Cybercrime, DDOS and Hacking - Cyber Security Informer

Three Top Russian Cybercrime Forums Hacked

Krebs on Security

MARCH 4, 2021

Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. A note posted by a Verified forum administrator concerning the hack of its registrar in January. The forum was hacked through the domain registrar.

Cybercrime

Cybercrime Hacking Passwords Accountability

UK Ad Campaign Seeks to Deter Cybercrime

Krebs on Security

MAY 28, 2020

The United Kingdom’s anti-cybercrime agency is running online ads aimed at young people who search the Web for services that enable computer crimes, specifically trojan horse programs and DDoS-for-hire services. law enforcement agents in connection with various cybercrime investigations. FLATTENING THE CURVE.

Cybercrime

Cybercrime DDOS Advertising Hacking

Unraveling the truth behind the DDoS attack from electric toothbrushes

Security Affairs

FEBRUARY 8, 2024

Several media reported that three million electric toothbrushes were compromised and recruited into a DDoS botnet. The Swiss newspaper Aargauer Zeitung first published the news of a DDoS attack, carried out on January 30, that involved three million compromised electric toothbrushes. Is it true? What the f is wrong with you people????

DDOS

DDOS IoT Media Internet

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Krebs on Security

APRIL 30, 2024

A 26-year-old Finnish man was sentenced to more than six years in prison today after being convicted of hacking into an online psychotherapy clinic, leaking tens of thousands of patient therapy records, and attempting to extort the clinic and patients. After being charged with the attack in October 2022, Kivimäki fled the country.

DDOS

DDOS Cybercrime Hacking Passwords

Career Choice Tip: Cybercrime is Mostly Boring

Krebs on Security

MAY 29, 2020

But new research suggests that as cybercrime has become dominated by pay-for-service offerings, the vast majority of day-to-day activity needed to support these enterprises is in fact mind-numbingly boring and tedious, and that highlighting this reality may be a far more effective way combat cybercrime and steer offenders toward a better path.

Cybercrime

Cybercrime System Administration Marketing Malware

Law enforcement shutdown a long-standing DDoS-for-hire service

Security Affairs

JUNE 17, 2023

Polish police, as part of the international law enforcement operation PowerOFF, dismantled a DDoS-for-hire service that has been active since at least 2013. An international operation codenamed PowerOff led to the shutdown of a DDoS-for-hire service that has been active since at least 2013. Viewer discretion is advised.

DDOS

DDOS Computers and Electronics Cybercrime Cryptocurrency

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Security Affairs

OCTOBER 9, 2023

A threat actor has leaked the source code for the first version of the HelloKitty ransomware on a Russian-speaking cybercrime forum. The availability of the source in the cybercrime ecosystem can allow threat actors to develop their own version of the Hello Kitty ransomware. The HelloKitty gang has been active since January 2021.

Cybercrime

Cybercrime Ransomware DDOS Encryption

Hackers breached four prominent underground cybercrime forums

Security Affairs

MARCH 6, 2021

A suspicious wave of attacks resulted in the hack of four cybercrime forums Verified, Crdclub, Exploit, and Maza since January. Since January, a series of mysterious cyberattacks that resulted in the hack of popular Russian-language cybercrime forums. ” reads the post published by threat intelligence firm Intel 471.

Cybercrime

Cybercrime DDOS Hacking Passwords

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. SecurityAffairs – hacking, Enemybot).

DDOS

DDOS Architecture Malware Cybercrime

Dutch police warn customers of a popular DDoS booter service

Security Affairs

OCTOBER 13, 2021

Dutch police warn customers of a distributed denial-of-service (DDoS) website of stopping using the service to avoid prosecution. Dutch police warn customers of a booter service, abused to carry out distributed denial-of-service (DDoS) attacks, of to stop using it to avoid prosecution. by carrying out DDoS attacks on March 19.

DDOS

DDOS Cybercrime IoT Hacking

The Dutch police took down 15 DDoS-for-hire services in a week

Security Affairs

APRIL 13, 2020

Dutch authorities have taken down 15 DDoS-for-hire services in a week, this is another success of law enforcement in the fight against cybercrime. An operation conducted by Dutch authorities last week has shut down 15 DDoS-for-hire services (aka DDoS booters or DDoS stressor), states a press release published by Dutch police.

DDOS

DDOS Cybercrime Advertising Government

HelloKitty ransomware gang also targets victims with DDoS attacks

Security Affairs

NOVEMBER 1, 2021

According to the alert, the ransomware gang is launching distributed denial-of-service (DDoS) attacks as part of its extortion activities. In some cases, if the victim does not respond quickly or does not pay the ransom, the threat actors will launch a Distributed Denial of Service (DDoS) attack on the victim company’s public facing website.”

DDOS

DDOS Ransomware Cybercrime Encryption

Diicot cybercrime gang expands its attack capabilities

Security Affairs

JUNE 19, 2023

Cado researchers recently detected an interesting attack pattern linked to an emerging cybercrime group tracked as Diicot (formerly, “Mexals”) and described in analyses published by Akamai and Bitdefender. Evidence collected by Cado suggests the deployment of a botnet having DDoS capabilities.

Cybercrime

Cybercrime DDOS Internet Internet

Cloudflare blocked a 2.5 Tbps DDoS attack aimed at the Minecraft server

Security Affairs

OCTOBER 13, 2022

Cloudflare mitigated a record distributed denial-of-service (DDoS) attack against Wynncraft, one of the largest Minecraft servers. Cloudflare announced it has mitigated a record distributed denial-of-service (DDoS) attack against Wynncraft, one of the largest Minecraft servers. SecurityAffairs – hacking, Mirai).

DDOS

DDOS Threat Reports Hacking Cybercrime

Fake DDoS services set up to trap cybercriminals

Malwarebytes

MARCH 27, 2023

The “online criminal marketplace” has been disrupted via several fake Distributed Denial of Service (DDoS) tools, according to an announcement from The British National Crime Agency (NCA). Some folks register on hacking sites and services out of curiosity. This is the case with DDoS tools.

DDOS

DDOS Cybercrime Marketing Accountability

Fortinet warns of a spike of the activity linked to AndoryuBot DDoS botnet

Security Affairs

MAY 9, 2023

A DDoS botnet dubbed AndoryuBot has been observed exploiting an RCE, tracked as CVE-2023-25717, in Ruckus access points. The activity is associated with a known DDoS botnet tracked as AndoryuBot that first appeared in February 2023. The bot supports multiple DDoS attack techniques and uses SOCKS5 proxies for C2 communications.

DDOS

DDOS Wireless Architecture Advertising

Cloudflare blocked record-breaking 71 million request-per-second DDoS attack

Security Affairs

FEBRUARY 14, 2023

Cloudflare mitigated a record distributed denial-of-service (DDoS) that reached 71 Million requests per second. Cloudflare announced it has mitigated a record hyper-volumetric distributed denial-of-service (DDoS) attack that peaked at over 71 million requests per second (RPS). “This was a weekend of record-breaking DDoS attacks.

DDOS

DDOS Threat Reports Healthcare Cryptocurrency

FBI seized 13 domains linked to DDoS-for-hire platforms

Security Affairs

MAY 9, 2023

DoJ announced the seizure of 13 new domains associated with DDoS-for-hire platforms as part of Operation PowerOFF. Justice Department announced the seizure of 13 domains linked to DDoS-for-hire services as part of a coordinated international law enforcement effort known as Operation PowerOFF. com, ragebooter(.)com, com, downthem(.)org

DDOS

DDOS Internet Internet Hacking

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

Security Affairs

OCTOBER 11, 2023

A Mirai-based DDoS botnet tracked as IZ1H9 has added thirteen new exploits to target routers from different vendors, including D-Link, Zyxel, and TP-Link. The botnet supports multiple DDoS attacks, including UDP, HTTP Flood, UDP Plain, and TCP SYN. ” reads the analysis published by Fortinet. ” concludes the analysis.

DDOS

DDOS Wireless Architecture IoT

NCA infiltrates the cybercriminal underground with fake DDoS-for-hire sites

Security Affairs

MARCH 25, 2023

National Crime Agency (NCA) revealed that it has set up a number of fake DDoS-for-hire sites to infiltrate the online criminal underground. The UK National Crime Agency announced it has infiltrated the online criminal marketplace by setting up several sites purporting to offer DDoS-for-hire services. In December, the U.S.

DDOS

DDOS Marketing Hacking Cybercrime

FBI seized 48 domains linked to DDoS-for-Hire service platforms

Security Affairs

DECEMBER 15, 2022

Department of Justice (DoJ) seized forty-eight domains that offered DDoS-for-Hire Service Platforms to crooks. Department of Justice (DoJ) this week announced the seizure of 48 domains associated with the DDoS-for-Hire Service platforms (aka Booter services) used by threat actors. SecurityAffairs – hacking, DDoS).

DDOS

DDOS Internet Internet Education

Cloudflare mitigated the largest ever volumetric DDoS attack to date

Security Affairs

AUGUST 20, 2021

Web infrastructure and website security company Cloudflare announced to have mitigated the largest ever volumetric DDoS attack to date. Cloudflare, the web infrastructure and website security company, announced that it has mitigated the largest ever volumetric distributed denial of service (DDoS) attack to date.

DDOS

DDOS Telecommunications Internet Internet

New evolving Abcbot DDoS botnet targets Linux systems

Security Affairs

NOVEMBER 13, 2021

Qihoo 360’s Netlab detailed a new evolving DDoS botnet called Abcbot with wormable capabilities that targets Linux systems. Researchers from Qihoo 360’s Netlab security team have spotted a new botnet, tracked as Abcbot, that targets Linux systems to launch distributed denial-of-service (DDoS) attacks. Pierluigi Paganini.

DDOS

DDOS Malware Passwords Cryptocurrency

Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date

Security Affairs

NOVEMBER 15, 2021

Cloudflare announced to have mitigated a distributed denial-of-service (DDoS) attack that peaked at almost 2 terabytes per second (Tbps). is an American web infrastructure and website security company that provides content delivery network and DDoS mitigation services. SecurityAffairs – hacking, DDoS). Cloudflare, Inc.

DDOS

DDOS DNS IoT Internet

Security Service of Ukraine arrested a man operating a huge DDoS botnet

Security Affairs

OCTOBER 11, 2021

Ukrainian police arrested a cybercriminal who controlled a botnet composed of 100,000 devices that was available for rent to launch DDoS attacks. Security Service of Ukraine (SSU) has arrested a hacker who controlled a DDoS botnet composed of 100,000 devices that was available for rent. SecurityAffairs – hacking, cybercrime).

DDOS

DDOS Computers and Electronics Cybercrime Advertising

A new botnet named M?ris is behind massive DDoS attack that hit Yandex

Security Affairs

SEPTEMBER 9, 2021

The massive DDoS attack that has been targeting the internet giant Yandex was powered b a completely new botnet tracked as M?ris. The record magnitude of the massive DDoS attack was also confirmed by the US company Cloudflare, which specializes in the protection against such kinds of attacks. technique for DDoS attacks.

DDOS

DDOS Internet Internet IoT

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

Security Affairs

MARCH 7, 2021

The REvil ransomware operators are using DDoS attacks and voice calls to journalists and victim’s business partners to force victims to pay the ransom. Malware #Ransomware #REvil REvil Ransomware launched a service for contact to news media, companies for the best pressure at no cost, and DDoS (L3, L7) as a paid service.

DDOS

DDOS Ransomware Media Malware

German police seized the darknet marketplace Nemesis Market

Security Affairs

MARCH 23, 2024

An operation conducted by the Federal Criminal Police Office in Germany (BKA) and the Frankfurt cybercrime combating unit (ZIT) led to the seizure of the infrastructure of the darknet marketplace Nemesis Market in Germany and Lithuania. Crimemarket was a prominent platform for trading illegal drugs, narcotics, and cybercrime services.

Marketing

Marketing Cybercrime DDOS Internet

Yandex is under the largest DDoS attack in the history of Runet

Security Affairs

SEPTEMBER 9, 2021

The Russian internet service provider Yandex is under a massive distributed denial-of-service (DDoS) attack that began last week. The record magnitude of the massive DDoS attack was also confirmed by the US company Cloudflare, which specializes in the protection against such kinds of attacks. SecurityAffairs – hacking, DDoS).

DDOS

DDOS Internet Internet Firmware

New Condi DDoS botnet targets TP-Link Wi-Fi routers

Security Affairs

JUNE 21, 2023

“FortiGuard Labs encountered recent samples of a DDoS -as-a-service botnet calling itself Condi. The malware compromises the devices to build a distributed denial-of-service (DDoS) botnet. ” reads the report published by Fortinet. ” The CVE-2023-1389 flaw exploited by the bot is a command injection vulnerability.

DDOS

DDOS Malware Advertising Hacking

KmsdBot, a new evasive bot for cryptomining activity and DDoS attacks

Security Affairs

NOVEMBER 14, 2022

The malware was employed in cryptocurrency mining campaigns and to launch denial-of-service (DDoS) attacks. The first DDoS attack observed by Akamai targeted a gaming company named FiveM , which allows gamers to host custom private servers for Grand Theft Auto Online. SecurityAffairs – hacking, KmsdBot).

DDOS

DDOS Malware Cryptocurrency Architecture

Fake DDoS protection pages on compromised WordPress sites lead to malware infections

Security Affairs

AUGUST 21, 2022

Threat actors compromise WordPress sites to display fake Cloudflare DDoS protection pages to distribute malware. DDoS Protection pages are associated with browser checks performed by WAF/CDN services which verify if the site visitor is a human or a bot. The file poses as a tool required to bypass the DDoS verification.

DDOS

DDOS Malware Antivirus Firewall

Developer of DDoS Mirai based botnets sentenced to prison

Security Affairs

JUNE 26, 2020

A man accused to have developed distributed denial of service (DDoS) botnets based on the Mirai botnet was sentenced to 13 months in federal prison. Schuchman compromised hundreds of thousands of IoT devices, including home routers and IP cameras, to create multiple DDoS IoT botnets that he rented to carry out the attacks.

DDOS

DDOS IoT Advertising Internet

News Alert: HostingAdvice poll finds one in three Americans hacked upon visiting sketchy websites

The Last Watchdog

JULY 18, 2023

July 18, 2022 – Around 30,000 websites get hacked every day , with the majority of those cyberattacks due to human error. This has projected costs associated with cybercrimes to hit the tens of trillions by 2025, highlighting the vital need for web hosts to implement staunch security. Gainesville, Fla.,

Hacking

Hacking DDOS Small Business Spyware

Russian Cybercrime Trickbot Group is systematically attacking Ukraine

Security Affairs

JULY 8, 2022

Ukraine has been targeted with a wide variety of cyber activity leading up to and since the invasion, including distributed-denial-of-service (DDoS) attacks and defacements and attempted destructive activity attributed to Russian state-sponsored actors.” SecurityAffairs – hacking, Ukraine). ” concludes IBM.

Cybercrime

Cybercrime Malware DDOS Ransomware

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Krebs on Security

SEPTEMBER 10, 2021

On Thursday evening, KrebsOnSecurity was the subject of a rather massive (and mercifully brief) distributed denial-of-service (DDoS) attack. But on Thursday DDoS protection firm Qrator Labs identified the culprit — “Meris” — a new IoT monster that first emerged at the end of June 2021. In its Aug. Image: Qrator.

IoT

IoT DDOS Internet Internet

Finland’s Most-Wanted Hacker Nabbed in France

Krebs on Security

FEBRUARY 5, 2023

A notorious hacker convicted of perpetrating tens of thousands of cybercrimes, Kivimäki had been in hiding since October 2022, when he failed to show up in court and Finland issued an international warrant for his arrest. The DDoS-for-hire service allegedly operated by Kivimäki in 2012. Kivimäki was 15 years old at the time.

Cybercrime

Cybercrime DDOS Hacking Accountability

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Security Affairs

NOVEMBER 10, 2023

After ChatGPT, Anonymous Sudan took down the Cloudflare website with a distributed denial-of-service (DDoS) attack. The hacktivist group Anonymous Sudan claimed responsibility for the massive distributed denial-of-service (DDoS) attack that took down the website of Cloudflare. “ To be clear, there was no Cloudflare breach.

DDOS

DDOS Cryptocurrency Accountability Media

Who’s Hacking You?

Webroot

MARCH 9, 2021

One of the reasons why there’s so much cybercrime is because there are so many ways for cybercriminals to exploit vulnerabilities and circumvent even the best defenses. Take a deep dive into the three main hacker types and get tips on how to defend against them by downloading the e-book, Hacker Personas: a deeper Look Into Cybercrime.

Hacking

Hacking DNS Surveillance Cybercrime

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. The year 2016 saw banks in Russia hacked one after another.

Cybercrime

Cybercrime Banking Malware Ransomware

The operator of DDoS-for-hire service pleads guilty

Security Affairs

MARCH 3, 2019

Usatyuk developed and operated other DDoS-for-hire services with a co-conspirator between August 2015 and November 2017. The list of illegal DDoS-for-hire services operated by the man includes ExoStress.in (“ ExoStresser ”), QuezStresser.com, Betabooter.com (“ Betabooter ”), Databooter.com, Instabooter.com, Polystress.com, and Zstress.net.

DDOS

DDOS Advertising Cybercrime Cyber Attacks

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition

Security Affairs

JUNE 25, 2023

Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition appeared first on Security Affairs.

DDOS

DDOS Cybercrime Spyware Malware

Database, source code allegedly related to bulletproof hosting, once Parler’s service provider, up for sale on hacker forum

Security Affairs

JUNE 2, 2021

Group-IB discovered a database allegedly belonging to a bulletproof hosting provider DDoS-Guard posted for sale on a cybercrime forum. The database supposedly contains information about DDoS-Guard’s customers, including their names, IP-addresses, and payment information. SecurityAffairs – hacking, DDoS-Guard).

DDOS

DDOS Cybercrime Authentication Accountability

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Security Affairs

MAY 16, 2021

Avaddon ransomware gang made the headlines again, the cybercrime gang has breached the France-based financial consultancy firm Acer Finance. The hackers pointed out that there is no way to decrypt data without their decryptor, they also threatened the company to target it with a DDoS attack in case they will refuse to pay the ransom.

Hacking

Hacking Ransomware DDOS Healthcare

Three Top Russian Cybercrime Forums Hacked

UK Ad Campaign Seeks to Deter Cybercrime

Trending Sources

Unraveling the truth behind the DDoS attack from electric toothbrushes

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

Career Choice Tip: Cybercrime is Mostly Boring

Law enforcement shutdown a long-standing DDoS-for-hire service

The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum

Hackers breached four prominent underground cybercrime forums

Enemybot, a new DDoS botnet appears in the threat landscape

Dutch police warn customers of a popular DDoS booter service

The Dutch police took down 15 DDoS-for-hire services in a week

HelloKitty ransomware gang also targets victims with DDoS attacks

Diicot cybercrime gang expands its attack capabilities

Cloudflare blocked a 2.5 Tbps DDoS attack aimed at the Minecraft server

Fake DDoS services set up to trap cybercriminals

Fortinet warns of a spike of the activity linked to AndoryuBot DDoS botnet

Cloudflare blocked record-breaking 71 million request-per-second DDoS attack

FBI seized 13 domains linked to DDoS-for-hire platforms

Mirai-based DDoS botnet IZ1H9 added 13 payloads to target routers

NCA infiltrates the cybercriminal underground with fake DDoS-for-hire sites

FBI seized 48 domains linked to DDoS-for-Hire service platforms

Cloudflare mitigated the largest ever volumetric DDoS attack to date

New evolving Abcbot DDoS botnet targets Linux systems

Cloudflare mitigated 2 Tbps DDoS attack, the largest attack it has seen to date

Security Service of Ukraine arrested a man operating a huge DDoS botnet

A new botnet named M?ris is behind massive DDoS attack that hit Yandex

REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims

German police seized the darknet marketplace Nemesis Market

Yandex is under the largest DDoS attack in the history of Runet

New Condi DDoS botnet targets TP-Link Wi-Fi routers

KmsdBot, a new evasive bot for cryptomining activity and DDoS attacks

Fake DDoS protection pages on compromised WordPress sites lead to malware infections

Developer of DDoS Mirai based botnets sentenced to prison

News Alert: HostingAdvice poll finds one in three Americans hacked upon visiting sketchy websites

Russian Cybercrime Trickbot Group is systematically attacking Ukraine

KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

Finland’s Most-Wanted Hacker Nabbed in France

After ChatGPT, Anonymous Sudan took down the Cloudflare website

Who’s Hacking You?

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

The operator of DDoS-for-hire service pleads guilty

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition

Database, source code allegedly related to bulletproof hosting, once Parler’s service provider, up for sale on hacker forum

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Stay Connected