Krebs on Security

FEBRUARY 5, 2023

A notorious hacker convicted of perpetrating tens of thousands of cybercrimes, Kivimäki had been in hiding since October 2022, when he failed to show up in court and Finland issued an international warrant for his arrest. The DDoS-for-hire service allegedly operated by Kivimäki in 2012. Kivimäki was 15 years old at the time.

Cybercrime 285

Cybercrime DDOS Hacking Accountability 285

Security Affairs

OCTOBER 9, 2023

A threat actor has leaked the source code for the first version of the HelloKitty ransomware on a Russian-speaking cybercrime forum. The availability of the source in the cybercrime ecosystem can allow threat actors to develop their own version of the Hello Kitty ransomware. The HelloKitty gang has been active since January 2021.

Cybercrime 140

Cybercrime Ransomware DDOS Encryption 140

SecureList

NOVEMBER 7, 2022

In Q3 2022, DDoS attacks were, more often than not, it seemed, politically motivated. As before, most news was focused on the conflict between Russia and Ukraine, but other high-profile events also affected the DDoS landscape this quarter. The attackers stated on Telegram that they were “testing a new DDoS method.”

DDOS 136

DDOS Computers and Electronics Internet Internet 136

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Court documents revealed that the man suffers from Asperger Syndrome and autism disorder. Court documents revealed that the man suffers from Asperger Syndrome and autism disorder.

DDOS 145

DDOS IoT Advertising Hacking 145

Security Affairs

JULY 8, 2022

In some of the attacks, threat actors used an Excel document named Nuclear.xls, suggesting an alarming lure. Once opened, the document downloads a WinRAR self-extracting archive (SFX) that delivers the AnchorMail backdoor to the victim’s system. Experts also observed attacks dropping IcedID and CobaltStrike. Pierluigi Paganini.

Cybercrime 115

Cybercrime Malware DDOS Ransomware 115

Krebs on Security

MAY 13, 2024

This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years. was used by a Russian-speaking member called Pin on the English-language cybercrime forum Opensc. Dmitry Yuryevich Khoroshev.

Cybercrime 323

Cybercrime Ransomware Accountability Malware 323

Herjavec Group

AUGUST 26, 2021

We can learn a lot from the cybercrime of the past…the history of cybercrime is a glimpse into what we can expect in the future. In the past 18 months, we’ve experienced the beginning of an era that has seen cybersecurity and cybercrime at the center of it all. Dateline Cybercrime . Robert Herjavec.

Cybercrime 135

Cybercrime Computers and Electronics Hacking Banking 135

Krebs on Security

FEBRUARY 26, 2019

Sergei Mikhailov , formerly deputy chief of Russia’s top anti-cybercrime unit, was sentenced today to 22 years in prison. In 2013, Vrublevsky was convicted of hiring his most-trusted spammer and malware writer to launch a crippling distributed denial-of-service (DDoS) attack against one of his company’s chief competitors.

Cybersecurity 270

Cybersecurity Cybercrime Media Antivirus 270

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime 145

Cybercrime Banking Malware Ransomware 145

Malwarebytes

FEBRUARY 10, 2023

At the end of January, the Health Sector Cybersecurity Coordination Center warned that the KillNet group is actively targeting the US healthcare sector with distributed denial-of-service (DDoS) attacks. The Cybersecurity and Infrastructure Security Agency (CISA) says it helped dozens of hospitals respond to these DDoS incidents.

DDOS 97

DDOS Healthcare Computers and Electronics Government 97

Security Affairs

OCTOBER 16, 2021

TrickBot operators are back and expand the distribution channels with partnership with cybercrime affiliates. The gang support other cybercrime groups such as known Hive0105, Hive0106 (aka TA551 or Shathak), and Hive0107, supporting them in expanding their malware campaigns. ” reads the post published by IBM X-Force.

Malware 133

Malware Cybercrime DDOS Social Engineering 133

Security Affairs

MAY 16, 2021

Avaddon ransomware gang made the headlines again, the cybercrime gang has breached the France-based financial consultancy firm Acer Finance. The Avaddon ransomware gang is giving Acer Finance 240 hours to communicate and cooperate with them before start leaking the stolen valuable company documents.

Hacking 144

Hacking Ransomware DDOS Manufacturing 144

Security Affairs

JUNE 25, 2019

Court documents refer to the hacktivist as a Brecht S., the police raided his house and investigated into his computer and electronic devices revealing a long cybercrime activity. The member of Anonymous was also involved in DDoS attacks against online banking system of the Crelan Bank that shut down the portal on numerous occasions.

DDOS 111

DDOS Computers and Electronics Banking Cybercrime 111

Krebs on Security

FEBRUARY 25, 2021

“We’ve seen [videos] of people in nursing homes, where folks off camera are speaking for them and holding up documents.” came under a series of denial-of-service (DDoS) attacks aimed at knocking the service offline. in cybercrime forums, Telegram channels throughout 2020. protections. Mentions of id.me

Scams 342

Scams DDOS Insurance Authentication 342

Security Affairs

SEPTEMBER 29, 2022

The Chaos malware includes capabilities previously documented in the original Kaiji Linux botnet. “Chaos functionality includes the ability to enumerate the host environment, run remote shell commands, load additional modules, automatically propagate through stealing and brute forcing SSH private keys, as well as launch DDoS attacks.”

Malware 124

Malware DDOS Architecture Financial Services 124

Security Affairs

SEPTEMBER 4, 2019

Kenneth Currin Schuchman (21) from Vancouver, Washington pleaded guilty to creating and operating multiple DDoS IoT botnet , including Satori. Kenneth Currin Schuchman (21) from Vancouver, Washington, aka Nexus Zeta, pleaded guilty to creating and operating multiple DDoS IoT botnets. SecurityAffairs – Satori, cybercrime).

IoT 106

IoT DDOS Internet Internet 106

Security Affairs

DECEMBER 8, 2021

The Moobot was first documented by Palo Alto Unit 42 researchers in February 2021, the recent attacks demonstrated that its authors are enhancing their malware. It tries to drop a downloader that exhibits infection behavior and that also executes Moobot, which is a DDoS botnet based on Mirai.”

Firmware 144

Firmware DDOS Malware IoT 144

SecureList

NOVEMBER 9, 2022

We can therefore expect that cybercrime groups from either block will feel safe to attack companies from the opposing side. And that (b) we are also likely to see a steep increase in DDoS extortion campaigns as the Cyberwar in Ukraine leads to all-time-high levels of DDoS attacks.

Cybersecurity 144

Cybersecurity Cyber Insurance Cybercrime IoT 144

Security Affairs

MARCH 1, 2020

Raccoon Malware, a success case in the cybercrime ecosystem. Silence Hacking Crew threatens Australian banks of DDoS attacks. Data on Detection of Malicious Documents in Gmail are impressive. FBI recommends using passphrases instead of complex passwords. FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019.

Banking 133

Banking Malware Advertising Ransomware 133

Security Affairs

OCTOBER 11, 2020

.” In the past, the US Census has been hit by attacks, such as hacks and DDoS attacks during a 2018 test of census systems attributed to Russia-linked hackers and a 2015 hack attributed to the Anonymous collective. The HTA report warns of an intensification of malicious activities conducted by both nation-states and cybercrime groups.

Government 145

Government Advertising Hacking Data collection 145

Krebs on Security

JUNE 28, 2022

There is also ample evidence to suggest that Glupteba may have spawned Meris , a massive botnet of hacked Internet of Things (IoT) devices that surfaced in September 2021 and was responsible for some of the largest and most disruptive distributed denial-of-service (DDoS) attacks the Internet has ever seen. But on Dec.

Passwords 329

Passwords Malware Internet Internet 329

Security Affairs

JUNE 15, 2022

PrivacyAffairs released the Dark Web Index 2022, the document provides the prices for illegal services/products available in the black marketplaces. The document updates the information provided in the Dark Web Index 2022 report. These documents could be used to conduct scams and identity theft.

Identity Theft 98

Identity Theft Accountability DDOS Cybercrime 98

Security Affairs

NOVEMBER 4, 2022

Threats against availability: Largest Denial of Service (DDoS) attack ever was launched in Europe in July 2022; Internet: destruction of infrastructure, outages and rerouting of internet traffic. Cybercrime actors. Threats against data: Increasing in proportionally to the total of data produced. Hacker-for-hire actors. Hacktivists.

Cyber threats 142

Cyber threats Phishing Social Engineering Ransomware 142

Security Affairs

MARCH 27, 2021

The new technique aims at making the double-extortion tactic more efficient, crooks sent emails directly to victims’ customers found in documents stolen during the ransomware attack. According to BleepingComputer, the first victim threatened with this new tactic was Flagstar Bank followed by the University of Colorado.

Ransomware 138

Ransomware DDOS Banking Hacking 138

BH Consulting

FEBRUARY 24, 2025

At the end of January, police forces from eight countries took down two of the worlds largest cybercrime forums. Europol, which supported the forum takedowns, also published three reports : one, into the challenges in cybercrime and investigations involving digital evidence. MORE DDoS attacks: they havent gone away, you know.

Cyber Insurance 59

Cyber Insurance Insurance Ransomware Artificial Intelligence 59

Security Affairs

DECEMBER 21, 2021

In November, researchers from Qihoo 360’s Netlab security team spotted the Abcbot botnet that was targeting Linux systems to launch distributed denial-of-service (DDoS) attacks. An early version of the bot was initially documented in October by Trend Micro researchers.

DDOS 145

DDOS Malware Hacking Cybercrime 145

Security Affairs

DECEMBER 15, 2021

According to the alert, the ransomware gang is launching distributed denial-of-service (DDoS) attacks as part of its extortion activities. The ransomware gang targets their victims’ websites with DDoS attacks if they refuse to pay the ransom.

Ransomware 111

Ransomware Data breaches DDOS Healthcare 111

Security Affairs

JANUARY 10, 2022

Experts linked the infrastructure used by the Abcbot DDoS botnet to the operations of a cryptocurrency-mining botnet that was uncovered in December 2020. In November Researchers from Qihoo 360’s Netlab security team have spotted a new botnet, tracked as Abcbot, that targets Linux systems to launch distributed denial-of-service (DDoS) attacks.

Cryptocurrency 111

Cryptocurrency DDOS Malware Software 111

Security Affairs

SEPTEMBER 7, 2022

The Mirai -based Moobot botnet was first documented by Palo Alto Unit 42 researchers in February 2021, in November 2021, it started exploiting a critical command injection flaw ( CVE-2021-36260 ) in the webserver of several Hikvision products. .” ” At the time of the analysis, the C2 server was offline. Pierluigi Paganini.

DDOS 113

DDOS Encryption Passwords Hacking 113

Security Affairs

APRIL 30, 2023

ViperSoftX uses more sophisticated encryption and anti-analysis techniques Atomic macOS Stealer is advertised on Telegram for $1,000 per month CISA warns of a critical flaw affecting Illumina medical devices OpenAI reinstates ChatGPT service in Italy after meeting Garante Privacy’s demands Cisco discloses a bug in the Prime Collaboration Deployment (..)

Cybercrime 98

Cybercrime Malware Hacking Accountability 98

Responsible Cyber

APRIL 8, 2020

As cybercrime has become well-funded and increasingly sophisticated, phishing remains one of the most effective methods used by criminals to introduce malware into businesses. DDoS Attacks. Distributed Denial of Service (DDoS) attacks have overwhelmed some of the largest websites in the world, including Reddit, Twitter, and Netflix.

Cybersecurity 98

Cybersecurity DDOS Small Business Phishing 98

Security Affairs

FEBRUARY 5, 2021

In January 2021, the cybercrime gang launched a new campaign targeting Kubernetes environments with the Hildegard malware, Palo Alto Networks warns. “TeamTNT is known for exploiting unsecured Docker daemons and deploying malicious container images, as documented in previous research ( Cetus , Black-T and TeamTNT DDoS ).

Malware 120

Malware DNS Cryptocurrency Internet 120

Security Affairs

APRIL 1, 2019

The popular expert unixfreaxjp analyzed a new China ELF DDoS’er malware tracked as “Linux/DDoSMan” that evolves from the Elknot malware to deliver new ELF bot. The code seems inspired from multiple source code of China basis DDoS client, like Elknot. Figure 2: The C2 software for Linux DDoS. On the MMD blog.

DDOS 110

DDOS Malware Encryption Penetration Testing 110

Security Affairs

APRIL 3, 2023

The ShellBot , also known as PerlBot, is a Perl-based DDoS bot that uses IRC protocol for C2 communications. The three variants can launch distributed denial-of-service (DDoS) attacks, PowerBots (C) GohacK and B0tchZ 0.2a Compromised victims can be controlled and used as DDoS bots after receiving a command from a C2 server.

DDOS 98

DDOS Malware Hacking Education 98

SecureList

JULY 28, 2022

We found links to previously observed cybercrime activities, new, formerly unknown samples used by the attackers during post-exploitation activities, a wealth of recent information about C2 infrastructure and the latest samples distributed to compromise victims. After the initial infection, a Visual Basic script was delivered to the victim.

Malware 145

Malware Firmware Phishing Cryptocurrency 145

Security Affairs

DECEMBER 15, 2024

CISA adds Cleo Harmony, VLTrader, and LexiCom flaw to its Known Exploited Vulnerabilities catalog German agency BSI sinkholed a botnet of 30,000 devices infected with BadBox U.S.

Firewall 64

Firewall Spyware Surveillance Cybercrime 64

Security Affairs

OCTOBER 19, 2023

During the reporting period, key findings include: DDoS and ransomware rank the highest among the prime threats, with social engineering, data related threats, information manipulation, supply chain, and malware following.

Social Engineering 134

Social Engineering Artificial Intelligence Engineering Ransomware 134