Tag: cybercrime

Chinesische Hacker haben über 1.000 SOHO-Geräte infiziert

Jul 1, 2025 4:34 PM

Tags: backdoor, china, cisco, cyberattack, cybercrime, cyberespionage, hacker, iot, linux, malware, office, usa, vulnerability, windows

Dutzende Cybercrime-Kampagnen mit Fokus auf Asien und die USA wurden als angebliche LAPD-Aktionen getarnt.Cybersecurity-Experten haben ein Netzwerk von mehr als 1.000 kompromittierten Small-Office- und Home-Office-Geräten (SOHO) entdeckt. Die Devices wurden laut den Experten dazu genutzt, eine langwierige Cyberspionage-Infrastrukturkampagne für chinesische Hacker-Gruppen zu ermöglichen. Das Strike-Team von SecurityScorecard entdeckte das dazugehörige Operational-Relay-Box (ORB)-Netzwerk und gab ihm…
Mit KI auf Spurensuche im Darknet: Sophos identifiziert Schlüsselakteure der Cyberkriminalität

Jul 1, 2025 1:34 PM

Tags: ai, cybercrime, dark-web, sophos

Mittels sozialwissenschaftlicher Methoden unter anderem einem Klassifikationsmodell aus der Kriminologie und KI-gestützter Netzwerkanalyse konnte das Forschungsteam die Nutzer:innen in Gruppen einteilen: Wer ist besonders aktiv, wer ist spezialisiert, wer besitzt tiefes technisches Know-how? First seen on infopoint-security.de Jump to article: www.infopoint-security.de/mit-ki-auf-spurensuche-im-darknet-sophos-identifiziert-schluesselakteure-der-cyberkriminalitaet/a41274/
US-Regierung geht gegen nordkoreanische Fake-ITler vor

Jul 1, 2025 12:34 PM

Tags: cybercrime, governance, government, north-korea, usa

Nordkorea schleust Agenten als IT-Mitarbeiter mit falschen Identitäten in Unternehmen ein – in den USA wurden nun Verantwortliche hochgenommen. First seen on golem.de Jump to article: www.golem.de/news/cybercrime-us-regierung-geht-gegen-nordkoreanische-fake-itler-vor-2507-197631.html
CISOs must rethink defense playbooks as cybercriminals move faster, smarter

Jul 1, 2025 10:34 AM

Tags: access, automation, breach, business, cisco, ciso, crowdstrike, cybercrime, cybersecurity, data, defense, finance, incident response, Intruder, okta, ransomware, siem, technology, threat

Threat actor containment: Increasingly ‘surgical’ and best with a plan: Even after an intruder has been identified, today’s rapid pace of adversary activity is also straining cybersecurity teams’ ability to contain intruders before they can cause damage.”If I’m a CISO, if I’m responsible for detecting and remediating that incident before it progresses to becoming a…
Hacker zwischen Cybercrime und Spionage: Die Grenze verschwimmt

Jul 1, 2025 9:33 AM

Tags: cybercrime, hacker

Staatliche Spionage und organisierte Cyberkriminalität gehen zunehmend Hand in Hand. Zwei Hackergruppen zeigen, wie schwer es geworden ist, Täter klar zuzuordnen und wie ausgeklügelt ihre Methoden sind. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/hacker-cybercrime-spionage
How cybercriminals are weaponizing AI and what CISOs should do about it

Jul 1, 2025 8:34 AM

Tags: ai, ciso, cybercrime, finance

In a recent case tracked by Flashpoint, a finance worker at a global firm joined a video call that seemed normal. By the end of it, $25 million was gone. Everyone on the call … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/07/01/defending-ai-powered-cybercrime/
Threat Actors Exploit Facebook Ads to Distribute Malware and Steal Wallet Passwords

Jun 30, 2025 9:33 PM

Tags: cyber, cybercrime, exploit, malicious, malware, network, password, phishing, scam, threat, update

The Pi Network community eagerly celebrated Pi2Day, an event traditionally associated with platform updates, feature launches, and significant milestones. However, this year’s festivities have been overshadowed by a sinister wave of cyberattacks. Cybercriminals have capitalized on the event’s hype, launching a malicious ad campaign on Facebook to target unsuspecting users with phishing scams and malware…
Data breach at healthcare services firm Episource affects 5.4M

Jun 30, 2025 4:34 PM

Tags: breach, computer, cybercrime, data, data-breach, healthcare, service

The incident, one of the largest breaches reported to federal regulators this year, came after a cybercriminal accessed data on the company’s computer systems over the winter. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/episource-healthcare-data-breach-impacts-5-4-million/751960/
Swiss nonprofit health organization breached by Sarcoma ransomware group

Jun 30, 2025 4:34 PM

Tags: breach, cybercrime, data, data-breach, group, ransomware

Sarcoma, a recently emerged cybercrime group, was responsible for a data breach of Swiss health nonprofit Radix, according to a statement by the Zurich-based organization. First seen on therecord.media Jump to article: therecord.media/sarcoma-ransomware-breach-swiss-healthcare-nonprofit-radix
How 2 Ransomware Attacks on 2 Hospitals Led to 2 Deaths in Europe

Jun 30, 2025 4:34 PM

Tags: attack, cybercrime, data, healthcare, ransomware, risk

Two deadly Ransomware Attacks on European hospitals show cybercrime now risks lives not just data with patients dying after treatment delays. First seen on hackread.com Jump to article: hackread.com/how-ransomware-attacks-hospitals-2-deaths-in-europe/
FBI: Cybercriminals steal health data posing as fraud investigators

Jun 30, 2025 3:33 PM

Tags: cybercrime, data, fraud

The Federal Bureau of Investigation (FBI) has warned Americans of cybercriminals impersonating health fraud investigators to steal their sensitive information. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fbi-warns-cybercriminals-steal-health-data-posing-as-fraud-investigators/
RIFT: Open-Source Rust Malware Analyzer Released by Microsoft

Jun 30, 2025 1:33 PM

Tags: cyber, cybercrime, exploit, intelligence, malware, microsoft, open-source, programming, rust, threat, tool

As cybercriminals and nation-state actors increasingly turn to the Rust programming language for malware development, Microsoft’s Threat Intelligence Center has unveiled a powerful new open-source tool called RIFT to help security analysts combat this growing threat. Rust, renowned for its speed, memory safety, and robustness, is now being exploited for its advantages in creating malware…
Cybercriminals take malicious AI to the next level

Jun 30, 2025 11:33 AM

Tags: ai, automation, breach, chatgpt, cisco, control, credit-card, cybercrime, cybersecurity, dark-web, data, deep-fake, defense, finance, fraud, group, hacking, intelligence, LLM, malicious, marketplace, monitoring, phishing, service, social-engineering, strategy, tactics, threat, tool, vulnerability

Custom face generation for dating scamsAudio spoofing for voice verification fraudOn-demand video avatars that lip-sync based on customer-submitted scriptsThese services are increasingly offered with add-ons such as pre-loaded backstories,matching fake documents, and automated scheduling for calls. Prompt engineering as a service: Underground communities have also emerged around the art of crafting jailbreak prompts.These “bypass builders”…
Cyberbedrohungen 2024: Mehr Angriffe, raffiniertere Methoden

Jun 29, 2025 9:34 AM

Tags: cyberattack, cybercrime

Die weltweite Bedrohung durch Cyberkriminalität hat 2024 erneut deutlich zugenommen. Angriffe wurden nicht nur häufiger, sondern auch ausgeklügelter. First seen on it-daily.net Jump to article: www.it-daily.net/shortnews/cyberbedrohungen-2024-mehr-angriffe-raffiniertere-methoden
The FBI warns that Scattered Spider is now targeting the airline sector

Jun 28, 2025 10:34 PM

Tags: access, cybercrime, group, social-engineering, threat

The FBI warns that Scattered Spider is now targeting the airline sector. Feds are working with aviation partners to combat the threat and assist affected victims. The FBI reports that the cybercrime group Scattered Spider is now targeting the airline sector. The cybercriminals are using social engineering techniques to gain access to target organizations by…
ESET Warns Cybercriminals Are Targeting NFC Data for Contactless Payments

Jun 28, 2025 3:34 PM

Tags: attack, banking, cyber, cybercrime, data, exploit, nfc, threat

ESET researchers have uncovered a sophisticated attack vector exploiting Near Field Communication (NFC) data, initially targeting Czech banking customers but now spreading worldwide. According to the ESET Threat Report H1 2025, the incidence of NFC-related attacks has skyrocketed, with telemetry data showing a staggering 35-fold increase in the first half of 2025 compared to the…
FBI Warns of Scattered Spider’s Expanding Attacks on Airlines Using Social Engineering

Jun 28, 2025 2:34 PM

Tags: attack, cybercrime, group, social-engineering

The U.S. Federal Bureau of Investigation (FBI) has revealed that it has observed the notorious cybercrime group Scattered Spider broadening its targeting footprint to strike the airline sector.To that end, the agency said it’s actively working with aviation and industry partners to combat the activity and help victims.”These actors rely on social engineering techniques, often…
Malicious AI Models Are Behind a New Wave of Cybercrime, Cisco Talos

Jun 28, 2025 11:34 AM

Tags: ai, cisco, cybercrime, malicious, malware, phishing, scam, threat

Cybercriminals use malicious AI models to write malware and phishing scams Cisco Talos warns of rising threats from uncensored and custom AI tools. First seen on hackread.com Jump to article: hackread.com/malicious-ai-models-wave-of-cybercrime-cisco-talos/
BreachForums broken up? French police arrest five members of notorious cybercrime site

Jun 28, 2025 10:34 AM

Tags: cybercrime, data, data-breach, marketplace

Suspected high-ranking members of one of the world’s largest online marketplaces for leaked data have been arrested by French police. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/breachforums-broken-up-french-police-arrest-five-members-of-notorious-cybercrime-site
Cybercriminals Exploit CapCut Popularity to Steal Apple ID Credentials and Credit Card Data

Jun 28, 2025 10:34 AM

Tags: apple, credentials, credit-card, cyber, cybercrime, data, defense, exploit, phishing, threat

Threat actors have capitalized on the immense popularity of CapCut, the leading short-form video editing app, to orchestrate a highly deceptive phishing campaign. According to the Cofense Phishing Defense Center (PDC), attackers are deploying meticulously crafted fake invoices that impersonate CapCut’s branding to lure users into surrendering their Apple ID credentials and credit card information.…
Hawaiian Airlines cyberattack has marks of Scattered Spider, sources say

Jun 27, 2025 8:36 PM

Tags: cyberattack, cybercrime, group, update

A cyberattack that temporarily affected some of Hawaiian Airlines’ IT systems was likely the work of the Scattered Spider cybercrime group, which lately has taken an interest in the aviation industry, incident responders say. First seen on therecord.media Jump to article: therecord.media/hawaiian-airlines-cyberattack-flights-safe
Teardown: How Scattered Spider Hacked a Logistics Firm

Jun 27, 2025 8:36 PM

Tags: cybercrime, group, hacker, intelligence

Group Amassed Intelligence on CFO to Trick Help Desk and Gain Initial Access. Hackers tied to the cybercrime group Scattered Spider have been taking down fresh victims, including a logistics firm first breached when attackers tricked its help desk, using personal information they amassed for the CFO, reports the security team that responded to the…
Lunar Spider Lotus V2 Loader Campaign Using Fake CAPTCHA Delivery and DLL Sideloading

Jun 27, 2025 12:36 PM

Tags: captcha, cybercrime, finance, fraud, group

Lunar Spider is a financially motivated cybercrime group that has been active since at least 2017. The group primarily engages in financial fraud and access First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2025/06/27/lunar-spider-lotus-v2-loader-campaign-using-fake-captcha-delivery-and-dll-sideloading/
Money mule networks evolve into hierarchical, business-like criminal enterprises

Jun 27, 2025 8:36 AM

Tags: ai, automation, business, ceo, cybercrime, network, social-engineering

In this Help Net Security interview, Michal Tresner, CEO of ThreatMark, discusses how cybercriminals are weaponizing AI, automation, and social engineering to industrialize … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/06/27/michal-tresner-threatmark-money-mule-networks/
University Student Charged for Alleged Hacking and Data Theft

Jun 27, 2025 8:36 AM

Tags: attack, cyber, cybercrime, data, docker, hacking, theft

A 27-year-old former student of Western Sydney University has been charged with a string of cyber offences, following an extensive investigation into a series of cyber attacks that have plagued the institution since 2021. The arrest comes after a coordinated operation by the NSW Police Cybercrime Squad under Strike Force Docker, working in partnership with…
Scam compounds labeled a ‘living nightmare’ as Cambodian government accused of turning a blind eye

Jun 26, 2025 10:36 PM

Tags: cybercrime, government, international, scam

Amnesty International said it identified dozens of scam compounds in Cambodia, calling the government’s response to the nexus of cybercrime and human trafficking “grossly inadequate.” First seen on therecord.media Jump to article: therecord.media/cambodia-scam-compounds-amnesty-international-report
Cybercriminals sell modified AI on BreachForums

Jun 26, 2025 10:36 PM

Tags: ai, cybercrime

First seen on scworld.com Jump to article: www.scworld.com/brief/cybercriminals-sell-modified-ai-on-breachforums
Getting a career in cybersecurity isn’t easy, but this can help

Jun 26, 2025 8:36 PM

Tags: ai, attack, cybercrime, cybersecurity

This week, Joe reflects on his unique path into cybersecurity and shares honest advice for breaking into the field. Plus, learn how cybercriminals are abusing AI to launch more sophisticated attacks and what you can do to stay protected. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/getting-a-career-in-cybersecurity-isnt-easy-but-this-can-help/
US indicts one for role in BreachForums, France arrests four others

Jun 26, 2025 6:36 PM

Tags: access, attack, breach, cisco, computer, corporate, credentials, cybercrime, data, email, fraud, government, group, healthcare, identity, international, iran, law, leak, marketplace, offense, resilience, russia, theft, unauthorized, zero-trust

-Shweta SharmaA US court indicted a man accused of being IntelBroker, a key administrator of stolen data marketplace BreachForums, on Wednesday, just days after four others accused of running the site alongside him were arrested in FranceBritish national Kai West, 25, was arrested in France in February, and US authorities are seeking to extradite him…
Notorious cybercriminal ‘IntelBroker’ arrested in France, awaits extradition to US

Jun 26, 2025 6:36 PM

Tags: cybercrime, data

Kai West, a 25-year-old British national, is accused of stealing data from more than 40 organizations during a two-year spree. First seen on cyberscoop.com Jump to article: cyberscoop.com/intelbroker-cybercriminal-kai-west-arrested/