Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Spyware 73

Spyware Ransomware Malware Data breaches 73

Malwarebytes

FEBRUARY 16, 2021

When COVID-19 cases first began spiking in several countries, cybercriminals preyed upon people’s fears mercilessly, with an avalanche of coronavirus phishing emails and scams. If 2020 taught us anything, it’s that cybercrime stops for nothing. As you can see from these findings, 2020 proved to be a tumultuous year.

Malware 121

Malware Scams Spyware Healthcare 121

SecureWorld News

JULY 27, 2023

Some highlights include: Stealers are primarily sold on cybercrime forums. Cybersecurity vendor experts provided their commentary on the findings: Zane Bond, Head of Product at Keeper Security, said: "The first phase of any breach begins with an external facing risk, such as a software vulnerability or employee who falls victim to phishing.

Malware 67

Malware Social Engineering Passwords Spyware 67

SecureWorld News

AUGUST 8, 2022

Cybercriminals often use malware to gain access to a computer or mobile device to deploy viruses, worms, Trojans, ransomware, spyware, and rootkits. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware. Remcos installs a backdoor onto a target system.

Malware 87

Malware Banking Healthcare Penetration Testing 87

SecureList

NOVEMBER 22, 2022

As the financial threat landscape has been dramatically evolving over the past few years, with the expansion of such activities as ransomware or cryptofraud, we believe it is no longer sufficient to look at the threats to traditional financial institutions (like banks), but rather assess financial threats as a whole. million downloads.

Cryptocurrency 87

Cryptocurrency Mobile Ransomware Banking 87

Security Affairs

SEPTEMBER 2, 2018

Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. · Cobalt cybercrime gang targets Russian and Romanian banks. · Fappening case – Another hacker who leaked celebrities naked photos was sentenced to 8 months in prison. · Third-Party researchers released micropatch for recently disclosed Windows Zero-Day.

Spyware 41

Spyware Banking Data breaches Mobile 41

Security Affairs

APRIL 21, 2019

Scranos – A Cross Platform, Rootkit-Enabled Spyware rapidly spreading. Operator of Codeshop Cybercrime Marketplace Sentenced to 90 months in prison. Google is going to block logins from embedded browsers against MitM phishing attacks. Marcus Hutchins pleads guilty to two counts of banking malware creation.

Computers and Electronics 63

Computers and Electronics Spyware Data breaches Advertising 63

Security Affairs

APRIL 8, 2019

Group-IB Threat Intelligence team identified compromised credentials of 7 306 users from the Gulf countries in 2018 and detected the total of 138 978 compromised cards issued by the Gulf countries’ banks. Group-IB Threat Intelligence experts detected a total of 138 978 compromised cards issued by the Gulf countries’ banks.

Artificial Intelligence 65

Artificial Intelligence Government Banking Advertising 65

Security Affairs

JULY 4, 2023

A Mexican threat actor that goes online with the moniker Neo_Net is behind an Android malware campaign targeting banks worldwide. Neo_Net’s eCrime campaign was reportedly targeting clients of banks globally, with a focus on Spanish and Chilean banks, from June 2021 to April 2023. ” Thill explained.

Banking 81

Banking Phishing Social Engineering Authentication 81

Identity IQ

MAY 7, 2021

Research by Verizon has shown that a third of all breaches in the past year involved phishing scams. Spyware can be loaded onto your machine to log all your keystrokes. Social Engineering: Cybercriminals are increasingly using sophisticated social engineering tools to trick people into revealing their login credentials.

Accountability 105

Accountability Data breaches Passwords Social Engineering 105

SecureList

AUGUST 30, 2023

Tomiris employs a wide variety of attack vectors: spear-phishing, DNS hijacking, exploitation of vulnerabilities (specifically ProxyLogon ), suspected drive-by downloads, and other “creative” methods. Using a number of vulnerabilities in iOS, the attachment is executed and installs spyware.

Malware 73

Malware Spyware Cryptocurrency Government 73

Security Affairs

MAY 8, 2020

Group-IB, a Singapore-based cybersecurity company, observed the growth of the lifespan of phishing attacks in the second half of 2019. Figure 1 The distribution of web-phishing among target categories . CERT-GIB’s findings indicate that phishing attack perpetrators have revised their so-called target pool. Target reshuffle.

Phishing 56

Phishing Spyware Banking Malware 56

SecureList

NOVEMBER 23, 2021

For instance, we see a new trend emerging in the criminal ecosystem of spyware-based authentication data theft, with each individual attack being directed at a very small number of targets (from single digits to several dozen). Such attacks are likely to comprise an even larger portion of the threat landscape next year.

Spyware 102

Spyware Phishing Cybercrime Energy and Utilities 102

SecureList

MAY 27, 2022

We attribute the campaign, named SnatchCrypto, to the BlueNoroff APT group, the threat actor behind the 2016 attack on Bangladesh’s central bank. The group uses various malware families, including Wroba, and attack methods that include phishing, mining, smishing and DNS poisoning. Other malware.

Phishing 103

Phishing Spyware Firmware Malware 103

Security Affairs

NOVEMBER 11, 2023

Police seized BulletProftLink phishing-as-a-service (PhaaS) platform Serbian pleads guilty to running ‘Monopoly’ dark web drug market McLaren Health Care revealed that a data breach impacted 2.2 Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

DDOS 107

DDOS Data breaches Ransomware Marketing 107

Krebs on Security

JULY 16, 2019

For at least the past decade, a computer crook variously known as “ Yalishanda ,” “ Downlow ” and “ Stas_vl ” has run one of the most popular “bulletproof” Web hosting services catering to a vast array of phishing sites, cybercrime forums and malware download servers.

Cybercrime 183

Cybercrime Phishing Banking Malware 183

Security Affairs

FEBRUARY 20, 2022

Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 354 appeared first on Security Affairs.

Banking 85

Banking Spyware Surveillance Ransomware 85

SecureList

NOVEMBER 10, 2021

With millions of new users on streaming platforms, cyberattackers have recognized this heightened demand and seek to take advantage of it by distributing streaming phishing scams and spreading malware under the guise of users’ favorite shows. An example of a phishing page offering to stream Money Heist. Methodology.

Phishing 93

Phishing Accountability Malware Adware 93

Security Affairs

DECEMBER 5, 2021

Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users German BSI agency warns of ransomware attacks over Christmas holidays Cuba ransomware gang hacked 49 US critical infrastructure organizations CISA warns of vulnerabilities in Hitachi Energy products NSO Group spyware used to compromise iPhones of 9 US State Dept officials (..)

Spyware 85

Spyware Ransomware Hacking VPN 85

Security Affairs

DECEMBER 11, 2018

According to Group-IB experts, cyber criminals stole user accounts’ data using special spyware – form grabbers, keyloggers, such as Pony Formgrabber, AZORult and Qbot ( Qakbot ). Phishing emails were sent to personal and corporate email accounts. Security Affairs – leaked credentials, cybercrime). Pierluigi Paganini.

Government 92

Government Cybercrime Accountability Advertising 92

Malwarebytes

OCTOBER 18, 2021

No spear-phishing attack against an executive’s personal device. No surreptitious implantation of spyware to collect admin credentials. Online scams already ruin people’s lives by emptying their bank accounts. The breach at the Oldsmar water plant, however, may have involved no malware at all.

Ransomware 145

Ransomware Firewall Antivirus Cybersecurity 145

eSecurity Planet

OCTOBER 21, 2022

From ransomware attacks locking businesses out of their data until they pay potentially millions of dollars to spyware tracking users’ every move through their infected device, the effects of malware can be devastating. This information can range from what websites you visit to your download history to your bank PIN.

Malware 69

Malware Adware Spyware Antivirus 69

SecureList

JULY 27, 2023

Following this, we released the first of a series of additional reports describing the final payload in the infection chain: a highly sophisticated spyware implant that we dubbed “TriangleDB” Operating in memory, this implant periodically communicates with the C2 (command and control) infrastructure to receive commands.

Malware 84

Malware Government Phishing Social Engineering 84

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135