Tag: cybercrime

Dating-app giants investigate incidents after cybercriminals claim to steal data

Jan 30, 2026 3:28 PM

Tags: breach, cybercrime, data, group, network

Bumble and Match said they each recently responded to network intrusions. The group ShinyHunters claimed to have stolen data from both. First seen on therecord.media Jump to article: therecord.media/bumble-match-dating-apps-data-breaches
Badges, Bytes and Blackmail

Jan 30, 2026 1:21 PM

Tags: cyber, cybercrime, law

Behind the scenes of law enforcement in cyber: what do we know about caught cybercriminals? What brought them in, where do they come from and what was their function in the crimescape?Introduction: One view on the scattered fight against cybercrimeThe growing sophistication and diversification of cybercrime have compelled law enforcement agencies worldwide to respond through…
ShinyHunters ramp up new vishing campaign with 100s in crosshairs

Jan 30, 2026 5:21 AM

Tags: advisory, attack, authentication, breach, communications, control, credentials, cybercrime, cybersecurity, data, data-breach, finance, google, group, hacker, hacking, infrastructure, intelligence, login, mfa, microsoft, mobile, okta, phishing, phone, saas, security-incident, social-engineering, tactics, theft, tool, unauthorized

<img loading="lazy" decoding="async" src="https://b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?w=1024" alt="ShinyHunters data dump" class="wp-image-4124689" srcset="https://b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?quality=50&strip=all 2260w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=300%2C182&quality=50&strip=all 300w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=768%2C466&quality=50&strip=all 768w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1024%2C621&quality=50&strip=all 1024w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1536%2C931&quality=50&strip=all 1536w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=2048%2C1241&quality=50&strip=all 2048w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1150%2C697&quality=50&strip=all 1150w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=277%2C168&quality=50&strip=all 277w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=139%2C84&quality=50&strip=all 139w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=792%2C480&quality=50&strip=all 792w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=594%2C360&quality=50&strip=all 594w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=412%2C250&quality=50&strip=all 412w” width=”1024″ height=”621″ sizes=”auto, (max-width: 1024px) 100vw, 1024px” /> CSOIn operation since 2020, ShinyHunters, also tracked as UNC6040, has stolen data from many well-known…
ShinyHunters ramp up new vishing campaign with 100s in crosshairs

Jan 30, 2026 5:21 AM

Tags: advisory, attack, authentication, breach, communications, control, credentials, cybercrime, cybersecurity, data, data-breach, finance, google, group, hacker, hacking, infrastructure, intelligence, login, mfa, microsoft, mobile, okta, phishing, phone, saas, security-incident, social-engineering, tactics, theft, tool, unauthorized

<img loading="lazy" decoding="async" src="https://b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?w=1024" alt="ShinyHunters data dump" class="wp-image-4124689" srcset="https://b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?quality=50&strip=all 2260w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=300%2C182&quality=50&strip=all 300w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=768%2C466&quality=50&strip=all 768w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1024%2C621&quality=50&strip=all 1024w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1536%2C931&quality=50&strip=all 1536w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=2048%2C1241&quality=50&strip=all 2048w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=1150%2C697&quality=50&strip=all 1150w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=277%2C168&quality=50&strip=all 277w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=139%2C84&quality=50&strip=all 139w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=792%2C480&quality=50&strip=all 792w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=594%2C360&quality=50&strip=all 594w, b2b-contenthub.com/wp-content/uploads/2026/01/shiny-hunters-data-dump.png?resize=412%2C250&quality=50&strip=all 412w” width=”1024″ height=”621″ sizes=”auto, (max-width: 1024px) 100vw, 1024px” /> CSOIn operation since 2020, ShinyHunters, also tracked as UNC6040, has stolen data from many well-known…
Report: Open Source Malware Instances Increased 73% in 2025

Jan 29, 2026 10:24 PM

Tags: cybercrime, malicious, malware, open-source, software

ReversingLabs this week published a report that finds there was a 73% increase in the number of malicious open source packages discovered in 2025 compared with the previous year. More than 10,000 malicious open source packages were discovered, most of which involved node package managers (npms) that cybercriminals were using to compromise software supply chains……
Google Disrupts Major Residential Proxy Network IPIDEA

Jan 29, 2026 7:21 PM

Tags: cybercrime, google, network, service

Google disrupted the IPIDEA network, a major residential proxy service used to hide cybercriminal activity. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/google-disrupts-major-residential-proxy-network-ipidea/
Google Disrupts Extensive Residential Proxy Networks

Jan 29, 2026 7:21 PM

Tags: cybercrime, google, network

Google has taken coordinated action against the massive IPIDEA residential proxy network, enhancing customer protections and disrupting cybercrime operations First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/google-disrupts-proxy-networks/
Operation Winter SHIELD: FBI Issues Call to Arms for Organizations to Improve Cybersecurity

Jan 29, 2026 6:25 PM

Tags: cybercrime, cybersecurity, network, threat

The FBI outlines ten actions which organizations can take to defend networks against cybercriminal and nation-state threats First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/fbi-operation-winter-shield-cyber/
Feds get second guilty plea in takedown of dark web Empire Market

Jan 29, 2026 4:26 PM

Tags: cybercrime, dark-web, marketplace

Both men charged with co-creating the dark web marketplace Empire Market have now pleaded guilty to federal drug conspiracy charges, closing the book on one of the major cybercrime cases of the early 2020s. First seen on therecord.media Jump to article: therecord.media/feds-second-guilty-plea
Fake “Mac Cleaner” Campaign Uses Google Ads to Redirect Users to Malware

Jan 29, 2026 4:26 PM

Tags: apple, cyber, cybercrime, exploit, google, malicious, malware

Cybercriminals are exploiting Google Search Ads to distribute malware through deceptive landing pages that impersonate Apple’s official website design. The malicious ads appear prominently in Google Search results when users search for >>mac cleaner,<< displaying trusted domains such as docs.google.com and business.google.com as landing pages. However, clicking these ads redirects users to Google Apps Script…
Notorious Russia-based RAMP cybercrime forum apparently seized by FBI

Jan 29, 2026 3:24 PM

Tags: china, cybercrime, group, ransomware, russia

RAMP was used by Russian, Chinese and English-speaking cybercriminals and particularly catered to ransomware groups and their affiliates. First seen on therecord.media Jump to article: therecord.media/notorious-russia-based-ramp-forum-seized
Schlag gegen Ransomware: FBI nimmt Cybergangstern ihr Forum weg

Jan 29, 2026 1:23 PM

Tags: cybercrime, hacker, ransomware

Das FBI hat ein vor allem an Ransomware-Hacker gerichtetes Cybercrime-Forum namens Ramp übernommen. Gründer war wohl ein alter Bekannter aus Russland. First seen on golem.de Jump to article: www.golem.de/news/schlag-gegen-ransomware-fbi-nimmt-cybergangstern-ihr-forum-weg-2601-204764.html
Ransomware crims forced to take off-RAMP as FBI seizes forum

Jan 28, 2026 11:21 PM

Tags: cybercrime, ransomware

Cybercrime solved. The end First seen on theregister.com Jump to article: www.theregister.com/2026/01/28/fbi_seizes_ramp_forum/
Russian Cybercrime Platform RAMP Forum Seized by FBI

Jan 28, 2026 7:24 PM

Tags: cybercrime, dark-web, ransomware, russia

US authorities have seized the RAMP cybercrime forum, taking down both its clearnet and dark web domains in a major hit to the ransomware infrastructure. First seen on hackread.com Jump to article: hackread.com/russian-cybercrime-ramp-forum-seized-fbi/
FBI seizes RAMP cybercrime forum used by ransomware gangs

Jan 28, 2026 7:24 PM

Tags: cybercrime, hacking, malware, ransomware, service

The FBI has seized the notorious RAMP cybercrime forum, a platform used to advertise a wide range of malware and hacking services, and one of the few remaining forums that openly allowed the promotion of ransomware operations. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fbi-seizes-ramp-cybercrime-forum-used-by-ransomware-gangs/
Empire cybercrime market owner pleads guilty to drug conspiracy

Jan 28, 2026 7:24 PM

Tags: cybercrime, dark-web, marketplace

A Virginia man who co-created Empire Market, one of the largest dark web marketplaces at the time, pleaded guilty to federal drug conspiracy charges for facilitating $430 million in illegal transactions from 2018 to 2020. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/empire-cybercrime-market-owner-pleads-guilty-to-drug-conspiracy/
Russian Cybercrime Platform RAMP Forum Seized by Feds

Jan 28, 2026 6:21 PM

Tags: cybercrime, dark-web, ransomware, russia

US authorities have seized the RAMP cybercrime forum, taking down both its clearnet and dark web domains in a major hit to the ransomware infrastructure. First seen on hackread.com Jump to article: hackread.com/russian-cybercrime-ramp-forum-seized-feds/
Cybercriminals Leverage AI-Generated Malicious Job Offers to Spread PureRAT Malware

Jan 28, 2026 4:23 PM

Tags: ai, corporate, cyber, cybercrime, jobs, malicious, malware, phishing, threat

A Vietnamese threat actor is using AI-authored code to power a phishing campaign that delivers the PureRAT malware and related payloads, leveraging realistic job-themed lures to compromise corporate systems. The campaign, first documented by Trend Micro in December 2025, initially used malicious ZIP and RAR attachments posing as job opportunity documents. More recent activity observed…
Cybercriminals Exploit Canadians’ Dependence on Digital Services in Widespread Attacks

Jan 28, 2026 4:23 PM

Tags: attack, cyber, cybercrime, data, exploit, finance, government, phishing, scam, service, threat

Canadian citizens are facing a coordinated phishing campaign that leverages government impersonation and brand spoofing to harvest personal and financial data at scale. The campaign is heavily aligned with PayTool, a known phishing-as-a-service ecosystem specializing in traffic violation scams targeting Canadians via SMS. Beyond traffic fines, threat actors are impersonating Canada Revenue Agency (CRA), Air…
Slovakian man pleads guilty to operating darknet marketplace

Jan 28, 2026 2:24 PM

Tags: breach, cybercrime, dark-web, government, marketplace, service, tool

A Slovakian national admitted on Tuesday to helping operate a darknet marketplace that sold narcotics, cybercrime tools and services, fake government IDs, and stolen personal information for more than two years. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/slovakian-man-pleads-guilty-to-operating-kingdown-market-cybercrime-marketplace/
Cybercriminals and nation-state groups are exploiting a six-month old WinRAR defect

Jan 28, 2026 1:21 AM

Tags: cybercrime, exploit, government, group, military, technology

Nation-state groups are consistently exploiting the defect to target victims in military, government and technology for espionage. First seen on cyberscoop.com Jump to article: cyberscoop.com/winrar-defect-active-exploits-google-threat-intel/
Botnet Spotlight: Pressure rises on botnets, but the fight is far from over

Jan 27, 2026 2:21 PM

Tags: botnet, cybercrime, infrastructure, law, malware, network

Momentum is building in the fight against botnets, as network operators and law enforcement ramp up crackdowns on botnet infrastructure, malware, and bulletproof hosting providers. While major takedowns show progress, cybercriminals are still adapting, learn more in this latest edition of the Botnet Spotlight. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/botnet-spotlight-pressure-rises-on-botnets-but-the-fight-is-far-from-over/
Nike Probes Possible Cybersecurity Incident Following Dark Web Claims

Jan 27, 2026 9:21 AM

Tags: attack, cybercrime, cybersecurity, dark-web, data, data-breach, extortion, group

Nike has confirmed that it is investigating a potential cybersecurity incident after claims surfaced online that its internal data may have leaked by a cybercrime group. The same group, known for extortion-driven attacks against other companies, previously claimed the Nike cyberattack on its dark web site. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/nike-cyberattack-investigation/
A new wave of ‘vishing’ attacks is breaking into SSO accounts in real time

Jan 27, 2026 1:20 AM

Tags: access, attack, cybercrime, group, network, service

Cybercrime groups, including one that identifies as ShinyHunters, are targeting single sign-on services to gain access to victim networks and steal data. First seen on cyberscoop.com Jump to article: cyberscoop.com/shinyhunters-voice-phishing-sso-okta-mfa-bypass-data-theft/
Cybercrime group claims credit for voice phishing attacks

Jan 26, 2026 6:21 PM

Tags: attack, cybercrime, group, okta, phishing, social-engineering

Security researchers at Okta previously disclosed a social engineering campaign involving custom phishing kits. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/cybercrime-group-voice-phishing-attacks-Okta/810493/
ShinyHunters claims 2 Million Crunchbase records; company confirms breach

Jan 26, 2026 6:21 PM

Tags: breach, cybercrime, data, data-breach, extortion, group

Crunchbase confirms a data breach after cybercrime group ShinyHunters claims to have stolen over 2 million personal records. Crunchbase confirmed a data breach after the cybercriminal group ShinyHunters claimed to steal over 2 million personal records from its systems. The group leaked a 402 MB compressed archive on their website due to a failed extortion…
New Malware Toolkit Redirects Victims to Malicious Sites Without Changing the URL

Jan 26, 2026 4:21 PM

Tags: browser, chrome, cyber, cybercrime, google, malicious, malware, russia

A dangerous new malware toolkit is being sold on Russian cybercrime forums that can redirect victims to fake websites while keeping the real domain name visible in their browser’s address bar. The toolkit, called Stanley, costs between $2,000 and $6,000 and comes with a guarantee that it will pass Google’s Chrome Web Store review process.…
Nike is investigating a possible data breach, after WorldLeaks claims

Jan 25, 2026 4:18 PM

Tags: breach, cyber, cybercrime, data, data-breach, group, incident

Nike is investigating a possible cyber incident after the WorldLeaks group claimed it stole data from the company’s systems. Nike is probing a potential security breach after the WorldLeaks cybercrime group claimed it accessed and stole data from the company’s systems. The footwear and apparel giant said it has launched an investigation to assess the…
The cybercrime industry continues to challenge CISOs in 2026

Jan 23, 2026 8:30 PM

Tags: access, ai, attack, automation, backup, best-practice, breach, business, ciso, compliance, control, credentials, crime, crowdstrike, cyber, cybercrime, cybersecurity, data, data-breach, deep-fake, defense, detection, disinformation, espionage, exploit, extortion, fortinet, framework, fraud, governance, group, hacker, hacking, identity, incident response, infection, infrastructure, insurance, intelligence, malware, metric, network, phishing, ransom, ransomware, resilience, risk, saas, service, soar, social-engineering, sophos, strategy, supply-chain, technology, theft, threat, tool, training, update, usa, vpn, vulnerability

Evolution of the security strategy: Alessandro Armenia, global head of cybersecurity at ReeVo, believes that three key aspects are emerging in the current landscape: “First, attacks are no longer isolated events, but coordinated, in some cases automated, operations that often originate within the organizations themselves, for example, due to human error or exposed credentials. Second,…
The cybercrime industry continues to challenge CISOs in 2026

Jan 23, 2026 8:30 PM

Tags: access, ai, attack, automation, backup, best-practice, breach, business, ciso, compliance, control, credentials, crime, crowdstrike, cyber, cybercrime, cybersecurity, data, data-breach, deep-fake, defense, detection, disinformation, espionage, exploit, extortion, fortinet, framework, fraud, governance, group, hacker, hacking, identity, incident response, infection, infrastructure, insurance, intelligence, malware, metric, network, phishing, ransom, ransomware, resilience, risk, saas, service, soar, social-engineering, sophos, strategy, supply-chain, technology, theft, threat, tool, training, update, usa, vpn, vulnerability

Evolution of the security strategy: Alessandro Armenia, global head of cybersecurity at ReeVo, believes that three key aspects are emerging in the current landscape: “First, attacks are no longer isolated events, but coordinated, in some cases automated, operations that often originate within the organizations themselves, for example, due to human error or exposed credentials. Second,…