Tag: cybercrime

Cybercriminals Abuse Google Cloud Email Feature in Multi-Stage Phishing Campaign

Jan 2, 2026 11:51 AM

Tags: cloud, cybercrime, cybersecurity, email, google, infrastructure, phishing, service

Cybersecurity researchers have disclosed details of a phishing campaign that involves the attackers impersonating legitimate Google-generated messages by abusing Google Cloud’s Application Integration service to distribute emails.The activity, Check Point said, takes advantage of the trust associated with Google Cloud infrastructure to send the messages from a legitimate email address (“ First seen on thehackernews.com…
Top 10 Cybersecurity Predictions for 2026

Jan 1, 2026 10:52 AM

Tags: access, ai, api, application-security, attack, authentication, automation, awareness, backdoor, backup, best-practice, blockchain, breach, business, ceo, china, ciso, cloud, communications, compliance, computer, computing, conference, control, corporate, crypto, cryptography, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, deep-fake, defense, detection, disinformation, email, encryption, espionage, exploit, extortion, finance, fraud, governance, government, group, hacker, hacking, healthcare, identity, incident response, infrastructure, intelligence, Internet, iran, korea, law, linkedin, LLM, malicious, malware, mfa, military, monitoring, msp, mssp, network, nist, north-korea, organized, phishing, privacy, programming, ransom, ransomware, regulation, risk, risk-management, russia, scam, service, skills, soc, social-engineering, software, strategy, supply-chain, tactics, technology, theft, threat, tool, training, ukraine, update, vulnerability, vulnerability-management, warfare, windows, zero-day

Top 10 Cybersecurity Predictions for 2026 The year AI changes cybersecurity forever Cybersecurity predictions are an opportunity to look forward instead of back, to be proactive instead of reactive, and to consider how changes in attackers, technology, and the security industry will impact the sustainability of managing cyber risks. Gaining future insights to the threats, targets,…
New Cybercrime Tool “ErrTraffic” Enables Automated ClickFix Attacks

Dec 31, 2025 6:52 PM

Tags: attack, cyber, cybercrime, russia, service, social-engineering, tool

The cybercriminal underground has entered a new phase of industrialization. Hudson Rock researchers have uncovered ErrTraffic v2, a sophisticated ClickFix-as-a-Service platform that commoditizes deceptive social engineering at an unprecedented scale. Priced at just $800 and advertised on top-tier Russian cybercrime forums, the tool represents a watershed moment in the democratization of cybercrime infrastructure. ClickFix attacks…
Cyberkriminalität: Security-Profis gestehen ALPHV-Angriffe

Dec 31, 2025 3:52 PM

Tags: alphv, cyberattack, cybercrime, extortion, ransomware

Zwei US-Sicherheitsanalysten haben gestanden, als Partner der Ransomware-Gruppe ALPHV zahlreiche Unternehmen erpresst zu haben. First seen on golem.de Jump to article: www.golem.de/news/cyberkriminalitaet-security-profis-gestehen-alphv-angriffe-2512-203699.html
Equifax Europe CISO: Notorious breach spurred cybersecurity transformation

Dec 31, 2025 8:52 AM

Tags: access, ai, attack, authentication, awareness, breach, business, ceo, cio, ciso, cloud, computer, control, corporate, cyber, cyberattack, cybercrime, cybersecurity, data, defense, dora, espionage, finance, framework, google, government, identity, infrastructure, intelligence, network, nis-2, phishing, regulation, risk, risk-management, security-incident, service, strategy, technology, threat, update

Cloud as a new technological axis: Equifax’s $3 billion migration to the cloud, “which had been brewing for about seven years” and which the company says is the largest technological investment in its history, has involved moving more than 300 systems, over 30 product families, and thousands of customers to the company’s cloud platform, Equifax Cloud, in Spain…
Security coverage is falling behind the way attackers behave

Dec 31, 2025 6:51 AM

Tags: cybercrime, tactics

Cybercriminals keep tweaking their procedures, trying out new techniques, and shifting tactics across campaigns. Coverage that worked yesterday may miss how those behaviors … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/31/cybercriminals-activity-behavior/
Cybercrime Inc.: Wenn Hacker besser organsiert sind als die IT

Dec 31, 2025 5:51 AM

Tags: access, ai, botnet, business, compliance, cyberattack, cybercrime, cyersecurity, dark-web, data-breach, deep-fake, exploit, extortion, hacker, incident response, leak, mail, malware, marketplace, phishing, ransomware, resilience, risk, service, social-engineering, software, tool, update, vulnerability

Cybercrime hat sich zur organisierten Industrie mit Arbeitsteilung gewandelt.Was einst in Foren mit selbstgeschriebenen Schadcodes begann, hat sich zu einer global vernetzten Untergrundökonomie entwickelt, die in Effizienz, Geschwindigkeit und Skalierung vielen Unternehmen überlegen ist. Hackergruppen arbeiten heute arbeitsteilig, nutzen Vertriebskanäle, betreiben Support, teilen Einnahmen mit Partnern und investieren in Forschung und Entwicklung.Die entscheidende Frage lautet…
New ErrTraffic service enables ClickFix attacks via fake browser glitches

Dec 30, 2025 10:52 PM

Tags: attack, cybercrime, malicious, service, threat

A new cybercrime tool called ErrTraffic allows threat actors to automate ClickFix attacks by generating ‘fake glitches’ on compromised websites to lure users into downloading payloads or following malicious instructions First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-errtraffic-service-enables-clickfix-attacks-via-fake-browser-glitches/
Hackers Promote “VOID” AV Killer Claiming Kernel-Level Defense Evasion

Dec 30, 2025 6:52 PM

Tags: antivirus, cyber, cybercrime, defense, detection, endpoint, hacker, malware, threat, tool

A threat actor operating under the handle Crypt4You has begun advertising a sophisticated new offensive tool on underground cybercrime forums, marketed as a >>kernel-level>crypters
Top 5 real-world AI security threats revealed in 2025

Dec 29, 2025 8:55 AM

Tags: access, ai, api, attack, breach, chatgpt, cloud, control, credentials, cybercrime, data, data-breach, defense, email, exploit, flaw, framework, github, gitlab, google, injection, least-privilege, LLM, malicious, malware, microsoft, nvidia, open-source, openai, rce, remote-code-execution, risk, service, software, supply-chain, theft, threat, tool, vulnerability

A critical remote code execution (RCE) in open-source AI agent framework Langflow that was also exploited in the wildAn RCE flaw in OpenAI’s Codex CLIVulnerabilities in NVIDIA Triton Inference ServerRCE vulnerabilities in major AI inference server frameworks, including those from Meta, Nvidia, Microsoft, and open-source projects such as vLLM and SGLangVulnerabilities in open-source compute framework…
Death, torture, and amputation: How cybercrime shook the world in 2025

Dec 28, 2025 3:55 PM

Tags: cyberattack, cybercrime

The human harms of cyberattacks piled up this year, and violence expected to increase First seen on theregister.com Jump to article: www.theregister.com/2025/12/28/death_torture_and_amputation_how/
Death, torture, and amputation: How cybercrime shook the world in 2025

Dec 28, 2025 3:55 PM

Tags: cyberattack, cybercrime

The human harms of cyberattacks piled up this year, and violence expected to increase First seen on theregister.com Jump to article: www.theregister.com/2025/12/28/death_torture_and_amputation_how/
Hackers Compromise Trust Wallet Chrome Extension, Users Claim Millions Stolen

Dec 27, 2025 7:55 PM

Tags: blockchain, breach, browser, chrome, cyber, cybercrime, hacker, malicious, update

Trust Wallet users suffered devastating losses exceeding $7 million after cybercriminals compromised the Chrome browser extension version 2.68.0, released on December 24, 2025. The breach, which targeted desktop users exclusively, left hundreds of wallets completely drained within hours of the malicious update’s deployment. Blockchain investigator ZachXBT initially flagged the incident on the social media platform…
LastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs Finds

Dec 25, 2025 2:19 PM

Tags: backup, blockchain, breach, crypto, cybercrime, data, data-breach, intelligence, password, russia, theft

The encrypted vault backups stolen from the 2022 LastPass data breach have enabled bad actors to take advantage of weak master passwords to crack them open and drain cryptocurrency assets as recently as late 2025, according to new findings from TRM Labs.The blockchain intelligence firm said evidence points to the involvement of Russian cybercriminal actors…
LastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs Finds

Dec 25, 2025 2:19 PM

Tags: backup, blockchain, breach, crypto, cybercrime, data, data-breach, intelligence, password, russia, theft

The encrypted vault backups stolen from the 2022 LastPass data breach have enabled bad actors to take advantage of weak master passwords to crack them open and drain cryptocurrency assets as recently as late 2025, according to new findings from TRM Labs.The blockchain intelligence firm said evidence points to the involvement of Russian cybercriminal actors…
AI-Driven Attacks and the Future of Security

Dec 25, 2025 9:19 AM

Tags: ai, attack, cybercrime, exploit, phishing, threat, vulnerability

AI is changing cybercrime in a big way. Autonomous AI agents could soon carry out entire attacks on their own -scanning servers, testing vulnerabilities, refining exploits and even launching phishing campaigns from start to finish, said David Sancho, senior threat researcher at Trend Micro. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/ai-driven-attacks-future-security-i-5516
Breach Roundup: Spotify Metadata Dumped Online

Dec 25, 2025 8:19 AM

Tags: breach, cybercrime, data, data-breach, leak, phishing, ransomware

Also: SudamericaData Leak, RaccoonO365 Arrest and Nefilim Conspirator Pleads Guilty. This week: Spotify metadata scraped, Nissan disclosed third-party breach, millions of Argentines exposed to data leak, African police arrested hundreds in a cybercrime sweep, Nigeria nabbed a phishing operator, the U.S. DOJ charged ATM jackpotting ring and Nefilim ransomware affiliate pleaded guilty. First seen on…
FBI seized ‘web3adspanels.org’ hosting stolen logins

Dec 24, 2025 8:19 PM

Tags: breach, credentials, cybercrime, finance, google, group, login

The U.S. seized the ‘web3adspanels.org’ domain and database used by cybercriminals to store stolen bank login credentials. The FBI seized the domain web3adspanels[.]org and its database after cybercriminals used it to store bank login credentials stolen from U.S. victims. A criminal group ran fake ads on Google and Bing that mimicked real bank advertisements. Victims…
NtKiller Malware Advertised on Dark Web With Claims of Antivirus and EDR Bypass

Dec 24, 2025 7:19 PM

Tags: access, antivirus, cyber, cybercrime, dark-web, detection, edr, endpoint, malware, ransomware, threat, tool

A new and sophisticated defensive evasion tool dubbed >>NtKillerAlphaGhoul.
FBI seizes domain storing bank credentials stolen from U.S. victims

Dec 24, 2025 5:19 PM

Tags: breach, credentials, cybercrime, finance, government, login

The U.S. government has seized the ‘web3adspanels.org’ domain and the associated database used by cybercriminals to host bank login credentials stolen in account takeover attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fbi-seizes-domain-storing-bank-credentials-stolen-from-us-victims/
Attacks are Evolving: 3 Ways to Protect Your Business in 2026

Dec 24, 2025 1:19 PM

Tags: attack, breach, business, cybercrime, dark-web, data, network

Every year, cybercriminals find new ways to steal money and data from businesses. Breaching a business network, extracting sensitive data, and selling it on the dark web has become a reliable payday. But in 2025, the data breaches that affected small and medium-sized businesses (SMBs) challenged our perceived wisdom about exactly which types of businesses…
Cyber Experts Warn of Increased Consumer Scams This Festive Season

Dec 24, 2025 12:19 PM

Tags: communications, cyber, cybercrime, hacker, malicious, risk, scam

As Santa starts his travels, experts are warning that his arrival could bring with it a range of cyber risks, from scams to insecure gadgets. Whilst Santa prefers to deliver via chimney, most cybercriminals are looking for backdoors. In some cases, hackers prefer to deliver malicious communications via email. Worryingly, in 2025, scams are not…
Interpol sweep takes down cybercrooks in 19 countries

Dec 24, 2025 5:19 AM

Tags: access, antivirus, attack, botnet, business, china, cyber, cyberattack, cybercrime, cybersecurity, data, defense, email, encryption, finance, fraud, group, incident response, infrastructure, intelligence, international, interpol, law, malicious, malware, microsoft, ransomware, russia, scam, service, theft, threat

A ‘very good thing’: The fact that the same operation broke ransomware operations and a business email compromise (BEC) operation is “unique,” said DiMaggio, because most people think of Africa as the source of BEC and fraud scams.The fact that authorities are working to disrupt ransomware operations in Africa before they grow to the size…
Sprawling ‘Operation Sentinel’ Neutralizes African Cybercrime Syndicates

Dec 23, 2025 9:19 PM

Tags: business, cybercrime, email, extortion, interpol, law, ransomware

Interpol said law enforcement across 19 countries made 574 arrests and recovered $3 million, against a backdrop of spiraling cybercrime in the region, including business email compromise, digital extortion, and ransomware schemes. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/operation-sentinel-african-cybercrime-syndicates
INTERPOL Dismantles Six Ransomware Operations, Detains 500+ Individuals

Dec 23, 2025 7:19 PM

Tags: business, cyber, cybercrime, email, extortion, interpol, law, ransomware, threat

Law enforcement agencies across 19 countries have made a significant breakthrough in combating cybercrime, arresting 574 suspects and recovering approximately USD 3 million during a month-long coordinated operation across Africa. The crackdown underscores the escalating threat of ransomware, business email compromise (BEC), and digital extortion schemes plaguing the continent. Operation Sentinel, conducted from October 27…
Why outsourced cyber defenses create systemic risks

Dec 23, 2025 3:19 PM

Tags: access, ai, attack, backdoor, breach, business, ciso, cloud, compliance, corporate, cyber, cybercrime, cybersecurity, data, defense, detection, dora, exploit, finance, framework, GDPR, governance, government, hacker, healthcare, infrastructure, law, malicious, monitoring, moveIT, msp, nis-2, ransomware, regulation, resilience, risk, software, strategy, supply-chain, threat, tool, vulnerability, zero-trust

Risk categories of outsourced IT & cybersecurity: When you outsource, responsibility shifts, but accountability never leaves you. The risks fall into clear categories. Operational risks The most basic risk is fragile continuity. In 2017, British Airways outsourced parts of its IT operations. A system outage grounded flights worldwide. The vendor contract delivered savings, but it…
Bescherung Cybercrime

Dec 23, 2025 2:19 PM

Tags: cyberattack, cybercrime, risk

Vor allem mittelständische Unternehmen geraten an den Feiertagen verstärkt ins Visier von Cyberkriminellen. Besonders betroffen sind Handel, Logistik, Hotellerie und Gastronomie sowie Produktionsbetriebe. Mit wenigen, gezielten Maßnahmen lässt sich das Risiko jedoch deutlich senken. Die Tage rund um Weihnachten und den Jahreswechsel zählen aus Sicht von Cyberkriminellen zu den besonders attraktiven Zeiträumen für Angriffe auf…
INTERPOL Arrests 574 in Africa; Ukrainian Ransomware Affiliate Pleads Guilty

Dec 23, 2025 1:19 PM

Tags: business, cybercrime, email, extortion, interpol, law, network, ransomware, ukraine

A law enforcement operation coordinated by INTERPOL has led to the recovery of $3 million and the arrest of 574 suspects by authorities from 19 countries, amidst a continued crackdown on cybercrime networks in Africa.The coordinated effort, named Operation Sentinel, took place between October 27 and November 27, 2025, and mainly focused on business email…
Hundreds of Arrests as Operation Sentinel Recovers $3m

Dec 23, 2025 11:19 AM

Tags: cybercrime

Operational Sentinel helps to crack down on cybercrime across 19 African countries in a month-long campaign First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/hundreds-arrests-operation/
Hundreds of Arrests as Operation Sentinel Recovers $3m

Dec 23, 2025 11:19 AM

Tags: cybercrime

Operational Sentinel helps to crack down on cybercrime across 19 African countries in a month-long campaign First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/hundreds-arrests-operation/