Tag: cybercrime

CrowdStrike 2025 Global Threat Report: 51-Second Breaches Shake Cybercrime

Mar 3, 2025 7:34 PM

Tags: breach, china, crowdstrike, cyberattack, cybercrime, malware, threat

CrowdStrike’s 2025 Global Threat Report reveals cyberattacks breaking out in just 51 seconds, with a 150% surge in China-linked activity and 79% malware-free detections. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/cybersecurity/crowdstrike-2025-threat-report-insights/
âš¡ THN Weekly Recap: Alerts on Zero-Day Exploits, AI Breaches, and Crypto Heists

Mar 3, 2025 2:34 PM

Tags: ai, android, breach, crypto, cybercrime, exploit, microsoft, tool, zero-day

This week, a 23-year-old Serbian activist found themselves at the crossroads of digital danger when a sneaky zero-day exploit turned their Android device into a target. Meanwhile, Microsoft pulled back the curtain on a scheme where cybercriminals used AI tools for harmful pranks, and a massive trove of live secrets was discovered, reminding us that…
UK Cybersecurity Weekly Update 2 March 2025

Mar 3, 2025 1:34 PM

Tags: access, ai, apple, attack, backup, breach, china, cyber, cyberattack, cybercrime, cybersecurity, data, election, encryption, google, governance, government, group, healthcare, infrastructure, intelligence, monitoring, office, privacy, ransomware, regulation, russia, service, threat, unauthorized, update, vulnerability

UK Government’s Encryption Demands Lead to Apple’s Data Protection Withdrawal The UK government has mandated that Apple provide access to encrypted iCloud backups under the Investigatory Powers Act of 2016. In response, Apple has withdrawn its “Advanced Data Protection” feature for UK users, citing concerns over user privacy and security. This move has sparked a…
Ransomware access playbook: What Black Basta’s leaked logs reveal

Mar 3, 2025 10:34 AM

Tags: access, breach, credentials, cybercrime, dark-web, data, data-breach, extortion, group, login, malware, password, ransomware, service, software, theft, threat, tool

From infostealer to ransomware: Infostealers are malware programs designed to scrape login information stored inside browser password stores and other applications. These threats are increasingly being offered as a service on cybercriminal forums, and according to a recent study, their prevalence has increased three-fold over the past year. The information stolen by such tools, known…
Why cyber attackers are targeting your solar energy systems, and how to stop them

Mar 3, 2025 8:33 AM

Tags: access, attack, authentication, automation, awareness, backup, best-practice, china, communications, control, credentials, cyber, cybercrime, cybersecurity, data, detection, exploit, firmware, framework, group, infrastructure, iot, mfa, monitoring, network, password, penetration-testing, regulation, risk, russia, service, software, technology, threat, update, vulnerability

Smart inverter vulnerabilities threaten the electric grid: The biggest risk occurs during high-demand times. If enough solar DERs suddenly go offline during a critical period, there might not be adequate alternative energy sources that can come online immediately, or the available alternatives are much more expensive to operate. Attackers can produce similar results merely by…
US Military Personnel Arrested for Hacking 15 Telecom Providers

Mar 3, 2025 7:33 AM

Tags: cyber, cybercrime, hacking, military

Federal prosecutors have filed a detention memorandum urging the court to indefinitely detain Cameron John Wagenius, a 21-year-old active-duty U.S. Army soldier stationed at Fort Cavazos, Texas, following his alleged involvement in a multi-state cybercrime campaign targeting at least 15 telecommunications providers. The charges, unsealed ahead of a March 3 detention hearing, reveal a sprawling…
The Rise of QR Phishing: How Scammers Exploit QR Codes and How to Stay Safe

Mar 2, 2025 10:33 PM

Tags: cybercrime, exploit, malicious, phishing, qr, scam

QR phishing is on the rise, tricking users into scanning malicious QR codes. Learn how cybercriminals exploit QR codes and how to protect yourself. First seen on hackread.com Jump to article: hackread.com/rise-of-qr-phishing-how-scammers-exploit-qr-codes/
Security Affairs newsletter Round 513 by Pierluigi Paganini INTERNATIONAL EDITION

Mar 2, 2025 12:33 PM

Tags: cybercrime, email, exploit, international, microsoft, ransomware, WeeklyReview, zero-day

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Ransomware gangs exploit a Paragon Partition Manager BioNTdrv.sys driver zero-day Microsoft disrupted a global cybercrime ring abusing Azure…
Was ist ein Initial Access Broker?

Mar 2, 2025 10:34 AM

Tags: access, cybercrime

In der Cybercrime-Szene hat sich in den letzten Jahren eine Spezialisierung herausgebildet, die für Unternehmen und Organisationen weltweit eine ernsthafte Bedrohung darstellt: der Initial Access Broker (IAB). First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/initial-access-broker-definition
Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service

Mar 1, 2025 6:34 PM

Tags: access, ai, cybercrime, data-breach, malicious, microsoft, openai, service, tool, unauthorized

Microsoft exposed four individuals behind an Azure Abuse scheme using unauthorized GenAI access to create harmful content. Microsoft shared the names of four developers of malicious tools designed to bypass the guardrails of generative AI services, including Microsoft’s Azure OpenAI Service. Microsoft is taking legal action against these defendants, dismantling their operation, and curbing misuse…
Microsoft continues cracks down on global generative AI cybercrime network

Feb 28, 2025 10:34 PM

Tags: ai, cybercrime, microsoft, network

First seen on scworld.com Jump to article: www.scworld.com/brief/microsoft-continues-cracks-down-on-global-generative-ai-cybercrime-network
Microsoft Continues Crackdown On Global GenAI Cybercrime Network

Feb 28, 2025 10:34 PM

Tags: ai, cybercrime, microsoft, network

First seen on scworld.com Jump to article: www.scworld.com/brief/microsoft-continues-crackdown-on-global-genai-cybercrime-network
Microsoft Disrupts Storm-2139 for LLMjacking and Azure AI Exploitation

Feb 28, 2025 10:34 PM

Tags: ai, api, breach, cybercrime, exploit, microsoft, network

Microsoft exposes Storm-2139, a cybercrime network exploiting Azure AI via LLMjacking. Learn how stolen API keys enabled harmful… First seen on hackread.com Jump to article: hackread.com/microsoft-storm-2139-llmjacking-azure-ai-exploitation/
Microsoft targets AI deepfake cybercrime network in lawsuit

Feb 28, 2025 9:34 PM

Tags: ai, api, breach, cybercrime, deep-fake, microsoft, network, openai, software

Microsoft alleges that defendants used stolen Azure OpenAI API keys and special software to bypass content guardrails and generate illicit AI deepfakes for payment. First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366619781/Microsoft-targets-AI-deepfake-cybercrime-network-in-lawsuit
Microsoft files lawsuit against LLMjacking gang that bypassed AI safeguards

Feb 28, 2025 7:34 PM

Tags: access, ai, api, breach, cloud, computing, credentials, cyber, cybercrime, exploit, google, LLM, microsoft, openai, service, threat, tool, vulnerability

LLMjacking can cost organizations a lot of money: LLMjacking is a continuation of the cybercriminal practice of abusing stolen cloud account credentials for various illegal operations, such as cryptojacking, abusing hacked cloud computing resources to mine cryptocurrency. The difference is that large quantities of API calls to LLMs can quickly rack up huge costs, with…
ISMG Editors: Black Basta Falls, Is Ransomware on the Ropes?

Feb 28, 2025 6:34 PM

Tags: cybercrime, data, group, law, LLM, privacy, ransomware, update

Also: U.S. Health Data Privacy Crackdowns, Reality vs. Hype of LLMs in Security. In this week’s update, four editors with ISMG explore the crumbling state of ransomware group Black Basta and implications for other cybercrime gangs, the expanding impact of U.S. health data privacy laws, and whether large language models are truly what they seem.…
Inside the Minds of Cybercriminals: A Deep Dive into Black Basta’s Leaked Chats”¯

Feb 28, 2025 6:34 PM

Tags: attack, communications, cybercrime, data-breach, defense, exploit, group, ransomware

“¯ The leaked internal chat communications of the Black Basta ransomware group offer an unprecedented view into how cybercriminals operate, plan attacks, and evade detection. The Veriti Research team analyzed these chat logs, revealing our favorite exploits, security measures they bypass, and the defenses they fear most. Veriti Research analyzed these chat communications, exposing: “¯ Vulnerabilities……
Microsoft Exposes LLMjacking Cybercriminals Behind Azure AI Abuse Scheme

Feb 28, 2025 1:34 PM

Tags: access, ai, cybercrime, intelligence, microsoft, openai, service, unauthorized

Microsoft on Thursday unmasked four of the individuals that it said were behind an Azure Abuse Enterprise scheme that involves leveraging unauthorized access to generative artificial intelligence (GenAI) services in order to produce offensive and harmful content.The campaign, called LLMjacking, has targeted various AI offerings, including Microsoft’s Azure OpenAI Service. The tech giant is First…
Interna von Ransomware-Gruppe Black Basta durchgesickert

Feb 28, 2025 12:34 PM

Tags: access, cyberattack, cybercrime, data-breach, governance, government, hacker, infrastructure, malware, ransomware, social-engineering, threat, vulnerability

Über die vergangenen Jahre hat Black Basta mit mehr als 500 Opfern weltweit von sich Reden gemacht. Durchgesickerte Chat-Protokolle enthüllen die innere Funktionsweise und interne Konflikte der Gruppe.Black Basta betrat erstmals im April 2022 die Hackerbühne und nutzte den inzwischen weitgehend verschwundenen QakBot, auch bekannt als QBot. Einem von der US-Regierung im Mai 2024 veröffentlichten…
Microsoft Names Suspects in Lawsuit Against AI Hackers

Feb 28, 2025 12:34 PM

Tags: ai, china, cybercrime, hacker, iran, microsoft, service

In a lawsuit targeting cybercriminals who abuse AI services, Microsoft has named individuals from Iran, the UK, China and Vietnam. The post Microsoft Names Suspects in Lawsuit Against AI Hackers appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/microsoft-names-suspects-in-lawsuit-against-ai-hackers/
How to Protect Your Digital Identity While Gaming Online

Feb 28, 2025 11:34 AM

Tags: attack, credentials, cybercrime, data, hacker, identity, malware, phishing, scam, threat

Playing games online provides entertainment but exposes you to specific dangers during gameplay. Hackers and scammers specifically target your personal data, payment specifics, and gaming account information. Cybercriminals steal money and account credentials through phishing attacks, malware, and unsecured systems. Gaming carelessly can lead to possible profile loss and the threat of identity theft. Protecting…
Hiding in Plain Sight: The Hidden Dangers of Geolocation in Cloud Security

Feb 27, 2025 7:59 AM

Tags: attack, cloud, cybercrime, google, infrastructure, malicious, microsoft, strategy, threat

One of the biggest challenges organizations face today is detecting malicious activity in cloud environments. As highlighted in MixMode’s latest Threat Research Report, cybercriminals are increasingly leveraging trusted cloud providers like AWS, Microsoft Azure, and Google Cloud to disguise their attacks, a strategy known as infrastructure laundering. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/hiding-in-plain-sight-the-hidden-dangers-of-geolocation-in-cloud-security-2/
GhostGPT: An Uncensored AI Chatbot Empowering Cybercriminals

Feb 26, 2025 12:23 AM

Tags: ai, cybercrime, email, hacker, malicious, phishing, social-engineering, tool

GhostGPT is revolutionizing cybercrime by providing hackers with an AI tool that bypasses ethical guardrails found in mainstream models. Available as little as $150, it enables even novice attackers to generate malicious code, craft phishing emails, and automate social engineering at scale. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/ghostgpt-an-uncensored-ai-chatbot-empowering-cybercriminals/
DeepSeek Lure Using CAPTCHAs To Spread Malware

Feb 25, 2025 7:23 PM

Tags: ai, attack, botnet, breach, captcha, cloud, control, credentials, crypto, cybercrime, data, detection, exploit, infrastructure, injection, international, login, malicious, malware, network, open-source, powershell, privacy, scam, service, technology, theft, threat, tool, windows

IntroductionThe rapid rise of generative AI tools has created opportunities and challenges for cybercriminals. In an instant, industries are being reshaped while new attack surfaces are being exposed. DeepSeek AI chatbot that launched on January 20, 2025, quickly gained international attention, making it a prime target for abuse. Leveraging a tactic known as brand impersonation,…
5 Essential Email Security Tips for Businesses

Feb 25, 2025 7:23 PM

Tags: ai, attack, cyber, cybercrime, defense, email, phishing, risk, threat, tool
Understanding MFA Fatigue: Why Cybercriminals Are Exploiting Human Behaviour

Feb 25, 2025 6:23 PM

Tags: authentication, cybercrime, cybersecurity, exploit, identity, mfa

The common maxim in cybersecurity is that the industry is always on the back foot. While cybersecurity practitioners build higher walls, adversaries are busy creating taller ladders. It’s the nature of the beast. A prime example is multi-factor authentication (MFA), a security process that requires users to verify their identity in two or more ways,…
Hackers Exploiting Cisco Small Business Routers RCE Vulnerability Deploying Webshell

Feb 25, 2025 6:23 PM

Tags: backdoor, business, cisco, cve, cyber, cybercrime, exploit, flaw, hacker, rce, remote-code-execution, router, vulnerability

A critical remote code execution (RCE) vulnerability, CVE-2023-20118, affecting Cisco Small Business Routers, has become a focal point for cybercriminals deploying webshells and advanced backdoor payloads. The vulnerability, caused by improper input validation in the routers’ web-based management interface, allows unauthenticated attackers to execute arbitrary commands by sending specially crafted HTTP requests. This flaw has…
New Attack Hijacks Popular YouTube Gaming Channels to Steal Steam Accounts

Feb 25, 2025 5:22 PM

Tags: attack, breach, cyber, cybercrime, cybersecurity, scam

Cybersecurity researchers at Bitdefender Labs have uncovered a sophisticated scam targeting the Counter-Strike 2 (CS2) gaming community. Cybercriminals are hijacking popular YouTube gaming channels to impersonate professional players and lure unsuspecting fans into fraudulent schemes. These scams, timed to coincide with major esports events like IEM Katowice 2025 and PGL Cluj-Napoca 2025, result in stolen…
5 Active Malware Campaigns in Q1 2025

Feb 25, 2025 1:23 PM

Tags: attack, cybercrime, exploit, malware, rat, threat

The first quarter of 2025 has been a battlefield in the world of cybersecurity. Cybercriminals continued launching aggressive new campaigns and refining their attack methods.Below is an overview of five notable malware families, accompanied by analyses conducted in controlled environments.NetSupport RAT Exploiting the ClickFix TechniqueIn early 2025, threat actors began exploiting a technique First seen…
Dragos: Surge of new hacking groups enter ICS space as states collaborate with private actors

Feb 25, 2025 12:23 PM

Tags: attack, cybercrime, group, hacking, infrastructure

States are increasingly collaborating with cybercriminal groups to share resources and amplify attacks on critical infrastructure in rival nations, a new report finds. First seen on cyberscoop.com Jump to article: cyberscoop.com/dragos-ot-ics-annual-report-states-collaborating-with-private-hacking-groups/