Cybercrime, Document and Hacking - Cyber Security Informer

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based based technology companies.

Hacking

Hacking Accountability Government Social Engineering

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Krebs on Security

FEBRUARY 26, 2025

government officials searched online for non-extradition countries and for an answer to the question “can hacking be treason?” In several posts to an English-language cybercrime forum in November, Kiberphant0m leaked some of the phone records and threatened to leak them all unless paid a ransom. million customers.

Hacking

Hacking Government Identity Theft Accountability

FBI warns of malicious free online document converters spreading malware

Security Affairs

MARCH 24, 2025

The FBI warns of a significant increase in scams involving free online document converters to infect users with malware. The FBI warns that threat actors use malicious online document converters to steal users sensitive information and infect their systems with malware. ” reads the alert. ” reads the alert.

Malware

Malware Scams Identity Theft Antivirus

Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment

Security Affairs

OCTOBER 21, 2024

Cisco confirms that data published by IntelBroker on a cybercrime forum was taken from the company DevHub environment. Cisco confirms that the data posted by IntelBroker on a cybercrime forum was stolen from its DevHub environment.

Cybercrime

Cybercrime Data breaches Technology Banking

EDR-as-a-Service makes the headlines in the cybercrime landscape

Security Affairs

APRIL 7, 2025

This approach reflects the as-a-service logic already prevalent in other areas of the cybercrime sector, significantly reducing the level of technical knowledge needed by those wishing to access this confidential data.

Cybercrime

Cybercrime Social Engineering Accountability Government

Breached Data Indexer ‘Data Viper’ Hacked

Krebs on Security

JULY 13, 2020

Data Viper , a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. The incident also highlights the often murky area between what’s legal and ethical in combating cybercrime.

Hacking

Hacking Marketing Cybercrime Accountability

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Krebs on Security

FEBRUARY 4, 2025

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled , English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. “Finndev.” ” Image: Ke-la.com. 30, the U.S. Meanwhile, a LinkedIn profile for a Florian M.

eCommerce

eCommerce Cybercrime Accountability Passwords

8Base ransomware group hacked Croatia’s Port of Rijeka

Security Affairs

DECEMBER 7, 2024

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,ransomware) Grabovac pointed out that his organization will not pay the ransom requested by the ransomware gang.

Ransomware

Ransomware Hacking Accountability Cyber Attacks

Rhysida Ransomware gang claims the hack of the Government of Peru

Security Affairs

MAY 3, 2025

The Rhysida Ransomware gang claims the hack of the Government of Peru, the gang breached Gob.pe, the Single Digital Platform of the Peruvian State. The Rhysida ransomware gang claims responsibility for hacking the Government of Peru, breaching Gob.pe, which is the country’s official digital platform.

Government

Government Ransomware Hacking Manufacturing

Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office

Security Affairs

NOVEMBER 21, 2024

Mexico’s president announced the government is investigating an alleged ransomware hack that targeted the administration’s legal affairs office. Today they are going to send me a report on the supposed hacking.” Stolen files allegedly include contracts, insurance, and financial documents. ” reported the Associated Press.

Government

Government Hacking Ransomware Insurance

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

But not long after KrebsOnSecurity reported in April that Shefel/Rescator also was behind the theft of Social Security and tax information from a majority of South Carolina residents in 2012, Mr. Shefel began contacting this author with the pretense of setting the record straight on his alleged criminal hacking activities.

Retail

Retail Advertising Cryptocurrency Cybercrime

Alleged ‘Scattered Spider’ Member Extradited to U.S.

Krebs on Security

APRIL 30, 2025

A 23-year-old Scottish man thought to be a member of the prolific Scattered Spider cybercrime group was extradited last week from Spain to the United States, where he is facing charges of wire fraud, conspiracy and identity theft. Documents from the U.S. As first reported by KrebsOnSecurity, Buchanan (a.k.a.

Identity Theft

Identity Theft Phishing Cryptocurrency Cybercrime

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. Researchers at AT&T Alien Labs say the crooks responsible for maintaining the QakBot botnet have rented their creation to various cybercrime groups over the years.

Hacking

Hacking Malware Ransomware Government

Brazil Charges Glenn Greenwald with Cybercrimes

Schneier on Security

JANUARY 21, 2020

Glenn Greenwald has been charged with cybercrimes in Brazil, stemming from publishing information and documents that were embarrassing to the government. The complaint charged six other individuals, including four who were detained last year in connection with the cellphone hacking. This isn't new, or unique to Brazil.

Cybercrime

Cybercrime Passwords Government Hacking

Operation Talent: An international law enforcement operation seized Cracked, Nulled and other cybercrime websites

Security Affairs

JANUARY 30, 2025

An international law enforcement operation targeted several major cybercrime websites, including Cracked, Nulled, Sellix, and StarkRDP. An international law enforcement operation led by Europol, code-named Operation Talent, dismantled several major cybercrime sites, including Cracked, Nulled, Sellix, and StarkRDP. and Nulled.to.”

Cybercrime

Cybercrime Hacking Cryptocurrency Phishing

Authorities shut down Crimenetwork, the Germany’s largest crime marketplace

Security Affairs

DECEMBER 4, 2024

Since 2012, Crimenetwork facilitated the sale of illegal goods and services, including drugs, forged documents, hacking tools, and stolen data. The operation was carried out by Public Prosecutor’s Office in Frankfurt am Main, the Central Office for Combating Cybercrime (ZIT), and the Federal Criminal Police Office (BKA).

Cybercrime

Cybercrime Cryptocurrency Hacking Internet

Uber hacked, internal systems and confidential documents were allegedly compromised

Security Affairs

SEPTEMBER 16, 2022

Uber on Thursday disclosed a security breach, threat actors gained access to its network, and stole internal documents. Uber on Thursday suffered a cyberattack, the attackers were able to penetrate its internal network and access internal documents, including vulnerability reports. SecurityAffairs – hacking, Uber).

Hacking

Hacking Data breaches Information Security Engineering

Hive0117 group targets Russian firms with new variant of DarkWatchman malware

Security Affairs

MAY 1, 2025

A cybercrime group named Hive0117 is behind a fresh phishing campaign that targeted Russian organizations with a new version of the DarkWatchman malware, according to Russian cybersecurity firm F6. “The emails had the subject Documents from 04/29/2025 and were sent from an address disguised as corporate correspondence.”

Malware

Malware Phishing Telecommunications Retail

Romania ’s election systems hit by 85,000 attacks ahead of presidential vote

Security Affairs

DECEMBER 6, 2024

Threat actors gained access to credentials for election-related websites, and then leaked them on Russian cybercrime forums a few days before the presidential election. “The attacks continued intensively including on election day and the night after elections,” the Romanian Intelligence reported in a declassified document.

Government

Government Cybercrime Cyber Attacks Hacking

RansomEXX gang claims to have hacked Ferrari and leaked online internal documents

Security Affairs

OCTOBER 3, 2022

The Italian luxury sports car manufacturer Ferrari confirmed the availability of internal documents online, but said it has no evidence of cyber attack. Documents belonging to the Italian luxury sports car manufacturer Ferrari are circulating online, the company confirmed their authenticity stating it is not aware of cyber attacks.

Hacking

Hacking Manufacturing Cyber Attacks Ransomware

Cybercrime group FIN7 advertises new EDR bypass tool on hacking forums

Security Affairs

JULY 18, 2024

The cybercrime group FIN7 is advertising a security evasion tool in multiple underground forums, cybersecurity company SentinelOne warns. in cybercrime forum. While many techniques are documented, such as removing PPL protection via the RTCore64.sys

Advertising

Advertising Cybercrime Hacking Ransomware

Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

Krebs on Security

FEBRUARY 4, 2021

Facebook told KrebsOnSecurity it seized hundreds of accounts — mainly on Instagram — that have been stolen from legitimate users through a variety of intimidation and harassment tactics, including hacking, coercion, extortion, sextortion , SIM swapping , and swatting. THE MIDDLEMEN.

Accountability

Accountability Hacking Media Mobile

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Krebs on Security

AUGUST 6, 2020

Hacked or ill-gotten accounts at consumer data brokers have fueled ID theft and identity theft services of various sorts for years. ms , then a major identity theft service in the cybercrime underground, had infiltrated computers at some of America’s large consumer and business data aggregators , including LexisNexis Inc. ,

Accountability

Accountability Identity Theft Hacking Insurance

Former CIA analyst pleaded guilty to leaking top-secret documents

Security Affairs

JANUARY 21, 2025

On October 17, 2024, Rahman stole and leaked Top-Secret documents on a U.S. The CIA analyst photographed the classified documents and transmitted them to individuals he knew were not authorized to view them. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,CIA analyst)

Media

Media Mobile Internet Internet

Nation-state actors and cybercrime gangs abuse malicious.lnk files for espionage and data theft

Security Affairs

MARCH 18, 2025

Trend ZDI researchers discovered 1,000 malicious.lnk files used by nation-state actors and cybercrime groups to execute hidden malicious commands on a victims machine by exploiting the vulnerability ZDI-CAN-25373. Since 2017, the vulnerability has been exploited by APT groups from North Korea, Iran, Russia, and China.

Cybercrime

Cybercrime Telecommunications Government Malware

Leaked Documents Reveal China's State-Sponsored Hacking Operations

SecureWorld News

FEBRUARY 22, 2024

Recently leaked documents from Chinese cybersecurity firm i-SOON provide an unprecedented look at China's extensive state-sponsored hacking operations. Targets listed in the documents span Central and Southeast Asia, Hong Kong, and Taiwan. The specifics of the leaked capabilities that directly relate to these or other U.S.

Hacking

Hacking Government Firewall Cyber threats

U.S. cannabis dispensary STIIIZY disclosed a data breach

Security Affairs

JANUARY 11, 2025

. “On November 20, 2024, we were notified by a vendor of point-of-sale processing services for some of our retail locations that accounts with their organization had been compromised by an organized cybercrime group.” The companyalso filed documents with regulators in California warning impacted customers.

Data breaches

Data breaches Retail Cybercrime Government

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Krebs on Security

MARCH 10, 2020

Kennedy Airport, according to court documents unsealed Monday. District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations. .

Accountability

Accountability Advertising Hacking Cybercrime

Cisco states that the second data leak is linked to the one from October

Security Affairs

DECEMBER 30, 2024

In October 2024, Cisco confirmed that the data posted by the notorious threat actor IntelBroker on a cybercrime forum was stolen from its DevHub environment. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, data breach)

Data breaches

Data breaches Cybercrime Authentication Technology

Internet Archive was breached twice in a month

Security Affairs

OCTOBER 21, 2024

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The breach may have exposed personal identification documents uploaded by users for Wayback Machine page removal requests, depending on the attacker’s Zendesk API access.

Internet

Internet Internet Data breaches Authentication

14 UK schools suffer cyberattack, highly confidential documents leaked

CSO Magazine

JANUARY 6, 2023

More than a dozen schools in the UK have suffered a cyberattack which has led to highly confidential documents being leaked online by cybercriminals. Pates Grammar School in Gloucestershire is one of 14 to have been impacted by the data breach, the BBC reported , with Vice Society hackers using generic search terms to steal documents.

Data breaches

Data breaches Education Cybercrime Ransomware

Member of cybercrime group Karakurt charged in the US

Security Affairs

AUGUST 23, 2024

court for his role in the Karakurt cybercrime gang. court for his role in the Russian Karakurt cybercrime gang. “According to court documents, Zolotarjovs is a member of a known cybercriminal organization that attacks computer systems of victims around the world.” ” reads the press release published by DoJ.

Cybercrime

Cybercrime VPN Cryptocurrency Hacking

Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case

Security Affairs

MARCH 15, 2024

US DoJ sentenced a Moldovan national (31) to 42 months in federal prison for operating the E-Root cybercrime marketplace. Diaconu was operating the E-Root cybercrime marketplace. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, cybercrime)

Cybercrime

Cybercrime Cryptocurrency Advertising Passwords

CEO of cybersecurity firm charged with installing malware on hospital systems

Security Affairs

APRIL 26, 2025

“New court documents reveal security cameras captured Bowie wandering around the hospital on August 6, where he tried to get into multiple offices until he stumbled upon two computers. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, malware )

Malware

Malware Cybersecurity Healthcare Media

FBI deleted China-linked PlugX malware from over 4,200 US computers

Security Affairs

JANUARY 14, 2025

According to court documents, the Chinese government paid Mustang Panda to develop PlugX malware, used since 2014 to target U.S., Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,PlugX malware) European, and Asian entities. systems. .”

Malware

Malware Government Hacking Cybersecurity

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 45

Security Affairs

MAY 11, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape iClicker site hack targeted students with malware via fake CAPTCHA New Noodlophile Stealer Distributes Via Fake AI Video Generation Platforms Backdoor found in popular ecommerce components Stealthy Linux backdoor leveraging (..)

Malware

Malware eCommerce Hacking Ransomware

Lockbit ransomware gang claims to have hacked cybersecurity giant Mandiant

Security Affairs

JUNE 6, 2022

LockBit ransomware gang claims to have hacked the cybersecurity firm Mandiant, which is investigating the alleged security breach. Mandiant is investigating the claims of the ransomware gang, the cybercrime group declared to have stolen 356841 files from the company and plans to leak them online. SecurityAffairs – hacking, Lockbit).

Hacking

Hacking Ransomware Cybersecurity Cybercrime

Black Basta ransomware gang hit BT Group

Security Affairs

DECEMBER 4, 2024

The group claimed to have stolen 500GB of data including Finacial data, Organisation data, Users data and personal documents, NDA’s, Confidential data, and more. As proof of the data breach, the group published multiple screenshots, including pictures of passports and other documents.

Ransomware

Ransomware Telecommunications Healthcare Insurance

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

One of Megatraffer’s ads on an English-language cybercrime forum. Megatraffer has continued to offer their code-signing services across more than a half-dozen other Russian-language cybercrime forums, mostly in the form of sporadically available EV and non-EV code-signing certificates from major vendors like Thawte and Comodo.

Malware

Malware Cybercrime Software Accountability

Toyota disclosed a data breach after ZeroSevenGroup leaked stolen data on a cybercrime forum

Security Affairs

AUGUST 20, 2024

Toyota has confirmed a data breach after a threat actor leaked 240GB of data stolen from its infrastructure on a cybercrime forum. Toyota disclosed a data breach after a threat actor leaked an archive of 240GB of data stolen from its systems on a cybercrime forum, BleepingComputer reported.

Data breaches

Data breaches Cybercrime Financial Services Hacking

Alleged Extortioner of Psychotherapy Patients Faces Trial

Krebs on Security

NOVEMBER 16, 2023

In a 2,200-page report, Finnish authorities laid out how they connected the extortion spree to Kivimäki, a notorious hacker who was convicted in 2015 of perpetrating tens of thousands of cybercrimes, including data breaches, payment fraud, operating a botnet and calling in bomb threats.

Cybercrime

Cybercrime Hacking Data breaches Banking

A Retrospective on the 2015 Ashley Madison Breach

Krebs on Security

JULY 27, 2022

It’s been seven years since the online cheating site AshleyMadison.com was hacked and highly sensitive data about its users posted online. It’s also a complete lie,” the hacking group wrote. The leak led to the public shaming and extortion of many Ashley Madison users, and to at least two suicides.

Cybercrime

Cybercrime Hacking Media Advertising

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Hacker's King

FEBRUARY 9, 2025

It’s mainly popular among security professionals and even the ethical hacking community. To make it user-friendly for both beginners and experts, clear commands and comprehensive documentation are incorporated in this tool. Check the documentation for detailed instructions.

Penetration Testing

Penetration Testing Architecture Cybercrime Security Defenses

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Hacker's King

FEBRUARY 9, 2025

It’s mainly popular among security professionals and even the ethical hacking community. To make it user-friendly for both beginners and experts, clear commands and comprehensive documentation are incorporated in this tool. Check the documentation for detailed instructions.

Penetration Testing

Penetration Testing Architecture Cybercrime Security Defenses

FBI: Spike in Hacked Police Emails, Fake Subpoenas

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Trending Sources

FBI warns of malicious free online document converters spreading malware

Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment

EDR-as-a-Service makes the headlines in the cybercrime landscape

Breached Data Indexer ‘Data Viper’ Hacked

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

8Base ransomware group hacked Croatia’s Port of Rijeka

Rhysida Ransomware gang claims the hack of the Government of Peru

Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office

An Interview With the Target & Home Depot Hacker

Alleged ‘Scattered Spider’ Member Extradited to U.S.

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Brazil Charges Glenn Greenwald with Cybercrimes

Operation Talent: An international law enforcement operation seized Cracked, Nulled and other cybercrime websites

Authorities shut down Crimenetwork, the Germany’s largest crime marketplace

Uber hacked, internal systems and confidential documents were allegedly compromised

Hive0117 group targets Russian firms with new variant of DarkWatchman malware

Romania ’s election systems hit by 85,000 attacks ahead of presidential vote

RansomEXX gang claims to have hacked Ferrari and leaked online internal documents

Cybercrime group FIN7 advertises new EDR bypass tool on hacking forums

Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Former CIA analyst pleaded guilty to leaking top-secret documents

Nation-state actors and cybercrime gangs abuse malicious.lnk files for espionage and data theft

Leaked Documents Reveal China's State-Sponsored Hacking Operations

U.S. cannabis dispensary STIIIZY disclosed a data breach

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

Cisco states that the second data leak is linked to the one from October

Internet Archive was breached twice in a month

14 UK schools suffer cyberattack, highly confidential documents leaked

Member of cybercrime group Karakurt charged in the US

Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case

CEO of cybersecurity firm charged with installing malware on hospital systems

FBI deleted China-linked PlugX malware from over 4,200 US computers

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 45

Lockbit ransomware gang claims to have hacked cybersecurity giant Mandiant

Black Basta ransomware gang hit BT Group

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Toyota disclosed a data breach after ZeroSevenGroup leaked stolen data on a cybercrime forum

Alleged Extortioner of Psychotherapy Patients Faces Trial

A Retrospective on the 2015 Ashley Madison Breach

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Stay Connected