Business Services and Cybercrime - Cyber Security Informer

How Cryptocurrency Turns to Cash in Russian Banks

Krebs on Security

DECEMBER 11, 2024

A financial firm registered in Canada has emerged as the payment processor for dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services aimed at Russian-speaking customers, new research finds. monster; -anonymous SMS services, including anonsim[.]net work and kopeechka[.]store com and rdp[.]monster;

Cryptocurrency

Cryptocurrency Banking Cybercrime Advertising

U.S. Justice Department Cracks Down on Scattered Spider Phishing Ring

SecureWorld News

NOVEMBER 22, 2024

The United States Department of Justice (DOJ) has unsealed charges against five individuals accused of orchestrating sophisticated phishing campaigns tied to the notorious Scattered Spider cybercrime group.

Phishing

Phishing Identity Theft Cryptocurrency Cybercrime

Authorities released free decryptor for Phobos and 8base ransomware

Security Affairs

JULY 18, 2025

The group has been active since March 2022, it focused on small and medium-sized businesses in multiple industries, including finance, manufacturing, business services, and IT.

Ransomware

Ransomware Encryption Malware Cybercrime

AkiraBot: AI-Powered spam bot evades CAPTCHA to target 80,000+ websites

Security Affairs

APRIL 10, 2025

. “These technologies are primarily used by small- to medium-sized businesses for their ease in enabling website development with integrations for eCommerce, website content management, and business service offerings.”

eCommerce

eCommerce Technology DNS Scams

Operation Phobos Aetor: Police dismantled 8Base ransomware gang

Security Affairs

FEBRUARY 11, 2025

The 8Base ransomware group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. Source Nation Thailand The gang compromised at least 17 Swiss companies using the Phobos ransomware between April 2023 and October 2024.

Ransomware

Ransomware Encryption Backups Malware

Embargo Ransomware nets $34.2M in crypto since April 2024

Security Affairs

AUGUST 9, 2025

million in incoming transaction volume likely associated with the group, with most victims located in the United States (US) in the healthcare, business services, and manufacturing sectors.” The RaaS mainly targeted US healthcare, business services, and manufacturing. ” reads the report published by TRM Labs.

Ransomware

Ransomware Healthcare Manufacturing Business Services

Stormous Ransomware gang targets North Country HealthCare, claims 600K patient data stolen

Security Affairs

JULY 17, 2025

The group has targeted at least 150 organizations, focusing on sectors like healthcare, hospitality, technology, business services, and government. .” Stormous is a pro-Russia ransomware group active since early 2022. It uses a double extortion model. Most of the victims are in Spain, the U.S., UAE, France, and Brazil.

Healthcare

Healthcare Ransomware Insurance Data breaches

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Security Affairs

MAY 5, 2021

A new cybercrime gang, tracked as UNC2529 , has targeted many organizations in the US and other countries using new sophisticated malware. FireEye’s Mandiant unit observed two distinct waves of attacks carried out by the cybercrime group in December 2020. The post UNC2529, a new sophisticated cybercrime gang that targets U.S.

Cybercrime

Cybercrime Malware Manufacturing Phishing

Over 500,000 people were impacted by a ransomware attack that hit Morley

Security Affairs

FEBRUARY 4, 2022

Business services firm Morley was hit by a ransomware attack that may have exposed data of +500,000 individuals. Business services company Morley was victim of a ransomware attack that may have resulted in a data breach impacting more than 500,000 individuals.

Ransomware

Ransomware Business Services Data breaches Insurance

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

Security Affairs

NOVEMBER 21, 2023

Experts warn of a surge in NetSupport RAT attacks against education, government, and business services sectors. The most impacted sectors are education, government, and business services. NetSupport RAT is a remote control and desktop management software developed by NetSupport Ltd.

Education

Education Government Business Services Software

TinyNuke banking malware targets French organizations

Security Affairs

DECEMBER 13, 2021

The TinyNuke malware is back and now was used in attacks aimed at French users working in manufacturing, technology, construction, and business services. “In the most recent campaigns, the threat actor uses invoice-themed lures purporting to be logistics, transportation, or business services entities.”

Banking

Banking Malware Manufacturing Business Services

8Base ransomware operators use a new variant of the Phobos ransomware

Security Affairs

NOVEMBER 19, 2023

The group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. The experts observed a massive spike in activity associated with this threat actor between May and June 2023. and Brazil.

Ransomware

Ransomware Encryption Backups Malware

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Security Affairs

AUGUST 21, 2021

” The victims of the Lockfile ransomware gang are in the manufacturing, financial services, engineering, legal, business services, and travel and tourism sectors. It is not clear how the attackers gain initial access to the Microsoft Exchange Servers.”

Ransomware

Ransomware Financial Services Hacking Encryption

Ransomware Attacks on Schools: 'Dirty, Rotten Scoundrels' Stop Online Learning

SecureWorld News

AUGUST 31, 2020

"We talked about the possibility of waiting to the end of school, but our IT folks said, just like any other infection, the longer you let it go the worse it is going to get," said Assistant Superintendent of Business Services Larry Teixeira. There's a lot of extradition issues with countries, so cybercrime has really grown.

Ransomware

Ransomware Cryptocurrency Technology Insurance

Experts warn of a spike in May and June of 8Base ransomware attacks

Security Affairs

JUNE 28, 2023

The group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. The experts observed a massive spike in activity associated with this threat actor between May and June 2023. and Brazil.

Ransomware

Ransomware Encryption Manufacturing Business Services

Insider Threat: Employees indicted for stealing $88 million of license keys

Malwarebytes

JULY 4, 2022

Dani Pearce allegedly took the accountant and financial manager role in their illegal business operation. Hines, who operated Direct Business Services International (DBSI), presumably sold the licenses at a much lower price than Avaya’s standard wholesale price.

B2B

B2B Accountability Software Risk

Cyber Security Informer

How Cryptocurrency Turns to Cash in Russian Banks

U.S. Justice Department Cracks Down on Scattered Spider Phishing Ring

Trending Sources

Authorities released free decryptor for Phobos and 8base ransomware

AkiraBot: AI-Powered spam bot evades CAPTCHA to target 80,000+ websites

Operation Phobos Aetor: Police dismantled 8Base ransomware gang

Embargo Ransomware nets $34.2M in crypto since April 2024

Stormous Ransomware gang targets North Country HealthCare, claims 600K patient data stolen

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Over 500,000 people were impacted by a ransomware attack that hit Morley

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

TinyNuke banking malware targets French organizations

8Base ransomware operators use a new variant of the Phobos ransomware

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Ransomware Attacks on Schools: 'Dirty, Rotten Scoundrels' Stop Online Learning

Experts warn of a spike in May and June of 8Base ransomware attacks

Insider Threat: Employees indicted for stealing $88 million of license keys

Stay Connected