Cryptocurrency, Hacking and Phishing - Cyber Security Informer

Russian cybercrime forums launch contests for cryptocurrency hacks

Security Affairs

JUNE 7, 2021

Cybercriminals in Russian underground forums have been invited to take part in competitions for hacking cryptocurrency and NFT. Several Russian underground forums have launched competitions for hacking cryptocurrency schema and Non-fungible token (NFT). SecurityAffairs – hacking, cryptocurrency hack).

Cryptocurrency

Cryptocurrency Cybercrime Hacking Technology

Cryptocurrencies and cybercrime: A critical intermingling

Security Affairs

APRIL 26, 2024

As cryptocurrencies have grown in popularity, there has also been growing concern about cybercrime involvement in this sector Cryptocurrencies have revolutionized the financial world, offering new investment opportunities and decentralized transactions.

Cryptocurrency

Cryptocurrency Cybercrime Education Scams

New Dog, Old Tricks: Reducing Cryptocurrency Phishing Vulnerabilities

Security Boulevard

MAY 4, 2022

For the security-minded, the rise of cryptocurrencies has been both a blessing and a curse. The post New Dog, Old Tricks: Reducing Cryptocurrency Phishing Vulnerabilities appeared first on Security Boulevard.

Cryptocurrency

Cryptocurrency Phishing Banking Security Awareness

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Cybercriminals pose as LastPass staff to hack password vaults

Bleeping Computer

APRIL 18, 2024

LastPass is warning of a malicious campaign targeting its users with the CryptoChameleon phishing kit that is associated with cryptocurrency theft. [.]

Passwords

Passwords Cryptocurrency Hacking Phishing

Phorpiex botnet sent millions of phishing emails to deliver LockBit Black ransomware

Security Affairs

MAY 13, 2024

Experts reported that since April, the Phorpiex botnet sent millions of phishing emails to spread LockBit Black ransomware. Phishing Reporting : Report phishing emails and other malicious cyber activities to relevant authorities like the FBI’s IC3 and the NJCCIC.

Phishing

Phishing Ransomware Security Awareness Authentication

NameCheap's email hacked to send Metamask, DHL phishing emails

Bleeping Computer

FEBRUARY 12, 2023

Domain registrar Namecheap had their email account breached Sunday night, causing a flood of MetaMask and DHL phishing emails that attempted to steal recipients' personal information and cryptocurrency wallets. [.]

Phishing

Phishing Cryptocurrency Hacking Accountability

When Low-Tech Hacks Cause High-Impact Breaches

Krebs on Security

FEBRUARY 26, 2023

Media coverage understandably focused on GoDaddy’s admission that it suffered three different cyberattacks over as many years at the hands of the same hacking group. But it’s worth revisiting how this group typically got in to targeted companies: By calling employees and tricking them into navigating to a phishing website.

Hacking

Hacking Social Engineering Phishing Scams

Discord Admins Hacked by Malicious Bookmarks

Krebs on Security

MAY 30, 2023

A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised as a Web browser bookmark. On May 9, MetrixCoin reported that its Discord server was hacked, with fake airdrop details pushed to all users.

Hacking

Hacking Scams Accountability Cryptocurrency

Hackers pose as officials to steal secrets and cryptocurrency for North Korea

Graham Cluley

NOVEMBER 23, 2023

The Kimsuky hacking gang has been accused of impersonating South Korean officials and journalists in a plot to steal cryptocurrency for the North Korean regime. Read more in my article on the Hot for Security blog.

Cryptocurrency

Cryptocurrency Hacking Phishing Malware

Trezor wallets hacked? Don’t be duped by phishing attack email

Graham Cluley

APRIL 3, 2022

Owners of physical Trezor cryptocurrency wallets should be on their guard after an email was sent out by thieves attempting to dupe them into downloading new software to their devices.

Phishing

Phishing Cryptocurrency Hacking Software

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

QakBot is most commonly delivered via email phishing lures disguised as something legitimate and time-sensitive, such as invoices or work orders. Qbot and Pinkslipbot ) has morphed into an advanced malware strain now used by multiple cybercriminal groups to prepare newly compromised networks for ransomware infestations.

Hacking

Hacking Malware Ransomware Government

Growing Interest in Flipper Zero Capitalized by Cybercriminals in Phishing Campaign

Heimadal Security

JANUARY 4, 2023

A new phishing campaign is taking advantage of the community’s growing interest in Flipper Zero to steal both their personal data and cryptocurrencies. The tool gives pen-testers and hacking enthusiasts, and researchers the ability to tinker with a wide range of hardware. Members of the security community are at risk.

Phishing

Phishing Cryptocurrency Risk Hacking

Email crypto phishing scams: stealing from hot and cold crypto wallets

SecureList

JULY 5, 2023

The higher the global popularity of cryptocurrencies and the more new ways of storing them, the wider the arsenal of tools used by malicious actors who are after digital money. This story covers two fundamentally different methods of email attacks on the two most popular ways of storing cryptocurrency: hot and cold wallets.

Scams

Scams Phishing Cryptocurrency Social Engineering

Calendar Meeting Links Used to Spread Mac Malware

Krebs on Security

FEBRUARY 28, 2024

Malicious hackers are targeting people in the cryptocurrency space in attacks that start with a link added to the target’s calendar at Calendly , a popular application for scheduling appointments and meetings. The attackers impersonate established cryptocurrency investors and ask to schedule a video conference call.

Malware

Malware Cryptocurrency Software Scams

New Bandit Stealer targets web browsers and cryptocurrency wallets

Security Affairs

MAY 28, 2023

Bandit Stealer is a new stealthy information stealer malware that targets numerous web browsers and cryptocurrency wallets. Trend Micro researchers discovered a new info-stealing malware, dubbed Bandit Stealer, which is written in the Go language and targets multiple browsers and cryptocurrency wallets.

Cryptocurrency

Cryptocurrency Malware Advertising Phishing

5 Ways Your Cryptocurrency May be Hacked

Appknox

APRIL 13, 2021

Along with wireless payments like Google or Apple pay (that still require assigning a banking account or card i.e. physical currency), the cryptocurrencies like Bitcoin are getting widely used. No surprise here, that cash payments are becoming a relic of the past.

Cryptocurrency

Cryptocurrency Wireless Hacking Banking

Parallax RAT used in attacks aimed at cryptocurrency entities

Security Affairs

MARCH 1, 2023

Experts warn of a new wave of attacks against cryptocurrency entities, threat actors are using a RAT dubbed Parallax RAT for Infiltration. Researchers from cybersecurity firm Uptycs warns of attacks targeting cryptocurrency organizations with the Parallax remote access Trojan (RAT).

Cryptocurrency

Cryptocurrency Malware Phishing Hacking

Threat actors stole $55 million worth of cryptocurrency from bZx DeFi platform

Security Affairs

NOVEMBER 6, 2021

Threat actors have stolen $55 million worth of cryptocurrency from the bZx decentralized finance (DeFi) platform. The decentralized finance (DeFi) platforms allow users to borrow/loan and speculate on cryptocurrency price variations. The company pointed out that the incident was not a protocol hack. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Phishing Hacking Accountability

CryptoCore hacker group stole over $200M from cryptocurrency exchanges

Security Affairs

JUNE 24, 2020

The CryptoCore hacker group that is believed to be operating out of Eastern Europe has stolen around $200 million from online cryptocurrency exchanges. Experts from ClearSky states that a hacker group tracked as CryptoCore, which is believed to be operating out of Eastern Europe, has stolen around $200 million from cryptocurrency exchanges.

Cryptocurrency

Cryptocurrency Phishing Accountability Passwords

Hackers steal $3 million by impersonating crypto news journalists

Bleeping Computer

JUNE 10, 2023

A hacking group tracked as 'Pink Drainer' is impersonating journalists in phishing attacks to compromise Discord and Twitter accounts for cryptocurrency-stealing attacks. [.]

Cryptocurrency

Cryptocurrency Phishing Accountability Hacking

MailChimp breached, intruders conducted phishing attacks against crypto customers

Security Affairs

APRIL 4, 2022

Threat actors gained access to internal tools of the email marketing giant MailChimp to conduct phishing attacks against crypto customers. During the weekend, multiple owners of Trezor hardware cryptocurrency wallets reported having received fake data breach notifications from Trezor, BleepingComputer first reported.

Phishing

Phishing Data breaches Cryptocurrency Social Engineering

Police seize and dismantle massive phishing operation

Malwarebytes

JUNE 23, 2022

This operation also led the Belgian Police (Police Fédérale/Federale Politie) and the Dutch Police (Politie) to nine arrests, 24 house searches, and the seizure of firearms, ammunition, jewelry, electronic devices, cash, and cryptocurrency. The group was involved in fraud, money laundering, phishing, and scams.

Phishing

Phishing Banking Cryptocurrency Scams

North Korea dedicates a hacking group to fund cyber crime

CyberSecurity Insiders

APRIL 5, 2023

North Korea has established a hacking group named APT43 to fund its cybercrime activities, aimed at advancing Pyongyang’s geopolitical interests. On April 3 of this year, Google’s Threat Analysis Group (TAG) announced that APT43 was in-volved in cryptocurrency theft and digital currency laundering.

Hacking

Hacking Social Engineering Cryptocurrency Manufacturing

Enigma info-stealing malware targets the cryptocurrency industry

Security Affairs

FEBRUARY 13, 2023

Alleged Russian threat actors have been targeting cryptocurrency users in Eastern Europe with Enigma info-stealing malware. The attack chain starts with phishing emails or social media messages distributing a RAR archive. The files pose an interview for a fake cryptocurrency role or job opening. ” concludes the report.

Cryptocurrency

Cryptocurrency Malware Media Phishing

LogoKit, a new phishing kit that dynamically creates phishing forms

Security Affairs

JANUARY 28, 2021

Researchers from RiskIQ have discovered a new phishing kit dubbed LogoKit that dynamically compose phishing content. Researchers from RiskIQ discovered a new phishing kit that outstands for its ability to dynamically create phishing messages to target specific users. SecurityAffairs – hacking, Phishing).

Phishing

Phishing Cryptocurrency Passwords Hacking

deBridge Finance confirms Lazarus hacking group behind Cyber Attack

CyberSecurity Insiders

AUGUST 8, 2022

Getting deep into the details, a notorious hacking group launched a phishing email attack on a few of the employees of deBridge Finance in mid this year. Alex Smirnov, the Co-Founder of deBridge Finance, issued a statement that the company thwarted the phishing incident on time that was launched to target Web3 focused platforms.

Cyber Attacks

Cyber Attacks Hacking Phishing Cryptocurrency

Fake Ledger devices mailed out in attempt to steal from cryptocurrency fans

Hot for Security

JUNE 17, 2021

In December last year, we reported how the email and mailing addresses of some 270,000 Ledger customers had been published on a hacking forum following a data breach. At the time we warned users of the hardware cryptocurrency wallet to watch out for phishing scams that might attempt to steal users’ credentials.

Cryptocurrency

Cryptocurrency Data breaches Scams Phishing

North Korea hackers sending Corona Vaccine related phishing emails

CyberSecurity Insiders

APRIL 4, 2022

Fresh reports are in that a hacking group possibly funded by North Korea Intelligence has been strategically targeting South Korean citizens through phishing emails urging recipients to book appointments for a newly developed corona vaccine that is countering a novel strain of Coronavirus that has sent almost half of Beijing into a lock-down again.

Phishing

Phishing Cryptocurrency Banking Malware

GUEST ESSAY: These advanced phishing tactics should put all businesses on high alert

The Last Watchdog

SEPTEMBER 28, 2022

Phishing attacks are nothing new, but scammers are getting savvier with their tactics. Related: The threat of ‘business logic’ hacks. Other Iranian-based cyberattacks have included hackers targeting Albanian government systems and spear phishing scams. Spear phishing. Phishing via texting.

Phishing

Phishing Scams Cybercrime Passwords

Spam and phishing in 2022

SecureList

FEBRUARY 16, 2023

Short-lived phishing sites often offered to see the premieres before the eagerly awaited movie or television show was scheduled to hit the screen. These sites referenced public figures and humanitarian groups, offering to accept cash in cryptocurrency, something that should have raised a red flag in itself.

Phishing

Phishing Scams Accountability Energy and Utilities

Cybersecurity firm Mandiant has its Twitter account hacked to promote cryptocurrency scam

Graham Cluley

JANUARY 4, 2024

Google-owned cybersecurity company Mandiant has found itself in the awkward position of having to wrestle back control of its Twitter account, after it was hijacked by scammers yesterday.

Accountability

Accountability Cryptocurrency Cybersecurity Scams

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S.

Social Engineering

Social Engineering Mobile Cybercrime Passwords

Cold wallet, hot wallet, or empty wallet? What is the safest way to store cryptocurrency?

Malwarebytes

AUGUST 26, 2021

In August of 2021, a thief stole about $600 million in cryptocurrencies from The Poly Network. Slightly more than one week later, Japanese cryptocurrency exchange Liquid was hacked and lost $97 million worth of digital coins. They are not available for every cryptocurrency. We can’t answer the first question for you.

Cryptocurrency

Cryptocurrency Banking Hacking Engineering

A massive phishing campaign using QR codes targets the energy sector

Security Affairs

AUGUST 16, 2023

A phishing campaign employing QR codes targeted a leading energy company in the US, cybersecurity firm Cofense reported. “Beginning in May 2023, Cofense has observed a large phishing campaign utilizing QR codes targeting the Microsoft credentials of users from a wide array of industries.” com (Cloudflare’s Web3 services).

Phishing

Phishing Energy and Utilities Insurance Manufacturing

APWG: Phishing maintained near-record levels in the first quarter of 2021

Security Affairs

JUNE 13, 2021

The Anti-Phishing Working Group (APWG) revealed that the number of phishing websites peaked at record levels in the first quarter of 2021. The Anti-Phishing Working Group (APWG) has published its new Phishing Activity Trends Report related to the first quarter of 2021. Reported Phishing Websites for Q1 2021.

Phishing

Phishing Advertising Cryptocurrency Encryption

Threat Actors Merging Malicious Activity With Cryptocurrency Show How the Attack Landscape is Developing in Decentralized Finance

Security Boulevard

AUGUST 2, 2022

Current threat actor activity is incentivized by a broad attack surface represented through high volumes of users and systems, and high potential profits represented through the variety of cryptocurrency offerings. It is easy to detect and block things like malicious cryptocurrency apps or crypto-phishing websites.

Cryptocurrency

Cryptocurrency Ransomware Government Risk

Three North Korean hackers charged for financial and revenge-motivated hacks

SC Magazine

FEBRUARY 17, 2021

The Department of Justice has unsealed an indictment against three members of Lazarus Group for a wide range of financially-motivated hacks against private businesses that authorities said were designed to steal $1.3 billion in currency and cryptocurrency and further other strategic interests for the North Korean government.

Hacking

Hacking Cryptocurrency Banking Malware

BitCoins To Bombs: North Korea Funds Military With Billions In Stolen Cryptocurrency

The Security Ledger

NOVEMBER 30, 2023

A report from the firm Recorded Future finds that billions in gains from cryptocurrency heists fund close to half of North Korea's military budget. The post BitCoins To Bombs: North Korea Funds Military With Billions In Stolen Cryptocurrency first appeared on The Security Ledger with Paul F.

Cryptocurrency

Cryptocurrency Risk Technology Phishing

Lazarus Group Targets Cryptocurrency Firms Via LinkedIn Messages

Threatpost

AUGUST 25, 2020

The North Korean-linked APT's latest campaign shows that it is shifting focus to target the cryptocurrency and financial verticals.

Cryptocurrency

Cryptocurrency Phishing Hacking

Your colleague was infected with Coronavirus, this is the latest phishing lure

Security Affairs

MARCH 30, 2020

Security experts uncovered a new Coronavirus-themed phishing campaign, the messages inform recipients that they have been exposed to the virus. The phishing messages tell the victims that one of their colleagues, friends, or family members has tested positive for the virus, then it urges them to print the attached “EmergencyContact.

Phishing

Phishing Advertising Cryptocurrency Malware

DarkCasino joins the list of APT groups exploiting WinRAR zero-day

Security Affairs

NOVEMBER 20, 2023

The economically motivated APT group used specially crafted archives in phishing attacks against forum users through online trading forum posts. NSFOCUS Research Labs pointed out that exploitation of the CVE-2023-38831 flaw can be integrated into watering hole and phishing attacks. ” reads the report published by NSFOCUS.

Phishing

Phishing Financial Services Cryptocurrency Technology

Google removed 49 Chrome Extensions that were hijacking cryptocurrency wallets

Security Affairs

APRIL 15, 2020

Google has removed 49 new Chrome browser extensions from its official Web Store that hide the code to hijack cryptocurrency wallets. Google has removed 49 new Chrome browser extensions from its official Web Store that contain the code to steal sensitive information and hijack cryptocurrency wallets. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Advertising Phishing Passwords

Reddit Hacked, Preventing Accidental Location Sharing, Developer Hacks His Own Company

Security Boulevard

FEBRUARY 19, 2023

Reddit announced that it was the victim of a phishing attack aimed at its employees, resulting in unauthorized access to internal documents, code, and some unspecified business systems. The post Reddit Hacked, Preventing Accidental Location Sharing, Developer Hacks His Own Company appeared first on Security Boulevard.

Hacking

Hacking Phishing Data breaches Data privacy

FBI: Investment Scams Surpass BEC as Most Costly Cybercrime

SecureWorld News

MARCH 15, 2023

Alright, how many of you saw a cryptocurrency ad on TV in 2022? Now the important question: how many of you got scammed in some sort of way by cryptocurrency or another type of investment? The report shows that phishing schemes were the most common type of cybercrime reported by victims in 2022, with 300,497 complaints.

Cybercrime

Cybercrime Scams Cryptocurrency Identity Theft

Russian cybercrime forums launch contests for cryptocurrency hacks

Cryptocurrencies and cybercrime: A critical intermingling

Webinars

Trending Sources

New Dog, Old Tricks: Reducing Cryptocurrency Phishing Vulnerabilities

Webinars

Cybercriminals pose as LastPass staff to hack password vaults

Phorpiex botnet sent millions of phishing emails to deliver LockBit Black ransomware

NameCheap's email hacked to send Metamask, DHL phishing emails

When Low-Tech Hacks Cause High-Impact Breaches

Discord Admins Hacked by Malicious Bookmarks

Hackers pose as officials to steal secrets and cryptocurrency for North Korea

Trezor wallets hacked? Don’t be duped by phishing attack email

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Growing Interest in Flipper Zero Capitalized by Cybercriminals in Phishing Campaign

Email crypto phishing scams: stealing from hot and cold crypto wallets

Calendar Meeting Links Used to Spread Mac Malware

New Bandit Stealer targets web browsers and cryptocurrency wallets

5 Ways Your Cryptocurrency May be Hacked

Parallax RAT used in attacks aimed at cryptocurrency entities

Threat actors stole $55 million worth of cryptocurrency from bZx DeFi platform

CryptoCore hacker group stole over $200M from cryptocurrency exchanges

Hackers steal $3 million by impersonating crypto news journalists

MailChimp breached, intruders conducted phishing attacks against crypto customers

Police seize and dismantle massive phishing operation

North Korea dedicates a hacking group to fund cyber crime

Enigma info-stealing malware targets the cryptocurrency industry

LogoKit, a new phishing kit that dynamically creates phishing forms

deBridge Finance confirms Lazarus hacking group behind Cyber Attack

Fake Ledger devices mailed out in attempt to steal from cryptocurrency fans

North Korea hackers sending Corona Vaccine related phishing emails

GUEST ESSAY: These advanced phishing tactics should put all businesses on high alert

Spam and phishing in 2022

Cybersecurity firm Mandiant has its Twitter account hacked to promote cryptocurrency scam

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Cold wallet, hot wallet, or empty wallet? What is the safest way to store cryptocurrency?

A massive phishing campaign using QR codes targets the energy sector

APWG: Phishing maintained near-record levels in the first quarter of 2021

Threat Actors Merging Malicious Activity With Cryptocurrency Show How the Attack Landscape is Developing in Decentralized Finance

Three North Korean hackers charged for financial and revenge-motivated hacks

BitCoins To Bombs: North Korea Funds Military With Billions In Stolen Cryptocurrency

Lazarus Group Targets Cryptocurrency Firms Via LinkedIn Messages

Your colleague was infected with Coronavirus, this is the latest phishing lure

DarkCasino joins the list of APT groups exploiting WinRAR zero-day

Google removed 49 Chrome Extensions that were hijacking cryptocurrency wallets

Reddit Hacked, Preventing Accidental Location Sharing, Developer Hacks His Own Company

FBI: Investment Scams Surpass BEC as Most Costly Cybercrime

Stay Connected