Tag: cybercrime
-
Vietnam Probes Breach of Credit Agency Run by Central Bank
Cybercrime Group ShinyHunters Advertises 160 Million Stolen Records. Vietnam’s central bank is probing a hack attack that breached its credit reporting division, exposing personally identifiable information. The cybercrime group ShinyHunters claimed credit for the breach, advertising on a cybercrime forum 160 million stolen records for $175,000. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/vietnam-probes-breach-credit-agency-run-by-central-bank-a-29445
-
Hackers steal private data of Gucci, Balenciaga and McQueen customers
Cybercriminals steal details of potentially millions of people in attack on labels’ parent company KeringHackers have stolen data from customers of the luxury fashion group Kering, whose brands include Gucci, Balenciaga and Alexander McQueen.Cyber-attackers have stolen data of potentially millions of customers, including the names, phone numbers and email addresses of customers of the fashion…
-
Razzia gegen Darknet-Drogenversand
Das Bundeskriminalamt ermittelt gegen drei verdächtigte Personen, die über das Darknet Drogen verkauft haben sollen.Ermittler haben im deutsch-niederländischen Grenzgebiet einen Darknet-Drogenversand ausgehoben. Dabei seien Ecstasy und Kokain im Wert von mehreren Millionen Euro sichergestellt worden, berichteten Polizei und Staatsanwaltschaft. Drei Männer im Alter von 33, 39 und 40 Jahren stehen im Verdacht, seit längerer Zeit Drogen…
-
FBI Releases IOCs on Cyber Threats Exploiting Salesforce for Data Theft
Tags: advisory, breach, cyber, cybercrime, cybersecurity, data, exploit, infrastructure, tactics, theft, threatThe Federal Bureau of Investigation (FBI) has released a detailed flash advisory disclosing indicators of compromise (IOCs) and tactics used by two cybercrime groups”, UNC6040 and UNC6395″, to breach Salesforce customer environments and siphon sensitive data. Coordinated with the Department of Homeland Security Cybersecurity and Infrastructure Security Agency (DHS/CISA), the bulletin aims to equip security…
-
AI-Powered Villager Pen Testing Tool Hits 11,000 PyPI Downloads Amid Abuse Concerns
Tags: ai, china, cybercrime, framework, intelligence, malicious, penetration-testing, pypi, RedTeam, toolA new artificial intelligence (AI)-powered penetration testing tool linked to a China-based company has attracted nearly 11,000 downloads on the Python Package Index (PyPI) repository, raising concerns that it could be repurposed by cybercriminals for malicious purposes.Dubbed Villager, the framework is assessed to be the work of Cyberspike, which has positioned the tools as a…
-
FBI Alert: Two Cybercriminal Groups Are Actively Compromising Salesforce
The post FBI Alert: Two Cybercriminal Groups Are Actively Compromising Salesforce appeared first on Daily CyberSecurity. First seen on securityonline.info Jump to article: securityonline.info/fbi-alert-two-cybercriminal-groups-are-actively-compromising-salesforce/
-
FBI warns of Salesforce attacks by UNC6040 and UNC6395 groups
The U.S. FBI issued a flash alert to warn of malicious activities carried out by two cybercriminal groups tracked as UNC6040 and UNC6395. The FBI issued a FLASH alert with IOCs for cybercriminal groups UNC6040 and UNC6395, which are increasingly targeting Salesforce platforms for data theft and extortion. >>The Federal Bureau of Investigation (FBI) is…
-
FBI Warns of UNC6040 and UNC6395 Targeting Salesforce Platforms in Data Theft Attacks
The U.S. Federal Bureau of Investigation (FBI) has issued a flash alert to release indicators of compromise (IoCs) associated with two cybercriminal groups tracked as UNC6040 and UNC6395 for a string of data theft and extortion attacks.”Both groups have recently been observed targeting organizations’ Salesforce platforms via different initial access mechanisms,” the FBI said.UNC6395 is…
-
Operation Eastwood: Measuring the Real Impact on NoName057(16)
Introduction On July 16, 2025, Europol revealed the details of Operation Eastwood, a coordinated international strike against one of the most active pro-Russian cybercrime groups, NoName057(016). The announcement promised a major disruption to the group’s activities. In this blog, we explore whether Operation Eastwood had any real impact on NoName057(016), and how the group’s activities……
-
Ransomware Attack
Ransomware has become one of the most devastating forms of cybercrime in the modern era. From hospitals forced to cancel surgeries to global supply chains brought to a standstill, ransomware doesn’t just lock data”, it cripples organizations. The damage goes far beyond financial losses. Ransomware can erode trust, tarnish reputations, and create lasting business disruption.…
-
Vietnam, Panama governments suffer incidents leaking citizen data
Vietnam’s credit information bureau and Panama’s finance ministry are each responding to apparent data breaches claimed by high-profile cybercrime groups. First seen on therecord.media Jump to article: therecord.media/vietnam-cic-panama-finance-ministry-cyberattacks
-
British rail passengers urged to stay on guard after hack signals failure
Tags: cybercrimePassengers of the UK’s state-owned London North Eastern Railway (LNER) have been warned to be vigilant after cybercriminals accessed traveller’s contact details and some information about past journeys. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/british-rail-passengers-hack-signals-failure
-
ASEAN Adopts 10-Year Action Plan to Combat Rising Cybercrime Threat
Cybercrime and online scams have officially overtaken traditional threats as the primary regional security concern for the Association of Southeast Asian Nations (ASEAN). This ASEAN cybercrime threat in focus was confirmed by Malaysia’s Home Minister, Datuk Seri Saifuddin Nasution Ismail, at the close of the 19th ASEAN Ministers’ Meeting on Transnational Crime (AMMTC) and Related…
-
Muck Stealer Malware Used Alongside Phishing in New Attack Waves
A new report from Cofense reveals that cybercriminals are blending phishing and malware, including Muck Stealer, Info Stealer,… First seen on hackread.com Jump to article: hackread.com/muck-stealer-malware-phishing-new-attack-waves/
-
Apple Warns of Mercenary Spyware Attacks Targeting User Devices
Apple has issued urgent warnings about sophisticated spyware attacks targeting specific users worldwide, including journalists, activists, politicians, and diplomats. Mercenary spyware attacks differ significantly from regular cybercriminal activity. These attacks cost millions of dollars and target only a small number of individuals based on their profession or status. The attacks are often linked to state…
-
12 digital forensics certifications to accelerate your cyber career
Tags: access, apt, attack, browser, chrome, cloud, computer, corporate, cyber, cybercrime, cybersecurity, data, defense, detection, email, endpoint, exploit, google, government, group, hacker, hacking, Hardware, incident response, international, jobs, law, malicious, malware, microsoft, mobile, network, phone, service, skills, soc, technology, threat, tool, training, windowsCellebrite Certified Mobile Examiner (CCME)Certified Computer Examiner (CCE)CyberSecurity Forensic Analyst (CSFA)EC-Council Computer Hacking Forensic Investigator (CHFI)EnCase Certified Examiner (EnCE)Exterro AccessData Certified Examiner (ACE)GIAC Advanced Smartphone Forensics Certification (GASF)GIAC Certified Forensics Analyst (GCFA)GIAC Certified Forensic Examiner (GCFE)GIAC Cloud Forensic Responder (GCFR)GIAC Network Forensic Analysis (GNFA)Magnet Certified Forensics Examiner (MCFE) Cellebrite Certified Mobile Examiner (CCME) Out of…
-
Fünf KI-Use-Cases für CISOs
Tags: access, ai, business, ceo, cio, ciso, cybercrime, cybersecurity, cyersecurity, data, framework, google, incident response, mail, microsoft, phishing, rat, risk, risk-management, service, siem, soc, tool, vpn, vulnerability, vulnerability-management -
Fünf KI-Use-Cases für CISOs
Tags: access, ai, business, ceo, cio, ciso, cybercrime, cybersecurity, cyersecurity, data, framework, google, incident response, mail, microsoft, phishing, rat, risk, risk-management, service, siem, soc, tool, vpn, vulnerability, vulnerability-management -
SonicWall SSLVPN Exploitation ‘Ongoing’ By Ransomware Group: Researchers
The Akira cybercriminal group is believed to be behind a resurgence in ransomware attacks exploiting a previously disclosed vulnerability impacting certain SonicWall firewalls, according to researchers at Rapid7. First seen on crn.com Jump to article: www.crn.com/news/security/2025/sonicwall-sslvpn-exploitation-ongoing-by-ransomware-group-researchers
-
Anthropic’s Claude AI Weaponized in $500K Cybercrime Spree
An unprecedented breach turned Claude into a cybercriminal, highlighting the risks of autonomous AI. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/anthropics-claude-ai-weaponized-in-500k-cybercrime-spree/
-
How the retail sector teams up to defend against cybercrime
The cyber-threat intel-sharing and collaboration group RH-ISAC is helping companies confront cyberattacks. But the challenge is delivering timely intelligence in a dynamic threat environment. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/retail-isac-lessons-learned-scattered-spider/758504/
-
Kosovo man pleads guilty to running online criminal marketplace BlackDB
Kosovo man Liridon Masurica pleaded guilty to running the cybercrime marketplace BlackDB. He was arrested in 2024. Kosovo citizen Liridon Masurica (33) of Gjilan, aka @blackdb, pleaded guilty to running the BlackDB cybercrime market. Kosovo police arrested Masurica on December 12, 2024 and he was extradited to the US. The online criminal marketplace BlackDB.cc has…
-
Chrome Extension Scam Exposed: Hackers Stealing Meta Accounts
Tags: ai, browser, business, chrome, credentials, cyber, cybercrime, data-breach, hacker, malicious, scam, service, toolA sophisticated campaign targeting Meta advertisers through fake AI-powered ad optimization tools has been uncovered, with cybercriminals deploying malicious Chrome extensions to steal credentials and hijack business accounts. Cybereason Security Services has identified an evolving malicious Chrome extension campaign that specifically targets Meta (Facebook/Instagram) advertisers through a deceptive platform called >>Madgicx Plus.
-
Apple slips up on ChillyHell macOS malware, lets it past security . . . for 4 years
‘We do believe that this was likely the creation of a cybercrime group,’ threat hunter tells The Reg First seen on theregister.com Jump to article: www.theregister.com/2025/09/10/chillyhell_modular_macos_malware/
-
Southeast Asian Scam Centers Face More Financial Sanctions
Firms cooperating with cybercrime syndicates in Burma and Cambodia face sanctions by the US government and enforcement actions by China, but the scams continue to grow. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/southeast-asian-scam-centers-financial-sanctions
-
Kosovo hacker pleads guilty to running BlackDB cybercrime marketplace
Kosovo national Liridon Masurica has pleaded guilty to running BlackDB.cc, a cybercrime marketplace that has been active since 2018. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/kosovo-hacker-pleads-guilty-to-running-blackdb-cybercrime-marketplace/
-
Salty2FA Takes Phishing Kits to Enterprise Level
Cybercriminal operations use the same strategy and planning as legitimate organizations as they arm adversarial phishing kits with advanced features. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/salty2fa-phishing-kits-enterprise-level
-
Salty2FA Phishing Kit Unveils New Level of Sophistication
Salty2FA phishing campaign showcases advanced techniques and professionalism of cybercrime operations First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/salty2fa-phishing-kit/
-
U.S. Cracks Down on Scam Networks in Southeast Asia Draining Billions
In a sweeping effort to curb transnational cybercrime and human rights abuses, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) today imposed sanctions on a sprawling network of scam centers operating in Southeast Asia. These centers, which exploit forced labor and violence, defrauded Americans of more than $10 billion in 2024.…