Tag: cybercrime
-
Russian Basketball Star Arrested Over Ransomware Attacks on 900+ Companies
A prominent Russian basketball player has been arrested in France on charges related to one of the most extensive ransomware operations in recent years, highlighting the ongoing intersection between cybercrime and international law enforcement. Daniil Kasatkin, a 26-year-old professional basketball player who recently played for Moscow’s MBA-MAI team, was detained at Paris Charles de Gaulle…
-
Iranian-Backed Pay2Key Ransomware Resurfaces with 80% Profit Share for Cybercriminals
An Iranian-backed ransomware-as-a-service (RaaS) named Pay2Key has resurfaced in the wake of the Israel-Iran-U.S. conflict last month, offering bigger payouts to cybercriminals who launch attacks against Israel and the U.S.The financially motivated scheme, now operating under the moniker Pay2Key.I2P, is assessed to be linked to a hacking group tracked as Fox Kitten (aka Lemon Sandstorm).”…
-
Deutschland (leider) auf Platz 4: Betrügerische Finanzanzeigen bei Meta
Allein in Deutschland gingen im Jahr 2024 267 Milliarden Euro durch Cyberkriminalität verloren. Anlagebetrug in sozialen Medien hat in den letzten drei Jahren dramatisch zugenommen. Instagram und Facebook sind die am häufigsten gemeldeten Plattformen, während TikTok und Linkedin mit den höchsten finanziellen Verlusten pro Opfer im Durchschnitt in Verbindung gebracht werden [1] [2]. Aber wo……
-
4 Arrested in UK Over M&S, Co-op, Harrods Hacks
The UK’s National Crime Agency arrested four people, who some experts believe are connected to the notorious cybercriminal collective known as Scattered Spider. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/4-arrested-uk-marks-spencer-co-op-harrods-hacks
-
Cyberattacks on User Logins Jump 156%, Fueled by Infostealers and Phishing Toolkits
Identity-driven assaults have increased by a shocking 156% between 2023 and 2025, making up 59% of all confirmed threat instances in Q1 2025, according to data conducted by eSentire’s Threat Response Unit (TRU). This dramatic shift from traditional asset-focused exploits to sophisticated identity-centric campaigns underscores a fundamental change in adversarial tactics. Identity-Based Threats Cybercriminals are…
-
UK authorities arrest 4 people in probe of retail cyberattack spree
The arrests mark the first major break in a case linked to the Scattered Spider cybercrime group, although additional work continues with multiple agencies. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/uk-arrest-four-retail-cyberattack/752682/
-
Russia, hotbed of cybercrime, says nyet to ethical hacking bill
Politicians uneasy over potential impact on national security, local reports say First seen on theregister.com Jump to article: www.theregister.com/2025/07/10/russia_ethical_hacking_bill/
-
British Police Bust Four Scattered Spider Suspects in England
Suspects Tied to April Ransomware Attacks Against Retailers M&S, Co-Op, Harrods. The U.K.’s National Crime Agency on Thursday arrested in England four suspected members of the Scattered Spider cybercrime collective, as part of an ongoing investigation into major, disruptive hack attacks in April against major retailers Marks & Spencer, the Co-Op and Harrods. First seen…
-
Deepfakes: Wie KI-generierte Inhalte die Cyberkriminalität revolutionieren
Cyberkriminelle passen sich stetig an und mit der Verbreitung generativer Künstlicher Intelligenz erleben ihre Methoden eine beunruhigende Weiterentwicklung. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/deepfakes-ki-generierte-inhalte-cyberkriminalitaet
-
Agentic AI Is Fueling a Rise of Deepfake Phishing Scams
Ironscales Founder, CEO Eyal Benishti Pushes to Expand AI Protection Beyond Email. Deepfake phishing is escalating as cybercriminals deploy agentic AI to automate everything from data collection to social engineering. Ironscales founder and CEO Eyal Benishti outlines how phishing is targeting communication platforms beyond email, and how defenders can keep up. First seen on govinfosecurity.com…
-
Why Scattered Spider Persists as Major Threat to Insurers
Cybercrime gang Scattered Spider is the top suspect in several recent cyberattacks in the U.S. insurance sector, and it’s likely that threat actors could still be lurking in other insurers’ IT environments, said Peter McMurtrie of consulting firm West Monroe. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/scattered-spider-persists-as-major-threat-to-insurers-i-5487
-
Why Scattered Spider Persists as Major Threat to Insurers
Cybercrime gang Scattered Spider is the top suspect in several recent cyberattacks in the U.S. insurance sector, and it’s likely that threat actors could still be lurking in other insurers’ IT environments, said Peter McMurtrie of consulting firm West Monroe. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/scattered-spider-persists-as-major-threat-to-insurers-i-5487
-
XwormRAT Hackers Leverage Code Injection for Sophisticated Malware Deployment
A sophisticated new distribution method for XwormRAT malware that leverages steganography techniques to hide malicious code within legitimate files. This discovery highlights the evolving tactics of cybercriminals who are increasingly using advanced obfuscation methods to bypass security detection systems and deceive unsuspecting users. The latest XwormRAT campaign represents a significant evolution in malware distribution methodology,…
-
Italian authorities arrest Chinese man over Microsoft Exchange Server hack, targeting of COVID-19 researchers
The arrest came at the request of the United States, which hailed the development as a sign that patience in pursuing cybercriminals in court is rewarded. First seen on cyberscoop.com Jump to article: cyberscoop.com/italian-authorities-arrest-chinese-man-over-microsoft-exchange-server-hack-targeting-of-covid-19-researchers/
-
New Bert Ransomware Evolves With Multiple Variants
An emerging ransomware group that calls itself Bert is quickly evolving after hitting the cybercrime scene in April, targeting both Windows and Linux systems used by organizations in the health care, tech, and other industries in the United States, Europe, and Asia. It may be a Russian group whose malware evolved from REvil code. First…
-
Cybersicherheitsmonitor 2025 – Schutz vor Cybercrime: Verbraucher werden nachlässiger
Tags: cybercrimeFirst seen on security-insider.de Jump to article: www.security-insider.de/schutz-vor-cybercrime-verbraucher-werden-nachlaessiger-a-e32c3c80fccb804f9fb3e2383174606a/
-
DarkWeb: Boom im verborgenen Internet als Eldorado für Cyberkriminalität
First seen on datensicherheit.de Jump to article: www.datensicherheit.de/darkweb-boom-eldorado-cyberkriminalitaet
-
Cyberattacks are changing the game for major sports events
Sports fans and cybercriminals both look forward to major sporting events, but for very different reasons. Fake ticket sites, stolen login details, and DDoS attacks are common … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/07/08/sport-events-cybercrime/
-
Scattered Spider weaves web of social-engineered destruction
Tags: cybercrimeThe cybercrime ring has infiltrated more than 100 businesses since 2022, including more than a dozen since it regrouped earlier this year. First seen on cyberscoop.com Jump to article: cyberscoop.com/scattered-spider-social-engineering-cybercrime/
-
Abusing Trust: Threat Actors Leverage Signed Drivers for Stealthy Windows Kernel Exploits
Cybercriminals continue to use kernel-level malware as a preferred weapon against Windows systems amid a terrifying increase in cyberthreats. Operating at ring 0 the highest privilege level in the operating system such malware grants attackers unparalleled access to disable security defenses, maintain persistence, and operate undetected. Despite Microsoft’s robust countermeasures like PatchGuard, Driver Signature Enforcement…
-
Over 1,000 Fake Domains Imitating Amazon Prime Day Created to Target Online Shoppers
Online customers around the world are getting ready for huge discounts and unique offers as July 8, the much-anticipated Amazon Prime Day 2025, draws near. However, this global shopping event has also become a prime target for cybercriminals, with over 1,000 newly registered domains mimicking Amazon’s branding detected in June alone. Surge in Phishing Threats…
-
XWorm RAT Deploys New Stagers and Loaders to Bypass Defenses
The XWorm Remote Access Trojan (RAT), a longstanding favorite among cybercriminals, has recently showcased a significant evolution in its attack methodology, employing an array of sophisticated stagers and loaders to evade detection and infiltrate systems. Known for its comprehensive malicious capabilities including keylogging, remote desktop access, data exfiltration, and command execution XWorm has become a…
-
Qantas Contacted by Potential Cybercriminal Following Data Breach
Qantas said it is currently validating the contact, and has informed law enforcement First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/qantas-contacted-cybercriminal/
-
Qantas attack reveals one phone call is all it takes to crack cybersecurity’s weakest link: humans
Tags: access, attack, breach, cyber, cybercrime, cybersecurity, data, data-breach, email, finance, healthcare, phone, riskOther sectors also at risk from attacks, including healthcare, finance and telecommunications, expert warns<ul><li>Get our <a href=”https://www.theguardian.com/email-newsletters?CMP=cvau_sfl”>breaking news email, <a href=”https://app.adjust.com/w4u7jx3″>free app or <a href=”https://www.theguardian.com/australia-news/series/full-story?CMP=cvau_sfl”>daily news podcast</li></ul>All it can take is a phone call. That’s what <a href=”https://www.theguardian.com/business/2025/jul/02/qantas-confirms-cyber-attack-exposes-records-of-up-to-6-million-customers”>Qantas learned this week when the personal information of up to 6 million customers was stolen by cybercriminals…
-
DragonForce Ein Ransomware-Kartell sichert seine Stellung
Die Cyberkriminalität entwickelt sich weiter längst geht es nicht mehr nur um schnelle Gewinne. Gruppen wie DragonForce zeigen, dass im Untergrund nicht allein Geld, sondern auch Einfluss, Kontrolle und Marktanteile zählen. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/dragonforce-ransomware-kartell-sichert-stellung
-
Scattered Spider Enhances Tactics to Exploit Legitimate Tools for Evasion and Persistence
Scattered Spider, also tracked under aliases such as UNC3944, Scatter Swine, and Muddled Libra, has emerged as a formidable financially motivated cybercriminal group since at least May 2022. Initially known for targeting telecommunications and tech firms with phishing and SIM-swapping campaigns, the group has significantly evolved, orchestrating full-spectrum, multi-stage intrusions across both cloud and on-premises…
-
Hackers Abuse Legitimate Inno Setup Installer to Deliver Malware
Cybercriminals are increasingly weaponizing legitimate software installer frameworks like Inno Setup to distribute malware, turning user-friendly tools into covert vehicles for malicious payloads. Originally designed to simplify software deployment on Windows, Inno Setup has become a favored tool among threat actors due to its trusted appearance and powerful Pascal scripting capabilities. This sophisticated abuse allows…
-
New >>123 – Stealer<< Malware Rented on Dark Web for $120/Month
A new credential-stealing malware, dubbed >>123 – Stealer,123 | Stealer
-
Cyberkriminelle nutzen intensiv KI: KI-gestützte Ransomware FunkSec
Die Ransomware-Gruppe FunkSec ist ein Beispiel dessen, wie die Zukunft der auf Masse ausgelegten Cyberkriminalität aussehen könnte: KI-gestützt, multifunktional, hochgradig anpassungsfähig und volumenorientiert mit Lösegeldforderungen schon ab nur 10.000 US-Dollar, um den Gewinn zu maximieren. FunkSec, seit Ende 2024 aktiv, hat bereits gezielt den Regierungs-, Technologie-, Finanz- und Bildungssektor in Europa und Asien angegriffen…. First…