Security Affairs

NOVEMBER 8, 2023

The APT group’s campaigns focus on cryptocurrency exchanges, venture capital firms, and banks. blog, which was chosen by the attackers in an attempt to appear as the legitimate cryptocurrency exchange swissborg.com. The executable had a zero detection rate on VirusTotal at the time of its discovery.

Malware 107

Malware Cryptocurrency Social Engineering Engineering 107

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. 12 blog post , the attackers used their access to Mailchimp employee accounts to steal data from 214 customers involved in cryptocurrency and finance.

Social Engineering 325

Social Engineering Mobile Cybercrime Passwords 325

SecureList

JULY 5, 2023

The higher the global popularity of cryptocurrencies and the more new ways of storing them, the wider the arsenal of tools used by malicious actors who are after digital money. This story covers two fundamentally different methods of email attacks on the two most popular ways of storing cryptocurrency: hot and cold wallets.

Scams 109

Scams Phishing Cryptocurrency Social Engineering 109

Hacker Combat

AUGUST 8, 2022

North Korean hackers use phoney Coinbase job offers to target cryptocurrency professionals. The renowned North Korean hacking outfit Lazarus has uncovered a new social engineering scheme in which the hackers pose as Coinbase to lure workers into the fintech sector. Lazarus hackers go after cryptocurrency.

Social Engineering 93

Social Engineering Cryptocurrency Engineering Malware 93

Security Affairs

MAY 18, 2022

Microsoft researchers warn of the rising threat of cryware targeting non-custodial cryptocurrency wallets, also known as hot wallets. Microsoft warns of the rise of cryware, malicious software used to steal info an dfunds from non-custodial cryptocurrency wallets, also known as hot wallets. Ransomware. Password and info stealers.

Cryptocurrency 92

Cryptocurrency Social Engineering Malware Cybercrime 92

Webroot

FEBRUARY 13, 2024

Rise in Cryptocurrency Payments : Fraudsters are increasingly asking for payments in cryptocurrency, exploiting its semi-anonymous nature. In 2021, losses to romance scams involving cryptocurrency were reported at $139 million ​​. Expect this to avenue of fraud to consistently escalate as crypto prices and adoption increase.

Scams 80

Scams Cryptocurrency Media Education 80

Krebs on Security

AUGUST 30, 2022

In a blog post earlier this month, Cloudflare said it detected the account takeovers and that no Cloudflare systems were compromised. 4 it became aware of unauthorized access to information related to a limited number of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials.

Mobile 298

Mobile Phishing Authentication Accountability 298

Security Affairs

MAY 21, 2023

The threat actors publish malicious packages to the PyPI repository and attempt to trick developers into using them using social engineering tricks, such as intentional typos in their names and high version numbers. The repository is a privileged target for threat actors that aim to carry out supply chain attacks aimed at developers.

Social Engineering 88

Social Engineering Malware Cryptocurrency Engineering 88

The Last Watchdog

APRIL 14, 2022

The email specifies that the HR manager should include the codes associated with each card, which the scammer behind the scenes then sells online for cash or cryptocurrency. An HR benefits manager receives an email from the department VP asking him to purchase gift cards for a new employee rewards program. Scenario 3.

Phishing 247

Phishing Accountability Scams Social Engineering 247

Krebs on Security

APRIL 20, 2023

“Eventually, the threat actor was able to compromise both the Windows and macOS build environments,” 3CX said in an April 20 update on their blog. which owns LinkedIn, said in September 2022 that it had detected a wide range of social engineering campaigns using a proliferation of phony LinkedIn accounts.

Malware 287

Malware Software Technology Accountability 287

Security Affairs

MAY 19, 2023

TurkoRat is an information-stealing malware that can obtain a broad range of data from the infected machine, including account login credentials, cryptocurrency wallets, and website cookies. Please nominate Security Affairs as your favorite blog. ” reads the analysis published by ReversingLabs.

Encryption 79

Encryption Social Engineering Malware Cryptocurrency 79

SC Magazine

MAY 12, 2021

Researchers found 167 counterfeit Android and iOS apps that attackers used to steal money from victims who believed they installed a financial trading, banking or cryptocurrency app. Photo by Justin Sullivan/Getty Images). If targets later tried to withdraw funds or close the account, the attackers would block access.

Scams 62

Scams Cryptocurrency Social Engineering Banking 62

eSecurity Planet

SEPTEMBER 30, 2021

Security expert Chris Krebs wrote in a blog post this week that he discovered such a service – called OPT Agency – earlier this year, noting that the service was shut down soon after his report was published. Phishing, Social Engineering are Still Problems. A third bot, dubbed SMS Buster, is more difficult for bad actors to use.

Authentication 113

Authentication Social Engineering Phishing Banking 113

Malwarebytes

JULY 19, 2021

We’ve observed a 419-style scam (also known as an advance fee scam) which combines the promise of cryptocurrency riches with WhatsApp conversation. Folks already involved in cryptocurrency would likely have suspicions raised after reading the below. It’s all about that personal touch in the land of cryptocurrency scams.

Accountability 102

Accountability Scams Cryptocurrency Banking 102

Digital Shadows

FEBRUARY 2, 2023

Whether you’re a crypto-skeptic or a crypto-maximalist, it cannot be denied that the mostly unregulated cryptocurrency ecosystem is no stranger to fraud. To conduct attacks specifically linked to cryptocurrency, threat actors must usually cooperate within a web of associates—just like any other area of cyber crime.

Scams 40

Scams Cryptocurrency Marketing Advertising 40

Security Boulevard

AUGUST 23, 2022

To get to their targets, the attackers used social engineering via LinkedIn “hiding behind the ruse of attractive, but bogus, job offers,” ESET said, adding that it was likely part of the Lazarus campaign for Mac and is similar to research done by ESET in May. Lazarus had made a name for itself with cyber-espionage. UTM Medium.

Cyber threats 52

Cyber threats Social Engineering Banking Malware 52

Security Boulevard

APRIL 26, 2022

In 2022, the same threat actor started spoofing various important entities in South Korea, including KRNIC (Korea Internet Information Center), Korean security vendors such as Ahnlab, cryptocurrency exchanges such as Binance, and others. This is done for the purpose of social engineering. Figure 3: Decoy content.

Phishing 52

Phishing DNS Cryptocurrency Accountability 52

Security Boulevard

AUGUST 3, 2022

Spamming with the aim of, for example, disseminating information related to cryptocurrency or the stock market. Phishing to obtain sensitive user information, which is then used to launch other social engineering attacks or identity theft. State of API security: malicious attack traffic grew 117%. UTM Medium. UTM Source.

Mobile 98

Mobile Authentication Accountability Identity Theft 98

Webroot

FEBRUARY 11, 2021

As we mentioned in a previous blog , hackers come in many forms, but their methods can generally be classified into three distinct types of cybercriminals: The Impersonator – Hackers that pretend to be others, often using social engineering and human psychology to trick users.

Scams 107

Scams Phishing Firewall Social Engineering 107

Krebs on Security

APRIL 6, 2022

Microsoft blogged about its attack at the hands of LAPSUS$, and about the group targeting its customers. The smash-and-grab attacks by LAPSUS$ obscure some of the group’s less public activities, which according to Microsoft include targeting individual user accounts at cryptocurrency exchanges to drain crypto holdings.

Social Engineering 250

Social Engineering Phishing Engineering Accountability 250

Security Boulevard

MAY 19, 2022

These variants of Vidar malware fetch the C2 configuration from attacker-controlled social media channels hosted on Telegram and Mastodon network. These binaries hosted on GitHub, distribute Vidar malware using similar tactics of abusing social media channels for C2 communication. Key points. google*.*:*utc*.*:*UTC*.*:*crypt*.*:*key*.*;50;true;movies:music:mp3;

Media 62

Media Social Engineering Backups Passwords 62

Security Affairs

APRIL 27, 2023

CyberNews analyzed a classic cryptocurrency romance scam, also known as CryptoRom, explaining how scammers hid the money CryptoRom scammers hid the money with several layers of obfuscation, but the Cybernews research team discovered that the stolen funds ended up in Binance accounts. The victim is gently persuaded to invest in cryptocurrency.

Scams 82

Scams Cryptocurrency Social Engineering Accountability 82

SecureList

FEBRUARY 16, 2023

These sites referenced public figures and humanitarian groups, offering to accept cash in cryptocurrency, something that should have raised a red flag in itself. By getting the user’s secret phrase, cybercriminals could get access to their cryptocurrency balance. Scammers created a page on the telegra.ph

Phishing 102

Phishing Scams Accountability Energy and Utilities 102

eSecurity Planet

MARCH 24, 2022

In a blog post detailing its efforts to track and contain the breach, Microsoft described LAPSUS$ as a “large scale social engineering and extortion campaign.” LAPSUS$ doesn’t appear to be using overtly sophisticated intrusion methods but instead relying on social engineering and purchased accounts.

Social Engineering 109

Social Engineering Engineering Data breaches Hacking 109

Security Boulevard

MARCH 31, 2022

RedLine is a malware service available for purchase on underground forums that specifically targets the theft of sensitive information: passwords, credit cards, execution environment data, computer name, installed software, and more recently, cryptocurrency wallets and related files. The Compromises. Insider Threats Via Other Means.

Cybersecurity 98

Cybersecurity Social Engineering Passwords Malware 98

ForAllSecure

SEPTEMBER 29, 2022

Stok : DEF CON that that summer for hacker summer camp and got invited or more or less kind of social engineer myself into a hacker one live hacking event used to be at the bar. All on his own Jack discovered a security flaw in a cryptocurrency app, a flaw that opened the door to the world of bug bounties.

Hacking 40

Hacking Cryptocurrency Software InfoSec 40

Webroot

JANUARY 7, 2022

Malicious actors will continue to improve their social engineering tactics, making it more difficult to recognize deception and make it increasingly easier to become a victim, predicts Milbourne. Cryptocurrency. There was no shortage of discussion surrounding cryptocurrency and its security flaws. Ransomware.

Cybercrime 104

Cybercrime Phishing Ransomware Cryptocurrency 104

SecureList

MAY 27, 2022

In January, we reported a malicious campaign targeting companies that work with cryptocurrencies, smart contracts, decentralized finance and blockchain technology: the attackers are interested in fintech in general. The campaign has two goals: gathering information and stealing cryptocurrency.

Phishing 117

Phishing Spyware Firmware Malware 117

Webroot

MAY 12, 2021

Most of these sites (more specifically the advertising on these sites) use dishonesty and social engineering to fool users into opening links, enabling an action on their browser or downloading a file they never intended to. With cryptocurrency values soaring again, executable based cryptojacking has been on the rise.”

Scams 114

Scams Mobile Social Engineering Advertising 114

Cisco Security

OCTOBER 6, 2021

There’s been no shortage of security headlines for us to reflect on, many of which are detailed on our Talos Threat Intelligence blog. Mining cryptocurrencies requires large amounts of computing power to solve the cryptographic challenges necessary to acquire new cryptocurrency tokens. The supply chain.

Cybersecurity 113

Cybersecurity Authentication Passwords Cryptocurrency 113

Spinone

DECEMBER 16, 2019

Ransom is usually demanded in Bitcoin or other cryptocurrencies to hide the identity of the attacker. Ransomcloud is not only a decrypting malware but a complex of social engineering tactics behind it. And here’s what may be a hint: A sense of urgency, which is a common social engineering tactic. Absolutely!

Ransomware 52

Ransomware Cybersecurity Backups Social Engineering 52

The Last Watchdog

FEBRUARY 28, 2021

Cybercriminals often leverage social engineering tactics like phishing and spear-phishing to propagate sophisticated malware. From mining cryptocurrency to launching DDoS attacks against networks, there are countless ways in which malware can access and utilize victim’s computers and data.

Cyber threats 113

Cyber threats Computers and Electronics Adware Spyware 113

Lenny Zeltser

JULY 25, 2018

Scammers use a variety of social engineering tactics when persuading victims to follow the desired course of action. ” The email includes demand for payment via cryptocurrency such Bitcoin to ensure that “Your naughty secret remains your secret.” ” The sender calls this “privacy fees.”

Scams 60

Scams Social Engineering Passwords Big data 60

SecureList

APRIL 27, 2022

This application contains a legitimate program called DeFi Wallet, that saves and manages a cryptocurrency wallet, but also implants a malicious file when executed. We recently discovered a Trojanized DeFi application, compiled in November 2021. Final thoughts.

Malware 137

Malware Firmware Government Phishing 137

SecureList

JULY 28, 2022

In March, Proofpoint published a blog post about a new spear-phishing campaign related to the war in Ukraine, tentatively attributed to the Russian-speaking actor UNC1151 (aka TA445 and Ghostwriter). As part of this process, the actor abused a legitimate blog service to host a malicious script with an encoded format. Final thoughts.

Malware 139

Malware Firmware Phishing Cryptocurrency 139

SecureList

JULY 29, 2021

According to public blogs, targeting was widespread but focused primarily on diplomatic entities throughout Europe and North America: based on the content of the lure documents bundled with the malware, this assessment appears to be accurate. In recent operations, the group has focused on cryptocurrency businesses. Final thoughts.

Malware 144

Malware Phishing Password Management Social Engineering 144

BH Consulting

NOVEMBER 9, 2022

In all, the agency grouped the main risks into eight categories: ransomware, malware, social engineering, threats against data, threats against availability, disinformation/misinformation, and supply chain targeting. There were 66 zero-day vulnerabilities disclosed during the reporting period between July 2021 and July 2022.

Social Engineering 52

Social Engineering Ransomware Password Management Engineering 52