Security Affairs

MAY 30, 2024

Since 2011, Wang and his co-conspirators had been distributing malware through malicious VPN applications, including MaskVPN, DewVPN, PaladinVPN, ProxyGate, ShieldVPN, and ShineVPN. The FBI has published information at fbi.gov/911S5 to help identify and remove 911 S5’s VPN applications from your devices or machines.

VPN 98

VPN Cryptocurrency Malware Software 98

Security Affairs

DECEMBER 31, 2021

The Have I Been Pwned data breach notification service now includes credentials for 441K accounts that were stolen by RedLine malware. The Have I Been Pwned data breach notification service now allows victims of the RedLine malware to check if their credentials have been stolen. The malicious code can also act as a first-stage malware.

Accountability 140

Accountability Malware Data breaches Passwords 140

Security Affairs

APRIL 6, 2020

Experts uncovered a hacking campaign that is breaching Docker clusters to deploy a new crypto-mining malware tracked as Kinsing. ” The Kinsing malware abuses the resources of the Docker installations to mine cryptocurrency, hackers exploit unprotected open Docker API port to instantiate an Ubuntu container.

Cryptocurrency 103

Cryptocurrency Malware Advertising VPN 103

Security Affairs

OCTOBER 20, 2021

A Cookie Theft malware was employed in phishing attacks against YouTube creators, Google’s Threat Analysis Group (TAG) warns. Financially motivated threat actors are using Cookie Theft malware in phishing attacks against YouTube creators since late 2019. The hackers used fake collaboration opportunities (i.e. Pierluigi Paganini.

Accountability 133

Accountability Malware Phishing Social Engineering 133

Threatpost

NOVEMBER 23, 2020

‘Vishing’ attack on GoDaddy employees gave fraudsters access to cryptocurrency service domains NiceHash, Liquid.

Cryptocurrency 121

Cryptocurrency Social Engineering VPN Engineering 121

Security Affairs

SEPTEMBER 16, 2022

Threat actors target gamers looking for cheats on YouTube with the RedLine Stealer information-stealing malware and crypto miners. Researchers from Kaspersky have spotted a self-extracting archive, served to gamers looking for cheats on YouTube, that was employed to deliver the RedLine Stealer information-stealing malware and crypto miners.

Malware 94

Malware Cryptocurrency Hacking Passwords 94

Security Affairs

JANUARY 13, 2024

Akira ransomware targets Finnish organizations GitLab fixed a critical zero-click account hijacking flaw Juniper Networks fixed a critical RCE bug in its firewalls and switches Vast Voter Data Leaks Cast Shadow Over Indonesia ’s 2024 Presidential Election Researchers created a PoC for Apache OFBiz flaw CVE-2023-51467 Team Liquid’s wiki leak exposes (..)

VPN 113

VPN Cybercrime Ransomware Hacking 113

Malwarebytes

NOVEMBER 24, 2021

When free games lead to Malware. Researchers at Cluster25 spotted similar activity , targeting a multitude of interests including how-to guides, cryptocurrency, VPN software, and more. Target machines are scanned for card details, passwords, cryptocurrency wallets and other forms of data.

Malware 142

Malware Scams Passwords Cryptocurrency 142

Webroot

OCTOBER 14, 2022

In other words, 2022 has been an eventful year in the threat landscape, with malware continuing to take center stage. The 6 Nastiest Malware of 2022. With that, here are the 6 Nastiest Malware of 2022. The post Discover 2022’s Nastiest Malware appeared first on Webroot Blog. 2022 was no different.

Malware 61

Malware Antivirus DDOS Cyber Insurance 61

Krebs on Security

APRIL 20, 2023

Researchers at ESET say this job offer from a phony HSBC recruiter on LinkedIn was North Korean malware masquerading as a PDF file. Mandiant found the compromised 3CX software would download malware that sought out new instructions by consulting encrypted icon files hosted on GitHub. Image: Mandiant.

Malware 288

Malware Software Technology Accountability 288

Security Affairs

MAY 17, 2022

Most of the malicious apps were VPN software (42), followed by Camera (20), and Photo Editing (13). Trend Micro researchers also discovered 40 fake cryptocurrency miner apps that are variants of similar apps that they discovered in August 2021. SecurityAffairs – malware, Facestealer). To nominate, please visit:?

Spyware 96

Spyware Cryptocurrency VPN Malware 96

Malwarebytes

MAY 10, 2022

From bogus attack warnings to data theft malware. The list of potential target areas includes: Internet browsers MAIL/FTP/VPN clients Cryptocurrency wallets Password managers Messengers Game programs. The post “Chemical attack” email warnings deliver Jester Stealer malware appeared first on Malwarebytes Labs.

Malware 95

Malware Phishing Passwords Password Management 95

Security Affairs

JULY 29, 2020

Experts spotted an undetectable Linux malware that exploits undocumented techniques to evade detection and targets publicly accessible Docker servers. ” The botnet is scanning the Internet for misconfigured Docker API endpoints, Experts noticed that the Ngrok malware has already infected many vulnerable servers.

Cryptocurrency 143

Cryptocurrency Malware Advertising VPN 143

Malwarebytes

MARCH 16, 2022

It’s reported that a malware distribution campaign is leveraging YouTube to push infection files. The campaign distributes a file known for password theft, and hunts for those passwords in browsers, cookies, a variety of cryptocurrency wallets, VPN clients, and many more besides. This is the basis of a basic YouTube scam.

Malware 94

Malware Scams Accountability Passwords 94

CyberSecurity Insiders

AUGUST 6, 2021

Gangs spreading LockBit ransomware are reportedly bribing employees of corporate companies to enter their computer network and compromise it with file encrypting malware. In order to keep their activities alive, the said malware spreading gang started recruiting insiders to provide access to multinational company networks.

Ransomware 144

Ransomware VPN Encryption Cryptocurrency 144

SecureWorld News

JULY 25, 2023

A recent report from Mandiant sheds light on the hacking unit operated by North Korea's Reconnaissance General Bureau (RGB), which primarily targets cryptocurrency companies in an effort to fund the country's sanctioned nuclear weapons program. North Korean threat actors have been linked to a breach of enterprise software company JumpCloud.

Cryptocurrency 73

Cryptocurrency VPN Cybercrime Engineering 73

Security Affairs

MAY 1, 2021

If you must connect your NAS to the internet, we highly recommend using a trusted VPN or a myQNAPcloud link.” ” QNAP NAS devices continue to be under attack, earlier March, researchers at 360Netlab warned of a cryptocurrency malware campaign targeting unpatched QNAP network-attached storage (NAS) devices.

Ransomware 121

Ransomware Cryptocurrency Malware Internet 121

CyberSecurity Insiders

MARCH 23, 2023

The malware evolved since its previous variant and now arrives with new capabilities. The malware can hijack crypto wallets copied to clipboard. Background BlackGuard stealer is malware as a service sold in underground forums and Telegram since 2021 , when a Russian user posted information about a new malware called BlackGuard.

Malware 121

Malware Cryptocurrency Passwords Media 121

Security Boulevard

MARCH 30, 2022

Malware-as-a-service has contributed substantially to the growth of ransomware and phishing attacks (among other attack types) in the past year, as they lower the technical barrier to entry for criminals to carry out attacks. Blackguard is currently being sold as malware-as-a-service with a lifetime price of $700 and a monthly price of $200.

Malware 98

Malware Hacking Antivirus Passwords 98

Security Affairs

MARCH 10, 2022

Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. Cisco Talos researchers have uncovered a malware campaign targeting Ukraine’s IT Army , threat actors are using infostealer malware mimicking a DDoS tool called the “Liberator.” 35) on port 6666.

DDOS 93

DDOS Digital transformation Malware Advertising 93

Security Affairs

NOVEMBER 4, 2020

KPOT Stealer is a “stealer” malware that focuses on exfiltrating account information and other data from web browsers, instant messengers, email, VPN, RDP, FTP, cryptocurrency, and gaming software. The KPOT Stealer was written in C/C++, it was offered in the cybercrime underground as a Malware-as-a-Service (MaaS).

Ransomware 143

Ransomware Malware Advertising Cybercrime 143

Krebs on Security

SEPTEMBER 17, 2020

The government alleges the men used malware-laced phishing emails and “supply chain” attacks to steal data from companies and their customers. APT41 was known to hide its malware inside fake resumes that were sent to targets. APT41 was known to hide its malware inside fake resumes that were sent to targets.

Antivirus 360

Antivirus Hacking Government Software 360

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. The messages said recipients had earned an investment credit at a cryptocurrency trading platform called moonxtrade[.]com. “Consider salaries in Russia,” Quotpw said.

Scams 251

Scams DDOS Cryptocurrency Accountability 251

SecureList

NOVEMBER 23, 2021

We should expect more fraud, targeting mostly BTC , because this cryptocurrency is the most popular. Currently, at a value of approximately $60,000, cybercriminals have adapted their malware to monitor the operating system’s clipboard and redirect funds to addresses under their control. MageCart attacks moving to the server side.

Cryptocurrency 121

Cryptocurrency Banking Cybercrime Ransomware 121

Krebs on Security

FEBRUARY 26, 2023

Web hosting giant GoDaddy made headlines this month when it disclosed that a multi-year breach allowed intruders to steal company source code, siphon customer and employee login credentials, and foist malware on customer websites. But we do know the March 2020 attack was precipitated by a spear-phishing attack against a GoDaddy employee.

Hacking 277

Hacking Social Engineering Phishing Scams 277

Security Affairs

MARCH 17, 2020

In this campaign, crooks are exploiting the interest in the Coronavirus (COVID-19) outbreak to deliver a couple of malware, the CoronaVirus Ransomware and the Kpot information-stealing Trojan. The malware is also able to take a screenshot of the active desktop and also target wallets stored on the computer. . Pierluigi Paganini.

Ransomware 102

Ransomware Cryptocurrency Advertising Passwords 102

Malwarebytes

JANUARY 19, 2022

VPNLab had been around since 2008 and had built its service around the OpenVPN technology, used strong encryption, and provided double VPN, with servers located in many different countries. What is double VPN? Double VPN is basically what the name suggests. Double VPN is not a common feature, because it is very slow.

VPN 74

VPN Encryption Cybercrime Technology 74

SecureList

NOVEMBER 23, 2023

As anticipated, they capitalized on major events and cultural crazes, using tricks that ranged from fake Barbie doll deals to exploiting the buzz around long-awaited video game releases, for example, by disguising malware as a cracked Hogwarts Legacy version , a classic move we have seen for years.

VPN 105

VPN Scams Education Internet 105

Security Affairs

DECEMBER 14, 2023

“A Russian, suspected of having recovered in cryptocurrencies the money taken from French victims of the powerful Hive ransomware , dismantled in January, was arrested last week, AFP learned on Tuesday December 12 from the judicial police.” anti-cybercrime (Ofac).” cybersecurity and intelligence authorities.

Ransomware 120

Ransomware Cryptocurrency Cybercrime VPN 120

Krebs on Security

JULY 29, 2022

But some of them — like 911 — build their networks in part by offering “free VPN” or “free proxy” services that are powered by software which turns the user’s PC into a traffic relay for other users. Riley Kilmer , co-founder of the proxy-tracking service Spur.us , said 911’s network will be difficult to replicate in the short run.

Cybercrime 269

Cybercrime Software VPN Backups 269

Security Affairs

APRIL 25, 2021

A member of the FIN7 group was sentenced to 10 years in prison Is BazarLoader malware linked to Trickbot operators?

Insurance 89

Insurance Hacking VPN Malware 89

Security Affairs

MAY 9, 2022

The Computer Emergency Response Team of Ukraine (CERT-UA) warns of attacks spreading info-stealing malware Jester Stealer. The Jester stealer is able to steal credentials and authentication tokens from Internet browsers, MAIL/FTP / VPN clients, cryptocurrency wallets, password managers, messengers, game programs, and more.

Password Management 92

Password Management VPN Cryptocurrency Government 92

Security Affairs

JANUARY 22, 2023

The Irish DPC fined WhatsApp €5.5M

Data breaches 96

Data breaches Retail Malware VPN 96

Security Affairs

MAY 17, 2022

Hakbit ransomware) has been developed by Nosophoros (aka Aesculapius, and Nebuchadnezzar), a threat actor offering for sale the malware on several Dark Web communities. Zagala was accepting payment both in fiat currency and cryptocurrency. ” reads the press release published by DoJ.

Ransomware 95

Ransomware Cybercrime VPN Malware 95

Security Affairs

SEPTEMBER 27, 2020

fitness chains Town Sports leaked online Group-IB detects a series of ransomware attacks by OldGremlin HOW DO PROVIDERS IMPLEMENT INTERNET BLOCKING IN BELARUS? Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

IoT 102

IoT Banking Advertising Ransomware 102

Security Affairs

JANUARY 23, 2022

from the Lympo NTF platform. from the Lympo NTF platform. Follow me on Twitter: @securityaffairs and Facebook.

VPN 87

VPN Ransomware Spyware DDOS 87

Security Affairs

MAY 9, 2021

Experts found critical authentication bypass flaw in HPE Edgeline Infrastructure Manager UNC2529, a new sophisticated cybercrime gang that targets U.S.

Data breaches 96

Data breaches DDOS VPN Hacking 96