SecureList

DECEMBER 16, 2024

Verdict: prediction not fulfilled Our predictions for 2025 Data breaches through contractors When abusing company-contractor relationships (trusted relationship attacks), threat actors first infiltrate a supplier’s systems and then gain access to the target organization’s infrastructure or data.

Marketing 105

Marketing Data breaches Cryptocurrency Malware 105

Security Affairs

MARCH 8, 2025

Authorities recovered $31 Million Related to 2021 Uranium Finance cyber heist Serbian student activists phone hacked using Cellebrite zero-day exploit Qilin ransomware gang claimed responsibility for the Lee Enterprises attack Meta fired 20 employees for leaking information, more firings expected International Press Newsletter Cybercrime U.S.

Data breaches 69

Data breaches Hacking Cybercrime Artificial Intelligence 69

Krebs on Security

JANUARY 8, 2024

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a

Cybercrime 283

Cybercrime Banking Computers and Electronics DDOS 283

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime 135

Cybercrime Computers and Electronics Banking Hacking 135

Security Affairs

NOVEMBER 10, 2024

CISA adds PTZOptics camera bugs to its Known Exploited Vulnerabilities catalog Canadian authorities arrested alleged Snowflake hacker Android flaw CVE-2024-43093 may be under limited, targeted exploitation July 2024 ransomware attack on the City of Columbus impacted 500,000 people Nigerian man Sentenced to 26+ years in real estate phishing scams Russian (..)

Ransomware 117

Ransomware Cybercrime Phishing Banking 117

Security Affairs

SEPTEMBER 10, 2023

US CISA added critical Apache RocketMQ flaw to its Known Exploited Vulnerabilities catalog Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital North Korea-linked threat actors target cybersecurity experts with a zero-day Zero-day in Cisco ASA and FTD is actively exploited in ransomware attacks Nation-state actors (..)

DDOS 131

DDOS Data breaches VPN Cybercrime 131

Security Affairs

JUNE 2, 2021

Group-IB discovered a database allegedly belonging to a bulletproof hosting provider DDoS-Guard posted for sale on a cybercrime forum. The database supposedly contains information about DDoS-Guard’s customers, including their names, IP-addresses, and payment information. SecurityAffairs – hacking, DDoS-Guard).

DDOS 115

DDOS Cybercrime Authentication Accountability 115

Security Affairs

MAY 4, 2025

CISA adds SAP NetWeaver flaw to its Known Exploited Vulnerabilities catalog SentinelOne warns of threat actors targeting its systems and high-value clients Google Threat Intelligence Group (GTIG) tracked 75 actively exploited zero-day flaws in 2024 VeriSource data breach impacted 4M individuals U.S. CISA adds Qualitia Active!

Cybercrime 72

Cybercrime Cyber Attacks Phishing Malware 72

Jane Frankland

MAY 18, 2025

This has given rise to Cybercrime-as-a-Service (CaaS) and Hacking-as-a-Service (HaaS)turnkey offerings that provide everything from ransomware kits to AI-generated malware and phishing campaigns. On the dark web, AI tools are traded like commodities by cybercriminal hacking groups, powering a thriving underground economy.

Cybersecurity 130

Cybersecurity Backups Ransomware Firewall 130

Security Affairs

NOVEMBER 11, 2023

Police seized BulletProftLink phishing-as-a-service (PhaaS) platform Serbian pleads guilty to running ‘Monopoly’ dark web drug market McLaren Health Care revealed that a data breach impacted 2.2 Virtual Kidnapping: AI Tools Are Enabling IRL Extortion Scams How a ‘Refund Fraud’ Gang Stole $700,000 From Amazon Info from 5.6

DDOS 129

DDOS Data breaches Ransomware Marketing 129

Security Affairs

MARCH 10, 2022

Cisco Talos researchers have uncovered a malware campaign targeting Ukraine’s IT Army , threat actors are using infostealer malware mimicking a DDoS tool called the “Liberator.” Liberator is advertised as a DDoS tool to launch attacks against “Russian propaganda websites.” Pierluigi Paganini.

DDOS 102

DDOS Malware Digital transformation Advertising 102

Security Affairs

JULY 7, 2024

GootLoader is still active and efficient Hackers stole OpenAI secrets in a 2023 security breach Hackers leak 170k Taylor Swift’s ERAS Tour Barcodes Polyfill.io GootLoader is still active and efficient Hackers stole OpenAI secrets in a 2023 security breach Hackers leak 170k Taylor Swift’s ERAS Tour Barcodes Polyfill.io

Data breaches 122

Data breaches Hacking Banking Spyware 122

Security Affairs

JUNE 20, 2021

Are the DDoS and the fire linked?

Data breaches 110

Data breaches DDOS Small Business Ransomware 110

Krebs on Security

FEBRUARY 25, 2021

came under a series of denial-of-service (DDoS) attacks aimed at knocking the service offline. “We have blocked at least five sustained, large-scale DDoS attacks originating from Nigeria trying to take our service down because we are blocking their fraud,” Hall said. in cybercrime forums, Telegram channels throughout 2020.

Scams 336

Scams Insurance DDOS Authentication 336

Security Affairs

FEBRUARY 3, 2019

Cobalt cybercrime gang abused Google App Engine in recent attacks. Law enforcement worldwide hunting users of DDoS-for-Hire services. Airbus data breach exposes some employeesdata. CookieMiner Mac Malware steals browser cookies and sensitive Data. Home Design website Houzz suffered a data breach.

DDOS 94

DDOS Data breaches Advertising Cybercrime 94

Security Affairs

SEPTEMBER 27, 2021

Many experts believe that the popular Telegram app is an efficient alternative to dark web marketplaces, its channels are used by hacking communities and cybercriminals to buy and sell stolen data, accesses to compromised infrastructure, and hacking tools. SecurityAffairs – hacking, cybercrime). Some channels have 10,000s of followers.”

Cybercrime 140

Cybercrime Hacking DDOS Mobile 140

Security Affairs

SEPTEMBER 22, 2023

A few days ago, the Pro-Russia group NoName057(16) announced to have launched DDoS attacks on several Canadian organizations, including CBSA, the Canadian Air Transport Security Authority, and the Senate. In August 2018, Air Canada suffered another data breach. reads the alert. million mobile app users.

DDOS 139

DDOS Data breaches Cyber Attacks Mobile 139

Security Affairs

FEBRUARY 19, 2023

Twitter will allow using the SMS-based two-factor authentication (2FA) only to its Blue subscribers GoDaddy discloses a new data breach Fortinet fixes critical vulnerabilities in FortiNAC and FortiWeb German airport websites hit by DDos attacks once again Cisco fixed critical RCE bug in ClamAV Open-Source Antivirus engine CISA adds Cacti, Office, Windows (..)

DDOS 98

DDOS Data breaches Ransomware Hacking 98

Security Affairs

MAY 14, 2023

ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million

Data breaches 98

Data breaches DDOS Ransomware Hacking 98

Security Affairs

DECEMBER 15, 2021

While investigating a data breach suffered by a healthcare organization, FBI accidentally revealed that it believes that the HelloKitty ransomware gang operates out of Ukraine. ” reads the notice of data breach published by the Oregon Anesthesiology Group. “Oregon Anesthesiology Group, P.C.

Ransomware 112

Ransomware Data breaches DDOS Healthcare 112

Security Affairs

MARCH 1, 2020

Raccoon Malware, a success case in the cybercrime ecosystem. Slickwraps discloses data leak that impacted 850,000 user accounts. Decathlon Spain data leak exposed Spanish employees’ data & more. Samsung leaked data of a few UK Customers. Silence Hacking Crew threatens Australian banks of DDoS attacks.

Banking 133

Banking Malware Advertising Ransomware 133

Security Affairs

JUNE 17, 2023

Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9 Margaret’s Health is the first hospital to cite a cyberattack as a reason for its closure A database containing data of +8.9

Data breaches 98

Data breaches DDOS Backups Firewall 98

SecureList

NOVEMBER 9, 2022

We can therefore expect that cybercrime groups from either block will feel safe to attack companies from the opposing side. And that (b) we are also likely to see a steep increase in DDoS extortion campaigns as the Cyberwar in Ukraine leads to all-time-high levels of DDoS attacks. Vulnerabilities in Autonomous Vehicles.

Cybersecurity 144

Cybersecurity Cyber Insurance Cybercrime IoT 144

Security Affairs

MAY 9, 2021

Experts found critical authentication bypass flaw in HPE Edgeline Infrastructure Manager UNC2529, a new sophisticated cybercrime gang that targets U.S.

Data breaches 102

Data breaches DDOS Hacking Cryptocurrency 102

Security Affairs

JUNE 25, 2023

Someone is sending mysterious smartwatches to the US Military personnel CISA orders govt agencies to fix recently disclosed flaws in Apple devices VMware fixed five memory corruption issues in vCenter Server Fortinet fixes critical FortiNAC RCE, install updates asap More than a million GitHub repositories potentially vulnerable to RepoJacking New Mirai (..)

DDOS 98

DDOS Cybercrime Spyware Hacking 98

Security Affairs

AUGUST 22, 2021

million customers Adobe addresses two critical vulnerabilities in Photoshop Hamburg’s data protection agency (DPA) states that using Zoom violates GDPR Kalay cloud platform flaw exposes millions of IoT devices to hack Fortinet FortiWeb OS Command Injection allows takeover servers remotely 1.9

Data breaches 106

Data breaches Mobile Ransomware Hacking 106

Security Affairs

FEBRUARY 23, 2025

CISA adds SonicWall SonicOS and Palo Alto PAN-OS flaws to its Known Exploited Vulnerabilities catalog Juniper Networks fixed a critical flaw in Session Smart Routers China-linked APT group Winnti targets Japanese organizations since March 2024 Xerox VersaLink C7025 Multifunction printer flaws may expose Windows Active Directory credentials to attackers (..)

Scams 67

Scams Malware Encryption Phishing 67

Security Affairs

MAY 21, 2023

X Master Password Dumper (CVE-2023-32784) Malware RapperBot DDoS Botnet Expands into Cryptojacking Newly identified RA Group compromises companies in U.S. X Master Password Dumper (CVE-2023-32784) Malware RapperBot DDoS Botnet Expands into Cryptojacking Newly identified RA Group compromises companies in U.S.

Data breaches 98

Data breaches Cybercrime Ransomware Hacking 98

Krebs on Security

JUNE 28, 2022

There is also ample evidence to suggest that Glupteba may have spawned Meris , a massive botnet of hacked Internet of Things (IoT) devices that surfaced in September 2021 and was responsible for some of the largest and most disruptive distributed denial-of-service (DDoS) attacks the Internet has ever seen. But on Dec. ru and alphadisplay[.]ru,

Passwords 321

Passwords Malware Internet Internet 321

SiteLock

AUGUST 27, 2021

These infections make sites vulnerable to takeovers, defacement and data breaches from bad actors looking to tarnish site reputations and turn a profit – and the costs can be devastating for businesses. In fact, the average data breach now costs businesses $1.9 Why are DDoS attacks so important to prevent?

DDOS 98

DDOS Backups Data breaches Firewall 98

Security Affairs

JULY 6, 2022

Just recently, the Conti ransomware group claimed to attack the Intelligence Agency in Peru and leaked their data which created a significant precedent in the security community. DDOS Secrets – another notable group of threat actors, has released 285,635 leaked emails from Nauru Police. SecurityAffairs – hacking, cybercrime ).

Hacking 139

Hacking Accountability DDOS Risk 139

Security Affairs

MARCH 26, 2023

Every week the best security articles from Security Affairs are free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here.

Data breaches 98

Data breaches DDOS Backups Hacking 98

Security Affairs

NOVEMBER 27, 2022

Data from 5.4M Data from 5.4M

DDOS 128

DDOS Cybercrime Cryptocurrency Ransomware 128

Security Affairs

MARCH 9, 2025

Cellebrite zero-day exploit used to target phone of Serbian student activist One in Four Cyberattacks in 2024 Traced to Infostealers, Huntress Reports Uncovering.NET Malware Obfuscated by Encryption and Virtualization Black Basta and Cactus Ransomware Groups Add BackConnect Malware to Their Arsenal Satori Threat Intelligence Disruption: BADBOX 2.0

Malware 67

Malware DDOS Hacking Ransomware 67

Security Affairs

JANUARY 26, 2020

Mitsubishi Electric discloses data breach, media blame China-linked APT. US-based childrens clothing maker Hanna Andersson discloses a data breach. For the second time in a few days, Greek Government websites hit by DDoS attacks. Citrix releases permanent fixes for CVE-2019-19781 flaw in ADC 11.1

Data breaches 114

Data breaches Antivirus Advertising DDOS 114

Security Affairs

JANUARY 30, 2022

QNAP force-installs update against the recent wave of DeadBolt ransomware infections US FCC bans China Unicom Americas telecom over national security risks NCSC warns UK entities of potential destructive cyberattacks from Russia Finnish diplomats’ devices infected with Pegasus spyware Zerodium offers $400,000 for Microsoft Outlook RCE zero-day exploits (..)

Data breaches 98

Data breaches Spyware Ransomware Cybercrime 98

Security Affairs

SEPTEMBER 24, 2023

Government of Bermuda blames Russian threat actors for the cyber attack City of Dallas has set a budget of $8.5

Cyber Attacks 123

Cyber Attacks Firewall Data breaches Telecommunications 123