Security Affairs

OCTOBER 3, 2022

The Italian luxury sports car manufacturer Ferrari confirmed the availability of internal documents online, but said it has no evidence of cyber attack. Documents belonging to the Italian luxury sports car manufacturer Ferrari are circulating online, the company confirmed their authenticity stating it is not aware of cyber attacks.

Hacking 116

Hacking Manufacturing Cyber Attacks Ransomware 116

Krebs on Security

MAY 16, 2019

The locations of alleged GozNym cybercrime group members. According to the indictment, the GozNym network exemplified the concept of ‘cybercrime as a service,’ in that the defendants advertised their specialized technical skills and services on underground, Russian-language, online criminal forums. Source: DOJ.

Cybercrime 181

Cybercrime Banking Small Business Computers and Electronics 181

Security Affairs

SEPTEMBER 16, 2022

Uber on Thursday disclosed a security breach, threat actors gained access to its network, and stole internal documents. Uber on Thursday suffered a cyberattack, the attackers were able to penetrate its internal network and access internal documents, including vulnerability reports. — Uber Comms (@Uber_Comms) September 16, 2022.

Hacking 136

Hacking Data breaches Engineering Information Security 136

Security Affairs

MARCH 17, 2020

Security experts from vpnMentor have discovered two corporate finance companies that leak half a million legal and financial documents online. vpnMentor experts uncovered a database exposed online on Amazon Web Services (AWS) that is leaking a huge amount of sensitive legal and financial documents. Pierluigi Paganini.

Banking 113

Banking Financial Services Advertising Cybercrime 113

WIRED Threat Level

AUGUST 30, 2023

A WIRED investigation into a cache of documents posted by an unknown figure lays bare the Trickbot ransomware gang’s secrets, including the identity of a central member.

Cybercrime 105

Cybercrime Ransomware Hacking 105

Security Affairs

APRIL 10, 2020

DoppelPaymer hackers leaked online internal confidential documents belonging to some of the largest aerospace companies in the world. The gang behind the DoppelPaymer ransomware has stolen internal confidential documents belonging to some of the largest aerospace companies in the world from the industrial contractor Visser Precision.

Manufacturing 102

Manufacturing Ransomware Advertising Cybercrime 102

Security Boulevard

APRIL 7, 2022

Germany’s Federal Criminal Police Office and Central Office for Combating Cybercrime announced this week that they confiscated the Hydra server infrastructure after extensive investigations into the cybercrime forum since August 2021. The post Hydra Cybercrime Forum Shut Down | Avast appeared first on Security Boulevard.

Cybercrime 52

Cybercrime Cryptocurrency Network Security 52

We Live Security

JANUARY 13, 2021

The documents related to COVID-19 vaccine and medications were stolen from the EU's medicines agency last month. The post Hackers leak stolen COVID‑19 vaccine documents appeared first on WeLiveSecurity.

Cybercrime 98

Cybercrime 98

Security Affairs

JULY 8, 2022

In some of the attacks, threat actors used an Excel document named Nuclear.xls, suggesting an alarming lure. Once opened, the document downloads a WinRAR self-extracting archive (SFX) that delivers the AnchorMail backdoor to the victim’s system. Experts also observed attacks dropping IcedID and CobaltStrike. Pierluigi Paganini.

Cybercrime 98

Cybercrime Malware DDOS Ransomware 98

Security Boulevard

JULY 28, 2022

Emotet is a Windows-based malware loader operated by the cybercrime group TA542 ( 1 ), also referred to as Mummy Spider ( 2 ). Microsoft Office XLS Document Executes Obfuscated Excel 4.0 The first stage of an attack likely begins with a spam email delivering a Microsoft Office XLS document as an attachment. Background.

Encryption 59

Encryption Malware Phishing Cybercrime 59

Malwarebytes

JULY 19, 2022

This data includes identification documents, spreadsheets related to Roblox creators, and various email addresses. At time of writing, there’s no specifics with regard to the “identification documents” This could mean driving licence, passport, employee ID scan…we simply don’t know at the moment.

Accountability 97

Accountability Phishing Hacking Ransomware 97

Security Affairs

NOVEMBER 3, 2022

The Sentinel Labs’s analysis revealed that Black Basta ransomware operators develop and maintain their own toolkit, they documented only collaboration with a limited and trusted set of affiliates. The post Experts link the Black Basta ransomware operation to FIN7 cybercrime gang appeared first on Security Affairs.

Cybercrime 99

Cybercrime Ransomware Antivirus Malware 99

The Hacker News

MAY 11, 2023

Among those apprehended include two hackers who carried out bank scams through phishing and smishing techniques and 15 other members of the crime syndicate, who have all been charged with a number of offenses such as bank fraud, forging documents, identity

Cybercrime 92

Cybercrime Banking Scams Phishing 92

Security Affairs

JUNE 17, 2021

UNC2465 cybercrime group that is affiliated with the Darkside ransomware gang has infected with malware the website of a CCTV camera vendor. In the documented attack, once the backdoor is deployed, UNC2465 interactively established an NGROK tunnel and performed lateral movements in less than 24 hours. Pierluigi Paganini.

Cybercrime 105

Cybercrime Ransomware Antivirus Software 105

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years. Conclusion: cybersecurity and cybercrime have matured.

Cybercrime 141

Cybercrime Banking Malware Ransomware 141

Security Affairs

MAY 5, 2021

A new cybercrime gang, tracked as UNC2529 , has targeted many organizations in the US and other countries using new sophisticated malware. FireEye’s Mandiant unit observed two distinct waves of attacks carried out by the cybercrime group in December 2020. The post UNC2529, a new sophisticated cybercrime gang that targets U.S.

Cybercrime 105

Cybercrime Malware Manufacturing Retail 105

Identity IQ

JUNE 15, 2021

If you are notified of a breach involving your driver’s license or another government identification document (such as a passport or non-driver ID), contact the agency that issued the document and find out what it recommends in such situations. You might be instructed to cancel the document and obtain a replacement.

Cybercrime 119

Cybercrime Identity Theft Data breaches Hacking 119

Malwarebytes

JUNE 8, 2021

A Latvian woman has been charged for their alleged role in a transnational cybercrime organisation. As touched on above, the group hired experts in a variety of cybercrime fields. The full arrest warrant document [PDF] is roughly 60 pages long, and contains an incredible amount of information. What happened this week, you ask?

Cybercrime 118

Cybercrime Malware Banking Phishing 118

Krebs on Security

NOVEMBER 2, 2023

One of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. Services like SWAT are known as “Drops for stuff” on cybercrime forums. The login page for the criminal reshipping service SWAT USA Drop. “SwatVerified.”

Cybercrime 278

Cybercrime Marketing Scams Retail 278

Bleeping Computer

OCTOBER 15, 2021

A new phishing campaign dubbed MirrorBlast is deploying weaponized Excel documents that are extremely difficult to detect to compromise financial service organizations [.].

Cybercrime 98

Cybercrime Financial Services Phishing 98

Security Affairs

JANUARY 27, 2019

The Cobalt cybercrime gang has been using Google App Engine to distribute malware through PDF decoy documents. The Cobalt hacking group has been using Google App Engine to distribute malware through PDF decoy documents. Attackers used specially crafted PDF documents created with the Adobe Acrobat 18.0 continue=”.

Engineering 88

Engineering Cybercrime Banking Advertising 88

Krebs on Security

MAY 28, 2024

911 S5’s reliability and extremely low prices quickly made it one of the most popular services among denizens of the cybercrime underground, and the service became almost shorthand for connecting to that “last mile” of cybercrime. ” The third man sanctioned is Yanni Zheng , a Chinese national the U.S.

VPN 225

VPN Banking Cybercrime Internet 225

The Hacker News

OCTOBER 29, 2021

Court documents showed that Vladimir Dunaev, 38, along with other members of the transnational, cybercriminal organization, stole money and A Russian national, who was arrested in South Korea last month and extradited to the U.S.

Cybercrime 100

Cybercrime 100

Krebs on Security

JUNE 1, 2023

One of Megatraffer’s ads on an English-language cybercrime forum. Megatraffer has continued to offer their code-signing services across more than a half-dozen other Russian-language cybercrime forums, mostly in the form of sporadically available EV and non-EV code-signing certificates from major vendors like Thawte and Comodo.

Malware 249

Malware Cybercrime Software Antivirus 249

Malwarebytes

SEPTEMBER 23, 2021

The Spanish National Police page also mentioned other crimes, such as “kidnapping, falsification of documents, injuries, threats, coercion, robbery with violence, Social Security fraud and illegal possession of weapons. The post Italian mafia cybercrime sting leads to 100+ arrests appeared first on Malwarebytes Labs.

Cybercrime 84

Cybercrime Computers and Electronics Cryptocurrency Phishing 84

Krebs on Security

NOVEMBER 16, 2023

In a 2,200-page report, Finnish authorities laid out how they connected the extortion spree to Kivimäki, a notorious hacker who was convicted in 2015 of perpetrating tens of thousands of cybercrimes, including data breaches, payment fraud, operating a botnet and calling in bomb threats.

Cybercrime 217

Cybercrime Hacking Data breaches Banking 217

Security Affairs

MAY 6, 2024

The threat actor, going by the alias ‘CiberinteligenciaSV,’ posted the 144 GB data dump to Breach Forums, writing that the leak included 5,129,518 high-definition photos, each labeled with the corresponding Salvadorian’s document identification (DUI) number.

Identity Theft 111

Identity Theft Data breaches Cybercrime Government 111

Security Affairs

MAY 11, 2024

“After an extensive forensic investigation and our manual document review, we learned on April 5, 2024 that certain files containing your personal information was subject to unauthorized access.” The incident did not impact the gaming network,” reads the notice of data breach sent to the impacted individuals.

Data breaches 108

Data breaches Identity Theft Cybercrime Cyber Attacks 108

The Hacker News

DECEMBER 26, 2022

The pay-per-install (PPI) malware downloader service known as PrivateLoader is being used to distribute a previously documented information-stealing malware dubbed RisePro. A C++-based malware,

Malware 92

Malware Cybercrime Marketing 92

Security Affairs

NOVEMBER 12, 2019

The analysis of a malicious email revealed a possible raising interest of the TA505 cybercrime gang in system integrator companies. Attached to the email a suspicious word document was waiting to be opened from the victim. By opening the word document the victim displays the following text (Image1). Introduction.

Cybercrime 42

Cybercrime Computers and Electronics Penetration Testing Malware 42

Security Affairs

MARCH 13, 2024

is a Taiwanese multinational company that produces computer hardware and electronics, Acer is investigating the security breach with the help of cybersecurity experts and notified the National Privacy Commission (NPC) and the Cybercrime Investigation and Coordinating Center (CICC) in the Philippines.

Data breaches 114

Data breaches Computers and Electronics Hacking Cybercrime 114

Krebs on Security

JANUARY 10, 2024

Rasch said it could be that Dellone’s stolen crypto was seized as part of a government asset forfeiture, but that either way there is no reason Uncle Sam should hold some cybercrime victims’ life savings indefinitely. “But it was never the government’s money, and that doesn’t help the victim. .”

Cryptocurrency 284

Cryptocurrency Government Cybercrime Accountability 284

Krebs on Security

AUGUST 19, 2021

Abnormal Security documented how it tied the email back to a young man in Nigeria who acknowledged he was trying to save up money to help fund a new social network he is building called Sociogram. “For decades, West African scammers, primarily located in Nigeria, have perfected the use of social engineering in cybercrime activity.”

Ransomware 360

Ransomware Social Engineering Cybercrime Scams 360

Security Affairs

JUNE 2, 2024

Ticketmaster confirms data breach impacting 560 million customers Critical Apache Log4j2 flaw still threatens global finance Crooks stole more than $300M worth of Bitcoin from the exchange DMM Bitcoin ShinyHunters is selling data of 30 million Santander customers Over 600,000 SOHO routers were destroyed by Chalubo malware in 72 hours LilacSquid APT (..)

Data breaches 81

Data breaches VPN Cloud Migration Cybercrime 81

Heimadal Security

SEPTEMBER 6, 2021

It’s possible that the malicious group behind the campaign to be the FIN7 group, a cybercrime group also known as Carbanak or Navigator that specializes in stealing payment card data. The cybercriminals inserted macro code into Microsoft Documents. What Happened?

Malware 129

Malware Cybercrime Cybersecurity 129

Dark Reading

MARCH 21, 2019

The group now employs a new administrative interface for managing its campaigns, as well as documents that link to SQL databases for downloading its code.

Cybercrime 71

Cybercrime 71

Krebs on Security

OCTOBER 31, 2022

A 26-year-old Ukrainian man is awaiting extradition from The Netherlands to the United States on charges that he acted as a core developer for Raccoon , a popular “malware-as-a-service” offering that helped paying customers steal passwords and financial data from millions of cybercrime victims. According to those sources, U.S.

Malware 298

Malware Identity Theft Cybercrime Accountability 298