Tag: cybercrime

WordPress Sites Turned Weapon: How VexTrio and Affiliates Run a Global Scam Network

Jun 12, 2025 9:54 PM

Tags: cybercrime, group, malicious, network, scam, service, software, threat, wordpress

The threat actors behind the VexTrio Viper Traffic Distribution Service (TDS) have been linked to other TDS services like Help TDS and Disposable TDS, indicating that the sophisticated cybercriminal operation is a sprawling enterprise of its own that’s designed to distribute malicious content.”VexTrio is a group of malicious adtech companies that distribute scams and harmful…
Windows Defender Bypass Using PowerShell and Registry Edits in CyberEYE RAT

Jun 12, 2025 8:54 PM

Tags: access, control, cyber, cybercrime, cybersecurity, powershell, rat, windows

A newly discovered remote access trojan (RAT) named CyberEye is making waves in the cybersecurity community for its sophisticated capabilities and its reliance on Telegram, the popular messaging platform, as its command-and-control (C2) infrastructure. First detected in the wild in May 2025, CyberEye is distributed under various names, including TelegramRAT, and is rapidly gaining traction among cybercriminals…
Infostealer crackdown: Operation Secure takes down 20,000 malicious IPs and domains

Jun 11, 2025 7:55 PM

Tags: cybercrime, international, malicious, malware

More than 20,000 malicious IP addresses and domains used by information-stealing malware were taken down during an international cybercrime crackdown led by INTERPOL. Called … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/06/11/operation-secure-cybercrime-infostealer-crackdown/
Operation Secure: INTERPOL Disrupts 20,000 Infostealer Domains, 32 Arrested

Jun 11, 2025 3:55 PM

Tags: cybercrime, interpol

INTERPOL disrupts 20,000 infostealer domains in major cybercrime crackdown across Asia-Pacific, 32 arrested, 216K victims notified in Operation Secure. First seen on hackread.com Jump to article: hackread.com/operation-secure-interpol-disrupts-infostealer-domains/
20,000 Asian IPs and Domains Dismantled in Infostealer Crackdown

Jun 11, 2025 3:55 PM

Tags: cybercrime, interpol

Interpol-coordinated Operation Secure led to 32 arrests, including the suspected ringleader of a cybercriminal organization First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/interpol-operation-secure/
FIN6 cybercriminals pose as job seekers on LinkedIn to hack recruiters

Jun 11, 2025 2:55 PM

Tags: cybercrime, cybersecurity, group, jobs, linkedin, malware

FIN6, a financially motivated group tracked for years by cybersecurity researchers, is now lurking on sites such as LinkedIn and Indeed to spread malware, a new report says. First seen on therecord.media Jump to article: therecord.media/fin6-recruitment-scam-malware-campaign
Virtuelle Tarnkappe: Ransomware unter dem Radar

Jun 11, 2025 8:55 AM

Tags: cybercrime, ransomware, social-engineering

Eine virtuelle Maschine als Einfallstor, Social Engineering am Telefon und legitime Fernwartungstools: Die Cybercrime-Gruppe 3AM hat ihre Methoden weiterentwickelt. In der neuen Angriffswelle trifft technische Raffinesse auf psychologische Manipulation mit erschreckendem Erfolg. First seen on itsicherheit-online.com Jump to article: www.itsicherheit-online.com/news/security-management/virtuelle-tarnkappe-ransomware-unter-dem-radar/
Why Threat Agents Must be Included in Cybersecurity Risk Assessments

Jun 11, 2025 7:55 AM

Tags: access, attack, business, compliance, control, cyber, cybercrime, cybersecurity, data, defense, detection, espionage, finance, group, incident, intelligence, risk, risk-assessment, risk-management, social-engineering, strategy, tactics, theft, threat, tool, update, vulnerability

In the ever-evolving landscape of cybersecurity, organizations face a constant struggle: how to best allocate limited resources to maximize their defensive posture. No one has enough budget, personnel, or tools to defend against every conceivable threat. When effort is misapplied to low-risk areas, higher-risk areas are left exposed. This inefficiency can prove disastrous. Risk management…
Innovative Approaches to NHI Protection

Jun 11, 2025 5:55 AM

Tags: cybercrime, strategy

Will Rising Cybercrimes Warrant a More Innovative Approach to NHI Protection? With the intensifying wave of cybercrimes, robust and innovative strategies are crucial in tackling these emerging threats. One area that is often overlooked yet holds immense potential for a more secure digital is the management of Non-Human Identities (NHIs) and Secrets. Are we ready……
Indian Authorities Bust Cybercriminals Posing as Microsoft Tech Support

Jun 10, 2025 12:55 PM

Tags: cyber, cybercrime, finance, fraud, india, law, microsoft, network, scam

India’s Central Bureau of Investigation (CBI), the nation’s federal law enforcement agency, launched a sweeping operation targeting cyber-enabled financial fraud networks. Raids at 19 locations across India dismantled a sophisticated tech support scam operation impersonating Microsoft, primarily victimizing older adults in Japan. Major Crackdown on Tech Support Fraud Networks The operation led to the arrest…
Trump takes aim at Biden’s cyber executive order but leaves it largely untouched

Jun 10, 2025 12:55 AM

Tags: access, ai, china, compliance, computer, credentials, cryptography, cyber, cybercrime, cybersecurity, data, defense, detection, exploit, fraud, government, identity, infrastructure, intelligence, malicious, network, nist, office, privacy, programming, risk, risk-management, service, software, supply-chain, technology, threat, tool, unauthorized, vulnerability, zero-day

Executive Order 13694 and Executive Order 14144.”A fact sheet accompanying the order says that President Trump’s EO modifies “problematic and distracting issues” of Obama- and Biden-era cybersecurity EOs, particularly “digital identity mandates that risked widespread abuse by enabling illegal immigrants to improperly access public benefits.”Virtually all of the changes implemented by the Trump administration address…
Cybercrime losses averted under GDPR rules

Jun 9, 2025 10:54 PM

Tags: cybercrime, GDPR

First seen on scworld.com Jump to article: www.scworld.com/brief/cybercrime-losses-averted-under-gdpr-rules
APT41 Hackers Leverage Google Calendar for Malware C2 in Attacks on Government Entities

Jun 9, 2025 4:54 PM

Tags: attack, china, control, cyber, cybercrime, espionage, exploit, google, government, group, hacker, malware, threat

The Chinese state-sponsored threat actor APT41, also known as BARIUM, Wicked Panda, and Brass Typhoon, has been reported to exploit Google Calendar as a command-and-control (C2) mechanism in a recent campaign targeting a Taiwanese government website. This sophisticated group, active since at least 2012, is notorious for blending cyber espionage with financially motivated cybercrime, hitting…
BadBox 2.0 botnet infects millions of IoT devices worldwide, FBI warns

Jun 9, 2025 10:55 AM

Tags: botnet, cyber, cybercrime, exploit, iot, malware, network, service

BadBox 2.0 malware has infected millions of IoT devices globally, creating a botnet used for cyber criminal activities, the FBI warns. The FBI published a Public Service Announcement (PSA) to warn that cybercriminals are using the BADBOX 2.0 botnet to exploit IoT devices on home networks, like streaming devices, projectors, and infotainment systems, mostly made…
Cybercriminals turn to “residential proxy” services to hide malicious traffic

Jun 8, 2025 1:54 PM

Tags: cybercrime, malicious, service

“You cannot technically distinguish which traffic in a node is bad and which traffic is good.” First seen on arstechnica.com Jump to article: arstechnica.com/security/2025/06/cybercriminals-turn-to-residential-proxy-services-to-hide-malicious-traffic/
Bundeslagebild Cybercrime 2024: BKA meldet zahlreiche Ermittlungserfolge bei anhaltend hoher Bedrohungslage

Jun 8, 2025 12:54 AM

Tags: cybercrime

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/bundeslagebild-cybercrime-2024-bka-ermittlungserfolge-bedrohungslage
The Dark Web’s Currency of Choice: Stolen Data

Jun 7, 2025 8:55 AM

Tags: breach, cybercrime, dark-web, data, government

In the 19th century, opium was a highly sought-after commodity that fueled entire economies and conflicts. Today, data holds that same level of value, perhaps even more. It is the currency of power and influence wielded by governments, corporations, and cybercriminals alike. Whether used legitimately or illicitly, data’s worth remains undeniable. This article explores the…
Cybercriminals Are Hiding Malicious Web Traffic in Plain Sight

Jun 6, 2025 9:54 PM

Tags: cybercrime, detection, malicious, service

In an effort to evade detection, cybercriminals are increasingly turning to “residential proxy” services that cover their tracks by making it look like everyday online activity. First seen on wired.com Jump to article: www.wired.com/story/cybercriminals-are-hiding-malicious-web-traffic-in-plain-sight/
They Deepfaked Through the Bathroom Window: How Cybercriminals Are Targeting Executives Key Personnel at Home

Jun 6, 2025 8:55 PM

Tags: cybercrime

When the Beatles sang the famous lyric “She came in through the bathroom window,” they were riffing on a real event, a fan who bypassed the front door and broke into Paul McCartney’s home. It was a metaphor for intrusion from the unexpected. In 2025, it’s also a strikingly accurate portrait of how cybercriminals are..…
Hackers Leverage New ClickFix Tactic to Exploit Human Error with Deceptive Prompts

Jun 6, 2025 6:55 PM

Tags: cyber, cybercrime, cybersecurity, defense, exploit, group, hacker, iran, malicious, russia, social-engineering, threat

A sophisticated social engineering technique known as ClickFix baiting has gained traction among cybercriminals, ranging from individual hackers to state-sponsored Advanced Persistent Threat (APT) groups like Russia-linked APT28 and Iran-affiliated MuddyWater. This method targets human end users as the weakest link in cybersecurity defenses, tricking them into executing malicious commands through seemingly benign prompts. A…
Hundreds of Malicious GitHub Repos Targeting Novice Cybercriminals Traced to Single User

Jun 6, 2025 6:55 PM

Tags: backdoor, cyber, cybercrime, detection, email, github, malicious, malware, open-source, rat, sophos, threat

Sophos X-Ops researchers have identified over 140 GitHub repositories laced with malicious backdoors, orchestrated by a single threat actor associated with the email address ischhfd83[at]rambler[.]ru. Initially sparked by a customer inquiry into the Sakura RAT, a supposed open-source malware touted for its >>sophisticated anti-detection capabilities,
Beware: Fake AI Business Tools Spreading Hidden Ransomware

Jun 6, 2025 5:54 PM

Tags: ai, business, cisco, cyber, cybercrime, intelligence, malware, ransomware, software, tool

As small businesses increasingly adopt artificial intelligence (AI) tools to streamline operations, cybercriminals are seizing the opportunity to deploy ransomware through deceptive campaigns. According to a recent report by Cisco Talos, attackers are masquerading as legitimate AI software providers, embedding malware within counterfeit applications that mimic popular services. With 98% of small businesses using at…
Microsoft Unveils European Security Effort to Disrupt Cybercrime Networks

Jun 6, 2025 4:54 PM

Tags: cve, cyber, cybercrime, exploit, flaw, microsoft, network, technology, threat, update, vulnerability, windows, zero-day

A critical heap-based buffer overflow vulnerability, tracked as CVE-2025-24993, has been discovered in the Windows New Technology File System (NTFS), posing a significant threat to millions of Windows users globally. The flaw, patched during Microsoft’s March 2025 Patch Tuesday, was actively exploited as a zero-day in the wild, prompting urgent advisories from both Microsoft and…
Microsoft startet neues europäisches Sicherheitsprogramm

Jun 6, 2025 3:55 PM

Tags: ai, china, crime, crimes, cyber, cyberattack, cybercrime, cyberespionage, cyersecurity, deep-fake, governance, government, guide, infrastructure, intelligence, iran, LLM, microsoft, north-korea, open-source, ransomware, resilience, service, social-engineering, supply-chain, threat, ukraine, update, usa, vulnerability

Microsoft will die Cybersicherheit in Europa stärken.Microsoft warnt davor, dass sich Ransomware-Gruppen und staatlich geförderte Akteure aus Russland, China, dem Iran und Nordkorea in Umfang und Raffinesse stetig weiterentwickeln. Europa dürfe daher nicht zögern, seine Verteidigungsmechanismen zu stärken. Der Tech-Konzern will deshalb mit einer neuen Initiative bestehende Schutzprogramme erweitern und gezielt auf europäische Bedürfnisse eingehen.Das…
Colossal breach exposes 4B Chinese user records in surveillance-grade database

Jun 6, 2025 2:54 PM

Tags: breach, china, cybercrime, cybersecurity, data, data-breach, disinformation, exploit, finance, fraud, group, identity, infrastructure, insurance, intelligence, iphone, leak, mobile, organized, phishing, phone, threat

according to cybersecurity firm Cybernews, which reported its findings based on its own research.What makes this breach particularly alarming isn’t just its size, though at four billion records, it’s believed to be the largest single-source leak of Chinese personal data ever found, it’s the breadth and depth of information that was exposed.According to the report, the researchers stumbled…
3AM-Ransomware: Getarnte Cyberangriffe mit virtuellen Maschinen

Jun 6, 2025 12:55 PM

Tags: cyberattack, cybercrime, ransomware

Im ersten Quartal 2025 wurde ein Unternehmen Opfer eines ausgeklügelten Ransomware-Angriffs, hinter dem die Cybercrime-Gruppe 3AM steckte. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/3am-ransomware-getarnte-cyberangriffe
$17 Million Black Market Empire Crushed in Cybercrime Sting

Jun 6, 2025 9:55 AM

Tags: breach, credit-card, cybercrime, dark-web, data, government, marketplace

The U.S. government has seized approximately 145 domains associated with the BidenCash marketplace and other criminal marketplaces, effectively dismantling one of the most notorious darknet operations for trafficking stolen credit card data and personal information. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/bidencash-marketplace-domains-seized/
Interlock Begins Leaking Kettering Health’s Stolen Data

Jun 6, 2025 12:55 AM

Tags: attack, breach, cyber, cybercrime, data, group, healthcare

Ohio-Based Organization Says It’s Making Progress Restoring IT, Beefing Up Security. Cybercrime group Interlock has begun publishing some of the 941-gbytes of data the gang claims to have stolen in a disruptive May attack on Kettering Health. The Ohio-based healthcare organization is making IT system restoration progress and cyber enhancements, but is still recovering. First…
Backdoored Malware Reels in Newbie Cybercriminals

Jun 5, 2025 8:54 PM

Tags: cybercrime, github, malware, sophos

Sophos researchers found this operation has similarities or connections to many other campaigns targeting GitHub repositories dating back to August 2022. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/backdoored-malware-new-cybercriminals
Members of ViLE Hacker Group Arrested for Hacking DEA Portal

Jun 5, 2025 4:55 PM

Tags: cyber, cybercrime, extortion, group, hacker, hacking, law

Two members of the cybercriminal group “ViLE” were sentenced this week in Brooklyn federal court for their roles in a high-profile hacking and extortion scheme targeting a U.S. federal law enforcement web portal. Sagar Steven Singh, known online as “Weep,” received a 27-month prison sentence, while Nicholas Ceraolo, also known as “Convict,” “Anon,” and “Ominous,”…