Security Affairs

MAY 15, 2025

Kosovar citizen extradited to the US for running the cybercrime marketplace BlackDB.cc Kosovo citizen Liridon Masurica (33) of Gjilan, was extradited to the US for running the cybercrime marketplace BlackDB.cc ” The FBI led the investigation with support from the Kosovo Polices Cybercrime Investigation Directorate. .”

Cybercrime 69

Cybercrime Identity Theft Hacking Cryptocurrency 69

Security Affairs

NOVEMBER 24, 2024

seized the stolen credit card marketplace PopeyeTools and charged its operators, this is a major success against cybercrime. PopeyeTools was a dark web marketplace specializing in selling stolen credit cards and cybercrime tools, facilitating fraud and illicit online activities since 2016. million in revenue. million in revenue.

Cybercrime 127

Cybercrime Cryptocurrency Banking Accountability 127

Security Affairs

JANUARY 5, 2025

PLAYFULGHOST is a new malware family with capabilities including keylogging, screen and audio capture, remote shell access, and file transfer/execution. Google researchers analyzed a new malware family called PLAYFULGHOST that supports multiple features, including keylogging, screen and audio capture, remote shell, and file transfer/execution.

Malware 127

Malware Encryption Phishing Hacking 127

Security Affairs

MAY 25, 2025

. “A Command Post was set up at Europol headquarters in The Hague during the action week, with investigators from Canada, Denmark, France, Germany, the Netherlands, the United Kingdom and the United States working with Europols European Cybercrime Centre and its Joint Cybercrime Action Taskforce.”

Ransomware 121

Ransomware Cybercrime Malware Cryptocurrency 121

Security Affairs

MARCH 1, 2025

These individuals are members of a global cybercrime ring tracked as Storm-2139 by Microsoft. Members speculated on identities, exchanged blame, and leaked information, highlighting the lawsuit’s impact. The case demonstrates legal actions power in dismantling cybercrime networks. ” concludes the announcement.

Cybercrime 74

Cybercrime Technology Hacking Accountability 74

Security Affairs

OCTOBER 25, 2024

“Change Healthcare can confirm we are experiencing a cybersecurity issue perpetrated by a cybercrime threat actor who has represented itself to us as ALPHV/Blackcat.” However, after a $22 million transaction, an affiliate publicly complained on a Russian cybercrime forum, alleging that BlackCat did not pay their fee.

Data breaches 126

Data breaches Healthcare Cybercrime Insurance 126

Security Affairs

JANUARY 11, 2025

. “On November 20, 2024, we were notified by a vendor of point-of-sale processing services for some of our retail locations that accounts with their organization had been compromised by an organized cybercrime group.” The exposed information varies for each individual case.

Data breaches 110

Data breaches Retail Cybercrime Government 110

Security Affairs

OCTOBER 14, 2024

Dutch police dismantled Bohemia/Cannabia, two major dark web markets for illegal goods, drugs, and cybercrime services. These are two of the largest and longest-running dark web platforms for the trade of illegal goods, drugs, and cybercrime services. More arrests are anticipated.

Marketing 124

Marketing Cybercrime DDOS Cryptocurrency 124

Security Affairs

APRIL 7, 2025

A 20-year-old man linked to the Scattered Spider cybercrime group has pleaded guilty to charges filed in Florida and California. ” Source News4Jax The charges relate to his alleged role in the Scattered Spider cybercrime group (also known as UNC3944 , 0ktapus ). .” ” reported News4Jax.

Cybercrime 64

Cybercrime Identity Theft Social Engineering Hacking 64

Security Affairs

MAY 13, 2025

He is internationally wanted for multiple cybercrime, including ransomware attacks, blackmail, and money laundering, targeting Dutch companies. “He is wanted internationally for committing several cybercrimes (ransomware attacks, blackmail, and money laundering) against companies based in the Netherlands.” million euros.”

Ransomware 105

Ransomware Cybercrime Malware Banking 105

Security Affairs

JANUARY 26, 2025

Change Healthcare can confirm we are experiencing a cybersecurity issue perpetrated by a cybercrime threat actor who has represented itself to us as ALPHV/Blackcat. However, after a $22 million transaction, an affiliate publicly complained on a Russian cybercrime forum, alleging that BlackCat did not pay their fee.

Healthcare 126

Healthcare Data breaches Insurance Cybercrime 126

Security Affairs

OCTOBER 28, 2024

French internet service provider (ISP) Free disclosed a cyber attack, threat actors allegedly had access to customer personal information. Free disclosed a cyber attack over the weekend after a threat actor attempted to sell the stolen data on a popular cybercrime forum. Free S.A.S. million mobile and fixed subscribers.

Cyber Attacks 123

Cyber Attacks Telecommunications Data breaches Banking 123

Security Affairs

JANUARY 20, 2025

Last week, the notorious threat actor IntelBroker announced on a popular cybercrime forum the sale of data allegedly stolen from HPE. ” reads the announcement published on the cybercrime forum. HPE is probing claims by the threat actor IntelBroker who is offering to sell alleged stolen source code and data from the company.

Hacking 116

Hacking Cybercrime Data breaches Information Security 116

Security Affairs

OCTOBER 21, 2024

Internet Archive Zendesk emails sent by the threat actor Source: BleepingComputer The message highlights a poor security posture by the Internet Archive. Hunt will add the information of the impacted users to HIBP very soon. Hunt also verified the authenticity of the information included in the stolen archive.

Internet 125

Internet Internet Data breaches Authentication 125

Security Affairs

JANUARY 15, 2025

A previously unknown threat actor released config files and VPN passwords for Fortinet FortiGate devices on a popular cybercrime forum. ” These findings suggest that the data was likely stolen in the fall of 2022, but it’s unclear how attackers have obtained this information. “The data includes: IPs.

VPN 127

VPN Passwords Firewall Firmware 127

Security Affairs

MAY 23, 2025

These packages were then shared with national authorities in the framework of the Joint Cybercrime Action Taskforce, hosted at Europols headquarters, to enable targeted investigations.” ” said Edvardas ileris, Head of Europols European Cybercrime Centre. ” reads the report published by Europol.

Cybercrime 114

Cybercrime Marketing Scams Encryption 114

Security Affairs

APRIL 2, 2025

FIN7 cybercrime group has been linked to Anubis, a Python-based backdoor that provides remote access to compromised Windows systems. The threat actor FIN7 , also known as Savage Ladybug, has developed a new Python-based malware, named Anubis Backdoor, which allows attackers to gain full remote control over infected Windows systems.

Antivirus 125

Antivirus Cybercrime Malware Encryption 125

Security Affairs

FEBRUARY 6, 2025

The investigation began in early 2024 after data stolen from a Madrid business association was leaked on dark web cybercrime forums. The hacker claimed responsibility for the attacks on multiple cybercrime forums under different monikers to avoid being identified. ” continues the press release. ” concludes the statement.

Cybercrime 77

Cybercrime Government Data breaches Information Security 77

Security Affairs

OCTOBER 20, 2024

CISA adds Fortinet products and Ivanti CSA bugs to its Known Exploited Vulnerabilities catalog Nation-state actor exploited three Ivanti CSA zero-days Dutch police dismantled dual dark web market ‘Bohemia/Cannabia’ macOS HM Surf flaw in TCC allows bypass Safari privacy settings Iran-linked actors target critical infrastructure organizations (..)

Data breaches 115

Data breaches Cybercrime Cyber Insurance Marketing 115

Krebs on Security

APRIL 27, 2023

A shocking number of organizations — including banks and healthcare providers — are leaking private and sensitive information from their public Salesforce Community websites, KrebsOnSecurity has learned. city administrators that at least five different public DC Health websites were leaking sensitive information.

Banking 342

Banking Government Information Security Authentication 342

Security Affairs

MARCH 28, 2025

“Three Saratov residents are suspected of fraud and unauthorized access to computer information. ” The authorities linked the three suspects to over 300 cybercrimes, the police seized servers, computers, storage devices, and bank cards. Mamont spreads via Telegram, Mamont malware is delivered through Telegram channels.

Banking 112

Banking Computers and Electronics Mobile Malware 112

Security Affairs

OCTOBER 13, 2024

The Mexican Drug Cartels Want You Casio: Notice of Partial Service Outage and Information Leak Caused by Ransomware Attack He founded a “startup” to access sanctioned Russian websites: the cyber police of Khmelnytskyi region exposed the hacker Hacked ‘AI Girlfriend’ Data Shows Prompts Describing Child Sexual Abuse Malware Over 300,000!

Data breaches 114

Data breaches Cryptocurrency Cybercrime Artificial Intelligence 114

Security Affairs

DECEMBER 30, 2024

Cisco confirmed the authenticity of the 4GB of leaked data, which was compromised in a recent security breach, marking it as the second leak in the incident. Based on information available to us at this time, we believe that the files referenced in the posts are files that we had previously identified during our investigation and reported on.

Data breaches 121

Data breaches Cybercrime Authentication Technology 121

SecureWorld News

NOVEMBER 14, 2024

Attackers are not only encrypting systems but also targeting sensitive data, including Protected Health Information (PHI) and Personally Identifiable Information (PII), such as diagnoses, therapy records, genetic data, and Social Security numbers. Louis, Missouri.

Healthcare 119

Healthcare Ransomware Identity Theft Data breaches 119

Joseph Steinberg

DECEMBER 11, 2023

Veteran cybersecurity expert witness executive will help strengthen law enforcement capabilities to prevent, investigate, and prosecute information-age crimes. His opinions are frequently cited in books, law journals, security publications, and general interest periodicals; his cybersecurity-related inventions appear in over 500 U.S.

Cybersecurity 278

Cybersecurity Artificial Intelligence CISO Information Security 278

Security Affairs

JANUARY 10, 2025

Experts found a new version of the Banshee macOS information stealer which was enhanced with new evasion mechanisms. The malicious code was advertised on cybercrime forums for $3,000 per month. In August 2024, Russian crooks advertised a macOS malware called BANSHEE Stealer that can target both x86_64 and ARM64 architectures.

Malware 118

Malware Advertising Antivirus Cybercrime 118

Security Affairs

DECEMBER 12, 2024

Law enforcement globally targets these services to combat cybercrime. The police are taking tough action against cybercrime, in whatever form. Booter and stresser services are platforms that enable Distributed Denial-of-Service (DDoS) attacks by overwhelming targets with traffic. The police are also present on the web.”

DDOS 107

DDOS Cybercrime Marketing Hacking 107

Security Affairs

OCTOBER 16, 2024

Over the past few years, USDoD has leaked large amounts of information stolen from major organizations, including Airbus , the FBI’s InfraGard portal, the National Public Data , and TransUnion. “A All information related to the cybercriminal has already been handed over to the authorities. reported TecMundo. “A reported TecMundo.

Data breaches 124

Data breaches Media Cybercrime Accountability 124

Security Affairs

NOVEMBER 25, 2024

Thai authorities arrested members of two Chinese cybercrime organizations, one of these groups carried out SMS blaster attacks. The firms—Huanyun Information Technology, Yun Tian Ke Technology, and Prima Technology—registered over 11,000 numbers and made millions of fraudulent call attempts.

Mobile 121

Mobile Scams Technology Telecommunications 121

Security Affairs

NOVEMBER 11, 2024

Amazon disclosed a data breach exposing employee data, with information allegedly stolen in the May 2023 MOVEit attacks. Amazon disclosed a data breach that exposed employee information after data was allegedly stolen during the May 2023 MOVEit attacks. Exposed data did not include Social Security numbers or financial information.

Data breaches 123

Data breaches Hacking Ransomware Technology 123

Security Affairs

NOVEMBER 5, 2024

Canadian law enforcement agencies arrested a suspect, Alexander “Connor” Moucka (aka Judische and Waifu), who is accused of being responsible for a series of attacks relying on information stolen from the cloud data warehousing platform Snowflake earlier this year.

Unstructured Data 118

Unstructured Data Media Hacking Cybercrime 118

Security Affairs

OCTOBER 29, 2024

“Through Eurojust, authorities were able to quickly exchange information and coordinate actions to take down the infostealers.” Authorities from the Netherlands, the United States, Belgium, Portugal, the United Kingdom and Australia took part in the operation. The following authorities participated in the Operation Magnus.

Identity Theft 122

Identity Theft Malware Passwords Banking 122

Security Affairs

FEBRUARY 5, 2025

In the updated statement published by ICAO, the agency said it is actively investigating reports of a potential information security incident allegedly linked to a threat actor known for targeting international organizations. ” reads the statement published by the International Civil Aviation Organization.

Data breaches 97

Data breaches Information Security Hacking Marketing 97

Security Affairs

DECEMBER 4, 2024

The operation was carried out by Public Prosecutor’s Office in Frankfurt am Main, the Central Office for Combating Cybercrime (ZIT), and the Federal Criminal Police Office (BKA). Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, cybercrime) Now in custody.

Cybercrime 112

Cybercrime Cryptocurrency Hacking Internet 112

Security Affairs

FEBRUARY 10, 2025

The cybercrime group XE Group exploited a VeraCore zero-day to deploy reverse shells, web shells in recent attacks. A recent investigation by researchers from Intezer and Solis Security shed light on the recent operations of the XE Group. ” reads the analysis published by Intezer. ” reads the analysis published by Intezer.

Manufacturing 108

Manufacturing Cybercrime Passwords Authentication 108

Security Boulevard

FEBRUARY 14, 2025

Meanwhile, an informal Tenable poll looks at cloud security challenges. And get the latest on ransomware trends and on cybercrime legislation and prevention! government is urging software makers to adopt secure application-development practices that help prevent buffer overflow attacks.

Banking 64

Banking Cybercrime Cybersecurity Ransomware 64

Security Affairs

OCTOBER 25, 2024

Cybercriminals are adapting and improving their attack techniques at an unprecedented rate, largely due to the rapid evolution of technologies like AI and the rise of Cybercrime-as-a-Service ( CaaS ) business models, and cybersecurity teams must evaluate their defenses to keep pace. Your findings will inform any necessary improvements.

Risk 120

Risk Cybersecurity Data breaches Cyber threats 120