Blog, Cybercrime, Education and Information Security

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. The FBI has observed incidents of stolen higher education credential information posted on publically accessible online forums or listed for sale on criminal marketplaces.

Cybercrime

Cybercrime Education Accountability Phishing

Law enforcement seized the Genesis Market cybercrime marketplace

Security Affairs

APRIL 5, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Genesis Market) The post Law enforcement seized the Genesis Market cybercrime marketplace appeared first on Security Affairs.

Marketing

Marketing Cybercrime Accountability Education

Cybercrime group exploits Windows zero-day in ransomware attacks

Security Affairs

APRIL 11, 2023

The experts pointed out that while the majority of zero-days they have discovered in the past were used by APT groups, this zero-day was exploited by a sophisticated cybercrime group. This group is known to have used similar CLFS driver exploits in the past that were likely developed by the same author.

Cybercrime

Cybercrime Ransomware Education Media

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Security Affairs

MAY 12, 2023

CISA and FBI warned of attacks conducted by the Bl00dy Ransomware Gang against the education sector in the country. The FBI and CISA issued a joint advisory warning that the Bl00dy Ransomware group is actively targeting the education sector by exploiting the PaperCut remote-code execution vulnerability CVE-2023-27350.

Education

Education Ransomware Encryption Malware

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

Security Affairs

APRIL 24, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, PaperCut ) The post Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws appeared first on Security Affairs.

Cybercrime

Cybercrime Software Education Ransomware

15 Best Cybersecurity Blogs To Read

Spinone

OCTOBER 10, 2019

The best way to stay up-to-date with the recent trends is by reading the top cybersecurity blogs. Here’s our list of the best cybersecurity blogs to read and follow. Securing Tomorrow SecuringTomorrow is a blog by McAfee, one of the biggest security software providers.

Cybersecurity

Cybersecurity IoT Antivirus Education

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. businesses called #ShieldsUp.

Cybersecurity

Cybersecurity Cybercrime Education Government

‘Educational’ ransomware program may instead become a how-to guide for attackers

SC Magazine

MARCH 5, 2021

The author claims the program, dubbed Povlsomware, is designed to be an educational tool for testing anti-virus protections; however, it’s possible that cybercriminals could adopt and modify the code in order to launch their own attacks, warns Trend Micro, which detailed the ransomware in a new company blog post this week.

Education

Education Ransomware Malware Cybercrime

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

Security Affairs

APRIL 24, 2023

EvilExtractor is a new “all-in-one” info stealer for Windows that is being advertised for sale on dark web cybercrime forums. The tool was developed by a company named Kodex, which claims that the tool was developed for an educational purpose. EvilExtractor is a modular info-stealer, it exfiltrates data via an FTP service.

Cybercrime

Cybercrime Malware Education Phishing

FBI and Ukrainian police seized 9 crypto exchanges used by cybercriminals

Security Affairs

MAY 2, 2023

. “Noncompliant virtual currency exchanges, which have a lax anti-money laundering program or collect minimal Know Your Customer information or none at all, serve as important hubs in the cybercrime ecosystem and are operating in violation of Title 18 United States Code, Sections 1960 and 1956.”

Cybercrime

Cybercrime Cryptocurrency Advertising Education

Hackers are taking advantage of the interest in generative AI to install Malware

Security Affairs

MAY 3, 2023

” said Meta Chief Information Security Officer Guy Rosen. The rapid evolution of generative AI space is attracting threat actors, for this reason, Meta recommends being vigilant on the evolution of the threat landscape. “ChatGPT is the new crypto.”

Malware

Malware Education Accountability Media

Google obtained a temporary court order against CryptBot distributors

Security Affairs

APRIL 28, 2023

The malware allows operators to steal login credentials from popular services such as social media platforms and cryptocurrency wallets, then stolen data is sold on cybercrime forums by the operators. To prevent infections from malware like Cryptbot, Cybercrime Support Network recommends users to Download from well-known and trusted sources.

Malware

Malware Cybercrime Cryptocurrency Media

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Security Affairs

APRIL 30, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Cybercrime

Cybercrime Malware Hacking Accountability

Authorities dismantled the card-checking platform Try2Check

Security Affairs

MAY 3, 2023

Today’s indictment and global takedown of the Try2Check website demonstrates that the Office, together with our partners, will disrupt cybercrime operations no matter where they are based.” The DoJ pointed out that Try2Check also victimized a major U.S.-based

Cybercrime

Cybercrime Education Media Hacking

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs

APRIL 9, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter newsletter) The post Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Computers and Electronics

Computers and Electronics Backups Cybercrime Marketing

Kodi discloses data breach after its forum was compromised

Security Affairs

APRIL 14, 2023

The threat actors also attempted to sell the stolen data on the BreachForums cybercrime forum that was recently shut down by law enforcement. Kodi has disclosed a data breach, threat actors have stolen the company’s MyBB forum database that contained data for over 400K users and private messages.

Data breaches

Data breaches Backups Passwords Accountability

STYX Marketplace emerged in Dark Web focused on Financial Fraud

Security Affairs

APRIL 5, 2023

The discovery of STYX also highlights the need for international cooperation in combating cybercrime. International cooperation is thus essential to share information and resources that enable the identification and arrest of cybercriminals.

Banking

Banking Cybercrime Accountability Risk

Iran-linked MERCURY APT behind destructive attacks on hybrid environments

Security Affairs

APRIL 10, 2023

” DEV-1084 presented itself as cybercrime group likely as an attempt to hide its real motivation of a nation-state actor. The link between the DEV-1084 cluster and MERCURY was established based on the following evidence: Both DEV-1084 and MERCURY were observed sending emails from the IP address 146.70.106[.]89.

Ransomware

Ransomware Cybercrime VPN Education

MSI confirms security breach after Money Message ransomware attack

Security Affairs

APRIL 7, 2023

.” The company reported the security breach to the relevant authorities, and it downplayed the incident, saying that the attack had no significant financial and operational impact. In response to the incident, the company announced it is enhancing the information security control measures of its network and infrastructure.

Ransomware

Ransomware Firmware Hacking Manufacturing

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

Security Affairs

APRIL 30, 2023

AT&T spokesperson Jim Kimberly told TechCrunch that the company is aware of the security breaches, she also added that they have “identified the unauthorized creation of secure mail keys, which can be used in some cases to access an email account without needing a password.”

Cryptocurrency

Cryptocurrency Accountability Passwords Hacking

New Lobshot hVNC malware spreads via Google ads

Security Affairs

MAY 1, 2023

While investigating the malware distribution, the researchers noticed the use of an infrastructure known to belong to cybercrime group TA505. com, which is a domain associated with the operations of the TA505 cybercrime gang. Upon executing the MSI file, a PowerShell command is launched.

Malware

Malware Cybercrime Banking Software

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Security Affairs

JUNE 6, 2022

The IT giant has seized the domains used by the threat actors employed in its attacks aimed at organizations in tech, transportation, government, and education sectors located in the U.S., Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. Middle East, and India. Pierluigi Paganini.

Phishing

Phishing Manufacturing Education Cybercrime

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Security Affairs

APRIL 7, 2023

. “Microsoft, Fortra and Health-ISAC remain relentless in our efforts to improve the security of the ecosystem, and we are collaborating with the FBI Cyber Division, National Cyber Investigative Joint Task Force (NCIJTF) and Europol’s European Cybercrime Centre (EC3) on this case. Our action is therefore not one and done.”

Penetration Testing

Penetration Testing Ransomware Malware Hacking

Money Message ransomware group claims to have hacked IT giant MSI

Security Affairs

APRIL 6, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, MSI) The post Money Message ransomware group claims to have hacked IT giant MSI appeared first on Security Affairs.

Hacking

Hacking Ransomware Manufacturing Education

SpecTor operation: 288 individuals arrested in the seizure of marketplace Monopoly Market

Security Affairs

MAY 2, 2023

The seizure of the Hydra Market is the result of an international investigation conducted by the Central Office for Combating Cybercrime (ZIT) in partnership with U.S. In April 2022, Germany’s Federal Criminal Police Office, the Bundeskriminalamt (BKA), announced they have shut down Hydra, one of the world’s largest dark web marketplace.

Marketing

Marketing Accountability Cybercrime Education

Health insurer Point32Health suffered a ransomware attack

Security Affairs

APRIL 23, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Kubernetes ) The post Health insurer Point32Health suffered a ransomware attack appeared first on Security Affairs.

Insurance

Insurance Ransomware Education Accountability

LockBit leaks data stolen from the South Korean National Tax Service

Security Affairs

APRIL 1, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – Lockbit ransomware gang, The South Korean National Tax Service) The post LockBit leaks data stolen from the South Korean National Tax Service appeared first on Security Affairs.

Identity Theft

Identity Theft Ransomware Scams Education

Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware

Security Affairs

APRIL 27, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, PaperCut ) The post Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware appeared first on Security Affairs.

Ransomware

Ransomware Education Media Malware

A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays

Security Affairs

APRIL 14, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Heathcare ) The post A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays appeared first on Security Affairs.

Healthcare

Healthcare Cyber Attacks Education Media

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

Security Affairs

APRIL 21, 2023

million members impacted appeared first on Security Affairs. Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, American Bar Association (ABA) ) The post American Bar Association (ABA) suffered a data breach,1.4

Data breaches

Data breaches Passwords Education Accountability

SD Worx shuts down UK and Ireland services after cyberattack

Security Affairs

APRIL 10, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, SD Worx) The post SD Worx shuts down UK and Ireland services after cyberattack appeared first on Security Affairs.

Cyber Attacks

Cyber Attacks Data breaches Education Media

Yum! Brands, the owner of KFC, Taco Bell and Pizza Hut, discloses data breach

Security Affairs

APRIL 11, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Yum!

Data breaches

Data breaches Identity Theft Education Ransomware

Experts temporarily disrupted the RedLine Stealer operations

Security Affairs

APRIL 18, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, RedLine ) The post Experts temporarily disrupted the RedLine Stealer operations appeared first on Security Affairs.

Malware

Malware Education Media Authentication

UK outsourcing services provider Capita suffered a cyber incident

Security Affairs

APRIL 3, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Capita) The post UK outsourcing services provider Capita suffered a cyber incident appeared first on Security Affairs.

Data breaches

Data breaches Education Accountability Media

Western Digital took its services offline due to a security breach

Security Affairs

APRIL 3, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Western-digital) The post Western Digital took its services offline due to a security breach appeared first on Security Affairs.

Wireless

Wireless Education Ransomware Media

Experts found the first LockBit encryptor that targets macOS systems

Security Affairs

APRIL 16, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, LockBit ) The post Experts found the first LockBit encryptor that targets macOS systems appeared first on Security Affairs.

Encryption

Encryption Architecture Ransomware Education

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

The Last Watchdog

OCTOBER 24, 2022

. • Create security awareness for employees. One of the most important ways to protect against data breaches is to increase employee security awareness. Employees are the first line of defense against cybercrime and should understand how to recognize phishing emails and what to do if they suspect them.

Passwords

Passwords Security Awareness Data breaches Cybersecurity

A flaw in the Kyocera Android printing app can be abused to drop malware

Security Affairs

APRIL 13, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hackin g, Kyocera Android printing app) The post A flaw in the Kyocera Android printing app can be abused to drop malware appeared first on Security Affairs.

Malware

Malware Mobile Education Media

City of Dallas shut down IT services after ransomware attack

Security Affairs

MAY 4, 2023

According to government experts, the Royal ransomware attacks targeted numerous critical infrastructure sectors including, manufacturing, communications, healthcare and public healthcare (HPH), and education. reads the alert.

Ransomware

Ransomware Healthcare Education Encryption

Russian national sentenced to time served for committing money laundering for the Ryuk ransomware operation

Security Affairs

APRIL 19, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Ryuk ransomware ) The post Russian national sentenced to time served for committing money laundering for the Ryuk ransomware operation appeared first on Security Affairs.

Ransomware

Ransomware Education Media Hacking

Remcos RAT campaign targets US accounting and tax return preparation firms

Security Affairs

APRIL 16, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Remcos RAT ) The post Remcos RAT campaign targets US accounting and tax return preparation firms appeared first on Security Affairs.

Accountability

Accountability Phishing Financial Services Surveillance

CISA JCDC Will Focus on Energy Sector

Security Affairs

APRIL 5, 2023

For some, a cyber criminal matches some of the Hollywood tropes: a person sitting alone in a dimly lit room, furiously mashing on a keyboard to steal information from a person or company. Those days are behind us, however, as cybercrime is establishing itself as a business in and of itself.

Energy and Utilities

Energy and Utilities Cyber threats Risk Cyber Risk

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

The group targeted multiple sectors, including government, defense, energy, transportation/logistics, education, and humanitarian organizations. The experts reported the case of the Caspian Pipeline Consortium (CPC) controls, which is one of the world’s largest oil pipelines that transports oil from Kazakhstan to the Black Sea. .”

Phishing

Phishing Education Accountability Telecommunications

Hyundai suffered a data breach that impacted customers in France and Italy

Security Affairs

APRIL 12, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Hyundai ) The post Hyundai suffered a data breach that impacted customers in France and Italy appeared first on Security Affairs.

Data breaches

Data breaches Media Manufacturing Education

FBI: Compromised US academic credentials available on various cybercrime forums

Law enforcement seized the Genesis Market cybercrime marketplace

Trending Sources

Cybercrime group exploits Windows zero-day in ransomware attacks

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

15 Best Cybersecurity Blogs To Read

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

‘Educational’ ransomware program may instead become a how-to guide for attackers

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

FBI and Ukrainian police seized 9 crypto exchanges used by cybercriminals

Hackers are taking advantage of the interest in generative AI to install Malware

Google obtained a temporary court order against CryptBot distributors

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Authorities dismantled the card-checking platform Try2Check

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Kodi discloses data breach after its forum was compromised

STYX Marketplace emerged in Dark Web focused on Financial Fraud

Iran-linked MERCURY APT behind destructive attacks on hybrid environments

MSI confirms security breach after Money Message ransomware attack

Crooks broke into AT&T email accounts to empty their cryptocurrency wallets

New Lobshot hVNC malware spreads via Google ads

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Money Message ransomware group claims to have hacked IT giant MSI

SpecTor operation: 288 individuals arrested in the seizure of marketplace Monopoly Market

Health insurer Point32Health suffered a ransomware attack

LockBit leaks data stolen from the South Korean National Tax Service

Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware

A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

SD Worx shuts down UK and Ireland services after cyberattack

Yum! Brands, the owner of KFC, Taco Bell and Pizza Hut, discloses data breach

Experts temporarily disrupted the RedLine Stealer operations

UK outsourcing services provider Capita suffered a cyber incident

Western Digital took its services offline due to a security breach

Experts found the first LockBit encryptor that targets macOS systems

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

A flaw in the Kyocera Android printing app can be abused to drop malware

City of Dallas shut down IT services after ransomware attack

Russian national sentenced to time served for committing money laundering for the Ryuk ransomware operation

Remcos RAT campaign targets US accounting and tax return preparation firms

CISA JCDC Will Focus on Energy Sector

Google TAG warns of Russia-linked APT groups targeting Ukraine

Hyundai suffered a data breach that impacted customers in France and Italy

Stay Connected