Security Boulevard

AUGUST 2, 2022

Current threat actor activity is incentivized by a broad attack surface represented through high volumes of users and systems, and high potential profits represented through the variety of cryptocurrency offerings. It is easy to detect and block things like malicious cryptocurrency apps or crypto-phishing websites.

Cryptocurrency 98

Cryptocurrency Ransomware Government Risk 98

SecureWorld News

JULY 11, 2022

Axie Infinity, a video game that utilizes NFTs and Ethereum-based cryptocurrencies, lost $540 million in March of this year after a senior engineer was tricked into opening a PDF of a fake job application, according to a story from The Block. The employee who fell for the social engineering scheme no longer works for Sky Mavis.

Social Engineering 70

Social Engineering Hacking Cryptocurrency Engineering 70

Security Affairs

JUNE 11, 2023

Gox exchange and operating BTC-e Japanese Pharmaceutical giant Eisai hit by a ransomware attack Clop ransomware gang was testing MOVEit Transfer bug since 2021 Stealth Soldier backdoor used is targeted espionage attacks in Libya Researchers published PoC exploit code for actively exploited Windows elevation of privilege issue Experts detail a new Kimsuky (..)

Social Engineering 93

Social Engineering Data breaches Ransomware Cybercrime 93

CyberSecurity Insiders

AUGUST 17, 2022

The aim behind the said social engineering attack is simple, one to trap employees with fake job offers and second to lure customers in signing up the page and then steal their currency. NOTE – Lazarus is also known in the world of cybercrime as Guardians of Peace and is being run and funded by the government of North Korea.

Social Engineering 117

Social Engineering Cryptocurrency Education Cybercrime 117

Security Affairs

MAY 18, 2022

Microsoft researchers warn of the rising threat of cryware targeting non-custodial cryptocurrency wallets, also known as hot wallets. Microsoft warns of the rise of cryware, malicious software used to steal info an dfunds from non-custodial cryptocurrency wallets, also known as hot wallets. Ransomware. Password and info stealers.

Cryptocurrency 96

Cryptocurrency Social Engineering Malware Cybercrime 96

SecureWorld News

MARCH 22, 2021

The FBI notes that the Internet Crime Complaint Center (IC3) has been key to its mission to track cybercrimes. The IC3 "provides the public with a trustworthy source for information on cyber criminal activity," and also is a useful tool for victims to report a cybercrime. The IC3 received 19,369 reports of BEC/EAC scams in 2020. "In

Cybercrime 54

Cybercrime Scams Banking Accountability 54

SecureList

NOVEMBER 23, 2021

The COVID-19 pandemic is likely to cause a massive wave of poverty, and that invariably translates into more people resorting to crime, including cybercrime. We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular. Cracking down hard on the cybercrime world.

Cryptocurrency 104

Cryptocurrency Banking Cybercrime Ransomware 104

SecureWorld News

JULY 3, 2023

According to PurpleSec, 98% of cybercrime relies on social engineering to accomplish it. Cryptocurrency and the Metaverse pose new cybersecurity threats. Cybercrime is a highly profitable business. According to Cybersecurity Ventures, cybercrime will cost the world $10.5 trillion annually by 2025.

Cybercrime 81

Cybercrime Social Engineering Data breaches Cyber threats 81

CyberSecurity Insiders

FEBRUARY 8, 2021

And an official confirmation says that the attack was launched by notorious North Korean Lazarus hacking group that is known for its social engineering attacks such as the Wannacry 2017. Note- Lazarus group aka Guardians of Peace is a Cybercrime group that is being funded by North Korean intelligence- as per US Intelligence.

Ransomware 134

Ransomware Social Engineering Cryptocurrency Cybercrime 134

Malwarebytes

SEPTEMBER 11, 2023

A cybercriminal who goes by the handle RastaFarEye has been advertising DarkGate Loader on cybercrime forums since June 16, 2023. Once active, the malware can be used for several malicious activities like remote access, cryptocurrency mining, keylogging, clipboard stealing, and information stealing.

Malware 113

Malware Social Engineering Cryptocurrency Cybercrime 113

Security Affairs

AUGUST 6, 2023

Reptile Rootkit employed in attacks against Linux systems in South Korea New PaperCut flaw in print management software exposes servers to RCE attacks A cyberattack impacted operations of multiple hospitals in several US states Married couple pleaded guilty to laundering billions in cryptocurrency stolen from Bitfinex in 2016 Malicious packages in (..)

Malware 82

Malware Cybercrime Cryptocurrency Social Engineering 82

SecureWorld News

AUGUST 29, 2023

An advisory from the company states that a "highly sophisticated" SIM swapping attack targeted one of Kroll's employees, resulting in unauthorized access to personal information related to bankruptcy claimants associated with cryptocurrency firms FTX, BlockFi, and Genesis.

Cryptocurrency 77

Cryptocurrency Phishing Social Engineering Accountability 77

Security Affairs

DECEMBER 17, 2023

CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6

Data breaches 83

Data breaches Cybercrime Firewall Artificial Intelligence 83

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. Based on the risk score, CryptoIns experts have calculated insurance rates for cryptocurrency exchange users who can now insure their accounts against cyber threats.

Insurance 63

Insurance Cryptocurrency Cyber threats Marketing 63

Malwarebytes

JULY 19, 2022

Uploading government documents and taking a selfie to verify them is a bigger ballgame for a victim than just losing credit card information — it could be used to create cryptocurrency trading accounts under the victim’s name. These could then be used to launder money, evade taxes, or provide anonymity for other cybercrimes.

Phishing 107

Phishing Social Engineering Accountability Engineering 107

Security Affairs

FEBRUARY 26, 2023

Clasiopa group targets materials research in Asia CERT of Ukraine says Russia-linked APT backdoored multiple govt sites UK won the Military Cyberwarfare exercise Defence Cyber Marvel 2 (DCM2) CISA warns of disruptive attacks amid the anniversary of Russia’s invasion of Ukraine Highly evasive cryptocurrency miner targets macOS Hackers are actively exploiting (..)

Social Engineering 86

Social Engineering Cryptocurrency Insurance Malware 86

Security Affairs

APRIL 4, 2022

During the weekend, multiple owners of Trezor hardware cryptocurrency wallets reported having received fake data breach notifications from Trezor, BleepingComputer first reported. The company was the victim of a social engineering attack aimed at its employees. Trezor WARNING: Elaborate Phishing attack. Pierluigi Paganini.

Phishing 118

Phishing Data breaches Cryptocurrency Social Engineering 118

Krebs on Security

AUGUST 19, 2020

Allen said a typical voice phishing or “vishing” attack by this group involves at least two perpetrators: One who is social engineering the target over the phone, and another co-conspirator who takes any credentials entered at the phishing page and quickly uses them to log in to the target company’s VPN platform in real-time.

Phishing 353

Phishing VPN Social Engineering Media 353

eSecurity Planet

SEPTEMBER 14, 2022

Cybercrime is a growth industry like no other. Then, we’ll go over the basic, foundational techniques most scammers find themselves using, such as social engineering and phishing. One particularly potent emergent technology for scammers is blockchain and the related cryptocurrency and NFTs. Social Tactics.

Social Engineering 115

Social Engineering Energy and Utilities Phishing Scams 115

Security Affairs

JUNE 4, 2023

Xplain hack impacted the Swiss cantonal police and Fedpol Zyxel published guidance for protecting devices from ongoing attacks Kimsuky APT poses as journalists and broadcast writers in its attacks New Linux Ransomware BlackSuit is similar to Royal ransomware CISA adds Progress MOVEit Transfer zero-day to its Known Exploited Vulnerabilities catalog (..)

Spyware 91

Spyware Hacking Malware Social Engineering 91

SecureList

NOVEMBER 22, 2022

Cryptocurrency targeted attacks. The cryptocurrency business continues to grow, and people continue to invest their money in this market because it’s a digital asset and all transactions occur online. These are attractive aspects that cybercrime groups will be unable to resist. It also offers anonymity to users.

Cryptocurrency 87

Cryptocurrency Mobile Ransomware Banking 87

Security Affairs

JANUARY 3, 2024

The use of Artificial Intelligence in cybercrime is not a completely novel concept. Utilizing AI-driven bots for advanced social engineering techniques. These observations highlight the evolving and expanding role of AI in cybercrime, posing significant challenges to cybersecurity efforts.

Artificial Intelligence 119

Artificial Intelligence Banking Scams Cybercrime 119

SC Magazine

APRIL 8, 2021

For the uninitiated, NFTs are unique tokens that accompany original and collectible digital artwork or videos that can be sold or traded as a form of cryptocurrency, with transactions registered on the blockchain. Many of the earlier NFTs involved illustrations of kittens, but they can take the form of just about anything. billion in 2020.

Scams 137

Scams Cryptocurrency Phishing Marketing 137

Security Affairs

JANUARY 23, 2022

Never download an app from a QR code, avoid making any payment requested through unsolicited email that uses social engineering techniques to trick recipients into scanning the embedded QR code. If scanning a physical QR code, ensure the code has not been tampered with, such as with a sticker placed on top of the original code.

Cryptocurrency 100

Cryptocurrency Social Engineering Malware Scams 100

SecureList

NOVEMBER 9, 2022

We can therefore expect that cybercrime groups from either block will feel safe to attack companies from the opposing side. In 2023, we might see a slight decline in ransomware attacks, reflecting the slowdown of the cryptocurrency markets. I believe cybercrime is the biggest threat to end-users, but mainly in an indirect fashion.

Cybersecurity 121

Cybersecurity Cyber Insurance Cybercrime IoT 121

Malwarebytes

JUNE 23, 2022

Europol has coordinated a joint operation to arrest members of a cybercrime gang and effectively dismantle their campaigns that netted million in Euros. The group was involved in fraud, money laundering, phishing, and scams.

Phishing 101

Phishing Banking Cryptocurrency Scams 101

Security Affairs

OCTOBER 20, 2020

Group-IB assisted Paxful, an international peer-to-peer cryptocurrency marketplace, in countering web-bot and social engineering attacks. The figure suggests that bitcoin platforms remain of great interest to threat actors.

Cryptocurrency 59

Cryptocurrency Social Engineering eCommerce Engineering 59

Security Affairs

MAY 21, 2023

The threat actors publish malicious packages to the PyPI repository and attempt to trick developers into using them using social engineering tricks, such as intentional typos in their names and high version numbers. The repository is a privileged target for threat actors that aim to carry out supply chain attacks aimed at developers.

Social Engineering 92

Social Engineering Malware Cryptocurrency Engineering 92

Security Affairs

FEBRUARY 6, 2022

LockBit ransomware gang claims to have stolen data from PayBito crypto exchange FBI issued a flash alert on Lockbit ransomware operation CISA orders federal agencies to fix actively exploited CVE-2022-21882 Windows flaw Over 500,000 people were impacted by a ransomware attack that hit Morley Ransomware attack hit Swissport International causing delays (..)

Social Engineering 84

Social Engineering Cryptocurrency Small Business Ransomware 84

Security Affairs

NOVEMBER 15, 2021

The trojan allows to hijack users’ mobile devices and steal funds from online banking and cryptocurrency accounts. The malware has been active at least since late October 2021, it targeting the mobile users of banks in Italy, the UK, and the US. login credentials, personal information, current balance, etc.). ” concludes the report.

Banking 128

Banking Mobile Social Engineering Malware 128

Identity IQ

FEBRUARY 8, 2024

But the dark web is also associated with illegal activities including the trafficking of drugs, weapons, and illegal pornography, hacking and cybercrime, terrorism, and the sale of stolen data or personal information. Transactions on the dark web are typically conducted using cryptocurrencies such as Bitcoin to maintain anonymity.

Identity Theft 98

Identity Theft Cryptocurrency Government Engineering 98

SecureWorld News

MAY 11, 2023

RELATED: Famous Twitter Accounts Hacked: Insider Threat or Social Engineering Attack? ] From Barack Obama to Elon Musk to Kim Kardashian, the compromised accounts tweeted out a message urging their millions of followers to send Bitcoin to a mysterious wallet address. Now, the U.S.

Accountability 71

Accountability Social Engineering Media Hacking 71

Security Affairs

NOVEMBER 26, 2018

“Nicholas Truglia, 21, lifted the $1 million from Ross’ two cryptocurrency accounts, according to a felony complaint filed this month in California state court. Police raided the Truglia’s house under a warrant and able to recover $300,000 worth of cryptocurrency from his hardware wallet. ” reads a CNBC report.

Cryptocurrency 83

Cryptocurrency Identity Theft Social Engineering Advertising 83

Security Affairs

SEPTEMBER 2, 2018

The Loki Bot attacks started in July and aimed at stealing passwords from browsers, messaging applications, mail and FTP clients, and cryptocurrency wallets. Loki Bot operators employ various social engineering technique to trick victims into opening weaponized attachments that would deploy the Loki Bot stealer.

Social Engineering 58

Social Engineering Cryptocurrency Advertising Malware 58

Security Affairs

OCTOBER 31, 2022

In the early afternoon of Friday 12 May 2017, the media broke the news of a global computer security attack carried out through a malicious code capable of encrypting data residing in information systems and demanding a ransom in cryptocurrency to restore them, the Wannacry ransomware.

Malware 100

Malware Computers and Electronics Encryption Ransomware 100

Security Affairs

AUGUST 16, 2023

Never download an app from a QR code, avoid making any payment requested through unsolicited email that uses social engineering techniques to trick recipients into scanning the embedded QR code. If scanning a physical QR code, ensure the code has not been tampered with, such as with a sticker placed on top of the original code.

Phishing 90

Phishing Energy and Utilities Insurance Manufacturing 90

SecureWorld News

NOVEMBER 1, 2021

Americans’ personal information, stolen en masse by state-backed actors and online gangs alike, is being weaponized via increasingly sophisticated social engineering or disinformation campaigns. Criminals and extremists similarly can threaten unprecedented levels of disruption and coercion.

Cybersecurity 69

Cybersecurity Government Cyber Insurance Technology 69