Krebs on Security

NOVEMBER 14, 2024

That investigation detailed how the 38-year-old Shefel adopted the nickname Rescator while working as vice president of payments at ChronoPay , a Russian financial company that paid spammers to advertise fake antivirus scams, male enhancement drugs and knockoff pharmaceuticals. “I’m also godfather of his second son.”

Advertising

Security Affairs

DECEMBER 1, 2024

For a monthly fee, attackers can access sophisticated services that automate the creation of fraudulent emails, increasing the efficiency of their scams. These services allow attackers with minimal technical expertise to execute advanced attacks, democratizing cybercrime. As the technology evolves, so will its misuse.

Artificial Intelligence

Krebs on Security

JULY 3, 2025

government sanctioned a Chinese national for operating a cloud provider linked to the majority of virtual currency investment scam websites reported to the FBI. The government says Lizhi was born November 13, 1984, and used the nicknames “ XXL4 ” and “ Nice Lizhi.” government.”

Scams

Webroot

MARCH 3, 2025

March is a time for leprechauns and four-leaf clovers, and as luck would have it, its also a time to learn how to protect your private data from cybercrime. During this time, many government agencies and consumer protection organizations come together to help educate consumers on how to keep their personal and financial information secure.

Consumer Protection

SecureWorld News

FEBRUARY 13, 2025

Attackers now impersonate executives, government officials, and even family members to gain trust and manipulate victims. Misinformation and market manipulation : Deepfake videos of CEOs or government officials making false statements can manipulate stock prices or incite public panic.

Social Engineering

eSecurity Planet

MARCH 28, 2025

A sophisticated cybercrime service known as “Lucid” is exploiting vulnerabilities in Apples iMessage and Androids Rich Communication Services (RCS), allowing cyberthieves to conduct large-scale phishing attacks with alarming success. Examples of scam campaigns delivered via iMessage and RCS.

Phishing

Malwarebytes

MAY 1, 2025

Phishing In phishing scams, cybercriminals trick people and businesses into handing over sensitive information like credit card numbers or login details for vital online accounts. The hackers hijacked the channels to spread cryptocurrency scams, while deleting some of the groups old videos in the process.

Small Business

Security Affairs

DECEMBER 10, 2024

Rogue Law Enforcement – Scam Exploiting Trust The actors launched a sophisticated campaign, targeting multiple victims with phone calls from individuals impersonating law enforcement officials requesting payment arrangements.

Phishing

Security Affairs

JULY 13, 2025

CISA adds Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalog Hunters International ransomware gang shuts down and offers free decryption keys to all victims International Press – Newsletter Cybercrime From electrician to pivot of a million-dollar scam in the financial system: find out who is the IT operator who sold passwords to (..)

Data breaches

Security Affairs

NOVEMBER 17, 2024

CISA adds Palo Alto Networks Expedition bugs to its Known Exploited Vulnerabilities catalog Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices China-linked threat actors compromised multiple telecos and spied on a limited number of U.S.

Cryptocurrency

Security Affairs

FEBRUARY 9, 2025

US Justice Department says cybercrime forum allegedly affected 17 million Americans Cybercrime is increasingly complex. What are the risks?

Spyware

Security Affairs

JUNE 15, 2025

CISA adds Wazuh, and WebDAV flaws to its Known Exploited Vulnerabilities catalog Exposed eyes: 40,000 security cameras vulnerable to remote hacking Operation Secure: INTERPOL dismantles 20,000+ malicious IPs in major cybercrime crackdown Over 80,000 servers hit as Roundcube RCE bug gets rapidly exploited A flaw could allow recovery of the phone number (..)

Spyware

Security Boulevard

MARCH 7, 2025

And get the latest on cyber scams; zero-day vulnerabilities; and critical infrastructure security. Those stats come from ISACAs Tech Workplace and Culture 2025 report, which is based on a survey of about 7,700 of its members who work in IT areas such as information security, governance, assurance, data privacy and risk management.

Cybersecurity

Security Affairs

JULY 13, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Datacarry Ransomware DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal Batavia spyware steals data from Russian organizations Taking SHELLTER: a commercial evasion framework abused in- the- wild Open Source Malware (..)

Malware

Security Affairs

MAY 4, 2025

Rhysida Ransomware gang claims the hack of the Government of Peru DragonForce group claims the theft of data after Co-op cyberattack U.S. Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime

SecureWorld News

JULY 9, 2025

State Department employees and reported by The Washington Post , the impersonator used a Signal account with the display name "Marco.Rubio@state.gov," reaching out to diplomats and high-ranking government officials. The imposter was able to use publicly available information to create realistic messages.

Government

Security Affairs

MARCH 8, 2025

Authorities recovered $31 Million Related to 2021 Uranium Finance cyber heist Serbian student activists phone hacked using Cellebrite zero-day exploit Qilin ransomware gang claimed responsibility for the Lee Enterprises attack Meta fired 20 employees for leaking information, more firings expected International Press Newsletter Cybercrime U.S.

Data breaches

Security Affairs

APRIL 28, 2025

In the aftermath, several alternative forums emerged, some demanded entry fees, fueling confusion and raising the risk of scams or government-run honeypots. BreachForums was an English-language cybercrime forum that emerged in March 2022 as a successor to the dismantled RaidForums.

Risk

SecureWorld News

FEBRUARY 4, 2025

Cybercrime has been steadily on the rise for the past years. Singapore), such campaigns should focus on teaching users how to secure their mobile numbers with two-factor authentication or tying the number to government-issued IDs. Nearly 3 billion records were stolen in the U.S., Canada, and the U.K.,

Marketing

SecureWorld News

JULY 27, 2025

These comforts keep the dark economy humming even as sites vanish in exit scams or police takedowns. We're facing a new era of cybercrime fueled by malware-as-a-service (MaaS), and ransomware-as-a-service (RaaS). Vigilance, coupled with timely intelligence, remains the best bargaining chip in the fight against cybercrime.

Phishing

The Last Watchdog

DECEMBER 15, 2024

Without governance and rationalization of their software inventory, organizations will struggle to manage risk effectively, perpetuating a cycle of reactive defenses against an ever-growing threat landscape. Amlani Ajay Amlani , President & Head of the Americas, iProov Remember KnowBe4’s 2024 deepfake hiring scam? If the U.S.

Cybersecurity

BH Consulting

APRIL 30, 2025

Another lens on cybercrime comes courtesy of the FBIs Annual Internet Crime Report. Its top three cybercrimes, based on reports from victims, were: phishing/spoofing, extortion and personal data breaches. Diving into e-commerce scams MORE How threat actors used Zooms remote control feature for a crypto scam.

Data breaches

Zero Day

JUNE 22, 2025

  Also: I clicked on four sneaky online scams on purpose - to show you how they work The search engine allows you to search either by your email address or phone number and will flag any breaches containing your data when they happen by cross-checking billions of leaked records added to the Have I Been Pwned database.

Passwords

SecureWorld News

JANUARY 6, 2025

He has advised numerous government and industry leaders on their healthcare security strategy and defensive posture, and has served as a subject matter expert on government Committees of Inquiry into some of the highest profile healthcare breaches. This year, cybercrime is expected to cost $10.3 Today, Cybercrime Inc.

Cybersecurity

SecureWorld News

DECEMBER 27, 2024

Greater Collaboration Between Governments and the Private Sector: Initiatives to share threat intelligence will strengthen, fostering a collective defense strategy against increasingly sophisticated cyber adversaries. Expect to see AI-enabled phishing campaigns, deepfake scams, and automated attacks grow in complexity.

Cybersecurity

SecureWorld News

MAY 29, 2025

According to an FBI alert , t he campaign, active since April 2025, primarily targets current and former federal and state government officials and their contacts. The use of AI-generated voices and messages increases the plausibility of these scams, making them more challenging to detect. Cedric Leighton , CNN Military Analyst; U.S.

Scams

Krebs on Security

NOVEMBER 26, 2024

However, this person’s identity may not remain a secret for long: A careful review of Kiberphant0m’s daily chats across multiple cybercrime personas suggests they are a U.S. government agencies and emergency first responders. government server for $2,000. Army soldier who is or was recently stationed in South Korea.

DDOS

Zero Day

JUNE 20, 2025

  Also: I clicked on four sneaky online scams on purpose - to show you how they work The search engine allows you to search either by your email address or phone number and will flag any breaches containing your data when they happen by cross-checking billions of leaked records added to the Have I Been Pwned database.

Passwords

Security Boulevard

JUNE 20, 2025

DoJ, FBI, USSS yoinked USDT: Pretty girls plus investment fraud equals forfeiture recovery (eventually). The post US Pig Butchering Victims ‘Will’ Get Refunds — Feds Seize $225M Cryptocurrency appeared first on Security Boulevard.

Cryptocurrency

Security Affairs

MARCH 2, 2025

from Bybit, it is the largest cryptocurrency heist ever International Press Newsletter Cybercrime Mining Company NioCorp Loses $500,000 in BEC Hack Inside Black Bastas Exposed Internal Chat Logs: A Firsthand Look The Bleeding Edge of Phishing: darcula-suite 3.0

Cybercrime

Security Affairs

MARCH 30, 2025

New ReaderUpdate malware variants target macOS users BlackLock Ransomware Targeted by Cybersecurity Firm Google fixed the first actively exploited Chrome zero-day since the start of the year Authentication bypass CVE-2025-22230 impacts VMware Windows Tools Android malware campaigns use.NET MAUI to evade detection Astral Foods, South Africas largest (..)

Cybercrime

Security Affairs

APRIL 13, 2025

CISA adds Ivanti Connect Secure, Policy Secure and ZTA Gateways flaw to its Known Exploited Vulnerabilities catalog A member of the Scattered Spider cybercrime group pleads guilty The controversial case of the threat actor EncryptHub PoisonSeed Campaign uses stolen email credentials to spread crypto seed scams and and empty wallets EDR-as-a-Service (..)

Data breaches

Krebs on Security

JANUARY 27, 2025

President Trump last week issued a flurry of executive orders that upended a number of government initiatives focused on improving the nation’s cybersecurity posture. Image: Shutterstock. Greg Meland. adversaries.

Cybersecurity

Security Affairs

JULY 20, 2025

Tech Support Scam, Arrests Key Operatives in Noida Call Center BaitTrap – The rise of baiting news sites behind online investment fraud FBI Atlanta Seizes Major Video Game Piracy Websites GLOBAL GROUP: Emerging Ransomware-as-a-Service, Supporting AI Driven Negotiation and Mobile Control Panel for Their Affiliates Former U.S.

Data breaches

Joseph Steinberg

OCTOBER 24, 2022

According to multiple media reports, the Australian Institute of Company Directors had been scheduled to run an an online event today for nearly 5,000 registrants at which the organization planned to discuss its new “cybersecurity governance principles.”

Cybersecurity

Krebs on Security

NOVEMBER 22, 2021

In June 2021, the Nigerian government officially placed an indefinite ban on Twitter , restricting it from operating in Nigeria after the social media platform deleted tweets by the Nigerian president. The financial losses from these scams dwarf other fraud categories — such as identity theft or credit card fraud.

Scams

Krebs on Security

NOVEMBER 2, 2021

government interests online. 22 post from Groove calling for attacks on the United States government sector. 22 on RAMP , a new and fairly exclusive Russian-language darknet cybercrime forum. 22 on RAMP , a new and fairly exclusive Russian-language darknet cybercrime forum. government sector and they eat it up.

Ransomware