer Emergency Response Team. SSL certificates were not used for DKIM verification.

Banking

Banking Computers and Electronics Phishing Cybercrime

Tetrade hackers target 112 financial apps with Ghimob banking Trojan

Security Affairs

NOVEMBER 10, 2020

Researchers from Kaspersky Lab spotted a new Android banking Trojan, dubbed Ghimob, that is able to steal data from 112 financial Apps. Ghimob is a new Android banking Trojan discovered by Kaspersky that is able to steal data from 112 financial apps. ” continues the analysis. ” concludes the report.

Banking

Banking Mobile Malware Spyware

China-based Fangxiao group behind a long-running phishing campaign

Security Affairs

NOVEMBER 17, 2022

A China-based financially motivated group, tracked as Fangxiao, is behind a large-scale phishing campaign dating back as far as 2019. Researchers from Cyjax reported that a China-based financially motivated group, dubbed Fangxiao, orchestrated a large-scale phishing campaign since 2017. SecurityAffairs – hacking, phishing).

Phishing

Phishing Adware Retail Malware

Police dismantled a gang that used phishing sites to steal credit cards

Security Affairs

FEBRUARY 22, 2022

The Ukrainian police arrested a gang specialized in the sale of stolen payment card data through phishing attacks. The cybercrime unit of the Ukrainian police has arrested a group of cybercriminals who managed to steal payment card data from at least 70,000 people by setting up mobile fake top-up services. Pierluigi Paganini.

Phishing

Phishing Banking Mobile Telecommunications

Ingenious Phishing Tactics in the Modern Scammer's Toolbox

SecureWorld News

OCTOBER 30, 2023

When it comes to impactful types of internet-borne crime, phishing is the name of the game. It serves as a vessel for various strains of malware, including ransomware, and underlies data-stealing campaigns that target large organizations and individuals alike. And for good reason. Tactics matter a lot, too.

Phishing

Phishing Scams Passwords Wireless

HTML Smuggling technique used in phishing and malspam campaigns

Security Affairs

NOVEMBER 12, 2021

Threat actors are increasingly using the HTML smuggling technique in phishing campaigns, Microsoft researchers warn. Microsoft experts warn that threat actors are increasingly using the HTML smuggling technique in phishing campaigns to stealthily deliver threats. SecurityAffairs – hacking, phishing). Pierluigi Paganini.

Phishing

Phishing Banking Passwords Firewall

Android banking Trojan BrazKing is back with significant evasion improvements

Security Affairs

NOVEMBER 18, 2021

The BrazKing Android banking trojan is back with significant improvements and dynamic banking overlays to avoid detection. Researchers from IBM spotted a new version of the BrazKing Android banking trojan that pull fake overlay screens from the command and control (C2) server in real-time.

Banking

Banking Malware Antivirus Phishing

WikiLoader malware-as-a-service targets Italian organizations

Security Affairs

AUGUST 1, 2023

Threat actors are targeting Italian organizations with a phishing campaign aimed at delivering a new malware called WikiLoader. WikiLoader is a new piece of malware that is employed in a phishing campaign that is targeting Italian organizations. ” reads the post published by Proofpoint. ” continues the report.

Malware

Malware Phishing Banking Hacking

Disneyland Malware Team: It’s a Puny World After All

Police arrest suspect linked to notorius OPERA1ER cybercrime gang

Webinars

Trending Sources

Grandoreiro banking malware targets Mexico and Spain

Webinars

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

InTheBox Threat Actor Sells Over 1,800 Web Injects on Cybercrime Forums

Tedrade banking malware families target users worldwide

ERMAC 2.0 Android Banking Trojan targets over 400 apps

Carbanak malware returned in ransomware attacks

Feds Target $100M ‘GozNym’ Cybercrime Network

New variant of BBTok Trojan targets users of +40 banks in LATAM

Financial cyberthreats in 2023

Operation Synergia led to the arrest of 31 individuals

Picus Threat Library Is Updated for Trojans Targeting Banks in Latin America

Hackers abusing the Ngrok platform phishing attacks

What is Phishing?

Xenomorph malware is back after months of hiatus and expands the list of targets

INTERPOL Arrests 31 in Global Operation, Identifies 1,900+ Ransomware-Linked IPs

Info stealers and how to protect against them

Mobile Malware Uses Deepfakes, Social Engineering to Bypass Biometric Authentication

TrickBot indictment reveals the scale and complexity of organized cybercrime

Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide

Dodge online banking fraudsters with these 12 cybersecurity tips

State of Malware 2024: What consumers need to know

IcedID malware campaign targets Zoom users

Indian Bank Hit in $13.5M Cyberheist After FBI ATM Cashout Warning

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

How to Identify and Avoid Holiday Phishing Scams

Remote Monitoring & Management software used in phishing attacks

Hackers accessed staff mailboxes at Italian bank Monte dei Paschi

Phishing, the campaigns that are targeting Italy

BitRAT campaign relies on stolen sensitive bank data as a lure

The new maxtrilha trojan is being disseminated and targeting several banks

US Harbors Prolific Malicious Link Shortening Service

Disneyland Malware Team: It’s a Puny World After All

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Alert: Carbanak Malware Strikes Again With Updated Tactics

Two hacker groups attacked Russian banks posing as the Central Bank of Russia

Tetrade hackers target 112 financial apps with Ghimob banking Trojan

China-based Fangxiao group behind a long-running phishing campaign

Police dismantled a gang that used phishing sites to steal credit cards

Ingenious Phishing Tactics in the Modern Scammer's Toolbox

HTML Smuggling technique used in phishing and malspam campaigns

Android banking Trojan BrazKing is back with significant evasion improvements

WikiLoader malware-as-a-service targets Italian organizations

Stay Connected