Tag: cybercrime
-
XwormRAT Hackers Leverage Code Injection for Sophisticated Malware Deployment
A sophisticated new distribution method for XwormRAT malware that leverages steganography techniques to hide malicious code within legitimate files. This discovery highlights the evolving tactics of cybercriminals who are increasingly using advanced obfuscation methods to bypass security detection systems and deceive unsuspecting users. The latest XwormRAT campaign represents a significant evolution in malware distribution methodology,…
-
Italian authorities arrest Chinese man over Microsoft Exchange Server hack, targeting of COVID-19 researchers
The arrest came at the request of the United States, which hailed the development as a sign that patience in pursuing cybercriminals in court is rewarded. First seen on cyberscoop.com Jump to article: cyberscoop.com/italian-authorities-arrest-chinese-man-over-microsoft-exchange-server-hack-targeting-of-covid-19-researchers/
-
New Bert Ransomware Evolves With Multiple Variants
An emerging ransomware group that calls itself Bert is quickly evolving after hitting the cybercrime scene in April, targeting both Windows and Linux systems used by organizations in the health care, tech, and other industries in the United States, Europe, and Asia. It may be a Russian group whose malware evolved from REvil code. First…
-
Cybersicherheitsmonitor 2025 – Schutz vor Cybercrime: Verbraucher werden nachlässiger
Tags: cybercrimeFirst seen on security-insider.de Jump to article: www.security-insider.de/schutz-vor-cybercrime-verbraucher-werden-nachlaessiger-a-e32c3c80fccb804f9fb3e2383174606a/
-
DarkWeb: Boom im verborgenen Internet als Eldorado für Cyberkriminalität
First seen on datensicherheit.de Jump to article: www.datensicherheit.de/darkweb-boom-eldorado-cyberkriminalitaet
-
Cyberattacks are changing the game for major sports events
Sports fans and cybercriminals both look forward to major sporting events, but for very different reasons. Fake ticket sites, stolen login details, and DDoS attacks are common … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/07/08/sport-events-cybercrime/
-
Abusing Trust: Threat Actors Leverage Signed Drivers for Stealthy Windows Kernel Exploits
Cybercriminals continue to use kernel-level malware as a preferred weapon against Windows systems amid a terrifying increase in cyberthreats. Operating at ring 0 the highest privilege level in the operating system such malware grants attackers unparalleled access to disable security defenses, maintain persistence, and operate undetected. Despite Microsoft’s robust countermeasures like PatchGuard, Driver Signature Enforcement…
-
Scattered Spider weaves web of social-engineered destruction
Tags: cybercrimeThe cybercrime ring has infiltrated more than 100 businesses since 2022, including more than a dozen since it regrouped earlier this year. First seen on cyberscoop.com Jump to article: cyberscoop.com/scattered-spider-social-engineering-cybercrime/
-
Over 1,000 Fake Domains Imitating Amazon Prime Day Created to Target Online Shoppers
Online customers around the world are getting ready for huge discounts and unique offers as July 8, the much-anticipated Amazon Prime Day 2025, draws near. However, this global shopping event has also become a prime target for cybercriminals, with over 1,000 newly registered domains mimicking Amazon’s branding detected in June alone. Surge in Phishing Threats…
-
XWorm RAT Deploys New Stagers and Loaders to Bypass Defenses
The XWorm Remote Access Trojan (RAT), a longstanding favorite among cybercriminals, has recently showcased a significant evolution in its attack methodology, employing an array of sophisticated stagers and loaders to evade detection and infiltrate systems. Known for its comprehensive malicious capabilities including keylogging, remote desktop access, data exfiltration, and command execution XWorm has become a…
-
Qantas Contacted by Potential Cybercriminal Following Data Breach
Qantas said it is currently validating the contact, and has informed law enforcement First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/qantas-contacted-cybercriminal/
-
Qantas attack reveals one phone call is all it takes to crack cybersecurity’s weakest link: humans
Tags: access, attack, breach, cyber, cybercrime, cybersecurity, data, data-breach, email, finance, healthcare, phone, riskOther sectors also at risk from attacks, including healthcare, finance and telecommunications, expert warns<ul><li>Get our <a href=”https://www.theguardian.com/email-newsletters?CMP=cvau_sfl”>breaking news email, <a href=”https://app.adjust.com/w4u7jx3″>free app or <a href=”https://www.theguardian.com/australia-news/series/full-story?CMP=cvau_sfl”>daily news podcast</li></ul>All it can take is a phone call. That’s what <a href=”https://www.theguardian.com/business/2025/jul/02/qantas-confirms-cyber-attack-exposes-records-of-up-to-6-million-customers”>Qantas learned this week when the personal information of up to 6 million customers was stolen by cybercriminals…
-
DragonForce Ein Ransomware-Kartell sichert seine Stellung
Die Cyberkriminalität entwickelt sich weiter längst geht es nicht mehr nur um schnelle Gewinne. Gruppen wie DragonForce zeigen, dass im Untergrund nicht allein Geld, sondern auch Einfluss, Kontrolle und Marktanteile zählen. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/dragonforce-ransomware-kartell-sichert-stellung
-
Scattered Spider Enhances Tactics to Exploit Legitimate Tools for Evasion and Persistence
Scattered Spider, also tracked under aliases such as UNC3944, Scatter Swine, and Muddled Libra, has emerged as a formidable financially motivated cybercriminal group since at least May 2022. Initially known for targeting telecommunications and tech firms with phishing and SIM-swapping campaigns, the group has significantly evolved, orchestrating full-spectrum, multi-stage intrusions across both cloud and on-premises…
-
Hackers Abuse Legitimate Inno Setup Installer to Deliver Malware
Cybercriminals are increasingly weaponizing legitimate software installer frameworks like Inno Setup to distribute malware, turning user-friendly tools into covert vehicles for malicious payloads. Originally designed to simplify software deployment on Windows, Inno Setup has become a favored tool among threat actors due to its trusted appearance and powerful Pascal scripting capabilities. This sophisticated abuse allows…
-
New >>123 – Stealer<< Malware Rented on Dark Web for $120/Month
A new credential-stealing malware, dubbed >>123 – Stealer,123 | Stealer
-
Cyberkriminelle nutzen intensiv KI: KI-gestützte Ransomware FunkSec
Die Ransomware-Gruppe FunkSec ist ein Beispiel dessen, wie die Zukunft der auf Masse ausgelegten Cyberkriminalität aussehen könnte: KI-gestützt, multifunktional, hochgradig anpassungsfähig und volumenorientiert mit Lösegeldforderungen schon ab nur 10.000 US-Dollar, um den Gewinn zu maximieren. FunkSec, seit Ende 2024 aktiv, hat bereits gezielt den Regierungs-, Technologie-, Finanz- und Bildungssektor in Europa und Asien angegriffen…. First…
-
Security Pros Say Hunters International RaaS Operators are ‘Changing Jerseys’
The notorious Hunters International RaaS group that racked up hundreds of victims over two years says it’s shutting down and offering decryption software to victims, but security pros say this happens regularly in the cybercriminal world and that the threat actors likely will return affiliated with other operations. First seen on securityboulevard.com Jump to article:…
-
US sanctions ‘bulletproof’ hosting provider Aeza for cybercrime ops
Tags: cybercrimeFirst seen on scworld.com Jump to article: www.scworld.com/news/us-sanctions-bulletproof-hosting-provider-aeza-for-cybercrime-ops
-
Ransomware Group Hunters International Announces Exit
Cybercrime Experts Greet Announcement With Skepticism. Hunters International said Thursday it closed shop, provoking skepticism among cybercrime experts who said it’s more likely the Russian-speaking hackers behind the ransomware group will start up again under a new brand name. Ransomware groups often rebrand themselves. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/ransomware-group-hunters-international-announces-exit-a-28894
-
Cybercriminals Target Brazil: 248,725 Exposed in CIEE One Data Breach
Resecurity found a breach in Brazil’s CIEE One platform, exposing PII and documents, later sold by data broker >>888
-
Cybercriminals Target Brazil: 248,725 Exposed in CIEE One Data Breach
First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/cybercriminals-target-brazil-248725-exposed-in-ciee-one-data-breach
-
Interpol identifies West Africa as potential new hotspot for cybercrime compounds
Interpol said it analyzed five years of data about the illicit industry, which relies on human trafficking to staff up centers with people who are forced to conduct investment fraud, romance scams and other schemes. First seen on therecord.media Jump to article: therecord.media/interpol-west-africa-cybercrime-compounds
-
Ransomware gang Hunters International says it’s shutting down
The cybercriminal group, which said it’s releasing its decryption tools to victims, may be transitioning to new infrastructure under a different name. First seen on techcrunch.com Jump to article: techcrunch.com/2025/07/03/ransomware-gang-hunters-international-says-its-shutting-down/
-
Erneute Cyberattacke auf Internationalen Strafgerichtshof
Tags: cyber, cyberattack, cybercrime, cyberespionage, cyersecurity, germany, hacker, infrastructure, intelligence, Internet, ransomware, service, ukraine, usaDer Internationale Strafgerichtshof wurde bereists zum zweiten Mal von einer Cyberattacke getroffen.Der Internationale Strafgerichtshof (IStGH) ist Opfer eines raffinierten Cyberangriffs geworden, dem zweiten großen Cyberspionageversuch gegen das Kriegsverbrechertribunal innerhalb von nur zwei Jahren. Der jüngste Vorfall ereignete sich während des NATO-Gipfels in Den Haag im Juni, als die Aufmerksamkeit der Weltöffentlichkeit auf die niederländische Hauptstadt…
-
Hunters International ransomware group claims to be shutting down
“After careful consideration and in light of recent developments, we have decided to close the Hunters International project,” the prolific cybercrime gang wrote on its darknet site. First seen on therecord.media Jump to article: therecord.media/hunters-international-ransomware-extortion-group-claims-shutdown
-
Pro-Russian Hackers Forge New Alliances for High-Profile Cyberattacks
The ongoing Russia-Ukraine conflict, which intensified in 2022, continues to reshape the cybercrime landscape in 2025, with hacktivism emerging as a potent weapon in geopolitical disputes. Since the war’s outbreak, pro-Russian and pro-Ukrainian hacktivist groups have waged a parallel battle in cyberspace, employing distributed denial-of-service (DDoS) attacks, website defacements, and data breaches to influence the…
-
How to Secure Your Promo Codes Against Cyber Exploits
Promo codes provide a fantastic opportunity to increase customer traffic and generate sales, yet there is a potential risk with them. Promo codes are one of the objects of interest to cybercriminals because they exploit those codes and use them to their personal advantage, which can cost your company its customers. Among the most popular…