Cybercrime, Encryption, Hacking and System Administration

Cybercrime

Encryption

Hacking

System Administration

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

SecureList

OCTOBER 20, 2021

Having been in the field for so long, we have witnessed some major changes in the cybercrime world’s modus operandi. This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

Cybercrime

Cybercrime Banking Malware Ransomware

FBI and CISA published a new advisory on AvosLocker ransomware

Security Affairs

OCTOBER 13, 2023

The AvosLocker ransomware-as-a-service emerged in the threat landscape in September 2021, since January the group expanded its targets by implementing support for encrypting Linux systems, specifically VMware ESXi servers. This joint CSA updates the advisory published by the US Government on March 17, 2022.

Ransomware

Ransomware System Administration Antivirus Malware

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Trending Sources

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort , which rents hacked residential and small business devices to cybercriminals looking to hide their true location online. Usually, these users have no idea their systems are compromised. Image: Lumen’s Black Lotus Labs.

Malware

Malware VPN Internet Internet

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

A member of the FIN7 group was sentenced to 10 years in prison

Security Affairs

APRIL 18, 2021

The Ukrainian national Fedir Hladyr (35), aka “das” or “AronaXus,” was sentenced to 10 years in prison for having served as a manager and systems administrator for the financially motivated group FIN7 , aka Carbanak. Hladyr also controlled the organization’s encrypted channels of communication.” Pierluigi Paganini.

System Administration

System Administration Penetration Testing Malware Banking

A Closer Look at the Snatch Data Ransom Group

Krebs on Security

SEPTEMBER 30, 2023

The government says Snatch used a customized ransomware variant notable for rebooting Microsoft Windows devices into Safe Mode — enabling the ransomware to circumvent detection by antivirus or endpoint protection — and then encrypting files when few services are running. Details after contacting on jabber: truniger@xmpp[.]jp.”

Ransomware

Ransomware Accountability Cybercrime Backups

Microsoft warns of Human-Operated Ransomware as a growing threat to businesses

Security Affairs

MARCH 10, 2020

Microsoft is warning of human-operated ransomware, this kind of attack against businesses is becoming popular in the cybercrime ecosystem. Human-operated ransomware is a technique usually employed in nation-state attacks that is becoming very popular in the cybercrime ecosystem. SecurityAffairs – hacking, Human-operated ransomare).

Ransomware

Ransomware Cybercrime Social Engineering Banking

FIN7 sysadmin behind “billions in damage” gets 10 years

Malwarebytes

APRIL 20, 2021

In 2018 three high-ranking members of a sophisticated international cybercrime group operating out of Eastern Europe were arrested and taken into custody by US authorities. Ukrainian nationals Dmytro Fedorov, Fedir Hladyr, and Andrii Kolpakov, were members of a prolific hacking group widely known as FIN7.

System Administration

System Administration Banking Malware Penetration Testing

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

The command-and-control beacons allowed Royal to prepare the City’s network resources for the May 03, 2023, ransomware encryption attack.” The City experts believe that the group specifically targeted a prioritized list of servers using legitimate Microsoft system administrative tools. ” continues the report.

Ransomware

Ransomware Surveillance Healthcare Accountability

SysAdmin Gets 10 Years in Prison

SecureWorld News

APRIL 19, 2021

Being a systems administrator can be a fulfilling job with a lot of rewards. But if you're a SysAdmin for a hacking group, you could be rewarded with time behind bars. This is exactly what is happening to 35-year-old Fedir Hladyr, who was a SysAdmin for the hacking group FIN7.

System Administration

System Administration Hacking Malware Encryption

Dissecting the malicious arsenal of the Makop ransomware gang

Security Affairs

MARCH 14, 2023

Their operations are based on the human operator ransomware practice where most of the intrusion is handled by hands-on keyboard criminals, even in the encryption stage. Makop ransomware gang is classified as a tier-B ransomware actor, but despite this, they keep hitting companies in Europe and Italy.

Ransomware

Ransomware Software System Administration Encryption

New Linux/DDosMan threat emerged from an evolution of the older Elknot

Security Affairs

APRIL 1, 2019

But let’s see what are the execution binaries and what an administrator will see because this analysis IS for rise the system administration awareness: Code execution: execve("/tmp/upgrade""); // to execute upgrade. Further details of this family of ELF malware we posted regularly in here:–>[link]”.

DDOS

DDOS Malware Encryption Penetration Testing

The Hacker Mind Podcast: Ethical Hacking

ForAllSecure

MAY 26, 2022

Is hacking a crime? Bryan McAninch (Aph3x) talks about his organization, Hacking Is Not A Crime , and the ethical line it draws on various hacking activities. I used to hack the phone company quite a bit. I was like living in our systems for years and I want to get in some trouble for that.

Hacking

Hacking Technology InfoSec Media

Updates from the MaaS: new threats delivered through NullMixer

Security Affairs

MARCH 27, 2023

The Originating Malvertising Campaign According to CTI investigation on the adversary infrastructure, we were able to identify an ongoing campaign luring system administrators to install the malicious code into their machines. Bots “public-key” and “private-key” are randomly generated at process startup time.

Malware

Malware Social Engineering Encryption Marketing

IT threat evolution Q2 2021

SecureList

AUGUST 12, 2021

The final payload is a remote administration tool that provides full control over the victim machine to its operators. Communication with the server can take place either over raw TCP sockets encrypted with RC4, or via HTTPS. The ransomware supports two encryption modes: one generated dynamically and one using a hardcoded key.

Ransomware

Ransomware Malware Banking Encryption

Top Cybersecurity Accounts to Follow on Twitter

eSecurity Planet

DECEMBER 3, 2021

Shah provides her expertise in hacking, software development, and kernel development and advocates for open source initiatives. Shah provides her expertise in hacking, software development, and kernel development and advocates for open source initiatives. Brian Krebs | @briankrebs. — Dave Kennedy (@HackingDave) July 15, 2020.

Accountability

Accountability Cybersecurity Penetration Testing InfoSec

Cyber Security Informer

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

FBI and CISA published a new advisory on AvosLocker ransomware

Webinars

Trending Sources

Who and What is Behind the Malware Proxy Service SocksEscort?

Webinars

A member of the FIN7 group was sentenced to 10 years in prison

A Closer Look at the Snatch Data Ransom Group

Microsoft warns of Human-Operated Ransomware as a growing threat to businesses

FIN7 sysadmin behind “billions in damage” gets 10 years

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

SysAdmin Gets 10 Years in Prison

Dissecting the malicious arsenal of the Makop ransomware gang

New Linux/DDosMan threat emerged from an evolution of the older Elknot

The Hacker Mind Podcast: Ethical Hacking

Updates from the MaaS: new threats delivered through NullMixer

IT threat evolution Q2 2021

Top Cybersecurity Accounts to Follow on Twitter

Stay Connected