Krebs on Security

FEBRUARY 4, 2021

Facebook told KrebsOnSecurity it seized hundreds of accounts — mainly on Instagram — that have been stolen from legitimate users through a variety of intimidation and harassment tactics, including hacking, coercion, extortion, sextortion , SIM swapping , and swatting. THE MIDDLEMEN.

Accountability 304

Accountability Hacking Media Mobile 304

Security Affairs

APRIL 24, 2023

EvilExtractor is a new “all-in-one” info stealer for Windows that is being advertised for sale on dark web cybercrime forums. The tool was developed by a company named Kodex, which claims that the tool was developed for an educational purpose. EvilExtractor is a modular info-stealer, it exfiltrates data via an FTP service.

Cybercrime 89

Cybercrime Malware Education Phishing 89

Spinone

OCTOBER 10, 2019

The best way to stay up-to-date with the recent trends is by reading the top cybersecurity blogs. Here’s our list of the best cybersecurity blogs to read and follow. Securing Tomorrow SecuringTomorrow is a blog by McAfee, one of the biggest security software providers. Their main focus is on cybercrime investigations.

Cybersecurity 56

Cybersecurity IoT Antivirus Education 56

Security Affairs

MAY 2, 2023

. “Noncompliant virtual currency exchanges, which have a lax anti-money laundering program or collect minimal Know Your Customer information or none at all, serve as important hubs in the cybercrime ecosystem and are operating in violation of Title 18 United States Code, Sections 1960 and 1956.”

Cybercrime 89

Cybercrime Cryptocurrency Advertising Education 89

SC Magazine

MARCH 5, 2021

The author claims the program, dubbed Povlsomware, is designed to be an educational tool for testing anti-virus protections; however, it’s possible that cybercriminals could adopt and modify the code in order to launch their own attacks, warns Trend Micro, which detailed the ransomware in a new company blog post this week.

Education 82

Education Ransomware Malware Cybercrime 82

Krebs on Security

MAY 23, 2024

At least a dozen patriotic Russian hacking groups have been launching DDoS attacks since the start of the war at a variety of targets seen as opposed to Moscow. He also co-runs SURBL , an anti-abuse service that flags domains and Internet address ranges that are strongly associated with spam and cybercrime activity, including DDoS.

DDOS 273

DDOS Internet Internet Government 273

Security Affairs

APRIL 30, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Cybercrime 89

Cybercrime Malware Hacking Accountability 89

Security Affairs

APRIL 9, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter newsletter) The post Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition appeared first on Security Affairs. billion rubles.

Computers and Electronics 82

Computers and Electronics Backups Cybercrime Marketing 82

The Last Watchdog

SEPTEMBER 27, 2021

The news of this fast-spreading computer virus dominated headlines, and the creator, Onel de Guzman, was arrested for committing this cybercrime. Plenty of people worldwide try to hack into networks and retrieve sensitive information to commit further crimes, like identity theft or fraud. Lessons learned.

Cybersecurity 140

Cybersecurity Hacking Identity Theft Technology 140

Security Affairs

APRIL 30, 2023

Threat actors are gaining access to AT&T email accounts in an attempt to hack into the victim’s cryptocurrency exchange accounts. Some users with AT&T email addresses wrote on Reddit that they have been hacked, and some of them claim they had the same issue for months.

Cryptocurrency 78

Cryptocurrency Accountability Passwords Hacking 78

Security Affairs

MAY 3, 2023

Today’s indictment and global takedown of the Try2Check website demonstrates that the Office, together with our partners, will disrupt cybercrime operations no matter where they are based.” The DoJ pointed out that Try2Check also victimized a major U.S.-based

Cybercrime 88

Cybercrime Education Media Hacking 88

Security Affairs

APRIL 28, 2023

The malware allows operators to steal login credentials from popular services such as social media platforms and cryptocurrency wallets, then stolen data is sold on cybercrime forums by the operators. To prevent infections from malware like Cryptbot, Cybercrime Support Network recommends users to Download from well-known and trusted sources.

Malware 93

Malware Cybercrime Cryptocurrency Media 93

Security Affairs

JUNE 6, 2022

The IT giant has seized the domains used by the threat actors employed in its attacks aimed at organizations in tech, transportation, government, and education sectors located in the U.S., sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog”) To nominate, please visit:?

Phishing 111

Phishing Manufacturing Education Cybercrime 111

Security Affairs

APRIL 7, 2023

. “Microsoft, Fortra and Health-ISAC remain relentless in our efforts to improve the security of the ecosystem, and we are collaborating with the FBI Cyber Division, National Cyber Investigative Joint Task Force (NCIJTF) and Europol’s European Cybercrime Centre (EC3) on this case. Our action is therefore not one and done.”

Penetration Testing 84

Penetration Testing Ransomware Malware Hacking 84

Security Affairs

APRIL 14, 2023

The threat actors also attempted to sell the stolen data on the BreachForums cybercrime forum that was recently shut down by law enforcement. Kodi has disclosed a data breach, threat actors have stolen the company’s MyBB forum database that contained data for over 400K users and private messages.

Data breaches 93

Data breaches Backups Passwords Accountability 93

Security Affairs

MAY 1, 2023

While investigating the malware distribution, the researchers noticed the use of an infrastructure known to belong to cybercrime group TA505. Russian TA505 hacking group , aka Evil Corp , has been active since 2014 focusing on Retail and banking sectors. Upon executing the MSI file, a PowerShell command is launched.

Malware 88

Malware Cybercrime Banking Software 88

Security Affairs

APRIL 1, 2023

On March 29, 2023, The Lock Bit ransomware gang announced the hack of the South Korean National Tax Service. At the time of this writing the group has yet to publish the stolen data, however, if the hack was real, the stolen data poses a severe risk to the privacy and security of South Korean citizens.

Identity Theft 88

Identity Theft Ransomware Scams Education 88

Security Affairs

APRIL 10, 2023

” DEV-1084 presented itself as cybercrime group likely as an attempt to hide its real motivation of a nation-state actor. The link between the DEV-1084 cluster and MERCURY was established based on the following evidence: Both DEV-1084 and MERCURY were observed sending emails from the IP address 146.70.106[.]89.

Ransomware 89

Ransomware Cybercrime VPN Education 89

Security Affairs

MAY 3, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, generative AI ) The post Hackers are taking advantage of the interest in generative AI to install Malware appeared first on Security Affairs.

Malware 95

Malware Education Accountability Media 95

Security Affairs

APRIL 5, 2023

The discovery of STYX also highlights the need for international cooperation in combating cybercrime. As cybercrime continues to proliferate and evolve, it is essential for FIs and consumers to take proactive measures to protect their sensitive financial information.

Banking 80

Banking Cybercrime Accountability Risk 80

Security Affairs

APRIL 7, 2023

Multinational IT corporation MSI (Micro-Star International) confirms security breach after Money Message ransomware gang claimed the hack. This week the ransomware gang Money Message announced to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International).

Ransomware 87

Ransomware Firmware Hacking Manufacturing 87

Security Through Education

JANUARY 18, 2023

Perhaps we thought, who would want to hack a completely unknow person like me? The truth is technology has grown at an exponential rate and so has cybercrime. Cybercrime doesn’t just affect big businesses and national governments. Stay educated, implement security recommendations, stay safe. Update your software.

Cybersecurity 98

Cybersecurity Social Engineering Scams IoT 98

Security Affairs

APRIL 23, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Kubernetes ) The post Health insurer Point32Health suffered a ransomware attack appeared first on Security Affairs.

Insurance 80

Insurance Ransomware Education Accountability 80

The Last Watchdog

OCTOBER 5, 2023

Here is Erin’s Q&A column, which originally went live on OneRep’s well-done blog.) For the first expert interview on our blog, we welcomed Pulitzer-winning investigative reporter Byron V. He previously chronicled the emergence of cybercrime while covering Microsoft for USA TODAY.

Cyber threats 203

Cyber threats Cyber Insurance Cybersecurity Threat Detection 203

Security Affairs

APRIL 14, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Heathcare ) The post A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays appeared first on Security Affairs.

Healthcare 79

Healthcare Cyber Attacks Education Media 79

Security Affairs

APRIL 27, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, PaperCut ) The post Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware appeared first on Security Affairs.

Ransomware 84

Ransomware Education Media Malware 84

Security Affairs

APRIL 11, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Yum!

Data breaches 94

Data breaches Identity Theft Education Ransomware 94

Security Affairs

APRIL 21, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, American Bar Association (ABA) ) The post American Bar Association (ABA) suffered a data breach,1.4 million members impacted appeared first on Security Affairs.

Data breaches 90

Data breaches Passwords Education Accountability 90

Security Affairs

APRIL 20, 2023

Threat actors are hacking poorly secured and Interned-exposed Microsoft SQL servers to deploy the Trigona ransomware. Threat actors are hacking into poorly secured and public-facing Microsoft SQL servers to deploy Trigona ransomware.

Ransomware 84

Ransomware Malware Encryption Hacking 84

Security Affairs

APRIL 10, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, SD Worx) The post SD Worx shuts down UK and Ireland services after cyberattack appeared first on Security Affairs.

Cyber Attacks 84

Cyber Attacks Data breaches Education Media 84

Security Affairs

APRIL 3, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Western-digital) The post Western Digital took its services offline due to a security breach appeared first on Security Affairs.

Wireless 90

Wireless Education Ransomware Media 90

Security Affairs

MAY 2, 2023

The seizure of the Hydra Market is the result of an international investigation conducted by the Central Office for Combating Cybercrime (ZIT) in partnership with U.S. In April 2022, Germany’s Federal Criminal Police Office, the Bundeskriminalamt (BKA), announced they have shut down Hydra, one of the world’s largest dark web marketplace.

Marketing 81

Marketing Accountability Cybercrime Education 81

Security Affairs

APRIL 18, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, RedLine ) The post Experts temporarily disrupted the RedLine Stealer operations appeared first on Security Affairs.

Malware 87

Malware Education Media Authentication 87

Security Affairs

APRIL 3, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Capita) The post UK outsourcing services provider Capita suffered a cyber incident appeared first on Security Affairs.

Data breaches 88

Data breaches Education Accountability Media 88

Security Affairs

APRIL 17, 2023

Legion is an emerging Python-based credential harvester and hacking tool that allows operators to break into various online services. Cado Labs researchers recently discovered a new Python-based credential harvester and hacking tool, named Legion, which was sold via Telegram.

Mobile 87

Mobile Hacking Malware Accountability 87

Security Affairs

APRIL 5, 2023

Those days are behind us, however, as cybercrime is establishing itself as a business in and of itself. Systemic Risk Cybercrime is a broad-reaching threat relevant to both individuals and organizations. Threats to the utility sector were thrust into the spotlight in 2021 when the Colonial Pipeline was hacked by cybercriminals abroad.

Energy and Utilities 78

Energy and Utilities Cyber threats Risk Cyber Risk 78

Security Affairs

APRIL 16, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, LockBit ) The post Experts found the first LockBit encryptor that targets macOS systems appeared first on Security Affairs.

Encryption 97

Encryption Architecture Ransomware Education 97