Tag: cybercrime
-
Notorious BreachForums hacking site hit by ‘doomsday’ leak of 324,000 criminal users
Tags: access, breach, crime, cyber, cybercrime, dark-web, data, data-breach, email, extortion, group, hacking, intelligence, law, leak, password, penetration-testing, ransomware, risk, service, threatHave I Been Pwned, the data breach happened last August, two months before the police takedown of the BreachForums data extortion site after threats by Scattered Lapsus$ Hunters to use it to release one billion records stolen from Salesforce customers.This tallies with the August 11 date on the database leaked last week; that was the…
-
BreachForums Breached, Exposing 324K Cybercriminals
Massive data dump reveals real identities and details of administrators and members of the notorious hacker forum. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/breachforums-breached-exposing-324k-cybercriminals
-
Illicit Crypto Economy Surges Amid Increased Nation-State Activity
Cybercriminal cryptocurrency transactions totaled billions in 2025, with activity from sanctioned countries like Russia and Iran causing the largest jump. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/illicit-crypto-economy-surges-nation-states
-
There was no data breach, Instagram says
News of a possible Instagram data breach spread over the weekend after Malwarebytes reported that cybercriminals had stolen sensitive information from 17.5 million Instagram … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/12/instagram-data-breach-leak-2024/
-
Dobrindt: Mehr Kooperation mit Israel für Sicherheit Deutschlands
Deutschland und Israel haben einen Cyber- und Sicherheitspakt geschlossen.Angesichts der wachsenden Gefahr von Angriffen will die Bundesrepublik ihre Zusammenarbeit mit Israel im Sicherheitsbereich ausbauen. Ziel sei mehr Schutz für Deutschland, sagte Bundesinnenminister Alexander Dobrindt (CSU) bei einem Besuch in Israel. Er unterzeichnete zusammen mit dem israelischen Ministerpräsidenten Benjamin Netanjahu einen Cyber- und Sicherheitspakt. Konkret geht es…
-
Cybercriminal Crypto Transactions Surge to 2025 High
Illicit cryptocurrency transactions reached unprecedented levels in 2025 as nation-states weaponized digital assets to evade sanctions, transforming the cybercrime landscape into a geopolitical battleground with record-breaking financial volumes. According to blockchain analysis data, illicit cryptocurrency addresses received at least $154 billion in 2025, representing a 162% year-over-year increase that establishes a new benchmark for digital finance. Illicit cryptocurrency transactions…
-
Hacking Group “Everest” Allegedly Claims Nissan Motor Breach
The Everest hacking group has allegedly claimed responsibility for a major cyberattack on Nissan Motor Co., Ltd., one of Japan’s leading automotive manufacturers. According to threat intelligence reports observed on January 10, 2026, the cybercriminal organization claims to have exfiltrated approximately 900 GB of sensitive data from the company’s systems, though the breach remains under…
-
Europol Raids Disrupt Black Axe Cybercrime Ring in Spain
Authorities caught 34 members of the notorious Black Axe gang in Spain known for stealing millions of Euros through online romance scams and email fraud. First seen on hackread.com Jump to article: hackread.com/europol-black-axe-cybercrime-ring-spain/
-
Doomsday for Cybercriminals, Data Breach of Major Dark Web Forum
First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/doomsday-for-cybercriminals-data-breach-of-major-dark-web-foru
-
Illicit Crypto Economy Surges as Nation-States Join in the Fray
Cybercriminal cryptocurrency transactions totaled billions in 2025, with activity from sanctioned countries like Russia and Iran causing the largest jump. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/illicit-crypto-economy-surges-nation-states
-
Putinswap: France trades alleged ransomware crook for conflict researcher
Basketball player accused of aiding cybercrime gang extradition blocked in exchange for Swiss NGO consultant First seen on theregister.com Jump to article: www.theregister.com/2026/01/09/alleged_russian_ransom_payment_negotiator/
-
Europol Leads Global Crackdown on Black Axe Cybercrime Gang, 34 Arrested
Europol-backed operation targets group behind numerous BEC attacks and romance scams First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/europol-crackdown-on-black-axe/
-
Credential Stuffing: So gefährlich ist die Mehrfachnutzung von Passwörtern (immer noch)
Passwörter wiederzuverwenden ist ein wenig, wie über eine rote Ampel zu gehen: In 90 Prozent der Fälle passiert nichts, aber wenn es schiefgeht, dann richtig. Wir zeigen die neuesten Coups aus der Cybercrime-Szene und warum individuelle Passwörter Pflicht und keine Kür sind. First seen on welivesecurity.com Jump to article: www.welivesecurity.com/de/tipps-ratgeber/credential-stuffing-so-gefahrlich-ist-die-mehrfachnutzung-von-passwortern-immer-noch/
-
Cybercriminals Exploit VMware ESXi Vulnerabilities Using Zero-Day Toolset
Huntress security researchers have uncovered a sophisticated VMware ESXi exploitation campaign using a zero-day toolkit that remained undetected for over a year before VMware’s public disclosure. The December 2025 intrusion, which began through a compromised SonicWall VPN, demonstrates how threat actors are chaining multiple critical vulnerabilities to achieve complete hypervisor compromise. Attack Chain Begins With…
-
Cybercriminals Exploit VMware ESXi Vulnerabilities Using Zero-Day Toolset
Huntress security researchers have uncovered a sophisticated VMware ESXi exploitation campaign using a zero-day toolkit that remained undetected for over a year before VMware’s public disclosure. The December 2025 intrusion, which began through a compromised SonicWall VPN, demonstrates how threat actors are chaining multiple critical vulnerabilities to achieve complete hypervisor compromise. Attack Chain Begins With…
-
Cybercriminals are scaling phishing attacks with ready-made kits
Phishing-as-a-Service (PhaaS) kits lower the barrier to entry, enabling less-skilled attackers to run large-scale, targeted phishing campaigns that impersonate legitimate … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/08/barracuda-phishing-kit-techniques/
-
Orthopedic Practice Pays $500K Settlement to NYS in Hack
2023 Incident Affected More Than 650,000 Patients, Employees. An upstate New York orthopedic practice has agreed to pay state regulators a $500,000 settlement and implement stronger security practices following a 2023 hack involving the theft of 650,000 individuals’ sensitive information. Cybercrime group INC Ransom reportedly claimed credit for the incident. First seen on govinfosecurity.com Jump…
-
CrazyHunter Ransomware Targets Healthcare Sector Using Sophisticated Evasion Tactics
A sophisticated new ransomware variant, CrazyHunter, has emerged as a critical threat to the healthcare sector, employing advanced anti-malware evasion techniques and rapid network propagation that have security researchers deeply concerned. Trellix, which has been actively tracking this threat since its initial appearance, reports that the ransomware represents a significant evolution in cybercriminal tactics targeting…
-
Black Cat Behind SEO Poisoning Malware Campaign Targeting Popular Software Searches
A cybercrime gang known as Black Cat has been attributed to a search engine optimization (SEO) poisoning campaign that employs fraudulent sites advertising popular software to trick users into downloading a backdoor capable of stealing sensitive data.According to a report published by the National Computer Network Emergency Response Technical Team/Coordination Center of China (CNCERT/CC) and…
-
In 2026, Hackers Want AI: Threat Intel on Vibe Hacking & HackGPT
Cybercriminals are increasingly using AI to lower the barrier to entry for fraud and hacking, shifting from skill-based to AI-assisted attacks known as “vibe hacking.” Flare examines how underground forums promote AI tools, jailbreak techniques, and so-called “Hacking-GPT” services that promise ease rather than technical mastery. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/in-2026-hackers-want-ai-threat-intel-on-vibe-hacking-and-hackgpt/
-
Dark Web Intelligence: How to Leverage OSINT for Proactive Threat Mitigation
Staying one step ahead of cybercriminals requires a proactive approach. Integrating dark web intelligence into your open-source intelligence (OSINT) gives you an early view of emerging threats. As security expert Daniel Collyer says, dark web intelligence is “an essential part of a good OSINT strategy,” it’s the information that’s invisible on the surface web. Open-source intelligence is when you take all the publicly available data and turn it..…
-
Hackers Exploit Routing Misconfigurations to Successfully Spoof Organizations
Cybercriminals are exploiting complex routing scenarios and misconfigured email authentication protections to successfully spoof organizational domains, enabling them to deliver phishing emails that appear to originate from within targeted companies. The attack vector, which has seen increased activity since May 2025, leverages weaknesses in Domain-based Message Authentication, Reporting, and Conformance (DMARC) configurations and third-party email…
-
Coinbase insider who sold customer data to criminals arrested in India
Police in India have arrested a former Coinbase customer service agent who is believed to have been bribed by cybercriminal gangs to access sensitive customer information. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/coinbase-insider-who-sold-customer-data-to-criminals-arrested-in-india
-
NordVPN denies breach claims, says attackers have “dummy data”
NordVPN denied allegations that its internal Salesforce development servers were breached, saying that cybercriminals obtained “dummy data” from a trial account on a third-party automated testing platform. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/nordvpn-denies-breach-claims-says-attackers-have-dummy-data/
-
Hackers Steal $35M in Cryptocurrency Following LastPass Breach
Tags: attack, blockchain, breach, crypto, cyber, cybercrime, data-breach, encryption, hacker, intelligence, password, russiaRussian cybercriminals have laundered over $35 million in stolen cryptocurrency linked to the devastating 2022 LastPass breach, according to new forensic analysis by blockchain intelligence firm TRM Labs. The 2022 attack exposed encrypted password vaults belonging to roughly 30 million customers worldwide. While the vaults were initially protected by encryption, attackers who downloaded them could…
-
Threat Actors Abuse Trusted Business Infrastructure to Host Infostealers
In a disturbing evolution of the cybercrime landscape, a self-sustaining cycle of infection has emerged in which victims of malware are being unwillingly conscripted into the ranks of attackers. New research from the Hudson Rock Threat Intelligence Team, in collaboration with the newly released ClickFix Hunter platform, reveals that a significant portion of domains hosting…
-
The cybercriminal behind the 2016 Bitfinex hack has been released from prison early thanks to Trump’s 2018 First Step Act
Ilya Lichtenstein, who was sentenced to prison for his role in the Bitfinex hack that occurred in 2016, has been released from prison early. Ilya Lichtenstein (38), convicted for the hack of the cryptocurrency stock exchange Bitfinex in 2016, has been released from prison early. A Trump administration official told CNBC that Lichtenstein served significant prison time…