The Last Watchdog

DECEMBER 18, 2024

Quantum computing advances are making traditional encryption obsolete, and adversaries are stockpiling data for future decryption. FIPS-203 enables legal PQC deployment, prompting CISOs to overhaul encryption strategies. Organizations face rising risks of AI-driven social engineering and personal device breaches.

Risk 173

Risk Threat Detection Technology Phishing 173

Krebs on Security

APRIL 4, 2024

The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers. co showing the site did indeed swap out any cryptocurrency addresses.

Phishing 287

Phishing Cryptocurrency DDOS Internet 287

Security Affairs

APRIL 20, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malicious NPM Packages Targeting PayPal Users New Malware Variant Identified: ResolverRAT Enters the Maze Nice chatting with you: what connects cheap Android smartphones, WhatsApp and cryptocurrency theft?

Malware 81

Malware Cryptocurrency Engineering Encryption 81

Security Affairs

OCTOBER 13, 2024

CISA adds Windows and Qualcomm bugs to its Known Exploited Vulnerabilities catalog Three new Ivanti CSA zero-day actively exploited in attacks Ukrainian national pleads guilty in U.S.

Data breaches 119

Data breaches Cryptocurrency Artificial Intelligence Cybercrime 119

SecureList

JANUARY 13, 2022

Also, we have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income. Note, this is no proof that the companies listed were compromised.

Cryptocurrency 145

Cryptocurrency Malware Accountability Banking 145

Security Affairs

APRIL 7, 2025

By simply paying the fee, usually in cryptocurrencies, the customer will receive the sensitive material ready to be exploited. In Dark Web environments as well as on specialized forums, sellers are posting synthetic ads inviting potential buyers to contact them privately, often via Telegram, Session, and other encrypted messaging apps.

Cybercrime 140

Cybercrime Social Engineering Accountability Government 140

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. Among those was the encrypted messaging app Signal , which said the breach could have let attackers re-register the phone number on another device for about 1,900 users.

Social Engineering 358

Social Engineering Mobile Passwords Cybercrime 358

Dark Reading

OCTOBER 12, 2023

Cryptocurrency apps were the most high risk for exposing sensitive information, a reverse-engineering study shows.

Authentication 111

Authentication Encryption Cryptocurrency Engineering 111

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers. The now-defunct and always phony cryptocurrency trading platform xtb-market[.]com,

Cryptocurrency 304

Cryptocurrency Cybercrime Computers and Electronics Scams 304

SecureWorld News

APRIL 21, 2022

Treasury Department warning of a North Korean state-sponsored advanced persistent threat (APT) known as the Lazarus Group targeting cryptocurrency and blockchain companies. The threat actors use social engineering to encourage individuals to download trojanized cryptocurrency applications on Windows or macOS operating systems.

Cryptocurrency 98

Cryptocurrency Computers and Electronics Social Engineering System Administration 98

Adam Levin

APRIL 10, 2019

The analysis was conducted by the Aite Group, which looked at mobile apps in eight categories: retail banking, credit cards, mobile payment, healthcare savings, retail finance, health insurance, auto insurance and cryptocurrency.

Banking 187

Banking Retail Insurance Mobile 187

eSecurity Planet

DECEMBER 7, 2023

Encryption scrambles data to make it unreadable to those without decryption keys. Proper use of encryption preserves secrecy and radically lowers the potential damage of a successful cybersecurity attack. Encryption algorithm types will provide an overview of the mathematical algorithms used to encrypt data (AES, RSA, etc.),

Encryption 109

Encryption Passwords Authentication Password Management 109

SecureList

APRIL 21, 2025

Lumma has also been observed using exploit kits, social engineering, and compromised websites to extend its reach and evade detection by security solutions. Fake Telegram channels for pirated content and cryptocurrencies. Communication with these servers is typically via encrypted HTTP POST requests.

Malware 88

Malware Cryptocurrency Software Phishing 88

SecureList

AUGUST 10, 2022

VileRAT is a Python implant, part of an evasive and highly intricate attack campaign against foreign exchange and cryptocurrency trading companies. Malicious DOCX social engineering message. Accept: */* Referer: [link] Cookie: source=<encrypted blob>; User-Agent: Mozilla/5.0 xml version="1.0" Windows NT 10.0;

Cryptocurrency 117

Cryptocurrency Encryption Social Engineering Passwords 117

Security Affairs

JULY 29, 2018

New Underminer exploit kit delivers a bootkit that infects the system’s boot sectors as well as a cryptocurrency miner dubbed Hidden Mellifera. “We discovered a new exploit kit we named Underminer that employs capabilities used by other exploit kits to deter researchers from tracking its activity or reverse engineering the payloads.”

Cryptocurrency 70

Cryptocurrency Advertising Malware Encryption 70

Security Affairs

FEBRUARY 23, 2025

from Bybit, it is the largest cryptocurrency heist ever Apple removes iCloud encryption in UK following backdoor demand B1acks Stash released 1 Million credit cards U.S. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Lazarus APT stole $1.5B

Malware 68

Malware Scams Encryption Phishing 68

Security Affairs

JULY 8, 2020

Good news for the victims of the ThiefQuest (EvilQuest) ransomware, they can recover their encrypted files for free. The victims of the ThiefQuest (EvilQuest) ransomware victims can recover their encrypted files without needing to pay the ransom due to the availability of a free decryptor. macOS ransomware #decryptor ( #EvilQuest )! |

Ransomware 143

Ransomware Encryption Malware Advertising 143

Security Affairs

OCTOBER 4, 2024

perfctl malware targets misconfigured Linux servers to deploy cryptocurrency miners and proxyjacking software in an ongoing campaign. The malicious code was used to drop cryptocurrency miners and proxyjacking software. The Linux malware is packed and encrypted to evade detection. The cryptominer is also packed and encrypted.

Malware 137

Malware Cryptocurrency Encryption Software 137

Malwarebytes

JULY 4, 2022

DNS encryption. DNS encryption plugs a gap that makes it easy to track the websites you visit. DNS encryption restores your privacy by making it impossible for anything other than the DNS resolver to read and respond to your queries. FIDO2 is a specification that uses public key encryption for authentication.

Internet 122

Internet Internet Technology DNS 122

Security Affairs

OCTOBER 28, 2018

Earlier this year Sysdig and Aqua Security researchers started observing cyber attacks targeting Kubernets and Docker instances aimed at mining Monero cryptocurrency. Each Docker container runs on Docker Engine along with other containers. ” reads the analysis published by Trend Micro. Run the script (auto.sh).

Engineering 110

Engineering Cryptocurrency Advertising System Administration 110

SecureList

APRIL 8, 2025

Pages like that are well-indexed by search engines and appear in their search results. The arguments above make the utility establish an encrypted connection with the C2 server apap[.]app ClipBanker is a malware family that replaces cryptocurrency wallet addresses in the clipboard with the attackers’ own.

Passwords 86

Passwords Cryptocurrency Software Antivirus 86

Security Affairs

APRIL 19, 2021

XCSSET, a Mac malware targeting Xcode developers, was now re-engineered and employed in a campaign aimed at Apple’s new M1 chips. Experts from Trend Micro have uncovered a Mac malware campaign targeting Xcode developers that employed a re-engineered version of the XCSSET malware to support Apple’s new M1 chips.

Malware 140

Malware Cryptocurrency Architecture Engineering 140

Responsible Cyber

JULY 13, 2024

Introduction Cryptocurrency represents a groundbreaking innovation in the financial sector, offering decentralized, peer-to-peer digital transactions through blockchain technology. However, the allure of these digital assets also attracts malicious actors, making cryptocurrency security paramount.

Cryptocurrency 52

Cryptocurrency Cyber Attacks Social Engineering Scams 52

Krebs on Security

APRIL 20, 2023

Mandiant found the compromised 3CX software would download malware that sought out new instructions by consulting encrypted icon files hosted on GitHub. which owns LinkedIn, said in September 2022 that it had detected a wide range of social engineering campaigns using a proliferation of phony LinkedIn accounts. Microsoft Corp.

Malware 327

Malware Software Technology Accountability 327

Malwarebytes

OCTOBER 27, 2023

Octo Tempest is believed to be a group of native English speaking cybercriminals that uses social engineering campaigns to compromise organizations all over the world. This can be done in a number of ways, but the most common ones involve social engineering attacks on the victim's carrier. Stop malicious encryption.

Social Engineering 122

Social Engineering Engineering Ransomware Backups 122

IT Security Guru

SEPTEMBER 28, 2023

Ransomware attacks are strategically designed to either encrypt or delete critical data and system files, compelling organisations to meet the attackers’ financial demands. By keeping the encryption key on the infected device, ransomware may gradually encrypt files. How are victims of Ransomware exploited?

Ransomware 134

Ransomware Encryption Backups Social Engineering 134

Security Affairs

OCTOBER 28, 2019

Security expert Marco Ramilli published a quick analysis of an interesting attack carried out by SWEED threat actor targeting precision engineering firms in Italy. Today I’d like to share a quick analysis of an interesting attack targeting precision engineering companies based in Italy. Introduction. Pierluigi Paganini.

Engineering 69

Engineering Passwords Malware Advertising 69

Security Affairs

OCTOBER 20, 2021

Once hijacked the channel, attackers either sell it to the highest bidder or employ it in cryptocurrency scam scheme. Some of the samples employed several anti-sandboxing techniques including enlarged files, encrypted archive and download IP cloaking. The hackers used fake collaboration opportunities (i.e.

Accountability 145

Accountability Malware Phishing Social Engineering 145

SecureWorld News

DECEMBER 10, 2024

The research , released this morning, reveals how attackers are leveraging advanced social engineering, obfuscation techniques, and device exploitation to steal credentials and compromise financial and corporate applications. Key features include: Credential Theft: Targets banking, cryptocurrency, and financial apps.

Mobile 109

Mobile Social Engineering Banking Phishing 109

Security Affairs

AUGUST 24, 2018

North Korea-linked Lazarus APT group leveraged for the first time on a MacOS variant of the Fallchill malware in a cryptocurrency exchange attack. According to Kaspersky, the North Korea-linked Lazarus group used a macOS malware to target a cryptocurrency exchange in a recent attack. ” states the report published by Kaspersky.

Cryptocurrency 67

Cryptocurrency Malware Advertising Software 67

Security Affairs

APRIL 20, 2025

infrastructure International Press Newsletter Cybercrime Pixel-Perfect Trap: The Surge of SVG-Borne Phishing Attacks Threat actors misuse Node.js

Data breaches 62

Data breaches Malware Phishing Hacking 62

CyberSecurity Insiders

OCTOBER 31, 2022

First news that is trending on the Google search engine is related to a ransomware attack that took place on Germany’s Copper producer ‘Aurubis’. Perhaps this is supposed to be the first company related to metals and mining that was hit a by a file encrypting malware in the European nation and believably first from the west.

Cybersecurity 129

Cybersecurity Media Ransomware Malware 129

eSecurity Planet

NOVEMBER 18, 2022

This involved using an “unsecured group email account as the root user to access confidential private keys and critically sensitive data for the FTX Group companies around the world…” About $740 million in cryptocurrency has been placed into new cold wallets. One way is through hijacking computer resources to mine cryptocurrencies.

Risk 143

Risk Cybersecurity Cryptocurrency Social Engineering 143

Google Security

MARCH 9, 2021

A few recent examples of this include dependency confusion attack and malicious RubyGems package to steal cryptocurrency. You can think of it like Let’s Encrypt for Code Signing. We talked about the importance of this in our recent Know, Prevent, Fix post.

Software 143

Software Encryption Cryptocurrency Engineering 143

SecureList

NOVEMBER 10, 2022

Cryptocurrency prices were dropping from the end of 2021 and throughout the first half of 2022. Apart from cryptocurrency theft they extort digital money or illicitly mine it using victim’s devices instead of their own. Cryptocurrency mining is a painstaking and costly process, and not as rewarding as when the prices were high.

Cryptocurrency 134

Cryptocurrency Malware Software Ransomware 134

Security Affairs

OCTOBER 31, 2022

In the early afternoon of Friday 12 May 2017, the media broke the news of a global computer security attack carried out through a malicious code capable of encrypting data residing in information systems and demanding a ransom in cryptocurrency to restore them, the Wannacry ransomware. Cryptolocker and exploit components.

Malware 113

Malware Computers and Electronics Encryption Ransomware 113

Security Affairs

FEBRUARY 5, 2021

At the end of January, the group has improved its Linux cryptocurrency miner by implementing open-source detection evasion capabilities. The malware deploys the XMRig mining tool to mine Monero cryptocurrency. It also hides malicious processes using library injection and encrypts the malicious payload. aws/credentials and ~/.aws/config

Malware 122

Malware DNS Cryptocurrency Internet 122