Security Affairs

OCTOBER 29, 2024

“Investigations into RedLine and Meta started after victims came forward and a security company notified authorities about possible servers in the Netherlands linked to the software. “Through Eurojust, authorities were able to quickly exchange information and coordinate actions to take down the infostealers.”

Identity Theft 128

Identity Theft Passwords Malware Banking 128

Security Affairs

MAY 27, 2025

Sophos researchers reported that a DragonForce ransomware operator exploited three chained vulnerabilities in SimpleHelp software to attack a managed service provider. SimpleHelp is a remote support and access software designed for IT professionals and support teams. reads the report published by Artic Wolf.

Ransomware 106

Ransomware Software Retail Data breaches 106

Security Affairs

JUNE 24, 2024

The cybercrime group ExCobalt targeted Russian organizations in multiple sectors with a previously unknown backdoor known as GoRed. Positive Technologies researchers reported that a cybercrime gang called ExCobalt targeted Russian organizations in multiple sectors with a previously unknown Golang-based backdoor known as GoRed.

Cybercrime 121

Cybercrime Telecommunications DNS Technology 121

Security Affairs

DECEMBER 14, 2023

Microsoft’s Digital Crimes Unit seized multiple domains used by cybercrime group Storm-1152 to sell fraudulent Outlook accounts. Microsoft’s Digital Crimes Unit seized multiple domains used by a cybercrime group, tracked as Storm-1152, to sell fraudulent accounts. ” reads the announcement published by Microsoft.

Cybercrime 137

Cybercrime Accountability Media Technology 137

Security Affairs

JANUARY 10, 2025

Check Point researchers discovered a new version of the Banshee macOS infostealer which is distributed through phishing websites and fake GitHub repositories, often masqueraded as popular software. The malicious code was advertised on cybercrime forums for $3,000 per month.

Malware 123

Malware Advertising Antivirus Cybercrime 123

Security Affairs

NOVEMBER 3, 2021

Experts warn of the availability in the cybercrime underground of offers for initial access to networks of players in global supply chains. based transportation management and trucking software supplier and a U.S.-based In August 2021 , an affiliate of the Conti ransomware gang claimed access to corporate networks belonging to a U.S.-based

Cybercrime 136

Cybercrime VPN Ransomware Hacking 136

Krebs on Security

OCTOBER 8, 2020

There’s an old adage in information security: “Every company gets penetration tested, whether or not they pay someone for the pleasure.” ” Many organizations that do hire professionals to test their network security posture unfortunately tend to focus on fixing vulnerabilities hackers could use to break in.

Cybercrime 353

Cybercrime Malware VPN Ransomware 353

Security Affairs

FEBRUARY 13, 2025

A November 2024 RA World ransomware attack on an Asian software firm used a tool linked to China-linked threat actors. Broadcom researchers reported that threat actors behind an RA World ransomware attack against an Asian software and services firm employed a tool that was explosively associated in the past with China-linked APT groups.

Ransomware 121

Ransomware Software Cybercrime Encryption 121

Security Affairs

DECEMBER 30, 2024

In October 2024, Cisco confirmed that the data posted by the notorious threat actor IntelBroker on a cybercrime forum was stolen from its DevHub environment. We have analyzed the post data, and it aligns with the known data set from October 14, 2024.” ” reads the update published by Cisco. for customers to use as needed.

Data breaches 126

Data breaches Cybercrime Authentication Technology 126

Security Affairs

JULY 25, 2022

Operators behind the Amadey Bot malware use the SmokeLoader to distribute a new variant via software cracks and keygen sites. The malware is available for sale in illegal forums, in the past, it was used by cybercrime gangs like TA505 to install GandCrab ransomware or the FlawedAmmyy RAT. ” concludes the report.

Software 135

Software Malware Cybercrime VPN 135

Security Boulevard

FEBRUARY 14, 2025

Meanwhile, an informal Tenable poll looks at cloud security challenges. And get the latest on ransomware trends and on cybercrime legislation and prevention! government is urging software makers to adopt secure application-development practices that help prevent buffer overflow attacks.

Banking 64

Banking Cybercrime Cybersecurity Ransomware 64

Security Affairs

FEBRUARY 10, 2025

The cybercrime group XE Group exploited a VeraCore zero-day to deploy reverse shells, web shells in recent attacks. A recent investigation by researchers from Intezer and Solis Security shed light on the recent operations of the XE Group. ” reads the analysis published by Intezer.

Manufacturing 113

Manufacturing Cybercrime Passwords Authentication 113

Zero Day

JUNE 6, 2025

The data in question was posted on a Russian cybercrime forum on May 15 and then uploaded again on June 3, apparently garnering attention from other cybercriminals and potential buyers. With both date of birth and SSNs being compromised, malicious actors have all the information they need to conduct fraud and impersonate AT&T customers.

Password Management 98

Password Management Passwords Artificial Intelligence Software 98

Security Affairs

MAY 1, 2025

A cybercrime group named Hive0117 is behind a fresh phishing campaign that targeted Russian organizations with a new version of the DarkWatchman malware, according to Russian cybersecurity firm F6. The DarkWatchman malware can evade detection by standard antivirus software.

Malware 88

Malware Phishing Telecommunications Retail 88

The Last Watchdog

APRIL 13, 2022

Additionally, there are also Russian cybercrime organizations that are not state-sponsored but are allowed to operate. Although there’s no one magic solution to eliminating cyberattacks and cybercrime risks, there are steps you can take to reduce the chances of becoming a victim. businesses called #ShieldsUp. The efficacy of hygiene.

Cybersecurity 214

Cybersecurity Cybercrime Education Government 214

Krebs on Security

APRIL 27, 2023

Salesforce Community is a widely-used cloud-based software product that makes it easy for organizations to quickly create websites. This misconfigured Salesforce Community site from the state of Vermont was leaking pandemic assistance loan application data, including names, SSNs, email address and bank account information. ”

Banking 344

Banking Government Information Security Authentication 344

Security Affairs

FEBRUARY 4, 2024

Remote desktop software company AnyDesk announced that threat actors compromised its production environment. Remote desktop software company AnyDesk announced on Friday that threat actors had access to its production systems. AnyDesk is a remote desktop software that allows users to connect to a computer or device remotely.

Software 138

Software Passwords Ransomware Cryptocurrency 138

Security Affairs

MARCH 30, 2025

This week, Cl0p ransomware group listed Sams Club among the victims of its December Cleo software exploit , accusing it of ignoring security. “We are aware of reports regarding a potential security incident and are actively investigating the matter,” a company spokesperson told BleepingComputer.

Ransomware 119

Ransomware Data breaches Software Hacking 119

Security Affairs

DECEMBER 25, 2024

.” The agencies discovered that in March 2024, a North Korea-linked threat actor posed as a LinkedIn recruiter and targeted an employee of the Japan-based enterprise cryptocurrency wallet software company Ginco, then compromised them via a malicious Python script shared masqueraded as a “pre-employment test.” BTC ($308M).

Cryptocurrency 125

Cryptocurrency Social Engineering Hacking Cybercrime 125

Security Affairs

NOVEMBER 9, 2024

The most severe flaw included in the September 2024 security bulletin is a critical, remote code execution (RCE) vulnerability tracked as CVE-2024-40711 (CVSS v3.1 Veeam Backup & Replication is a comprehensive data protection and disaster recovery software developed by Veeam. impacting Veeam Backup & Replication (VBR).

Backups 134

Backups Ransomware VPN Accountability 134

Security Affairs

JUNE 6, 2025

Investigations into RedLine and Meta started after victims came forward and a security company notified authorities about possible servers in the Netherlands linked to the software. Update software : Keep your operating system, security software, and firewall up to date to patch vulnerabilities.

Malware 82

Malware Passwords Identity Theft Accountability 82

Security Affairs

NOVEMBER 24, 2024

CISA adds Apple, Oracle Agile PLM bugs to its Known Exploited Vulnerabilities catalog More than 2,000 Palo Alto Networks firewalls hacked exploiting recently patched zero-days Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office US DoJ charges five alleged members of the Scattered Spider cybercrime gang Threat actor (..)

Cybercrime 74

Cybercrime Artificial Intelligence Hacking VPN 74

Security Affairs

DECEMBER 1, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Cybercrime 74

Cybercrime Firewall Ransomware Social Engineering 74

Security Affairs

MAY 28, 2025

Researchers found a fake Bitdefender site spreading the Venom RAT by tricking users into downloading it as antivirus software. “These criminals are after your hard-earned money, targeting your bank accounts and cryptocurrency wallets with fake login pages and malware disguised as safe software.”

Antivirus 122

Antivirus Malware Banking Passwords 122

Security Affairs

JULY 15, 2022

Threat actors behind the campaign used multiple accounts across several social media platforms to advertise password-cracking software for Programmable Logic Controller (PLC), Human-Machine Interface (HMI), and project files. The password cracking software also acts as a dropper for the Sality P2P bot. ” concludes the report.

Passwords 132

Passwords Software Firmware Malware 132

Krebs on Security

JULY 25, 2023

Proxy services can be used in a legitimate manner for several business purposes — such as price comparisons or sales intelligence — but they are massively abused for hiding cybercrime activity because they make it difficult to trace malicious traffic to its original source. Usually, these users have no idea their systems are compromised.

Malware 245

Malware VPN Internet Internet 245

Security Affairs

MAY 18, 2025

CISA adds a Fortinet flaw to its Known Exploited Vulnerabilities catalog Kosovo authorities extradited admin of the cybercrime marketplace BlackDB.cc billion over its location tracking practices International Press Newsletter Cybercrime Crypto swapping service eXch shut down Moldovan Police Arrest Suspect in 4.5M

Data breaches 64

Data breaches Cybercrime Ransomware Cyber Attacks 64

Security Affairs

APRIL 2, 2025

The Triada Trojan makes use of the Zygote parent process to implement its code in the context of all software on the device, this means that the threat is able to run in each application. The experts who investigated the issue discovered that a software developer from Shanghai was responsible for the infection.

Malware 123

Malware Cryptocurrency Mobile Firmware 123

Security Affairs

DECEMBER 8, 2024

Hackers stole millions of dollars from Uganda Central Bank International Press Newsletter Cybercrime INTERPOL financial crime operation makes record 5,500 arrests, seizures worth over USD 400 million Hackers Stole $1.49 Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Artificial Intelligence 104

Artificial Intelligence Spyware Hacking Ransomware 104

Security Affairs

OCTOBER 18, 2022

An international law enforcement operation led by Europol disrupted a cybercrime ring focused on hacking wireless key fobs to steal cars. The gang was composed of software developers, resellers, and car thieves who used the tool created by the gang to steal the vehicles. ” reads the announcement published by EuroJust.

Hacking 124

Hacking Cybercrime Manufacturing Wireless 124

Security Affairs

MAY 4, 2025

.” The executions of the malicious modules can cause total data loss, major downtime, and severe financial and reputational harm, highlighting the need for strong supply chain security. “Secure software development practices must evolve to address these sophisticated threats. ” concludes the expert.

Software 113

Software Malware Hacking Cybercrime 113

Webroot

MARCH 3, 2025

March is a time for leprechauns and four-leaf clovers, and as luck would have it, its also a time to learn how to protect your private data from cybercrime. During this time, many government agencies and consumer protection organizations come together to help educate consumers on how to keep their personal and financial information secure.

Consumer Protection 99

Consumer Protection Identity Theft Scams Social Engineering 99

Security Affairs

FEBRUARY 13, 2025

. “The builds containing the suspected malware have been removed from Steam, but we strongly encourage you to run a full-system scan using an anti-virus product that you trust or use regularly, and inspect your system for unexpected or newly installed software. Valve have removed the game two days ago.

Malware 112

Malware Antivirus Accountability Software 112

Security Affairs

MARCH 24, 2025

The FBI Denver Field Office advises staying cautious online, being aware of potential risks, and keeping antivirus software updated to scan files before opening them. If users fall victim to this scam, immediately contact their financial institutions, secure their accounts, and change all passwords using a trusted device.

Malware 118

Malware Scams Identity Theft Antivirus 118

Security Affairs

APRIL 8, 2022

A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime group FIN7. for high-level hacking activity in the cybercrime group FIN7 (aka Carbanak Group and the Navigator Group). Iarmak is the third member of the FIN7 cybercrime group to be sentenced in the U.S. in May 2020.

Cybercrime 134

Cybercrime Hacking Software Phishing 134

Security Affairs

APRIL 26, 2025

Security footage reportedly shows the man attempting to access multiple offices before installing malicious software designed to capture screenshots every 20 minutes and transmit them to an external IP address. Bowie was arrested on April 14, following the issuance of an arrest warrant.

Malware 145

Malware Cybersecurity Healthcare Media 145

Security Affairs

DECEMBER 18, 2023

Info stealers, also known as information stealers, are a type of malicious software (malware) designed to covertly collect sensitive and personal information from a victim’s computer or network. It violates privacy and security regulations, and individuals involved in such activities can face severe legal consequences.

Banking 135

Banking Cybercrime Malware Accountability 135