Collecting Cyber-News from over 60 sources

Tag: crypto

Crypto thief earns additional prison time for assaulting witness

Aug 26, 2025 4:54 PM

Tags: crime, crypto, international

Remy Ra St Felix led a vicious international crime ring First seen on theregister.com Jump to article: www.theregister.com/2025/08/26/crypto_thief_witness_assault/
ShadowCaptcha Exploits WordPress Sites to Spread Ransomware, Info Stealers, and Crypto Miners

Aug 26, 2025 2:54 PM

Tags: captcha, crypto, cybercrime, exploit, ransomware, social-engineering, wordpress

A new large-scale campaign has been observed exploiting over 100 compromised WordPress sites to direct site visitors to fake CAPTCHA verification pages that employ the ClickFix social engineering tactic to deliver information stealers, ransomware, and cryptocurrency miners.The large-scale cybercrime campaign, first detected in August 2025, has been codenamed ShadowCaptcha by the Israel National First seen…
Behind the Coinbase breach: Bribery emerges as enterprise threat

Aug 26, 2025 9:54 AM

Tags: access, attack, breach, control, corporate, country, crypto, cybersecurity, data, defense, finance, group, hacker, incident response, india, insurance, intelligence, jobs, malicious, network, password, ransom, ransomware, RedTeam, risk, russia, tactics, threat, training

Coinbase’s widely praised incident response: Coinbase’s transparency, firm stance against the ransom, quick remediation, and willingness to compensate its customers earned wide praise from cybersecurity professionals.According to Coinbase’s Martin, the hackers resorted to paying help desk workers in India precisely because the company had built such a robust security program. Bribery, according to Martin, was…
Social Engineering: Krypto-Anleger verliert Bitcoin im Wert von 90 Millionen USD

Aug 25, 2025 12:54 PM

Tags: crypto, social-engineering

Betrüger haben einen Krypto-Anleger um ein Vermögen gebracht. Der Geschädigte ist nun um 783 Bitcoin ärmer. Das Geld sieht er wohl nie wieder. First seen on golem.de Jump to article: www.golem.de/news/social-engineering-krypto-anleger-verliert-bitcoin-im-wert-von-90-millionen-usd-2508-199488.html
Fake CoinMarketCap Journalists Targeting Crypto Executives in Spear-Phishing Campaign

Aug 23, 2025 12:54 PM

Tags: crypto, data, malware, phishing, spear-phishing, theft

Fake CoinMarketCap journalist profiles used in spear-phishing target crypto execs via Zoom interviews, risking malware, data theft, and… First seen on hackread.com Jump to article: hackread.com/fake-coinmarketcap-journalists-crypto-executives-spear-phishing/
GeoServer Exploits, PolarEdge, and Gayfemboy Push Cybercrime Beyond Traditional Botnets

Aug 23, 2025 10:54 AM

Tags: attack, botnet, crypto, cve, cybercrime, cybersecurity, exploit, iot, malicious, vulnerability

Cybersecurity researchers are calling attention to multiple campaigns that leverage known security vulnerabilities and expose Redis servers to various malicious activities, including leveraging the compromised devices as IoT botnets, residential proxies, or cryptocurrency mining infrastructure.The first set of attacks entails the exploitation of CVE-2024-36401 (CVSS score: 9.8), a critical First seen on thehackernews.com Jump to…
Lumma Operators Deploy Cutting-Edge Evasion Tools to Maintain Stealth and Persistence

Aug 22, 2025 5:54 PM

Tags: credentials, crypto, cyber, cybercrime, data, framework, group, malware, service, tool

Lumma infostealer affiliates’ complex operating framework was revealed by Insikt Group in a ground-breaking report published on August 22, 2025, underscoring their reliance on cutting-edge evasion technologies to support cybercrime operations. The Lumma malware, a prominent malware-as-a-service (MaaS) platform since 2022, facilitates data exfiltration from browsers, cryptocurrency wallets, and system credentials, supported by a decentralized…
Interpol bags 1,209 suspects, $97M in cybercrime operation focused on Africa

Aug 22, 2025 4:54 PM

Tags: crypto, cybercrime, fraud, interpol, scam

Crypto mines, BEC scams, fake passports, and a $300M fraud empire allegedly brought down during Serengeti 2.0 First seen on theregister.com Jump to article: www.theregister.com/2025/08/22/interpol_serengeti_20/
New SHAMOS Malware Targets macOS Through Fake Help Sites to Steal Login Credentials

Aug 21, 2025 2:56 PM

Tags: credentials, crowdstrike, crypto, cyber, cybercrime, cybersecurity, data, group, login, macOS, malware, service

Cybersecurity researchers at CrowdStrike identified and thwarted a sophisticated malware campaign deploying SHAMOS, an advanced variant of the Atomic macOS Stealer (AMOS) malware, orchestrated by the cybercriminal group COOKIE SPIDER. Operating under a malware-as-a-service model, COOKIE SPIDER rents out this information stealer to affiliates who target victims to harvest sensitive data, including login credentials, cryptocurrency…
A Scattered Spider member gets 10 years in prison

Aug 21, 2025 11:54 AM

Tags: crypto, cybercrime, hacker

A 20-year-old Scattered Spider member gets 10 years in prison and $13M restitution for SIM-swapping crypto thefts. Scattered Spider hacker, Noah Michael Urban (20), was sentenced to 10 years in U.S. prison and ordered to pay $13M restitution for SIM-swapping crypto thefts. >>A 20-year-old Palm Coast man linked to a massive cybercriminal gang was sentenced…
Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

Aug 21, 2025 11:54 AM

Tags: crypto, cybercrime, fraud, hacker, identity, theft

A 20-year-old member of the notorious cybercrime gang known as Scattered Spider has been sentenced to ten years in prison in the U.S. in connection with a series of major hacks and cryptocurrency thefts.Noah Michael Urban pleaded guilty to charges related to wire fraud and aggravated identity theft back in April 2025. News of Urban’s…
Smashing Security podcast #431: How to mine millions without paying the bill

Aug 21, 2025 1:54 AM

Tags: cloud, crypto

In episode 431 of the “Smashing Security” podcast, a self-proclaimed crypto-influencer calling himself CP3O thought he had found a shortcut to riches, by racking up millions in unpaid cloud bills. First seen on grahamcluley.com Jump to article: grahamcluley.com/smashing-security-podcast-431/
Britain targets Kyrgyz financial institutions, crypto networks aiding Kremlin

Aug 21, 2025 12:54 AM

Tags: crypto, finance, network, ransomware, russia

The UK has imposed new sanctions on Kyrgyz financial institutions and crypto networks accused of helping Russia evade restrictions. The UK imposed sanctions on Kyrgyz financial institutions and crypto networks accused of aiding Russian sanctions evasion, war funding, and ransomware activities. The U.K. imposed new sanctions on Kyrgyzstan’s Capital Bank and director Kantemir Chalbayev, accused…
Britain targets Kyrgyz crypto networks aiding Kremlin with sanctions

Aug 20, 2025 5:54 PM

Tags: crypto, finance, network, russia

The United Kingdom imposed a new tranche of sanctions targeting financial institutions and cryptocurrency networks in Kyrgyzstan that are accused of facilitating Russian sanctions evasion. First seen on therecord.media Jump to article: therecord.media/britain-targets-kyrgyz-crypto
TRM Launches Industry-Wide Platform to Fight Crypto Crimes

Aug 20, 2025 5:54 PM

Tags: crime, crimes, crypto, law, network

With Beacon Network, TRM Labs has brought together law enforcement and some of the largest crypto exchanges to fight against crypto crimes First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/trm-labs-beacon-network-fight/
TRM Launches Industry-Wide Platform to Fight Crypto Crimes

Aug 20, 2025 5:54 PM

Tags: crime, crimes, crypto, law, network

With Beacon Network, TRM Labs has brought together law enforcement and some of the largest crypto exchanges to fight against crypto crimes First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/trm-labs-beacon-network-fight/
Defending Enterprise Data Against Quantum Encryption Attacks

Aug 20, 2025 2:54 PM

Tags: attack, computer, crypto, cryptography, cybersecurity, data, encryption, linkedin, risk, technology, threat, tool

The quantum cliff is coming. Q-Day is the point in time when quantum computers become powerful enough to break most data encryption. It is inevitable that legacy algorithms will be undermined and the race is on to proactively migrate to modern tools to protect sensitive data. In our latest episode of Cybersecurity Insights, I sat…
AI Website Builder Lovable Abused for Phishing and Malware Scams

Aug 20, 2025 1:54 PM

Tags: ai, credentials, crypto, malware, phishing, scam

Scammers have been spotted abusing AI site builder Lovable to mimic trusted brands, steal credentials, drain crypto wallets,… First seen on hackread.com Jump to article: hackread.com/ai-website-builder-lovable-phishing-malware-scams/
Automation Alert Sounds as Certificates Set to Expire Faster

Aug 19, 2025 10:54 PM

Tags: automation, crypto, encryption

Maximum Validity of Public TLS Certificates Will Drop From 398 Days to Just 47 Days. The future of managing digital certificates is already here – it’s just not evenly distributed yet. With the public TLS certificate validity period set to drop to just 47 days, as well as the need to migrate to quantum-safe encryption,…
New Research Exposes DPRK IT Workers’ Email Addresses and Recruitment Trends

Aug 19, 2025 9:54 PM

Tags: access, blockchain, crypto, cyber, cybersecurity, email, group, microsoft, threat, unauthorized

New cybersecurity research has revealed important details about how DPRK-affiliated IT professionals, who fall under Microsoft’s >>Jasper Sleet
UK Quietly Drops ‘Think of the Children’ Apple iCloud Crypto Crack Call

Aug 19, 2025 6:54 PM

Tags: apple, crypto

ADP E2EE vs. UK: Brits agree to change course, but Tim still shtum. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/08/uk-apple-adp-tulsi-gabbard-jd-vance-richixbw/
UK Quietly Drops ‘Think of the Children’ Apple iCloud Crypto Crack Call

Aug 19, 2025 6:54 PM

Tags: apple, crypto

ADP E2EE vs. UK: Brits agree to change course, but Tim still shtum. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/08/uk-apple-adp-tulsi-gabbard-jd-vance-richixbw/
Malicious npm Packages Target Crypto Developers to Steal Login Credentials

Aug 19, 2025 9:54 AM

Tags: credentials, crypto, cyber, detection, email, login, malicious, technology, threat

A sophisticated threat campaign dubbed >>Solana-Scan>cryptohan
Malicious npm Packages Target Crypto Developers to Steal Login Credentials

Aug 19, 2025 9:54 AM

Tags: credentials, crypto, cyber, detection, email, login, malicious, technology, threat

A sophisticated threat campaign dubbed >>Solana-Scan>cryptohan
Cryptoagility: the strategic pillar for digital resilience

Aug 19, 2025 5:54 AM

Tags: compliance, crypto, cryptography, dora, finance, framework, google, infrastructure, PCI, regulation, resilience, risk, strategy, update, vulnerability

A real case: the Chromecast incident: A real example I personally experienced made me appreciate this approach even more: on 9 March 2025, my second-generation Chromecast stopped working. It displayed the message “Untrusted device” when trying to cast, with no possibility of a solution. This problem was global, affecting users in several countries, and was…
Cryptomining group Kinsing expands operations to Russia, researchers warn

Aug 18, 2025 5:54 PM

Tags: attack, crypto, cybersecurity, group, malware, russia, tool

Russia-based cybersecurity firm F6 said the attacks began in April and infected devices with Kinsing and XMRig malware, tools commonly used to mine the cryptocurrency Monero. First seen on therecord.media Jump to article: therecord.media/cryptomining-group-kinsing-hits-russia
DoJ Seizes $2.8M in Crypto from Zeppelin Ransomware Group

Aug 18, 2025 3:54 PM

Tags: attack, crypto, cyber, cybercrime, group, law, ransomware

The Department of Justice has announced a significant victory against cybercriminals, seizing over $2.8 million in cryptocurrency and additional assets from a Zeppelin ransomware operation. The coordinated law enforcement action targeted Ianis Aleksandrovich Antropenko, who faces federal charges for his role in deploying ransomware attacks against victims worldwide, including numerous American organizations and businesses. Major…
DOJ Seizes $2.8 Million, Indicts Alleged Zeppelin Ransomware Operator

Aug 18, 2025 1:54 PM

Tags: attack, crypto, ransom, ransomware

U.S. authorities seized $2.8 million crypto and $70,000 from Ianis Aleksandrovich Antropenko, who they say used the Zeppelin ransomware to attack companies in the United States and elsewhere and then laundered the cryptocurrency used to pay the ransoms through a crypto mixer and by exchanging it for cash. First seen on securityboulevard.com Jump to article:…
Cryptojacking: Influencer bereichert sich an teuren Cloudressourcen

Aug 18, 2025 12:54 PM

Tags: crypto

Ein Krypto-Influencer wollte auf Youtube zeigen, wie man reich wird. Für seinen eigenen Geldsegen hat er jedoch zwei Cloudanbieter betrogen. First seen on golem.de Jump to article: www.golem.de/news/cryptojacking-influencer-bereichert-sich-an-teuren-cloudressourcen-2508-199269.html
DoJ seizes $2.8M linked to Zeppelin Ransomware

Aug 18, 2025 10:54 AM

Tags: crypto, ransomware

DoJ seized $2.8M in crypto from Ianis Antropenko, indicted in Texas and tied to the defunct Zeppelin ransomware. The U.S. Department of Justice (DoJ) seized more than $2.8 million in cryptocurrency from Ianis Aleksandrovich Antropenko. Antropenko was allegedly involved in now defunct Zeppelin ransomware operation (2019 2022), he also laundered proceeds via ChipMixer and structured […]…