Krebs on Security

NOVEMBER 21, 2024

According to prosecutors, the group mainly sought to steal cryptocurrency from victim companies and their employees. Those accounts state that the intruders assaulted Tylerb’s mother in the home invasion, and that they threatened to burn him with a blowtorch if he didn’t give up the keys to his cryptocurrency wallets.

Identity Theft 271

Identity Theft Phishing Cryptocurrency Accountability 271

Penetration Testing

MAY 22, 2025

cryptocurrency exchange Coinbase recently disclosed that it had fallen victim to a sophisticated social The post Social Engineering Attack: Coinbase Customer Data Stolen, 70K Users Affected appeared first on Daily CyberSecurity. The publicly listed U.S.

Social Engineering 74

Social Engineering Engineering Cryptocurrency Cybersecurity 74

Security Affairs

MARCH 10, 2025

Experts warn of a large-scale cryptocurrency miner campaign targeting Russian users with SilentCryptoMiner. Using this social engineering trick, threats like stealers, RATs, Trojans, and crypto miners can persist undetected. Common malware families include NJRat , XWorm, Phemedrone , and DCRat.

Cryptocurrency 89

Cryptocurrency Malware Social Engineering Antivirus 89

Security Affairs

DECEMBER 25, 2024

authorities attributed the theft of $308 million cryptocurrency from DMM Bitcoin to North Korean cyber actors. authorities linked the $308 million cyber heist targeting cryptocurrency company DMM Bitcoin to North Korea-linked threat actors. On June 1st, the Japanese cryptocurrency exchange DMM Bitcoin announced that crooks stole 4,502.9

Cryptocurrency 123

Cryptocurrency Social Engineering Hacking Cybercrime 123

The Hacker News

MAY 8, 2025

Cybersecurity researchers have exposed what they say is an "industrial-scale, global cryptocurrency phishing operation" engineered to steal digital assets from cryptocurrency wallets for several years. The campaign has been codenamed FreeDrain by threat intelligence firms SentinelOne and Validin.

Cryptocurrency 114

Cryptocurrency Engineering Phishing Cybersecurity 114

Krebs on Security

DECEMBER 29, 2024

The first profiled Cryptomus , a dodgy cryptocurrency exchange allegedly based in Canada that has become a major payment processor and sanctions evasion platform for dozens of Russian exchanges and cybercrime services online.

Scams 244

Scams Cybercrime Cryptocurrency Social Engineering 244

Malwarebytes

SEPTEMBER 20, 2023

The dangers of cryptocurrency phishing are back in the news, after tech investor Mark Cuban was reported to have lost around $870k via a phishing link. As for the specifics of the phishing tactic deployed, Cuban is reported as saying he may have downloaded a bogus wallet tool via a search engine query.

Cryptocurrency 139

Cryptocurrency Scams Phishing Engineering 139

Krebs on Security

NOVEMBER 14, 2024

” Mr. Shefel says he stopped selling stolen payment cards after being pushed out of the business, and invested his earnings in a now-defunct Russian search engine called tf[.]org. He also apparently ran a business called click2dad[.]net net that paid people to click on ads for Russian government employment opportunities.

Retail 278

Retail Advertising Cryptocurrency Cybercrime 278

Trend Micro

OCTOBER 3, 2022

The parasitic Water Labbu capitalizes on the social engineering schemes of other scammers, injecting malicious JavaScript code into their malicious decentralized application websites to steal cryptocurrency.

Cryptocurrency 143

Cryptocurrency Social Engineering Engineering Cyber threats 143

eSecurity Planet

MAY 20, 2025

Security experts have uncovered a new malware campaign, RedisRaider, that targets misconfigured Redis servers to secretly mine cryptocurrency. This hides key functions inside the code, making reverse engineering more difficult. They made it hard to detect and analyze.

Cryptocurrency 100

Cryptocurrency Malware Engineering Authentication 100

Krebs on Security

FEBRUARY 17, 2021

Secret Service and Department of Homeland Security told reporters on Wednesday the trio’s activities involved extortion, phishing, direct attacks on financial institutions and ATM networks, as well as malicious applications that masqueraded as software tools to help people manage their cryptocurrency holdings. Image: CISA.

Cryptocurrency 347

Cryptocurrency Financial Services Banking Government 347

Bleeping Computer

NOVEMBER 2, 2023

A new macOS malware dubbed 'KandyKorn' has been spotted in a campaign attributed to the North Korean Lazarus hacking group, targeting blockchain engineers of a cryptocurrency exchange platform. [.]

Cryptocurrency 92

Cryptocurrency Engineering Malware Hacking 92

Krebs on Security

NOVEMBER 9, 2024

“This is social engineering at the highest level and there will be failed attempts at times. Donahue said 60 technology companies are now routing all law enforcement data requests through Kodex, including an increasing number of financial institutions and cryptocurrency platforms. Don’t be discouraged.

Hacking 297

Hacking Accountability Government Social Engineering 297

Security Affairs

APRIL 26, 2024

As cryptocurrencies have grown in popularity, there has also been growing concern about cybercrime involvement in this sector Cryptocurrencies have revolutionized the financial world, offering new investment opportunities and decentralized transactions.

Cryptocurrency 130

Cryptocurrency Cybercrime Education Scams 130

Penetration Testing

MAY 13, 2024

AhnLab’s Mobile Analysis Team has issued an alarm about an insidious new breed of romance scams specifically targeting cryptocurrency enthusiasts.

Social Engineering 96

Social Engineering Cryptocurrency Engineering Penetration Testing 96

CyberSecurity Insiders

JANUARY 17, 2022

North Korea, the nation that is being led by Kim Jong UN is back into news headlines for stealing cryptocurrency worth millions through cyber attacks. The post North Korea steals $400m cryptocurrency through Cyber Attacks appeared first on Cybersecurity Insiders.

Cryptocurrency 135

Cryptocurrency Cyber Attacks Social Engineering Banking 135

Schneier on Security

JUNE 4, 2024

Interesting story of breaking the security of the RoboForm password manager in order to recover a cryptocurrency wallet password.

Password Management 337

Password Management Passwords Cryptocurrency Engineering 337

Security Affairs

NOVEMBER 21, 2024

Scattered Spider members are part of a broader cybercriminal community called “The Com,” where hackers brag about high-profile cyber thefts, typically initiated through social engineering tactics like phone, email, or SMS scams to gain access to corporate networks. ” reads the press release published by DoJ.

Cybercrime 110

Cybercrime Identity Theft Cryptocurrency Phishing 110

Security Affairs

OCTOBER 13, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Over 300,000!

Malware 124

Malware DDOS Cryptocurrency Education 124

eSecurity Planet

DECEMBER 21, 2021

Cryptocurrency Fuels Ransomware. One constant in all this will be cryptocurrency, the coin of the realm when it comes to ransomware. Cryptocurrency really is fueling this in a sense. … If you were to take cryptocurrency away from that, they don’t have a convenient digital platform.

Cryptocurrency 140

Cryptocurrency Ransomware Cybercrime Social Engineering 140

Security Affairs

APRIL 3, 2021

Code repository hosting service GitHub launched an investigation in a series of attacks aimed at abusing its infrastructure to illicitly mine cryptocurrency. “In a phone call today, Dutch security engineer Justin Perdok told The Record that at least one threat actor is targeting GitHub repositories where Actions might be enabled.

Cryptocurrency 144

Cryptocurrency Accountability Software Engineering 144

Malwarebytes

APRIL 26, 2022

Rogue Google ads caused no end of misery for cryptocurrency enthusiasts, costing them roughly $4.31 This is an astonishing slice of cryptocurrency cash to lose for the sake of clicking on something in a search engine. One of the main ways to hurt yourself in a search engine used to be SEO poisoning. Avoiding bad ads.

Cryptocurrency 139

Cryptocurrency Phishing Engineering Mobile 139

The Hacker News

APRIL 13, 2024

A former security engineer has been sentenced to three years in prison in the U.S. for charges relating to hacking two decentralized cryptocurrency exchanges in July 2022 and stealing over $12.3 Shakeeb Ahmed, the defendant in question, pled guilty to one count of computer fraud in December 2023 following his arrest in July. "At

Engineering 138

Engineering Cryptocurrency Hacking 138

Security Affairs

NOVEMBER 5, 2023

North Korea-linked Lazarus group is using new KandyKorn macOS Malware in attacks against blockchain engineers. North Korea-linked Lazarus APT group were spotted using new KandyKorn macOS malware in attacks against blockchain engineers, reported Elastic Security Labs. ” reads the report. Stage 1 (Dropper) – testSpeed.py

Engineering 130

Engineering Malware Cryptocurrency Encryption 130

Security Boulevard

APRIL 15, 2024

A former Amazon engineer who scammed more than $12 million from two decentralized cryptocurrencies exchanges in 2022 was sentenced to three years in prison in a case that the U.S. The post Ex-Security Engineer Gets Three Years in Prison for $12 Million Crypto Hacks appeared first on Security Boulevard.

Engineering 126

Engineering Hacking Cryptocurrency Scams 126

Krebs on Security

SEPTEMBER 5, 2023

Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults. “The victim profile remains the most striking thing,” Monahan wrote.

Cryptocurrency 361

Cryptocurrency Passwords Encryption Accountability 361

eSecurity Planet

OCTOBER 18, 2024

Blockchain: Developed primarily for cryptocurrency applications and maligned for manipulating those markets, blockchain can be a valuable security tool, as its universe of connected nodes is almost impossible to corrupt or destroy. Security Engineer Security engineers build secure systems.

Cybersecurity 125

Cybersecurity Artificial Intelligence Penetration Testing CISO 125

Krebs on Security

APRIL 4, 2024

The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers. co showing the site did indeed swap out any cryptocurrency addresses.

Phishing 297

Phishing Cryptocurrency DDOS Internet 297

Security Affairs

SEPTEMBER 9, 2022

US authorities recovered more than $30 million worth of cryptocurrency stolen by the North Korea-linked Lazarus APT from Axie Infinity. A report from The Block published in July and citing two people familiar with the matter revealed that threat actors targeted a senior engineer at the company with a fake job offer via LinkedIn.

Cryptocurrency 139

Cryptocurrency Spyware Engineering Hacking 139

Security Affairs

JULY 19, 2022

FBI has warned of crooks developing malicious cryptocurrency-themed apps to steal crypto assets from the users. Federal Bureau of Investigation (FBI) has warned of crooks creating malicious cryptocurrency-themed apps to steal crypto assets from investors. SecurityAffairs – hacking, cryptocurrency-themed apps). million. .”

Cryptocurrency 130

Cryptocurrency Mobile Hacking Accountability 130

Bleeping Computer

DECEMBER 15, 2023

Former Amazon security engineer Shakeeb Ahmed pleaded guilty this week to hacking and stealing over $12.3 million from two cryptocurrency exchanges in July 2022. [.]

Engineering 109

Engineering Hacking Cryptocurrency 109

Security Affairs

NOVEMBER 15, 2024

The malware could harvest a huge trove of data from infected systems, including cookies, autofill, cryptocurrency wallets, 2FA authenticators, password managers, and email client information. Researchers from Gen Digital who discovered the threat, believe it is in its early development phase.

Encryption 117

Encryption Password Management Cryptocurrency Social Engineering 117

SecureList

JANUARY 13, 2022

Also, we have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income. Note, this is no proof that the companies listed were compromised.

Cryptocurrency 145

Cryptocurrency Malware Accountability Banking 145

Malwarebytes

NOVEMBER 22, 2024

Once the victim places enough trust in the scammer, they bring the victim into a cryptocurrency investment scheme. They are also forced to engage in a wide range of malicious activities that can involve cryptocurrency and gambling, or they can be tasked to carry out impersonation scams.

Accountability 137

Accountability Scams Cryptocurrency Identity Theft 137

Krebs on Security

JUNE 15, 2024

One of the more popular SIM-swapping channels on Telegram maintains a frequently updated leaderboard of the most accomplished SIM-swappers, indexed by their supposed conquests in stealing cryptocurrency. That leaderboard currently lists Sosa as #24 (out of 100), and Tylerb at #65.

Hacking 346

Hacking Cybercrime Phishing Passwords 346

CyberSecurity Insiders

MARCH 10, 2022

But here’s a news piece that gives details of a ransomware group that paid $6 million in salaries last year and even tried to develop its cryptocurrency. The gang also has a bunch of developers, network penetration testers, admins, QA, engineer experts, OSINT, and those who keep a track of transactions and wallet funds.

Cryptocurrency 119

Cryptocurrency Ransomware Banking Hacking 119

Security Affairs

FEBRUARY 3, 2025

Since 2021, the Crazy Evil gang has become a major cybercriminal group, using phishing, identity fraud, and malware to steal cryptocurrency. “Targeting of Cryptocurrency Users and Influencers: Crazy Evil explicitly victimizes the cryptocurrency space with bespoke spearphishing lures.”

Scams 81

Scams Media Cryptocurrency Cybercrime 81