Media and Web Fraud - Cyber Security Informer

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown

Krebs on Security

OCTOBER 17, 2024

Image: FBI Active since at least January 2023, AnonSudan has been described in media reports as a “hacktivist” group motivated by ideological causes. The younger brother is facing charges that could land him life in prison for allegedly seeking to kill people with his attacks.

DDOS

DDOS Government Internet Internet

How Cryptocurrency Turns to Cash in Russian Banks

Krebs on Security

DECEMBER 11, 2024

wtf, and PQHosting ; -sites selling aged email, financial, or social media accounts, such as verif[.]work Sanders said he first encountered some of these services while investigating Kremlin-funded disinformation efforts in Ukraine, as they are all useful in assembling large-scale, anonymous social media campaigns. work and kopeechka[.]store

Cryptocurrency

Cryptocurrency Banking Cybercrime Advertising

Booking.com Phishers May Leave You With Reservations

Krebs on Security

NOVEMBER 1, 2024

A scan of social media networks showed this is not an uncommon scam. It’s unclear, however, if the company’s 2FA requirement is enforced for all or just newer partners. Booking.com did not respond to questions about that, and its current account security advice urges customers to enable 2FA.

Phishing

Phishing Accountability Artificial Intelligence Cybercrime

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

A review of EDR vendors across many cybercrime forums shows that some fake EDR vendors sell the ability to send phony police requests to specific social media platforms, including forged court-approved documents. .” An ad from Pwnstar for fake EDR services. “Unlimited Emergency Data Requests.

Hacking

Hacking Accountability Government Social Engineering

Two Charged in SIM Swapping, Vishing Scams

Krebs on Security

NOVEMBER 3, 2020

Two young men from the eastern United States have been hit with identity theft and conspiracy charges for allegedly stealing bitcoin and social media accounts by tricking employees at wireless phone companies into giving away credentials needed to remotely access and modify customer account information. Prosecutors say Jordan K.

Scams

Scams Wireless Identity Theft Mobile

Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

Krebs on Security

FEBRUARY 4, 2021

At the center of the account ban wave are some of the most active members of OGUsers , a forum that caters to thousands of people selling access to hijacked social media and other online accounts. “ Amp ,” a major middleman and account seller on OGUusers.

Accountability

Accountability Hacking Media Mobile

E-Crime Rapper ‘Punchmade Dev’ Debuts Card Shop

Krebs on Security

JANUARY 17, 2024

The rapper and social media personality Punchmade Dev is perhaps best known for his flashy videos singing the praises of a cybercrime lifestyle. Punchmade Dev’s most controversial mix — a rap called “Wire Fraud Tutorial” — was taken down by Youtube last summer for violating the site’s rules.

Cybercrime

Cybercrime Media Banking Accountability

A Deep Dive Into the Residential Proxy Service ‘911’

Krebs on Security

JULY 18, 2022

Residential proxy services are often marketed to people seeking the ability to evade country-specific blocking by the major movie and media streaming providers. 911’s EULA would later change its company name and address in 2017, to International Media Ltd. in the British Virgin Islands.

VPN

VPN Computers and Electronics Antivirus Software

U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs

Krebs on Security

MAY 16, 2020

The alert follows news reports by media outlets in Washington and Rhode Island about millions of dollars in fraudulent unemployment claims in those states. The investigator said in some states fraudsters need only to submit someone’s name, Social Security number and other basic information for their claims to be processed.

Insurance

Insurance Banking Identity Theft Accountability

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

Kilmer said Faceless has emerged as one of the underground’s most reliable malware-based proxy services, mainly because its proxy network has traditionally included a great many compromised “Internet of Things” devices — such as media sharing servers — that are seldom included on malware or spam block lists.

Malware

Malware Passwords Accountability Advertising

PayPal Phishing Scam Uses Invoices Sent Via PayPal

Krebs on Security

AUGUST 18, 2022

Details of this scam were shared Wednesday with PayPal’s anti-abuse (phish@paypal.com) and media relations teams. The invoices appear to have been sent from a compromised or fraudulent PayPal Business account , which allows users to send invoices like the one shown above.

Scams

Scams Phishing Accountability Software

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

“InfraGard is a social media intelligence hub for high profile persons,” USDoD said. USDoD said after their InfraGard membership was approved, they asked a friend to code a script in Python to query that API and retrieve all available InfraGard user data. “They even got [a] forum to discuss things.”

Hacking

Hacking Energy and Utilities Cybercrime Accountability

How Do You Fight a $12B Fraud Problem? One Scammer at a Time

Krebs on Security

OCTOBER 25, 2018

How does online dating fraud fit into the BEC scam? But their primary target is female widows who are active on social media sites. There are a lot of moving parts to the BEC scam, including lots of romance scam social media accounts, multiple email providers, and bank accounts tied to money mules that get pulled into these scams.

Scams

Scams Accountability Media Banking

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Krebs on Security

JUNE 15, 2024

In that incident, the attackers exploited a security vulnerability in a Plex media server that the employee was running on his home network, and succeeded in installing malicious software that stole passwords and other authentication credentials.

Hacking

Hacking Phishing Cybercrime Passwords

Sued by Meta, Freenom Halts Domain Registrations

Krebs on Security

MARCH 7, 2023

On March 3, 2023, social media giant Meta sued Freenom in a Northern California court, alleging cybersquatting violations and trademark infringement.

Phishing

Phishing Media Internet Internet

Discord Admins Hacked by Malicious Bookmarks

Krebs on Security

MAY 30, 2023

“The interesting thing [is] that I didn’t use Discord since few months or even social media because of the political status of Turkey,” Levatax explained, referring to the recent election in his country.

Hacking

Hacking Accountability Scams Cryptocurrency

How Coinbase Phishers Steal One-Time Passwords

Krebs on Security

OCTOBER 13, 2021

The best advice to sidestep phishing scams is to avoid clicking on links that arrive unbidden in emails, text messages or other media. However, when viewed in a mobile device, many visitors to such a domain may only see the subdomain portion of the URL in their mobile browser’s address bar.

Passwords

Passwords Phishing Accountability Mobile

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

Krebs on Security

FEBRUARY 8, 2021

According to this comprehensive breakdown of the phishing toolkit , the U-Admin control panel isn’t sold on its own, but rather it is included when customers contact the developer and purchase a set of phishing pages designed to mimic a specific brand — such as a bank website or social media platform.

Phishing

Phishing Scams Banking Mobile

The Rise of One-Time Password Interception Bots

Krebs on Security

SEPTEMBER 29, 2021

Some services also target other popular social media platforms or financial services, providing email phishing and SIM swapping capabilities.”

Passwords

Passwords Mobile Authentication Banking

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Krebs on Security

NOVEMBER 21, 2020

Actively scan and monitor web applications for unauthorized access, modification, and anomalous activities. Verify web links do not have misspellings or contain the wrong domain. Restrict VPN access hours, where applicable, to mitigate access outside of allowed times.

Cryptocurrency

Cryptocurrency VPN Scams Social Engineering

911 Proxy Service Implodes After Disclosing Breach

Krebs on Security

JULY 29, 2022

re is was one of the original “residential proxy” networks, which allow someone to rent a residential IP address to use as a relay for his/her Internet communications, providing anonymity and the advantage of being perceived as a residential user surfing the web.

Cybercrime

Cybercrime Software VPN Backups

It’s Way Too Easy to Get a.gov Domain Name

Krebs on Security

NOVEMBER 26, 2019

But a cybercriminal — particularly a state-sponsored actor operating outside the United States — likely would not hesitate to do so if he thought registering a.gov was worth it to make his malicious website, emails or fake news social media campaign more believable. “I assumed there would be at least ID verification.

Government

Government Internet Internet Web Fraud

Who’s Behind the ‘Web Listings’ Mail Scam?

Krebs on Security

MARCH 23, 2020

It says investigations by the media have found the company promises much larger compensation rates that employees actually receive. “It is also criticized for being a cult, a scam and a pyramid scheme,” the entry reads.

Scams

Scams Marketing Internet Internet

When Low-Tech Hacks Cause High-Impact Breaches

Krebs on Security

FEBRUARY 26, 2023

Web hosting giant GoDaddy made headlines this month when it disclosed that a multi-year breach allowed intruders to steal company source code, siphon customer and employee login credentials, and foist malware on customer websites.

Hacking

Hacking Social Engineering Phishing Scams

Massive Losses Define Epidemic of ‘Pig Butchering’

Krebs on Security

JULY 21, 2022

The term “pig butchering” refers to a time-tested, heavily scripted, and human-intensive process of using fake profiles on dating apps and social media to lure people into investing in elaborate scams. In a more visceral sense, pig butchering means fattening up a prey before the slaughter.

Scams

Scams Cryptocurrency Marketing Internet

Judge Orders U.S. Lawyer in Russian Botnet Case to Pay Google

Krebs on Security

DECEMBER 5, 2022

Glupteba is a rootkit that steals passwords and other access credentials, disables security software, and tries to compromise other devices on the victim network — such as Internet routers and media storage servers — for use in relaying spam or other malicious traffic.

Cybercrime

Cybercrime Malware Internet Internet

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Krebs on Security

SEPTEMBER 5, 2023

“This was accomplished by targeting the DevOps engineer’s home computer and exploiting a vulnerable third-party media software package, which enabled remote code execution capability and allowed the threat actor to implant keylogger malware,” LastPass officials wrote.

Cryptocurrency

Cryptocurrency Passwords Encryption Accountability

Fake Lawsuit Threat Exposes Privnote Phishing Sites

Krebs on Security

APRIL 4, 2024

In August 2019, a slew of websites and social media channels dubbed “HKLEAKS” began doxing the identities and personal information of pro-democracy activists in Hong Kong. A review of the passive DNS records tied to this address shows that apart from subdomains dedicated to tornote[.]io,

Phishing

Phishing Cryptocurrency DDOS Internet

Beware of Hurricane Florence Relief Scams

Krebs on Security

SEPTEMBER 24, 2018

Never click on links or attachments in emails or social media messages that you weren’t expecting. Finally, remember that phishers and malware purveyors love to seize on the latest disasters to further their schemes.

Scams

Scams Accountability Media Web Fraud

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

In that incident, the attackers exploited a security vulnerability in a Plex media server that the employee was running on his home network, and succeeded in installing malicious software that stole passwords and other authentication credentials.

Social Engineering

Social Engineering Mobile Passwords Cybercrime

Glut of Fake LinkedIn Profiles Pits HR Against the Bots

Krebs on Security

OCTOBER 5, 2022

Miller said that after months of complaining and sharing fake profile information with LinkedIn, the social media network appeared to do something which caused the volume of group membership requests from phony accounts to drop precipitously. Miller said these profiles are all listed in the order they appeared.

Accountability

Accountability Scams Artificial Intelligence Cryptocurrency

Who’s Behind the Botnet-Based Service BHProxies?

Krebs on Security

FEBRUARY 24, 2023

Tawfik’s Instagram account says he is a former operations manager at the social media network TikTok , as well as a former director at Crypto.com. Constella also connects legendboy2050 to Facebook and Instagram accounts for one Abdala Tawfik from Cairo. This user’s Facebook page says Tawfik also uses the name Abdalla Khafagy.

Accountability

Accountability Advertising Marketing Malware

The Link Between AWM Proxy & the Glupteba Botnet

Krebs on Security

JUNE 28, 2022

A report from the Polish computer emergency response team (CERT Orange Polksa) found Glupteba was by far the biggest malware threat in 2021.

Passwords

Passwords Malware Internet Internet

Service Rents Email Addresses for Account Signups

Krebs on Security

JUNE 6, 2023

In May, KrebsOnSecurity interviewed a Russian spammer named “ Quotpw “ who was mass-registering accounts on the social media network Mastodon in order to conduct a series of huge spam campaigns advertising scam cryptocurrency investment platforms. .” We don’t have to look very far for examples of Kopeechka in action.

Accountability

Accountability Scams Cryptocurrency Advertising

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Krebs on Security

SEPTEMBER 26, 2024

Ivanov appears to have little to no social media presence, but the 40-year-old woman he lives with in St. A source with knowledge of the investigation told KrebsOnSecurity that Taleon is a pilot who owns and flies around in his own helicopter.

Cryptocurrency

Cryptocurrency Cybercrime Retail Government

Busting SIM Swappers and SIM Swap Myths

Krebs on Security

NOVEMBER 6, 2018

This includes people who run or work at cryptocurrency-focused companies; those who participate as speakers at public conferences centered around Blockchain and cryptocurrency technologies; and those who like to talk openly on social media about their crypto investments.

Mobile

Mobile Cryptocurrency Accountability Passwords

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

Krebs on Security

JANUARY 22, 2019

. ; Facebook ; Gap (Apparel) Inc ; Fifth Third Bancorp ; Hearst Communications ; Hilton Interntional ; ING Bank ; the Massachusetts Institute of Technology (MIT); McDonalds Corp. ; NBC Universal Media ; NRG Energy ; Oath, Inc (a.k.a Yahoo + AOL) ; Oracle ; Tesla Motors ; Time Warner ; US Bank; US Steel Corp.;

DNS

DNS Internet Internet Computers and Electronics

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

Security Boulevard

MARCH 31, 2022

On Tuesday, KrebsOnSecurity warned that hackers increasingly are using compromised government and police department email accounts to obtain sensitive customer data from mobile providers, ISPs and social media companies. Today, one of the U.S.

Mobile

Mobile Media Government Accountability

When Low-Tech Hacks Cause High-Impact Breaches

Security Boulevard

FEBRUARY 26, 2023

Web hosting giant GoDaddy made headlines this month when it disclosed that a multi-year breach allowed intruders to steal company source code, siphon customer and employee login credentials, and foist malware on customer websites.

Hacking

Hacking Phishing Media Malware

Two U.S. Men Charged in 2022 Hacking of DEA Portal

Krebs on Security

MARCH 14, 2023

“Singh also uses the threat of revealing personal information to extort victims into giving him access to their social media accounts, which Singh then resells.” That story showed that the previous owner of the Doxbin also was part of a teenage hacking group that specialized in offering fake EDRs as a service on the dark web.

Hacking

Hacking Government Media Accountability

‘ValidCC,’ a Major Payment Card Bazaar and Looter of E-Commerce Sites, Shuttered

Krebs on Security

FEBRUARY 2, 2021

” Group-IB said ValidCC was one of many cybercrime shops that stored some or all of its operational components at Media Land LLC , a major “bulletproof hosting” provider that supports a vast array of phishing sites, cybercrime forums and malware download servers.

Cybercrime

Cybercrime Media Accountability Hacking

Google Suspends Chinese E-Commerce App Pinduoduo Over Malware

Krebs on Security

MARCH 22, 2023

On March 4, 2023, e-commerce expert Liu Huafang posted on the Chinese social media network Weibo that Pinduoduo’s app was using security vulnerabilities to gain market share by stealing user data from its competitors. That Weibo post has since been deleted.

Malware

Malware eCommerce Mobile Media

Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

Krebs on Security

MARCH 22, 2024

Data brokers also can enrich consumer records with additional information, by adding social media data and known associates. It also appears many of their businesses have ties to a California marketing firm that works with a Russian state-run media conglomerate currently sanctioned by the U.S. government.

Media

Media Government Data breaches Marketing

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

Krebs on Security

MARCH 31, 2022

On Tuesday, KrebsOnSecurity warned that hackers increasingly are using compromised government and police department email accounts to obtain sensitive customer data from mobile providers, ISPs and social media companies. Today, one of the U.S.

Government

Government Accountability Education Media

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown

How Cryptocurrency Turns to Cash in Russian Banks

Trending Sources

Booking.com Phishers May Leave You With Reservations

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Two Charged in SIM Swapping, Vishing Scams

Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

E-Crime Rapper ‘Punchmade Dev’ Debuts Card Shop

A Deep Dive Into the Residential Proxy Service ‘911’

U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs

Giving a Face to the Malware Proxy Service ‘Faceless’

PayPal Phishing Scam Uses Invoices Sent Via PayPal

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

How Do You Fight a $12B Fraud Problem? One Scammer at a Time

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Sued by Meta, Freenom Halts Domain Registrations

Discord Admins Hacked by Malicious Bookmarks

How Coinbase Phishers Steal One-Time Passwords

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

The Rise of One-Time Password Interception Bots

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

911 Proxy Service Implodes After Disclosing Breach

It’s Way Too Easy to Get a.gov Domain Name

Who’s Behind the ‘Web Listings’ Mail Scam?

When Low-Tech Hacks Cause High-Impact Breaches

Massive Losses Define Epidemic of ‘Pig Butchering’

Judge Orders U.S. Lawyer in Russian Botnet Case to Pay Google

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Fake Lawsuit Threat Exposes Privnote Phishing Sites

Beware of Hurricane Florence Relief Scams

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Glut of Fake LinkedIn Profiles Pits HR Against the Bots

Who’s Behind the Botnet-Based Service BHProxies?

The Link Between AWM Proxy & the Glupteba Botnet

Service Rents Email Addresses for Account Signups

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Busting SIM Swappers and SIM Swap Myths

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

When Low-Tech Hacks Cause High-Impact Breaches

Two U.S. Men Charged in 2022 Hacking of DEA Portal

‘ValidCC,’ a Major Payment Card Bazaar and Looter of E-Commerce Sites, Shuttered

Google Suspends Chinese E-Commerce App Pinduoduo Over Malware

Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

Stay Connected