Krebs on Security

DECEMBER 29, 2024

Maybe it’s indelicate to celebrate the birthday of a cybercrime blog that mostly publishes bad news, but happily many of 2024’s most engrossing security stories were about bad things happening to bad guys. Image: Shutterstock, Dreamansions. KrebsOnSecurity.com turns 15 years old today!

Scams

Malwarebytes

MAY 9, 2025

Google has expressed plans to use Artificial Intelligence (AI) to stop tech support scams in Chrome. With the launch of Chrome version 137, Google plans to use the on-device Gemini Nano large language model (LLM) to recognize and block tech support scams. Which also makes them think their system is actually infected.

Scams

Malwarebytes

JUNE 18, 2025

It’s here that people are most likely to find phishing attempts, romance scams, sextortion threats, and more, and it’s here that everyday people should stay most cautious when receiving messages from unknown senders or in responding to allegedly urgent requests for money or information.

Scams

The Hacker News

JULY 14, 2025

India's Central Bureau of Investigation (CBI) has announced that it has taken steps to dismantle what it said was a transnational cybercrime syndicate that carried out "sophisticated" tech support scams targeting citizens of Australia and the United Kingdom.

Scams

Malwarebytes

JUNE 9, 2025

If you’ve been scammed it’s really important to report it, if you can, in order to help prevent others falling for the same scam, and give authorities a chance to catch the criminal who did it. How to report a scam in Canada Canadian Anti-Fraud Centre (CAFC): Call 1-888-495-8501 or report online.

Scams

Security Affairs

FEBRUARY 3, 2025

The Russian-speaking Crazy Evil group runs over 10 social media scams, tricking victims into installing StealC, AMOS, and Angel Drainer malware. Security experts identified six Crazy Evil’s subteams, called AVLAND, TYPED, DELAND, ZOOMLAND, DEFI, and KEVLAND, which are running targeted scams for specific victim profiles.

Scams

Security Boulevard

OCTOBER 29, 2024

Halloween-themed spam has risen sharply this season, with Bitdefender reporting that 40% of these emails contain malicious content designed to scam users or harvest personal data. The post Spooky Spam, Scary Scams: Halloween Threats Rise appeared first on Security Boulevard.

Scams

Krebs on Security

NOVEMBER 1, 2024

We’ll also explore an array of cybercrime services aimed at phishers who target hotels that rely on the world’s most visited travel website. A scan of social media networks showed this is not an uncommon scam. A number of cybercriminal innovations are making it easier for scammers to cash in on your upcoming travel plans.

Phishing

Krebs on Security

MAY 28, 2025

This wasnt just a scam operation – it was essentially a cybercrime university that empowered fraudsters globally, NCCIA Director Abdul Ghaffar said at a press briefing. Prior to folding their operations behind WeCodeSolutions, Shahzad and others arrested this month operated as a web hosting group calling itself The Manipulaters.

Malware

We Live Security

JULY 4, 2025

Here’s how to avoid getting played by gamified job scams. In 2024 alone, employment scams reported to the FBI made fraudsters over $264 million. Many of these are so-called “task scams,” where victims are actually tricked into paying a “deposit” in order to get paid. It might sound unbelievable.

Scams

Security Affairs

NOVEMBER 27, 2024

“Operation Serengeti (2 September – 31 October) targeted criminals behind ransomware, business email compromise (BEC), digital extortion and online scams – all identified as prominent threats in the 2024 Africa Cyber Threat Assessment Report.” Nigerian authorities arrested a man behind a $300K crypto scam.

Scams

SecureWorld News

FEBRUARY 3, 2025

In a significant victory against cybercrime, U.S. Department of Justice (DOJ) , the seized domains were actively facilitating the sale of phishing kits, scam pages, and other fraud tools, which were then used by transnational organized crime groups to conduct business email compromise (BEC) schemes. According to the U.S.

Phishing

SecureWorld News

FEBRUARY 14, 2025

Last year saw a 110% rise in cybercrime in the lead up to Valentine's Day. Be wary of romance scams "People can be vulnerable on February 14th," said Dave Machin , Partner at The Berkeley Partnership. "If Verify charities before donating Scam emails and messages impersonating charities are common.

Scams

Security Affairs

JULY 1, 2025

Europol busted a crypto scam ring that laundered €460M from 5,000+ victims. Europol has taken down a massive cryptocurrency fraud ring that scammed over 5,000 people worldwide, laundering around €460 million ($540 million). Operation Borrelli involved Spain, the U.S., France, and Estonia.

Scams

SecureWorld News

MAY 14, 2025

The FBI's Internet Crime Complaint Center (IC3) has released its 2024 Internet Crime Report, marking a record-breaking year in cybercrime. This demographic was frequently targeted by tech support scams, romance scams, and crypto investment frauds. The report highlights a staggering $16.6 billion in losses. billion in losses.

Cybercrime

Malwarebytes

OCTOBER 15, 2024

Political ads could be hiding online scams, many people feel, and the election, they say, will likely fall victim to some type of “cyber interference.” 52% are “very concerned” or “concerned” about “falling prey to a scam when interacting with political messages.”

Scams

Krebs on Security

JANUARY 7, 2025

Before we get to the Apple scam in detail, we need to revisit Tony’s case. ” Perm is the current administrator of Star Fraud , one of the more consequential cybercrime communities on Telegram and one that has emerged as a foundry of innovation in voice phishing attacks. The phishing domain used to steal roughly $4.7

Phishing

Security Affairs

APRIL 7, 2025

A 20-year-old man linked to the Scattered Spider cybercrime group has pleaded guilty to charges filed in Florida and California. ” Source News4Jax The charges relate to his alleged role in the Scattered Spider cybercrime group (also known as UNC3944 , 0ktapus ). .” ” reported News4Jax. In January 2024, U.S.

Cybercrime

SecureWorld News

MARCH 18, 2025

In recent months, a sophisticated scam has emerged, targeting drivers across the United States with fraudulent text messages about unpaid road tolls. Smishing scams like these follow a predictable yet highly effective, nefarious behavioral blueprintleveraging urgency, impersonation, and fear to manipulate victims into compliance.

Scams

Malwarebytes

AUGUST 7, 2025

The attacks underscore the vulnerability that all businesses face—large or small—in preventing cyberattacks that begin through basic social engineering scams. But once ensnared in the phone scam, employees are tricked into entering an 8-digit code that will connect to a data exfiltration program owned and operated entirely by the hackers.

Scams

Google Security

MAY 8, 2025

Posted by Jasika Bawa, Andy Lim, and Xinghui Lu, Google Chrome Security Tech support scams are an increasingly prevalent form of cybercrime, characterized by deceptive tactics aimed at extorting money or gaining unauthorized access to sensitive data. But why on-device? This information is then sent to Safe Browsing for a final verdict.

Scams

Security Affairs

OCTOBER 14, 2024

Dutch police dismantled Bohemia/Cannabia, two major dark web markets for illegal goods, drugs, and cybercrime services. These are two of the largest and longest-running dark web platforms for the trade of illegal goods, drugs, and cybercrime services. ” reads the announcement published by Polite.

Marketing

Security Affairs

MARCH 24, 2025

The FBI warns of a significant increase in scams involving free online document converters to infect users with malware. “The FBI Denver Field Office is warning that agents are increasingly seeing a scam involving free online document converter tools, and we want to encourage victims to report instances of this scam.”

Malware

Security Affairs

APRIL 7, 2025

A campaign named PoisonSeed uses stolen CRM and bulk email credentials to send crypto seed scams, aiming to empty victims’ digital wallets. Though distinct from groups like Scattered Spider and CryptoChameleon , the attack reflects growing threats in the broader The Com cybercrime ecosystem.

Scams

SecureWorld News

MARCH 27, 2025

In today's digital world, cybercrime is a threat to our private data and security. And with Americans owning an average of 24 electronic items in their homes , neglecting to dispose of these items correctly is putting individuals at significant risk of cybercrime. What is cybercrime?

Cybercrime

Security Affairs

DECEMBER 2, 2024

Operation HAECHI V (July-Nov 2024) targeted cyber frauds like phishing, romance scams, sextortion, investment fraud, online gambling, BEC, and e-commerce fraud. The authorities have warned of “USDT Token Approval Scam” that allows scammers access to the victims’ cryptocurrency wallets and make unauthorized transactions.

Cryptocurrency

Krebs on Security

NOVEMBER 21, 2024

The targeted SMS scams asked employees to click a link and log in at a website that mimicked their employer’s Okta authentication page. Some SMS phishing messages told employees their VPN credentials were expiring and needed to be changed; other phishing messages advised employees about changes to their upcoming work schedule. .”

Identity Theft

Security Affairs

MAY 23, 2025

These packages were then shared with national authorities in the framework of the Joint Cybercrime Action Taskforce, hosted at Europols headquarters, to enable targeted investigations.” ” said Edvardas ileris, Head of Europols European Cybercrime Centre. ” reads the report published by Europol.

Cybercrime

Krebs on Security

NOVEMBER 14, 2024

That investigation detailed how the 38-year-old Shefel adopted the nickname Rescator while working as vice president of payments at ChronoPay , a Russian financial company that paid spammers to advertise fake antivirus scams, male enhancement drugs and knockoff pharmaceuticals. “I’m also godfather of his second son.”

Advertising

Security Affairs

NOVEMBER 25, 2024

Thai authorities arrested members of two Chinese cybercrime organizations, one of these groups carried out SMS blaster attacks. Thai authorities uncovered call center gangs using fake “02” numbers to deceive citizens into scams and fraudulent investments, generating over 700 million calls.

Mobile

Security Boulevard

DECEMBER 23, 2024

The post Best of 2024: Massive Online Shopping Scam Racks Up 850,000 Victims appeared first on Security Boulevard. Chinese crooks are running a global network of more than 75,000 fake online shops to steal credit card data and process fraudulent payments.

Scams

Security Boulevard

FEBRUARY 12, 2025

As Valentines Day approaches, cybercriminals are ramping up their efforts to exploit consumers through romance scams, phishing campaigns and fraudulent e-commerce offers. The post Cybercriminals Exploit Valentines Day with Romance Scams, Phishing Attacks appeared first on Security Boulevard.

Scams

Krebs on Security

APRIL 10, 2025

But experts say these groups are now directly targeting customers of international financial institutions, while dramatically expanding their cybercrime infrastructure and support staff. Phishers using multiple virtualized Android devices to orchestrate and distribute RCS-based scam campaigns. Image: Prodaft. Image: Prodaft.

Phishing

SecureWorld News

MARCH 20, 2025

March Madness is here, and while fans are busy filling out brackets and making last-minute bets, cybercriminals are running their own full-court presstargeting unsuspecting fans with phishing scams, fake betting apps, and credential-harvesting schemes.

Scams

Security Affairs

DECEMBER 1, 2024

For a monthly fee, attackers can access sophisticated services that automate the creation of fraudulent emails, increasing the efficiency of their scams. These services allow attackers with minimal technical expertise to execute advanced attacks, democratizing cybercrime.

Artificial Intelligence

eSecurity Planet

JULY 14, 2025

Airlines become top targets Airlines are now a prime focus for cybercrime groups. She stressed that even if a breach didn’t directly impact you, your information could still be used in phishing scams or identity theft. Within just one week, Hawaiian Airlines and Australian carrier Qantas were both hit with attacks.

Insurance

Security Affairs

MARCH 29, 2025

million in USDT stolen through ‘romance baiting’ scams, where victims are tricked into fake investments promising high returns. in USDT (Tether) linked to a ‘romance baiting’ scam. The scam involves emotional manipulation, leaving victims financially devastated and reluctant to report the fraud.

Scams