CyberSecurity Insiders

APRIL 5, 2023

North Korea has established a hacking group named APT43 to fund its cybercrime activities, aimed at advancing Pyongyang’s geopolitical interests. On April 3 of this year, Google’s Threat Analysis Group (TAG) announced that APT43 was in-volved in cryptocurrency theft and digital currency laundering.

Hacking 105

Hacking Social Engineering Cryptocurrency Manufacturing 105

Digital Shadows

APRIL 20, 2022

The post The role of Non-Fungible Tokens (NFTs) in facilitating cybercrime first appeared on Digital Shadows. You’d have to have been living under a rock to have avoided the excitement surrounding Non-Fungible-Tokens (NFTs) in the last.

Cybercrime 122

Cybercrime Social Engineering Cryptocurrency Engineering 122

Security Affairs

JUNE 11, 2023

Gox exchange and operating BTC-e Japanese Pharmaceutical giant Eisai hit by a ransomware attack Clop ransomware gang was testing MOVEit Transfer bug since 2021 Stealth Soldier backdoor used is targeted espionage attacks in Libya Researchers published PoC exploit code for actively exploited Windows elevation of privilege issue Experts detail a new Kimsuky (..)

Social Engineering 85

Social Engineering Data breaches Ransomware Cybercrime 85

CyberSecurity Insiders

AUGUST 17, 2022

The aim behind the said social engineering attack is simple, one to trap employees with fake job offers and second to lure customers in signing up the page and then steal their currency. NOTE – Lazarus is also known in the world of cybercrime as Guardians of Peace and is being run and funded by the government of North Korea.

Social Engineering 117

Social Engineering Cryptocurrency Education Cybercrime 117

Security Boulevard

AUGUST 2, 2022

Current threat actor activity is incentivized by a broad attack surface represented through high volumes of users and systems, and high potential profits represented through the variety of cryptocurrency offerings. It is easy to detect and block things like malicious cryptocurrency apps or crypto-phishing websites.

Cryptocurrency 98

Cryptocurrency Ransomware Government Risk 98

SecureWorld News

FEBRUARY 7, 2022

Cyberattacks targeting cryptocurrency exchanges were on a roll in 2021 and have continued into 2022. The panel also said one cybersecurity firm anonymously reported that North Korean "cyber-actors stole a total of $400 million worth of cryptocurrency through seven intrusions into cryptocurrency exchanges and investment firms.".

Cryptocurrency 72

Cryptocurrency Cybercrime Social Engineering Engineering 72

Security Affairs

MAY 18, 2022

Microsoft researchers warn of the rising threat of cryware targeting non-custodial cryptocurrency wallets, also known as hot wallets. Microsoft warns of the rise of cryware, malicious software used to steal info an dfunds from non-custodial cryptocurrency wallets, also known as hot wallets. Ransomware. Password and info stealers.

Cryptocurrency 86

Cryptocurrency Social Engineering Malware Cybercrime 86

CyberSecurity Insiders

FEBRUARY 8, 2021

And an official confirmation says that the attack was launched by notorious North Korean Lazarus hacking group that is known for its social engineering attacks such as the Wannacry 2017. Note- Lazarus group aka Guardians of Peace is a Cybercrime group that is being funded by North Korean intelligence- as per US Intelligence.

Ransomware 134

Ransomware Social Engineering Cryptocurrency Cybercrime 134

Krebs on Security

DECEMBER 29, 2022

Here’s a look at some of the more notable cybercrime stories from the past year, as covered by KrebsOnSecurity and elsewhere. Super Bowl Sunday watchers are treated to no fewer than a half-dozen commercials for cryptocurrency investing. I will also continue to post on LinkedIn about new stories in 2023. agencies]. .”

Cryptocurrency 239

Cryptocurrency Cybercrime Computers and Electronics Scams 239

SecureWorld News

JULY 3, 2023

According to PurpleSec, 98% of cybercrime relies on social engineering to accomplish it. Cryptocurrency and the Metaverse pose new cybersecurity threats. Cybercrime is a highly profitable business. According to Cybersecurity Ventures, cybercrime will cost the world $10.5 trillion annually by 2025.

Cybercrime 83

Cybercrime Social Engineering Data breaches Education 83

SecureWorld News

MARCH 22, 2021

The FBI notes that the Internet Crime Complaint Center (IC3) has been key to its mission to track cybercrimes. The IC3 "provides the public with a trustworthy source for information on cyber criminal activity," and also is a useful tool for victims to report a cybercrime. The IC3 received 19,369 reports of BEC/EAC scams in 2020. "In

Cybercrime 54

Cybercrime Scams Banking Accountability 54

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular. Cracking down hard on the cybercrime world.

Cryptocurrency 110

Cryptocurrency Banking Cybercrime Ransomware 110

Malwarebytes

JULY 19, 2022

Uploading government documents and taking a selfie to verify them is a bigger ballgame for a victim than just losing credit card information — it could be used to create cryptocurrency trading accounts under the victim’s name. These could then be used to launder money, evade taxes, or provide anonymity for other cybercrimes.

Phishing 107

Phishing Social Engineering Accountability Engineering 107

Malwarebytes

SEPTEMBER 11, 2023

A cybercriminal who goes by the handle RastaFarEye has been advertising DarkGate Loader on cybercrime forums since June 16, 2023. Once active, the malware can be used for several malicious activities like remote access, cryptocurrency mining, keylogging, clipboard stealing, and information stealing.

Malware 114

Malware Social Engineering Cryptocurrency Cybercrime 114

SecureWorld News

AUGUST 29, 2023

An advisory from the company states that a "highly sophisticated" SIM swapping attack targeted one of Kroll's employees, resulting in unauthorized access to personal information related to bankruptcy claimants associated with cryptocurrency firms FTX, BlockFi, and Genesis.

Cryptocurrency 79

Cryptocurrency Phishing Social Engineering Accountability 79

Krebs on Security

AUGUST 19, 2020

Allen said a typical voice phishing or “vishing” attack by this group involves at least two perpetrators: One who is social engineering the target over the phone, and another co-conspirator who takes any credentials entered at the phishing page and quickly uses them to log in to the target company’s VPN platform in real-time.

Phishing 360

Phishing VPN Social Engineering Media 360

Security Affairs

APRIL 27, 2023

CyberNews analyzed a classic cryptocurrency romance scam, also known as CryptoRom, explaining how scammers hid the money CryptoRom scammers hid the money with several layers of obfuscation, but the Cybernews research team discovered that the stolen funds ended up in Binance accounts. The victim is gently persuaded to invest in cryptocurrency.

Scams 77

Scams Cryptocurrency Social Engineering Accountability 77

eSecurity Planet

SEPTEMBER 14, 2022

Cybercrime is a growth industry like no other. Then, we’ll go over the basic, foundational techniques most scammers find themselves using, such as social engineering and phishing. One particularly potent emergent technology for scammers is blockchain and the related cryptocurrency and NFTs. Social Tactics.

Social Engineering 117

Social Engineering Energy and Utilities Phishing Scams 117

Security Affairs

FEBRUARY 26, 2023

Clasiopa group targets materials research in Asia CERT of Ukraine says Russia-linked APT backdoored multiple govt sites UK won the Military Cyberwarfare exercise Defence Cyber Marvel 2 (DCM2) CISA warns of disruptive attacks amid the anniversary of Russia’s invasion of Ukraine Highly evasive cryptocurrency miner targets macOS Hackers are actively exploiting (..)

Social Engineering 76

Social Engineering Cryptocurrency Insurance Malware 76

Security Affairs

APRIL 4, 2022

During the weekend, multiple owners of Trezor hardware cryptocurrency wallets reported having received fake data breach notifications from Trezor, BleepingComputer first reported. The company was the victim of a social engineering attack aimed at its employees. Trezor WARNING: Elaborate Phishing attack. Pierluigi Paganini.

Phishing 108

Phishing Data breaches Cryptocurrency Social Engineering 108

Security Affairs

AUGUST 6, 2023

Reptile Rootkit employed in attacks against Linux systems in South Korea New PaperCut flaw in print management software exposes servers to RCE attacks A cyberattack impacted operations of multiple hospitals in several US states Married couple pleaded guilty to laundering billions in cryptocurrency stolen from Bitfinex in 2016 Malicious packages in (..)

Malware 72

Malware Cybercrime Cryptocurrency Social Engineering 72

Security Affairs

DECEMBER 17, 2023

CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6

Data breaches 77

Data breaches Cybercrime Firewall Artificial Intelligence 77

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. Based on the risk score, CryptoIns experts have calculated insurance rates for cryptocurrency exchange users who can now insure their accounts against cyber threats.

Insurance 59

Insurance Cryptocurrency Cyber threats Marketing 59

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 82

Spyware Hacking Malware Social Engineering 82

Security Affairs

OCTOBER 20, 2020

Group-IB assisted Paxful, an international peer-to-peer cryptocurrency marketplace, in countering web-bot and social engineering attacks. The figure suggests that bitcoin platforms remain of great interest to threat actors.

Cryptocurrency 57

Cryptocurrency Social Engineering eCommerce Engineering 57

SecureWorld News

JANUARY 31, 2024

These hyper-realistic creations can then be used for: Financial scams: I magine a deepfake Taylor Swift endorsing a shady cryptocurrency, luring unsuspecting fans into financial ruin. Social engineering: Deepfakes can impersonate celebrities, extract sensitive information from fans, or manipulate public opinion.

Artificial Intelligence 94

Artificial Intelligence Social Engineering Technology Cybercrime 94

Webroot

JANUARY 7, 2022

The cybercrime marketplace also continued to get more robust while the barrier to entry for malicious actors continued to drop. This has created a perfect breeding ground for aspiring cybercriminals and organized cybercrime groups that support newcomers with venture capitalist-style funding. “In Cryptocurrency. Ransomware.

Cybercrime 105

Cybercrime Phishing Ransomware Cryptocurrency 105

SecureList

MAY 6, 2024

Methodology In this report, we present an analysis of financial cyberthreats in 2023, focusing on banking Trojans and phishing pages that target online banking, shopping accounts, cryptocurrency wallets and other financial assets. Cryptocurrency phishing saw a 16% year-on-year increase in 2023, with 5.84 million in 2022.

Phishing 99

Phishing Banking Mobile Scams 99

SecureList

NOVEMBER 9, 2022

We can therefore expect that cybercrime groups from either block will feel safe to attack companies from the opposing side. In 2023, we might see a slight decline in ransomware attacks, reflecting the slowdown of the cryptocurrency markets. I believe cybercrime is the biggest threat to end-users, but mainly in an indirect fashion.

Cybersecurity 127

Cybersecurity Cyber Insurance Cybercrime IoT 127

Security Affairs

MAY 21, 2023

The threat actors publish malicious packages to the PyPI repository and attempt to trick developers into using them using social engineering tricks, such as intentional typos in their names and high version numbers. The repository is a privileged target for threat actors that aim to carry out supply chain attacks aimed at developers.

Social Engineering 84

Social Engineering Malware Cryptocurrency Engineering 84

Security Affairs

JANUARY 3, 2024

The use of Artificial Intelligence in cybercrime is not a completely novel concept. Utilizing AI-driven bots for advanced social engineering techniques. These observations highlight the evolving and expanding role of AI in cybercrime, posing significant challenges to cybersecurity efforts.

Artificial Intelligence 111

Artificial Intelligence Banking Scams Cybercrime 111

SC Magazine

APRIL 8, 2021

For the uninitiated, NFTs are unique tokens that accompany original and collectible digital artwork or videos that can be sold or traded as a form of cryptocurrency, with transactions registered on the blockchain. Many of the earlier NFTs involved illustrations of kittens, but they can take the form of just about anything. billion in 2020.

Scams 137

Scams Cryptocurrency Phishing Marketing 137

SecureList

NOVEMBER 22, 2022

Cryptocurrency targeted attacks. The cryptocurrency business continues to grow, and people continue to invest their money in this market because it’s a digital asset and all transactions occur online. These are attractive aspects that cybercrime groups will be unable to resist. It also offers anonymity to users.

Cryptocurrency 91

Cryptocurrency Mobile Ransomware Banking 91

Security Affairs

JANUARY 23, 2022

Never download an app from a QR code, avoid making any payment requested through unsolicited email that uses social engineering techniques to trick recipients into scanning the embedded QR code. If scanning a physical QR code, ensure the code has not been tampered with, such as with a sticker placed on top of the original code.

Cryptocurrency 92

Cryptocurrency Social Engineering Malware Scams 92

Identity IQ

FEBRUARY 8, 2024

This means that dark websites cannot be found using common search engines such as Google or standard web browsers like Chrome. But the dark web is also associated with illegal activities including the trafficking of drugs, weapons, and illegal pornography, hacking and cybercrime, terrorism, and the sale of stolen data or personal information.

Identity Theft 98

Identity Theft Cryptocurrency Government Engineering 98

Security Affairs

FEBRUARY 6, 2022

LockBit ransomware gang claims to have stolen data from PayBito crypto exchange FBI issued a flash alert on Lockbit ransomware operation CISA orders federal agencies to fix actively exploited CVE-2022-21882 Windows flaw Over 500,000 people were impacted by a ransomware attack that hit Morley Ransomware attack hit Swissport International causing delays (..)

Social Engineering 74

Social Engineering Cryptocurrency Small Business Ransomware 74

Security Affairs

NOVEMBER 15, 2021

The trojan allows to hijack users’ mobile devices and steal funds from online banking and cryptocurrency accounts. The malware has been active at least since late October 2021, it targeting the mobile users of banks in Italy, the UK, and the US. login credentials, personal information, current balance, etc.). ” concludes the report.

Banking 119

Banking Mobile Social Engineering Malware 119