Bleeping Computer

APRIL 18, 2024

LastPass is warning of a malicious campaign targeting its users with the CryptoChameleon phishing kit that is associated with cryptocurrency theft. [.]

Passwords 125

Passwords Cryptocurrency Hacking Phishing 125

Krebs on Security

MAY 19, 2020

In January 2019, dozens of media outlets raised the alarm about a new “megabreach” involving the release of some 773 million stolen usernames and passwords that was breathlessly labeled “the largest collection of stolen data in history.” By far the most important passwords are those protecting our email inbox(es).

Passwords 334

Passwords Accountability Hacking Password Management 334

Security Affairs

JANUARY 4, 2024

The X account of cybersecurity giant Mandiant was hacked, attackers used it to impersonate the Phantom crypto wallet and push a cryptocurrency scam. Crooks hacked the X account of cybersecurity firm Mandiant and used it to impersonate the Phantom crypto platform and share a cryptocurrency scam. “Sorry, change password please.”

Scams 108

Scams Cryptocurrency Accountability Hacking 108

Krebs on Security

NOVEMBER 21, 2020

Fraudsters redirected email and web traffic destined for several cryptocurrency trading platforms over the past week. 13, with an attack on cryptocurrency trading platform liquid.com. The attacks were facilitated by scams targeting employees at GoDaddy , the world’s largest domain name registrar, KrebsOnSecurity has learned.

Cryptocurrency 363

Cryptocurrency VPN Scams Social Engineering 363

Adam Levin

MAY 5, 2020

Hackers successfully breached the servers of a popular blogging platform and used them to mine cryptocurrency. As of May 4, Ghost announced that it had successfully purged the cryptocurrency mining malware from its systems. The post Ghost Blogging Platform Hacked To Mine Cryptocurrency appeared first on Adam Levin.

Cryptocurrency 162

Cryptocurrency Hacking System Administration Passwords 162

Heimadal Security

NOVEMBER 22, 2022

A Google Chrome browser extension named VenomSoftX is being deployed by Windows malware to steal cryptocurrency and clipboard contents as people browse the web. The post A Google Chrome Extension Is Helping Hackers Steal Cryptocurrency Passwords appeared first on Heimdal Security Blog. ViperSoftX has been around since 2020.

Cryptocurrency 52

Cryptocurrency Passwords Internet Internet 52

CyberSecurity Insiders

NOVEMBER 26, 2021

Google, the business subsidiary of tech giant Alphabet Inc, has released a report saying that the compromised cloud accounts were leading hackers to mine cryptocurrency that could prove as a double threat to customers. The post Compromised cloud accounts leading to Cryptocurrency mining appeared first on Cybersecurity Insiders.

Cryptocurrency 131

Cryptocurrency Accountability Passwords Software 131

The Last Watchdog

SEPTEMBER 6, 2023

Over time, Bitcoin has become the most widely used cryptocurrency in the world. Use strong passwords, 2FA. The security of your Bitcoin wallet is mostly dependent on the strength of your passwords. Use uppercase, lowercase, digits, special characters, and a combination of them to create strong, one-of-a-kind passwords.

Cryptocurrency 100

Cryptocurrency Backups Passwords Software 100

Graham Cluley

MARCH 27, 2024

Hardware wallet manufacturer Trezor has explained how its Twitter account was compromised - despite it having sensible security precautions in place, such as strong passwords and multi-factor authentication. Read more in my article on the Hot for Security blog.

Accountability 112

Accountability Cryptocurrency Manufacturing Authentication 112

The Security Ledger

MARCH 12, 2024

The post Malicious Python Packages Target Crypto Wallet Recovery Passwords appeared first on The Security Ledger with Paul F. A newly discovered campaign pushing malicious open source software packages is designed to steal mnemonic phrases used to recover lost or destroyed crypto wallets, according to a report by ReversingLabs.

Passwords 52

Passwords Cryptocurrency Software Technology 52

The Hacker News

JANUARY 19, 2022

BHUNT is a modular stealer written in.NET, capable of exfiltrating wallet (Exodus, Electrum, Atomic, Jaxx, Ethereum, Bitcoin, Litecoin wallets) contents, passwords stored in the

Passwords 103

Passwords Cryptocurrency Malware 103

Threatpost

NOVEMBER 20, 2019

The passwords of more than 2.2 million users of a gaming and cryptocurrency website were dumped online after dual data breaches.

Cryptocurrency 76

Cryptocurrency Passwords Data breaches Data privacy 76

Tech Republic Security

JULY 6, 2023

The post New Malware Targets 97 Browser Variants, 76 Crypto Wallets & 19 Password Managers appeared first on TechRepublic. Learn how the Meduza Stealer malware works, what it targets and how to protect your company from this cybersecurity threat.

Password Management 200

Password Management Passwords Malware Cybersecurity 200

Heimadal Security

OCTOBER 10, 2022

Solana cryptocurrency owners are being targeted by NFTs pretending to be alerts for a new Phantom security update. This will result in the installation of password-stealing malware and the theft of cryptocurrency wallets. The post Solana Phantom Targeted by Password-Stealing Malware appeared first on Heimdal Security Blog.

Passwords 89

Passwords Malware Cryptocurrency Cybersecurity 89

Security Affairs

FEBRUARY 24, 2023

Trojanized versions of legitimate applications are being used to deploy XMRig cryptocurrency miner on macOS systems. Later first generation samples changed to a user Launch Agent, which would not require the conspicuous password prompt. ” reads the analysis published by the experts. ” concludes the report.

Cryptocurrency 93

Cryptocurrency Malware Software Passwords 93

SecureWorld News

JULY 15, 2021

million worth of cryptocurrency for Colonial Pipeline following a ransomware attack that disrupted the company's operations. Detectives from the Met’s Economic Crime Command seized £180 million, or roughly $249 million, in cryptocurrency following intelligence received about the transfer of criminal assets. Earlier this year, the U.S.

Cryptocurrency 98

Cryptocurrency Passwords Ransomware Cybercrime 98

Security Affairs

APRIL 30, 2023

Threat actors are gaining access to AT&T email accounts in an attempt to hack into the victim’s cryptocurrency exchange accounts. Hackers are breaking into the AT&T email accounts and then using the access they are logging into the victim’s cryptocurrency exchange accounts to drain their crypto funds, TechCrunch reported.

Cryptocurrency 81

Cryptocurrency Accountability Passwords Hacking 81

Heimadal Security

JUNE 21, 2023

Hackers port scanned for publicly exposed Linux SSH servers and brute-forced username-password pairs to log in to the server. More about the Attack on […] The post Linux Servers Hacked to Launch DDoS Attacks and Mine Monero Cryptocurrency appeared first on Heimdal Security Blog.

DDOS 77

DDOS Cryptocurrency Hacking Passwords 77

Malwarebytes

DECEMBER 20, 2022

If you’re a user of the Gemini cryptocurrency exchange, it’s time to be on your guard against phishing attacks. Breaches in cryptocurrency land are always a major issue. Some folks have their life savings and investments in these realms, and cryptocurrency/Web3 phishing generally has been running riot for some time now.

Cryptocurrency 79

Cryptocurrency Phishing Scams Accountability 79

Bleeping Computer

JANUARY 19, 2022

A novel modular crypto-wallet stealing malware dubbed 'BHUNT' has been spotted targeting cryptocurrency wallet contents, passwords, and security phrases. [.].

Passwords 98

Passwords Malware Cryptocurrency 98

Heimadal Security

JANUARY 20, 2022

This targets passwords, security phrases, and cryptocurrency wallet contents. The post Crypto Wallets and Passwords Targeted by BHUNT Malware appeared first on Heimdal Security Blog. Researchers have recently discovered a new malware they named BHUNT. We named the stealer BHUNT after the main assembly’s name. […].

Passwords 100

Passwords Malware Cryptocurrency Cybersecurity 100

Security Affairs

JUNE 24, 2020

The CryptoCore hacker group that is believed to be operating out of Eastern Europe has stolen around $200 million from online cryptocurrency exchanges. Experts from ClearSky states that a hacker group tracked as CryptoCore, which is believed to be operating out of Eastern Europe, has stolen around $200 million from cryptocurrency exchanges.

Cryptocurrency 103

Cryptocurrency Phishing Accountability Passwords 103

Krebs on Security

MARCH 26, 2024

Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple’s password reset feature. Parth Patel is an entrepreneur who is trying to build a startup in the cryptocurrency space. Some of the many notifications Patel says he received from Apple all at once.

Passwords 338

Passwords Accountability Engineering Phishing 338

CyberSecurity Insiders

DECEMBER 30, 2021

If you follow a custom of saving passwords in your browser, you better change it, before it’s too late. Because security researchers from a South Korean cybersecurity firm, AhnLab discovered that a new malware named Redline was seen lurking in the browsers and stealing saved passwords only to be transmitted to remote servers.

Passwords 118

Passwords Malware Cryptocurrency Software 118

Krebs on Security

APRIL 4, 2024

The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers. co showing the site did indeed swap out any cryptocurrency addresses.

Phishing 205

Phishing Cryptocurrency DDOS Internet 205

Bleeping Computer

MARCH 27, 2023

A new info-stealing malware named MacStealer is targeting Mac users, stealing their credentials stored in the iCloud KeyChain and web browsers, cryptocurrency wallets, and potentially sensitive files. [.]

Malware 137

Malware Passwords Cryptocurrency 137

Security Affairs

JULY 15, 2022

Threat actors behind the campaign used multiple accounts across several social media platforms to advertise password-cracking software for Programmable Logic Controller (PLC), Human-Machine Interface (HMI), and project files. The password cracking software also acts as a dropper for the Sality P2P bot. ” concludes the report.

Passwords 112

Passwords Software Firmware Malware 112

Security Boulevard

MAY 27, 2021

Even if you have chosen a strong, unique password for your online presence and enabled two-factor authentication it’s possible that you’ve overlooked another way in which online criminals could commandeer your social media accounts and spam out a message to your followers. […]… Read More.

Cryptocurrency 84

Cryptocurrency Scams Media Accountability 84

Security Affairs

JULY 3, 2023

The malware also targets crypto wallet extensions, password managers, and 2FA extensions. The malware also collects a variety of data, including system info, browser info, password manager info, miner related registry info, and installed games info. The malware admin declared that their operations do not involve any ransom activities.

Password Management 86

Password Management Passwords Malware Antivirus 86

Security Affairs

MAY 2, 2021

The bold author of a new cryptocurrency stealer, dubbed WeSteal, is promising its customers a leading way to make money in 2021. According to Palo Alto Networks, the author of WeSteal, that goes online as “ComplexCodes,” started advertising the cryptocurrency stealer on underground forums in mid-February 2021. Pierluigi Paganini.

Cryptocurrency 106

Cryptocurrency Malware Advertising System Administration 106

Penetration Testing

FEBRUARY 27, 2024

This updated version uses sophisticated techniques to hijack passwords, browser data, cryptocurrency wallets, and other sensitive... The post Mac Users Beware: Atomic Stealer Strikes Again appeared first on Penetration Testing.

Penetration Testing 120

Penetration Testing Cryptocurrency Passwords Malware 120

SecureList

JUNE 5, 2023

The main purpose of the malware that is dropped by the Satacom downloader is to steal BTC from the victim’s account by performing web injections into targeted cryptocurrency websites. Threat actor’s BTC wallet address To get hold of the victim’s cryptocurrency, the threat actors use web injects on the targeted websites.

Cryptocurrency 79

Cryptocurrency DNS Malware Encryption 79

SecureList

JANUARY 13, 2022

Also, we have previously reported on cryptocurrency-focused BlueNoroff attacks. It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income. Malware infection. Archive file and its contents.

Cryptocurrency 127

Cryptocurrency Malware Accountability Banking 127

Security Boulevard

AUGUST 15, 2021

Over $600 million stolen in the largest DeFi cryptocurrency hack in history, attackers are getting around $10k for stolen network access credentials, and why your identity is trapped inside a social network and what this means for the next potential evolution of the Internet…the metaverse! ** Links mentioned on the show ** Apple to refuse […].

Cryptocurrency 104

Cryptocurrency Hacking Internet Internet 104

The Hacker News

JULY 26, 2023

Written in the Rust programming language, the malware is distributed in the form of bogus blockchain games and is capable of "emptying crypto wallets and stealing stored password and

Cryptocurrency 98

Cryptocurrency Passwords Malware 98

Naked Security

JUNE 21, 2023

Did you prevent password-only logins on your SSH servers? On ALL of them? Are you sure about that?

Passwords 119

Passwords Cybercrime DDOS Cryptocurrency 119

SecureWorld News

JULY 15, 2021

million worth of cryptocurrency for Colonial Pipeline following a ransomware attack that disrupted the company's operations. Detectives from the Met’s Economic Crime Command seized £180 million, or roughly $249 million, in cryptocurrency following intelligence received about the transfer of criminal assets. Earlier this year, the U.S.

Cryptocurrency 52

Cryptocurrency Passwords Ransomware Cybercrime 52