Tag: cybercrime

SLH Offers $500$1,000 Per Call to Recruit Women for IT Help Desk Vishing Attacks

Feb 25, 2026 5:37 PM

Tags: attack, cybercrime, finance, group, jobs, phishing, social-engineering, threat

The notorious cybercrime collective known as Scattered LAPSUS$ Hunters (SLH) has been observed offering financial incentives to recruit women to pull off social engineering attacks.The idea is to hire them for voice phishing campaigns targeting IT help desks, Dataminr said in a new threat brief. The group is said to be offering anywhere between $500…
Cybercriminals Exploit Fake Avast Website to Steal Users Credit Card Information

Feb 25, 2026 10:37 AM

Tags: credit-card, cyber, cybercrime, exploit, phishing

Cybercriminals have launched a convincing phishing operation by building a fake Avast website designed to steal credit card information from unsuspecting visitors. The fraudulent page mimics Avast’s official portal almost perfectly, complete with the genuine Avast logo pulled directly from the company’s content delivery network. It displays regular navigation links like “Home,” “My Account,” and…
Operation Red Card 2.0 Leads to 651 Arrests in Africa

Feb 25, 2026 9:37 AM

Tags: cybercrime, cybersecurity, group, interpol, law

In the latest operation targeting cybercrime groups, African law enforcement agencies cooperated with Interpol and cybersecurity firms to recover more than USD 4.3 million. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/operation-red-card-2-0-leads-to-651-arrests-in-africa
Cyber defense: From reactive to proactive

Feb 24, 2026 9:02 PM

Tags: access, ai, attack, automation, business, cloud, control, corporate, cyber, cybercrime, cybersecurity, data, deep-fake, defense, detection, endpoint, google, infrastructure, intelligence, malware, microsoft, monitoring, phishing, ransomware, resilience, risk, service, social-engineering, threat

“It’s a cat-and-mouse situation. AI is changing the speed and sophistication of attacks, and AI is making phishing and social engineering attacks, thanks to deep fakes, harder to detect,” said Kevin McCall, director, cybersecurity, risk, and regulatory at PwC US, speaking during a webcast titled, “From Risk to Resilience: Building a Smarter Cloud Security Strategy.”McCall…
Threat groups move at record speeds, as AI helps scale attacks

Feb 24, 2026 7:02 PM

Tags: ai, attack, crowdstrike, cybercrime, group, threat

A report by CrowdStrike shows cybercrime groups are outpacing security teams and increasingly abusing legitimate tools. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/threat-groups-record-speeds-ai-attacks/812965/
Threat groups moving at record speeds, as AI helps scale attacks

Feb 24, 2026 6:00 PM

Tags: ai, attack, crowdstrike, cybercrime, group, threat

A report by CrowdStrike shows cybercrime groups are outpacing security teams and increasingly abusing legitimate tools. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/threat-groups-record-speeds-ai-attacks/812965/
Cybercriminals Exploit Windows Management Instrumentation WMI to Maintain Stealthy Access and Silent Control

Feb 24, 2026 2:02 PM

Tags: access, control, cyber, cybercrime, exploit, infrastructure, malware, startup, strategy, windows

Windows Management Instrumentation (WMI) is a critical utility built into the Windows operating system designed to help administrators monitor status and automate routine tasks. However, cybercriminals have increasingly weaponized this legitimate infrastructure to maintain persistent access to compromised networks. Unlike traditional malware strategies that rely on visible startup folders or registry run keys, WMI abuse…
AI Arms Race Shrinks Breakout Time to 29 Minutes as Adversaries Turn GenAI on the Enterprise

Feb 24, 2026 12:00 PM

Tags: ai, attack, crowdstrike, cybercrime, identity, intelligence, threat

Artificial intelligence is no longer just a defensive tool; it is now a core accelerant for cybercriminals and nation-state actors alike. That is the central message from CrowdStrike’s newly released 2026 Global Threat Report, which paints 2025 as the “year of the evasive adversary”, defined by speed, identity abuse and direct attacks on AI systems…
Romanian Cybercriminal Admits Guilt in Scheme Selling Oregon State Government Network Access

Feb 24, 2026 12:00 PM

Tags: access, credentials, cyber, cybercrime, government, network, office, unauthorized

A Romanian national has pleaded guilty to charges related to unauthorized access and sale of network credentials belonging to an Oregon state government office and multiple other U.S. victims, the U.S. Department of Justice announced on February 20, 2026. Catalin Dragomir, 45, formerly of Constanta, Romania, admitted to breaking into the Oregon state government office’s…
Odido Faces Alleged Data Breach as ShinyHunters Claims 21M Records Exposed

Feb 24, 2026 8:01 AM

Tags: breach, cyber, cybercrime, data, data-breach, group

A notorious cybercriminal group, ShinyHunters, has claimed responsibility for a massive data breach involving Odido and BEN, exposing millions of customer records. The group asserts that Odido, a Dutch telecommunications provider, was not truthful in its initial disclosure of the incident. This development suggests the breach may be significantly larger and more severe than initially…
AWS says more than 600 FortiGate firewalls hit in AI-augmented campaign

Feb 23, 2026 1:01 PM

Tags: ai, cybercrime, firewall, group, russia, tool

Off-the-shelf tools helped Russian-speaking cybercrime group run riot First seen on theregister.com Jump to article: www.theregister.com/2026/02/23/aws_fortigate_firewalls/
AI-powered campaign compromises 600 FortiGate systems worldwide

Feb 23, 2026 1:01 PM

Tags: ai, cybercrime, intelligence, russia, service, threat, tool

A Russian-speaking cybercriminal used commercial generative AI tools to hack over 600 FortiGate devices across 55 countries. Amazon Threat Intelligence reports that a Russian-speaking, financially motivated threat actor used commercial generative AI services to compromise more than 600 FortiGate devices in 55 countries. The activity, observed between January 11 and February 18, 2026, highlights how…
Police seize 100,000 stolen Facebook credentials in cybercrime raid

Feb 23, 2026 12:01 PM

Tags: breach, credentials, cybercrime, group, organized, phishing

Officers from Poland’s Central Bureau for Combating Cybercrime (CBZC) dismantled an organized group that used phishing to seize Facebook accounts and extract BLIK payment … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/23/poland-cybercrime-facebook-phishing-ring/
13 ways attackers use generative AI to exploit your systems

Feb 23, 2026 9:01 AM

Tags: access, ai, attack, authentication, awareness, breach, captcha, ceo, chatgpt, ciso, cloud, credentials, crypto, cyber, cyberattack, cybercrime, cybersecurity, dark-web, data, deep-fake, defense, detection, email, espionage, exploit, extortion, finance, flaw, framework, fraud, google, government, group, hacker, identity, infrastructure, intelligence, law, LLM, login, malicious, malware, marketplace, network, open-source, password, phishing, privacy, ransomware, resilience, risk, saas, scam, service, social-engineering, startup, supply-chain, tactics, technology, theft, threat, tool, vulnerability, zero-day

Facilitating malware development: AI can also be used to generate more sophisticated, or less labour-intensive, malware.For example, cybercriminals are using gen AI to create malicious HTML documents. The XWorm attack, initiated by HTML smuggling, which contains malicious code that downloads and runs the malware, bears the hallmarks of development via AI.”The loader’s detailed line-by-line description…
13 ways attackers use generative AI to exploit your systems

Feb 23, 2026 9:01 AM

Tags: access, ai, attack, authentication, awareness, breach, captcha, ceo, chatgpt, ciso, cloud, credentials, crypto, cyber, cyberattack, cybercrime, cybersecurity, dark-web, data, deep-fake, defense, detection, email, espionage, exploit, extortion, finance, flaw, framework, fraud, google, government, group, hacker, identity, infrastructure, intelligence, law, LLM, login, malicious, malware, marketplace, network, open-source, password, phishing, privacy, ransomware, resilience, risk, saas, scam, service, social-engineering, startup, supply-chain, tactics, technology, theft, threat, tool, vulnerability, zero-day

Facilitating malware development: AI can also be used to generate more sophisticated, or less labour-intensive, malware.For example, cybercriminals are using gen AI to create malicious HTML documents. The XWorm attack, initiated by HTML smuggling, which contains malicious code that downloads and runs the malware, bears the hallmarks of development via AI.”The loader’s detailed line-by-line description…
Attacker Breached 600 FortiGate Appliances in AI-Assisted Campaign: Amazon

Feb 23, 2026 7:02 AM

Tags: ai, cybercrime, fortinet, technology, threat, tool

An single threat actor used AI tools to create and run a campaign that compromised more then 600 Fortinet FortiGate appliances around the world over five weeks, according to Amazon threat researchers, the latest example of how cybercriminals are using the technology in their attacks. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/attacker-breached-600-fortigate-appliances-in-ai-assisted-campaign-amazon/
Mississippi Healthcare System Shuts Down Clinics After Ransomware Attack

Feb 22, 2026 11:02 PM

Tags: attack, cybercrime, data, healthcare, intelligence, ransomware

The University of Mississippi Medical Center shut down operations at its 35 medical clinics around the state following a ransomware attack. Healthcare facilities are top targets for cybercriminals, who look to steal the sensitive data they hold for both money and intelligence gathering. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/mississippi-healthcare-system-shuts-down-clinics-after-ransomware-attack/
ISMG Editors: No Honor Among Ransomware Thieves

Feb 20, 2026 8:02 PM

Tags: ai, cybercrime, identity, ransomware, resilience, risk, technology

Also: AI, Machine Identity Risks; Europe’s Digital Sovereignty Push. In this week’s panel, four ISMG editors examined how cybercriminals may be turning on each other, what security leaders are really saying about machine identities and AI risk, and how shifting U.S.-Europe dynamics are reshaping technology resilience and digital sovereignty. First seen on govinfosecurity.com Jump to…
Criminals create business website to sell RAT disguised as RMM tool

Feb 20, 2026 3:01 PM

Tags: business, cybercrime, monitoring, rat, service, software, tool

A RAT masquerading as legitimate remote monitoring and management (RMM) software is being sold to cybercriminals as a service, Proofpoint researchers recently discovered. The … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/20/trustconnect-docconnect-fake-rmm/
651 arrested, $4.3 million recovered in African cybercrime sweep

Feb 20, 2026 10:01 AM

Tags: cybercrime, interpol, law

Operation Red Card 2.0, supported by INTERPOL and involving law enforcement agencies from 16 African countries, led to 651 arrests and the recovery of more than $4.3 million … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/20/interpol-operation-red-card-2-0-africa-cybercrime/
INTERPOL Operation Red Card 2.0 Arrests 651 in African Cybercrime Crackdown

Feb 19, 2026 9:01 PM

Tags: cybercrime, infrastructure, international, interpol, law, scam

An international cybercrime operation against online scams has led to 651 arrests and recovered more than $4.3 million as part of an effort led by law enforcement agencies from 16 African countries.The initiative, codenamed Operation Red Card 2.0, took place between December 8, 2025 and January 30, 2026, according to INTERPOL. It targeted infrastructure and…
AI-generated passwords are a security risk

Feb 19, 2026 7:01 PM

Tags: ai, cybercrime, password, risk

AI-generated passwords are “highly predictable” and aren’t truly random, making them easier for cybercriminals to crack. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/ai-generated-passwords-are-a-security-risk/
Hunderte Online-Betrüger verhaftet und Server beschlagnahmt

Feb 19, 2026 5:00 PM

Tags: cybercrime

Mehrere Betrügerorganisationen haben Millionenschäden bei den Opfern angerichtet. Polizei-Behörden konnten zuletzt über 600 Verdächtige festnehmen. First seen on golem.de Jump to article: www.golem.de/news/interpol-gegen-cybercrime-651-festnahmen-bei-razzien-gegen-online-scammer-2602-205612.html
Ransomware gang threatens Cheyenne and Arapaho Tribes after shutting down schools

Feb 19, 2026 5:00 PM

Tags: attack, cybercrime, government, ransomware

The government of the Cheyenne and Arapaho Tribes in Oklahoma is being extorted by cybercriminals after a ransomware attack shut down its schools and critical systems in January. First seen on therecord.media Jump to article: therecord.media/cheyenne-arapaho-ransomware-rhysida
Interpol gegen Cybercrime: 651 Festnahmen bei Razzien gegen Online-Scammer

Feb 19, 2026 3:01 PM

Tags: cybercrime, interpol, scam

Mehrere Betrügerorganisationen haben Millionenschäden bei den Opfern angerichtet. Polizei-Behörden konnten zuletzt über 600 Verdächtige verhaften. First seen on golem.de Jump to article: www.golem.de/news/interpol-gegen-cybercrime-651-festnahmen-bei-razzien-gegen-online-scammer-2602-205612.html
Explosion in drei Stufen Die Folgen der KI-Disruption

Feb 19, 2026 2:01 PM

Tags: ai, cybercrime, Internet

Künstliche Intelligenz treibt den organisatorischen Wandel in einer Weise voran, wie wir es seit dem Aufkommen des Internets nicht mehr gesehen haben. Aber jede Disruption dieser Art bringt auch Warnsignale mit sich. Bei der KI-Disruption blinken sie alle gleichzeitig in der Softwareentwicklung, in der Cyberkriminalität und in der Regulatorik. Das Problem: Wir behandeln jedes […]…
Starkiller: New ‘Commercial-Grade’ Phishing Kit Bypasses MFA

Feb 19, 2026 2:01 PM

Tags: cybercrime, infrastructure, mfa, phishing, service

A new cybercriminal toolkit uses proxies to mimic popular online services and represents a “significant escalation in phishing infrastructure,” warn researchers at Abnormal First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/starkiller-phishing-kit-bypasses/
Starkiller: New ‘Commercial-Grade’ Phishing Kit Bypasses MFA

Feb 19, 2026 2:01 PM

Tags: cybercrime, infrastructure, mfa, phishing, service

A new cybercriminal toolkit uses proxies to mimic popular online services and represents a “significant escalation in phishing infrastructure,” warn researchers at Abnormal First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/starkiller-phishing-kit-bypasses/
Police arrests 651 suspects in African cybercrime crackdown

Feb 19, 2026 1:01 PM

Tags: cybercrime, fraud, mobile, scam

African authorities arrested 651 suspects and recovered over $4.3 million in a joint operation targeting investment fraud, mobile money scams, and fake loan applications. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/police-arrests-651-suspects-in-african-cybercrime-crackdown/
Police arrests 651 suspects in African cybercrime crackdown

Feb 19, 2026 1:01 PM

Tags: cybercrime, fraud, mobile, scam

African authorities arrested 651 suspects and recovered over $4.3 million in a joint operation targeting investment fraud, mobile money scams, and fake loan applications. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/police-arrests-651-suspects-in-african-cybercrime-crackdown/