Blog, Cybercrime and Education - Cyber Security Informer

Educational Institutions, the Favorite Targets of Vice Society Ransomware in 2022

Heimadal Security

DECEMBER 9, 2022

Vice Society ransomware seemed to favor educational institutions in their attacks in 2022. The Cybercrime group targeted 33 schools in the last year, surpassing other threat actors like LockBit, BlackCat, BianLian, and Hive.

Education

Education Ransomware Manufacturing Healthcare

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. The FBI has observed incidents of stolen higher education credential information posted on publically accessible online forums or listed for sale on criminal marketplaces.

Cybercrime

Cybercrime Education Accountability Phishing

Law enforcement seized the Genesis Market cybercrime marketplace

Security Affairs

APRIL 5, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Genesis Market) The post Law enforcement seized the Genesis Market cybercrime marketplace appeared first on Security Affairs.

Marketing

Marketing Cybercrime Accountability Education

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Cybercrime group exploits Windows zero-day in ransomware attacks

Security Affairs

APRIL 11, 2023

The experts pointed out that while the majority of zero-days they have discovered in the past were used by APT groups, this zero-day was exploited by a sophisticated cybercrime group. This group is known to have used similar CLFS driver exploits in the past that were likely developed by the same author.

Cybercrime

Cybercrime Ransomware Education Media

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Security Affairs

MAY 12, 2023

CISA and FBI warned of attacks conducted by the Bl00dy Ransomware Gang against the education sector in the country. The FBI and CISA issued a joint advisory warning that the Bl00dy Ransomware group is actively targeting the education sector by exploiting the PaperCut remote-code execution vulnerability CVE-2023-27350.

Education

Education Ransomware Encryption Malware

Cybercrime Explained – A Brief Guide to the Dangers of the Online World

Heimadal Security

JULY 29, 2021

Unfortunately, that also includes cybercrime. But what is cybercrime? The post Cybercrime Explained – A Brief Guide to the Dangers of the Online World appeared first on Heimdal Security Blog. And, more importantly, how can […].

Cybercrime

Cybercrime Internet Internet Education

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

Security Affairs

APRIL 24, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, PaperCut ) The post Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws appeared first on Security Affairs.

Cybercrime

Cybercrime Software Education Ransomware

Cyber News Rundown: Global Cybercrime Costs Surpass $1 Trillion

Webroot

DECEMBER 11, 2020

Cybercrime surpasses $1Trillion in global costs. A recent study has put the global cost of cybercrime at over $1 trillion for 2020. Educational technology still lacking proper security. The post Cyber News Rundown: Global Cybercrime Costs Surpass $1 Trillion appeared first on Webroot Blog.

Cybercrime

Cybercrime Education Passwords Technology

Pondurance Announces Partnership With E&I Cooperative Services

Security Boulevard

MAY 8, 2024

The vast majority of cyberattacks are executed for financial gain, and that means that any organization, regardless of size, industry, or current in-house capabilities, can become a victim of cybercrime.

Education

Education Cybercrime Phishing Ransomware

15 Best Cybersecurity Blogs To Read

Spinone

OCTOBER 10, 2019

The best way to stay up-to-date with the recent trends is by reading the top cybersecurity blogs. Here’s our list of the best cybersecurity blogs to read and follow. Securing Tomorrow SecuringTomorrow is a blog by McAfee, one of the biggest security software providers. Their main focus is on cybercrime investigations.

Cybersecurity

Cybersecurity IoT Antivirus Education

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

Krebs on Security

MAY 14, 2021

. “Servers were seized (country not named), money of advertisers and founders was transferred to an unknown account,” reads a message from a cybercrime forum reposted to the Russian OSINT Telegram channel. The new restrictions came as some Russian cybercrime forums began distancing themselves from ransomware operations altogether.

Ransomware

Ransomware Cryptocurrency Cybercrime Healthcare

‘Educational’ ransomware program may instead become a how-to guide for attackers

SC Magazine

MARCH 5, 2021

The author claims the program, dubbed Povlsomware, is designed to be an educational tool for testing anti-virus protections; however, it’s possible that cybercriminals could adopt and modify the code in order to launch their own attacks, warns Trend Micro, which detailed the ransomware in a new company blog post this week.

Education

Education Ransomware Malware Cybercrime

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

Security Affairs

APRIL 24, 2023

EvilExtractor is a new “all-in-one” info stealer for Windows that is being advertised for sale on dark web cybercrime forums. The tool was developed by a company named Kodex, which claims that the tool was developed for an educational purpose. EvilExtractor is a modular info-stealer, it exfiltrates data via an FTP service.

Cybercrime

Cybercrime Malware Education Phishing

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. businesses called #ShieldsUp.

Cybersecurity

Cybersecurity Cybercrime Education Passwords

FBI and Ukrainian police seized 9 crypto exchanges used by cybercriminals

Security Affairs

MAY 2, 2023

. “Noncompliant virtual currency exchanges, which have a lax anti-money laundering program or collect minimal Know Your Customer information or none at all, serve as important hubs in the cybercrime ecosystem and are operating in violation of Title 18 United States Code, Sections 1960 and 1956.”

Cybercrime

Cybercrime Cryptocurrency Advertising Education

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

These services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are also massively abused for hiding cybercrime activity because they can make it difficult to trace malicious traffic to its original source. The user dfyz on Searchengines[.]ru

DDOS

DDOS Internet Internet Government

GUEST ESSAY: The rise of ‘PhaaS’ — and a roadmap to mitigate ‘Phishing-as-a-Service’

The Last Watchdog

SEPTEMBER 21, 2022

Cybersecurity experts are discussing a new trend in the cybercrime community called phishing-as-a-service. In a PhaaS transaction, cybercriminals or cybercrime gangs are called vendors, and they sell access to various attack tools and technical knowledge to help customers carry out their crimes. Phishing-as-a-Service (PhaaS).

Phishing

Phishing Artificial Intelligence Cybercrime Social Engineering

Google obtained a temporary court order against CryptBot distributors

Security Affairs

APRIL 28, 2023

The malware allows operators to steal login credentials from popular services such as social media platforms and cryptocurrency wallets, then stolen data is sold on cybercrime forums by the operators. To prevent infections from malware like Cryptbot, Cybercrime Support Network recommends users to Download from well-known and trusted sources.

Malware

Malware Cybercrime Cryptocurrency Media

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

The Last Watchdog

MAY 30, 2022

Arguably, one of the most critical changes needed will be to adapt hiring practices to help candidates without a traditional college education enter into these critical roles. About the essayist: Jack Koziol is the founder, SVP and GM of Infosec Institute , a cybersecurity education company.

Cybersecurity

Cybersecurity InfoSec Education Government

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Security Affairs

APRIL 30, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Cybercrime

Cybercrime Malware Hacking Accountability

Authorities dismantled the card-checking platform Try2Check

Security Affairs

MAY 3, 2023

Today’s indictment and global takedown of the Try2Check website demonstrates that the Office, together with our partners, will disrupt cybercrime operations no matter where they are based.” The DoJ pointed out that Try2Check also victimized a major U.S.-based

Cybercrime

Cybercrime Education Media Hacking

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs

APRIL 9, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter newsletter) The post Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Computers and Electronics

Computers and Electronics Backups Cybercrime Marketing

Kodi discloses data breach after its forum was compromised

Security Affairs

APRIL 14, 2023

The threat actors also attempted to sell the stolen data on the BreachForums cybercrime forum that was recently shut down by law enforcement. Kodi has disclosed a data breach, threat actors have stolen the company’s MyBB forum database that contained data for over 400K users and private messages.

Data breaches

Data breaches Backups Passwords Accountability

STYX Marketplace emerged in Dark Web focused on Financial Fraud

Security Affairs

APRIL 5, 2023

The discovery of STYX also highlights the need for international cooperation in combating cybercrime. As cybercrime continues to proliferate and evolve, it is essential for FIs and consumers to take proactive measures to protect their sensitive financial information.

Banking

Banking Cybercrime Accountability Risk

Iran-linked MERCURY APT behind destructive attacks on hybrid environments

Security Affairs

APRIL 10, 2023

” DEV-1084 presented itself as cybercrime group likely as an attempt to hide its real motivation of a nation-state actor. The link between the DEV-1084 cluster and MERCURY was established based on the following evidence: Both DEV-1084 and MERCURY were observed sending emails from the IP address 146.70.106[.]89.

Ransomware

Ransomware Cybercrime VPN Education

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

Security Affairs

APRIL 30, 2023

TechCrunch reported that a cybercrime gang claims to have access to the entire AT&T employee database, which can allow them to access an internal AT&T portal for employees called OPUS. The carrier has adopted security measures to prevent similar attacks, it also forced a password reset on some email accounts.

Cryptocurrency

Cryptocurrency Accountability Passwords Hacking

New Lobshot hVNC malware spreads via Google ads

Security Affairs

MAY 1, 2023

While investigating the malware distribution, the researchers noticed the use of an infrastructure known to belong to cybercrime group TA505. com, which is a domain associated with the operations of the TA505 cybercrime gang. Upon executing the MSI file, a PowerShell command is launched.

Malware

Malware Cybercrime Banking Software

Personal Cybersecurity Concerns for 2023

Security Through Education

JANUARY 18, 2023

The truth is technology has grown at an exponential rate and so has cybercrime. Cybercrime doesn’t just affect big businesses and national governments. Stay educated, implement security recommendations, stay safe. At Social-Engineer LLC, our purpose is to bring education and awareness to all users of technology.

Cybersecurity

Cybersecurity Social Engineering Scams IoT

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Security Affairs

JUNE 6, 2022

The IT giant has seized the domains used by the threat actors employed in its attacks aimed at organizations in tech, transportation, government, and education sectors located in the U.S., sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog”) To nominate, please visit:?

Phishing

Phishing Manufacturing Education Cybercrime

Protect From Cyberattacks With These 6 Steps For Cyber Resilience

Webroot

FEBRUARY 24, 2022

The pros behind Carbonite + Webroot joined forces with industry leading researchers at IDC to develop an easy-to-understand framework for fighting back against cybercrime. IDC researchers make an iron-clad case for cyber resilience by looking at the current state of cybercrime. Making the case. The results?

Cybercrime

Cybercrime Ransomware Backups Education

SHARED INTEL Q&A: My thoughts and opinions about cyber threats — as discussed with OneRep

The Last Watchdog

OCTOBER 5, 2023

Here is Erin’s Q&A column, which originally went live on OneRep’s well-done blog.) For the first expert interview on our blog, we welcomed Pulitzer-winning investigative reporter Byron V. He previously chronicled the emergence of cybercrime while covering Microsoft for USA TODAY.

Cyber threats

Cyber threats Cyber Insurance Cybersecurity Threat Detection

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Security Affairs

APRIL 7, 2023

. “Microsoft, Fortra and Health-ISAC remain relentless in our efforts to improve the security of the ecosystem, and we are collaborating with the FBI Cyber Division, National Cyber Investigative Joint Task Force (NCIJTF) and Europol’s European Cybercrime Centre (EC3) on this case. Our action is therefore not one and done.”

Penetration Testing

Penetration Testing Ransomware Malware Hacking

Hackers are taking advantage of the interest in generative AI to install Malware

Security Affairs

MAY 3, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, generative AI ) The post Hackers are taking advantage of the interest in generative AI to install Malware appeared first on Security Affairs.

Malware

Malware Education Accountability Media

Money Message ransomware group claims to have hacked IT giant MSI

Security Affairs

APRIL 6, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, MSI) The post Money Message ransomware group claims to have hacked IT giant MSI appeared first on Security Affairs.

Hacking

Hacking Ransomware Manufacturing Education

SpecTor operation: 288 individuals arrested in the seizure of marketplace Monopoly Market

Security Affairs

MAY 2, 2023

The seizure of the Hydra Market is the result of an international investigation conducted by the Central Office for Combating Cybercrime (ZIT) in partnership with U.S. In April 2022, Germany’s Federal Criminal Police Office, the Bundeskriminalamt (BKA), announced they have shut down Hydra, one of the world’s largest dark web marketplace.

Marketing

Marketing Accountability Cybercrime Education

Health insurer Point32Health suffered a ransomware attack

Security Affairs

APRIL 23, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Kubernetes ) The post Health insurer Point32Health suffered a ransomware attack appeared first on Security Affairs.

Insurance

Insurance Ransomware Education Accountability

GUEST ESSAY: The drivers behind persistent ransomware — and defense tactics to deploy

The Last Watchdog

SEPTEMBER 7, 2022

They could be on the other side of the globe, part of a cybercrime regime that will never be discovered, much less brought to justice. In fact, ransomware-as-a-service is alive and well, educating would-be offenders on how to undertake an attack and even offering customer support. But the situation isn’t hopeless. Incident response.

Ransomware

Ransomware Education Financial Services Phishing

LockBit leaks data stolen from the South Korean National Tax Service

Security Affairs

APRIL 1, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – Lockbit ransomware gang, The South Korean National Tax Service) The post LockBit leaks data stolen from the South Korean National Tax Service appeared first on Security Affairs.

Identity Theft

Identity Theft Ransomware Scams Education

Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware

Security Affairs

APRIL 27, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, PaperCut ) The post Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware appeared first on Security Affairs.

Ransomware

Ransomware Education Media Malware

A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays

Security Affairs

APRIL 14, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Heathcare ) The post A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays appeared first on Security Affairs.

Healthcare

Healthcare Cyber Attacks Education Media

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

Security Affairs

APRIL 21, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, American Bar Association (ABA) ) The post American Bar Association (ABA) suffered a data breach,1.4 million members impacted appeared first on Security Affairs.

Data breaches

Data breaches Passwords Education Accountability

SD Worx shuts down UK and Ireland services after cyberattack

Security Affairs

APRIL 10, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, SD Worx) The post SD Worx shuts down UK and Ireland services after cyberattack appeared first on Security Affairs.

Cyber Attacks

Cyber Attacks Data breaches Education Media

Yum! Brands, the owner of KFC, Taco Bell and Pizza Hut, discloses data breach

Security Affairs

APRIL 11, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Yum!

Data breaches

Data breaches Identity Theft Education Ransomware

Western Digital took its services offline due to a security breach

Security Affairs

APRIL 3, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Western-digital) The post Western Digital took its services offline due to a security breach appeared first on Security Affairs.

Wireless

Wireless Education Ransomware Media

Educational Institutions, the Favorite Targets of Vice Society Ransomware in 2022

FBI: Compromised US academic credentials available on various cybercrime forums

Webinars

Trending Sources

Law enforcement seized the Genesis Market cybercrime marketplace

Webinars

Cybercrime group exploits Windows zero-day in ransomware attacks

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Cybercrime Explained – A Brief Guide to the Dangers of the Online World

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

Cyber News Rundown: Global Cybercrime Costs Surpass $1 Trillion

Pondurance Announces Partnership With E&I Cooperative Services

15 Best Cybersecurity Blogs To Read

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

‘Educational’ ransomware program may instead become a how-to guide for attackers

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

FBI and Ukrainian police seized 9 crypto exchanges used by cybercriminals

Stark Industries Solutions: An Iron Hammer in the Cloud

GUEST ESSAY: The rise of ‘PhaaS’ — and a roadmap to mitigate ‘Phishing-as-a-Service’

Google obtained a temporary court order against CryptBot distributors

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Authorities dismantled the card-checking platform Try2Check

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Kodi discloses data breach after its forum was compromised

STYX Marketplace emerged in Dark Web focused on Financial Fraud

Iran-linked MERCURY APT behind destructive attacks on hybrid environments

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

New Lobshot hVNC malware spreads via Google ads

Personal Cybersecurity Concerns for 2023

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Protect From Cyberattacks With These 6 Steps For Cyber Resilience

SHARED INTEL Q&A: My thoughts and opinions about cyber threats — as discussed with OneRep

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Hackers are taking advantage of the interest in generative AI to install Malware

Money Message ransomware group claims to have hacked IT giant MSI

SpecTor operation: 288 individuals arrested in the seizure of marketplace Monopoly Market

Health insurer Point32Health suffered a ransomware attack

GUEST ESSAY: The drivers behind persistent ransomware — and defense tactics to deploy

LockBit leaks data stolen from the South Korean National Tax Service

Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware

A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

SD Worx shuts down UK and Ireland services after cyberattack

Yum! Brands, the owner of KFC, Taco Bell and Pizza Hut, discloses data breach

Western Digital took its services offline due to a security breach

Stay Connected