Appknox

JUNE 23, 2022

Thus, these Australian attacks significantly contribute to the rising trend in socially engineered attacks. Cryptocurrency and NFT attacks are rising as decentralized finance, and digital art assets become sophisticated socially engineered threats. Common Trends Among the Australian Mobile Threats.

Social Engineering 92

Social Engineering Mobile Scams Engineering 92

Malwarebytes

JULY 19, 2022

After users provide their PayPal credentials, they are then presented with a notice of “unusual activity” in the next screen. However, Akamai researchers believe that socially engineering PayPal users to let them keep giving away their data is what makes this phishing kit successful. Source: Akamai).

Phishing 108

Phishing Social Engineering Accountability Engineering 108

Krebs on Security

DECEMBER 29, 2022

You just knew 2022 was going to be The Year of Crypto Grift when two of the world’s most popular antivirus makers — Norton and Avira — kicked things off by installing cryptocurrency mining programs on customer computers.

Cryptocurrency 239

Cryptocurrency Cybercrime Computers and Electronics Scams 239

SecureList

MAY 6, 2024

Methodology In this report, we present an analysis of financial cyberthreats in 2023, focusing on banking Trojans and phishing pages that target online banking, shopping accounts, cryptocurrency wallets and other financial assets. Cryptocurrency phishing saw a 16% year-on-year increase in 2023, with 5.84 million in 2022.

Phishing 100

Phishing Banking Mobile Scams 100

Krebs on Security

NOVEMBER 6, 2018

that has been tracking down individuals engaged in unauthorized “SIM swaps” — a complex form of mobile phone fraud that is often used to steal large amounts of cryptocurrencies and other items of value from victims. SIM swapping attacks primarily target individuals who are visibly active in the cryptocurrency space.

Mobile 243

Mobile Cryptocurrency Accountability Passwords 243

Security Affairs

AUGUST 6, 2023

Reptile Rootkit employed in attacks against Linux systems in South Korea New PaperCut flaw in print management software exposes servers to RCE attacks A cyberattack impacted operations of multiple hospitals in several US states Married couple pleaded guilty to laundering billions in cryptocurrency stolen from Bitfinex in 2016 Malicious packages in (..)

Malware 72

Malware Cybercrime Cryptocurrency Social Engineering 72

Hot for Security

MAY 24, 2021

Although the two spam campaigns differ in style, they leverage the popularity of Elon Musk and the increased interest in the cryptocurrency market. billion worth of Bitcoin by Tesla earlier this year, cryptocurrency investors have. The fraudsters send out a promotional email presenting the Bitcoin giveaway.

Scams 98

Scams Cryptocurrency Marketing Social Engineering 98

Security Affairs

OCTOBER 18, 2018

Group-IB, an international company that specializes in preventing cyber attacks, has estimated that cryptocurrency exchanges suffered a total loss of $882 million due to targeted attacks in 2017 and in the first three quarters of 2018. At the beginning of 2018 hackers’ interest in cryptocurrency exchanges ramped up.

Cyber Attacks 83

Cyber Attacks Cryptocurrency Phishing Social Engineering 83

Security Affairs

JANUARY 3, 2024

This fake page claimed to support payments through multiple banks, all with the aim of gaining the victim’s trust by presenting content that appeared to originate from an official government site. Utilizing AI-driven bots for advanced social engineering techniques.

Artificial Intelligence 111

Artificial Intelligence Banking Scams Cybercrime 111

Webroot

JANUARY 7, 2022

2020 may have been the year of establishing remote connectivity and addressing the cybersecurity skills gap, but 2021 presented security experts, government officials and businesses with a series of unpresented challenges. Cryptocurrency. There was no shortage of discussion surrounding cryptocurrency and its security flaws.

Cybercrime 105

Cybercrime Phishing Ransomware Cryptocurrency 105

BH Consulting

NOVEMBER 9, 2022

In all, the agency grouped the main risks into eight categories: ransomware, malware, social engineering, threats against data, threats against availability, disinformation/misinformation, and supply chain targeting. Spice up your security presentation without the tired ‘hacker in a hoodie’ tropes. Links we liked.

Social Engineering 52

Social Engineering Ransomware Password Management Engineering 52

Identity IQ

FEBRUARY 8, 2024

Transactions on the dark web are typically conducted using cryptocurrencies such as Bitcoin to maintain anonymity. Early 2000s – Present: Tor’s Illegal Uses While Tor (and similar dark web software/browsers) have uses that keep people safe, the anonymity that it provides can be exploited for criminal purposes.

Identity Theft 98

Identity Theft Cryptocurrency Government Engineering 98

SC Magazine

MAY 17, 2021

The researchers presented Monday afternoon at the RSA Conference, to tease a soon-to-be-released whitepaper of their work. “In fact, the overwhelming majority of the threats we envisage were present in some form, at least, by 2020.” AI could impact more than just social engineering.

Manufacturing 95

Manufacturing IoT Artificial Intelligence Technology 95

SecureWorld News

AUGUST 2, 2022

Now when the app is presented with the color purple, it will know that red was involved too and hence it is valid. Scenario 3: Spamming is another way to reach a massive audience and disseminate information related to cryptocurrency or the stock market. This standard is also used by Amazon, Google, Facebook, and Microsoft.

Mobile 79

Mobile Accountability Identity Theft Cryptocurrency 79

Malwarebytes

NOVEMBER 23, 2021

In reality, the malware watched a user’s clipboard to find text that matches the normal length of a certain type of cryptocurrency wallet address. Even though it may seem unpersonal to give money as a present, the chance that the receiver will get something that they need or like is so much bigger than with a gift card. Conclusion.

Scams 114

Scams Social Engineering Malware Cryptocurrency 114

CyberSecurity Insiders

APRIL 4, 2023

Card-Not-Present (CNP) fraud constituted 72% of these losses, with a substantial portion attributed to Chinese fraudsters. Chinese fraudster ecosystem: actor’s value chain The value chain of Card Non-present fraud is shown as the following picture. billion in 2021, according to Insider Intelligence.

Phishing 67

Phishing Social Engineering Authentication eCommerce 67

Security Through Education

DECEMBER 5, 2023

Malicious actors and scammers, commonly referred to as “bad actors,” are adept at seizing the opportunity presented by these tragedies to carry out their deceitful schemes. Watch out for “charities” asking you to pay with cash, gift cards, wire transfers, or cryptocurrency.

Scams 52

Scams Identity Theft Media Social Engineering 52

SecureList

MARCH 7, 2024

Cryptocurrency scams Phishing aimed at stealing crypto wallet credentials remained a common money-making tool. Fake pages mimicking popular cryptocurrency sites invited users to sign in with their wallet credentials. Scam sites also used cryptocurrency as bait. The required amount is most likely unattainable.

Phishing 102

Phishing Scams Cryptocurrency Accountability 102

Security Affairs

FEBRUARY 2, 2019

“But accessing the phone from Siri Shortcuts also presents some potential security risks that were discovered by X-Force IRIS and reported to Apple’s security team.” The shortcuts can be presented by developers on the lock screen or in ‘search’ field, based on time, location and context. ” continues the analysis.

Social Engineering 82

Social Engineering Advertising Hacking Data collection 82

SecureWorld News

NOVEMBER 1, 2021

Americans’ personal information, stolen en masse by state-backed actors and online gangs alike, is being weaponized via increasingly sophisticated social engineering or disinformation campaigns. Criminals and extremists similarly can threaten unprecedented levels of disruption and coercion.

Cybersecurity 71

Cybersecurity Government Cyber Insurance Technology 71

SecureList

MAY 9, 2024

Based on our telemetry, we pinpointed two victims within the South Korean cryptocurrency sector. Most of them are disguised as cryptocurrency-related programs and capable of downloading an additional payload from the actor-controlled server. The group’s members, both past and present, are still at large.

Malware 123

Malware Government DDOS Cryptocurrency 123

Security Affairs

MARCH 27, 2023

Such was related to a worldwide malware operation known as NullMixer, a controversial and widespread malware delivery maneuver based on SEO poisoning and social engineering technique to lure tech-savvy users, including IT personnel. The module also exfiltrates 2FA secrets from Twilio’s Authy local storage.

Malware 78

Malware Social Engineering Encryption Marketing 78

SecureList

MAY 27, 2022

In January, we reported a malicious campaign targeting companies that work with cryptocurrencies, smart contracts, decentralized finance and blockchain technology: the attackers are interested in fintech in general. The campaign has two goals: gathering information and stealing cryptocurrency. zip”).

Phishing 110

Phishing Spyware Firmware Malware 110

Malwarebytes

MAY 21, 2023

ChatGPT can step in to offer insights on identifying the latest scams, avoiding social engineering pitfalls, and setting stronger passwords in concise, conversational text that may be more effective than a lecture or slide presentation. More than 27,500 signatures have since been added to the letter.

Cybersecurity 79

Cybersecurity Artificial Intelligence Social Engineering Engineering 79

SecureList

NOVEMBER 18, 2022

VileRAT is a Python implant, part of an evasive and highly intricate attack campaign against foreign exchange and cryptocurrency trading companies. The group delivers its malware using social engineering. Other packages were presented in English, so they could be targeting users from other countries.

Malware 105

Malware Computers and Electronics Adware Cryptocurrency 105

SC Magazine

JULY 2, 2021

The research will cover such innovations of interest as P2P payments, mobile payments, digital wallets and central bank digital currencies – nationally sponsored cryptocurrencies that, unlike Bitcoin or Monero, would serve as a legitimate substitute for a country’s official currency.

Financial Services 71

Financial Services Banking Identity Theft Media 71

SecureList

APRIL 10, 2023

It’s a whole underground world with its own rules, market prices, and reputational institutions, an overview of which we present in this report. The most popular application categories to hide malware and unwanted software include cryptocurrency trackers, financial apps, QR-code scanners and even dating apps.

Malware 106

Malware Encryption Mobile Accountability 106

NetSpi Executives

APRIL 27, 2024

Ransomware, a definition Ransomware is a set of malware technologies, hacking techniques, and social engineering tactics that cybercriminals use to cause harm, breach data, and render data unusable. Victims pay ransomware adversaries for decryption keys through cryptocurrency, such as Bitcoin. Unpatched exploits.

Ransomware 52

Ransomware Cyber Insurance Backups Insurance 52

eSecurity Planet

OCTOBER 21, 2022

Malware has been present in the digital space since the 1980s, with early prank malware like the Morris Worm or the (c)Brain. The method of infection can vary from attack to attack and can include social engineering strategies, such as phishing and email spoofing , or a fraudulent website masquerading as legitimate, among others.

Malware 75

Malware Adware Spyware Antivirus 75

eSecurity Planet

FEBRUARY 16, 2021

These adware strains often present themselves as a video, banner, full screen, or otherwise pop-up nuisance. CISA reported that LokiBot “employs Trojan malware to steal sensitive information such as usernames, passwords, cryptocurrency wallets, and other credentials.” Phishing and Social Engineering. Backdoors.

Malware 104

Malware Adware Spyware Antivirus 104

Security Boulevard

APRIL 26, 2022

In 2022, the same threat actor started spoofing various important entities in South Korea, including KRNIC (Korea Internet Information Center), Korean security vendors such as Ahnlab, cryptocurrency exchanges such as Binance, and others. This is done for the purpose of social engineering. Figure 3: Decoy content.

Phishing 52

Phishing DNS Cryptocurrency Accountability 52

Adam Levin

DECEMBER 7, 2020

Many of the contact tracing scams of 2020 similarly followed social engineering scripts that have been used in taxpayer identity theft schemes since the 1990s as well. 2020 saw a record number of ransomware attacks, and we can expect more of the same in 2021. An artificially generated “person.”

IoT 130

IoT Artificial Intelligence Technology Scams 130

Security Affairs

OCTOBER 10, 2018

As stated in Group-IB’s annual report “ Hi-Tech Crime Trends 2018 ” presented at the CyberCrimeCon18 conference, every month, 1-2 banks lose money as a result of cyber attacks, and the damage caused by one successful theft is, on average, $2 million. million (2.96 billion rubles) of damage to Russia’s financial sector.

Cyber Attacks 81

Cyber Attacks Banking Cyber threats Phishing 81

SecureList

FEBRUARY 16, 2023

These sites referenced public figures and humanitarian groups, offering to accept cash in cryptocurrency, something that should have raised a red flag in itself. By getting the user’s secret phrase, cybercriminals could get access to their cryptocurrency balance. Now, attackers have started collecting Bitcoin for charity.

Phishing 96

Phishing Scams Accountability Energy and Utilities 96

SecureList

JULY 29, 2021

From here, the victim was presented with a LNK file made to look like a folder within an Explorer window. Some activity involved PowerShell commands and loader variants different from the downloaders presented in our recent report. In recent operations, the group has focused on cryptocurrency businesses. Final thoughts.

Malware 143

Malware Phishing Password Management Social Engineering 143

SecureList

NOVEMBER 14, 2023

The covert nature of these attacks presents detection challenges while offering attackers ample opportunities to infiltrate and establish a presence within the organization’s infrastructure. They advertise on dark web platforms and employ various techniques, including malware, phishing, and other social engineering methods.

Hacking 109

Hacking Energy and Utilities Media Malware 109

SecureList

AUGUST 5, 2021

or cryptocurrency secured by these resources. The component detects all pages with phishing content that the user has tried to open by following a link in an email message or on the web, as long as links to these pages are present in the Kaspersky database. In Q2 2021, cybercriminals diversified their easy-money schemes.

Phishing 118

Phishing Banking Scams Computers and Electronics 118