Tag: cybercrime
-
They Deepfaked Through the Bathroom Window: How Cybercriminals Are Targeting Executives Key Personnel at Home
Tags: cybercrimeWhen the Beatles sang the famous lyric “She came in through the bathroom window,” they were riffing on a real event, a fan who bypassed the front door and broke into Paul McCartney’s home. It was a metaphor for intrusion from the unexpected. In 2025, it’s also a strikingly accurate portrait of how cybercriminals are..…
-
Hundreds of Malicious GitHub Repos Targeting Novice Cybercriminals Traced to Single User
Sophos X-Ops researchers have identified over 140 GitHub repositories laced with malicious backdoors, orchestrated by a single threat actor associated with the email address ischhfd83[at]rambler[.]ru. Initially sparked by a customer inquiry into the Sakura RAT, a supposed open-source malware touted for its >>sophisticated anti-detection capabilities,
-
Beware: Fake AI Business Tools Spreading Hidden Ransomware
As small businesses increasingly adopt artificial intelligence (AI) tools to streamline operations, cybercriminals are seizing the opportunity to deploy ransomware through deceptive campaigns. According to a recent report by Cisco Talos, attackers are masquerading as legitimate AI software providers, embedding malware within counterfeit applications that mimic popular services. With 98% of small businesses using at…
-
Microsoft Unveils European Security Effort to Disrupt Cybercrime Networks
Tags: cve, cyber, cybercrime, exploit, flaw, microsoft, network, technology, threat, update, vulnerability, windows, zero-dayA critical heap-based buffer overflow vulnerability, tracked as CVE-2025-24993, has been discovered in the Windows New Technology File System (NTFS), posing a significant threat to millions of Windows users globally. The flaw, patched during Microsoft’s March 2025 Patch Tuesday, was actively exploited as a zero-day in the wild, prompting urgent advisories from both Microsoft and…
-
Colossal breach exposes 4B Chinese user records in surveillance-grade database
Tags: breach, china, cybercrime, cybersecurity, data, data-breach, disinformation, exploit, finance, fraud, group, identity, infrastructure, insurance, intelligence, iphone, leak, mobile, organized, phishing, phone, threataccording to cybersecurity firm Cybernews, which reported its findings based on its own research.What makes this breach particularly alarming isn’t just its size, though at four billion records, it’s believed to be the largest single-source leak of Chinese personal data ever found, it’s the breadth and depth of information that was exposed.According to the report, the researchers stumbled…
-
3AM-Ransomware: Getarnte Cyberangriffe mit virtuellen Maschinen
Im ersten Quartal 2025 wurde ein Unternehmen Opfer eines ausgeklügelten Ransomware-Angriffs, hinter dem die Cybercrime-Gruppe 3AM steckte. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/3am-ransomware-getarnte-cyberangriffe
-
$17 Million Black Market Empire Crushed in Cybercrime Sting
The U.S. government has seized approximately 145 domains associated with the BidenCash marketplace and other criminal marketplaces, effectively dismantling one of the most notorious darknet operations for trafficking stolen credit card data and personal information. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/bidencash-marketplace-domains-seized/
-
Interlock Begins Leaking Kettering Health’s Stolen Data
Ohio-Based Organization Says It’s Making Progress Restoring IT, Beefing Up Security. Cybercrime group Interlock has begun publishing some of the 941-gbytes of data the gang claims to have stolen in a disruptive May attack on Kettering Health. The Ohio-based healthcare organization is making IT system restoration progress and cyber enhancements, but is still recovering. First…
-
Backdoored Malware Reels in Newbie Cybercriminals
Sophos researchers found this operation has similarities or connections to many other campaigns targeting GitHub repositories dating back to August 2022. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/backdoored-malware-new-cybercriminals
-
Members of ViLE Hacker Group Arrested for Hacking DEA Portal
Two members of the cybercriminal group “ViLE” were sentenced this week in Brooklyn federal court for their roles in a high-profile hacking and extortion scheme targeting a U.S. federal law enforcement web portal. Sagar Steven Singh, known online as “Weep,” received a 27-month prison sentence, while Nicholas Ceraolo, also known as “Convict,” “Anon,” and “Ominous,”…
-
#Infosec2025: Threat Actors Weaponizing Hardware Devices to Exploit Fortified Environments
Sophisticated nation-state and cybercriminal groups are using insiders to infect targets via hardware devices, despite a lack of reporting of this threat First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/threat-actors-weaponizing-hardware/
-
Microsoft launches European Security Program to counter nation-state threats
Tags: access, ai, attack, blizzard, cloud, control, country, crime, crimes, cyber, cybercrime, cybersecurity, framework, google, government, group, infrastructure, intelligence, malicious, malware, microsoft, network, open-source, resilience, russia, service, strategy, threat, vulnerabilityThree-component strategy: The European Security Program will operate through three main components designed to strengthen continental cyber defenses.The first element centers on enhanced threat intelligence sharing, where Microsoft will provide European governments with AI-enhanced, real-time insights into nation-state tactics.The company’s Digital Crimes Unit will expand intelligence sharing through the Cybercrime Threat Intelligence Program, giving European…
-
BKA-Bundeslagebild Cybercrime Erfolgreiche Strafverfolgung dämpft Ransomware-Welle KI verschärft Bedrohungslage
Das aktuelle Bundeslagebild Cybercrime 2024 des BKA zeigt ein ambivalentes Bild: Während die Zahl der angezeigten Ransomware-Angriffe leicht auf 950 Fälle zurückging, stiegen die Auslandstaten im Cyberbereich auf über 200.000 Fälle an. Mit 178,6 Milliarden Euro erreichten die durch Cyberattacken verursachten Schäden einen neuen Höchststand. Besonders besorgniserregend ist der zunehmende Einsatz von KI durch Cyberkriminelle,…
-
ViLE gang members sentenced for DEA portal breach, extortion
Two members of a group of cybercriminals named ViLE were sentenced this week for hacking into a federal law enforcement web portal in an extortion scheme. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/vile-gang-members-sentenced-for-breaching-law-enforcement-portal/
-
Sicherheitsexperten kommentieren das BKA Bundeslagebild Cybercrime 2024
Ohne vollständige Sichtbarkeit und kontinuierliche Risikoanalyse aller vernetzten Assets bleiben Schwachstellen lange Zeit unentdeckt und bieten Lücken, die Bedrohungsakteure ausnutzen können. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/sicherheitsexperten-kommentieren-das-bka-bundeslagebild-cybercrime-2024/a41040/
-
ViLE gang members sentenced for extortion, police portal breach
Two members of a group of cybercriminals named ViLE were sentenced this week for hacking into a federal law enforcement web portal in an extortion scheme. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/vile-gang-members-sentenced-for-breaching-law-enforcement-portal/
-
U.S. Authorities Shut Down Major Dark Web Marketplace with 117,000 Users
In a blow to the cybercrime underworld, the U.S. Attorney’s Office for the Eastern District of Virginia announced the seizure of approximately 145 domains, spanning both darknet and traditional internet spaces, associated with the notorious BidenCash marketplace. This coordinated operation, executed with support from the U.S. Secret Service, FBI, Dutch National High Tech Crime Unit,…
-
Law enforcement seized the carding marketplace BidenCash
U.S. and Dutch authorities took down 145 domains tied to the BidenCash cybercrime marketplace in a coordinated law enforcement operation. The US DoJ announced the seizure of approximately 145 darknet and clear web domains, and cryptocurrency funds associated with the BidenCash marketplace. >>The U.S. Attorney’s Office for the Eastern District of Virginia announced today the…
-
Feds Seize BidenCash Carding Market and Its Crypto Profits
After three years of peddling stolen data, BidenCash, one of the web’s most brazen cybercrime hubs is offline, and authorities say they’re just getting started. First seen on hackread.com Jump to article: hackread.com/feds-seize-bidencash-carding-market-crypto-profits/
-
Feds seize 145 domains associated with BidenCash cybercrime platform
The cybercrime marketplace was used by more than 117,000 customers and trafficked more than 15 million credit card numbers since March 2022, the Justice Department said. First seen on cyberscoop.com Jump to article: cyberscoop.com/bidencash-marketplace-domains-seized/
-
BidenCash darknet forum taken down by US, Dutch law enforcement
The FBI and Dutch national police were among the law enforcement agencies that took down 145 domains linked to BidenCash, a cybercrime marketplace linked to millions of dollars in fraud since late 2022. First seen on therecord.media Jump to article: therecord.media/bidencash-cybercrime-darknet-market-takedown-us-netherlands
-
Ransomware gang claims responsibility for Kettering Health hack
A group of cybercriminals known as Interlock is advertising stolen data from Kettering Health, which includes patients’ data. First seen on techcrunch.com Jump to article: techcrunch.com/2025/06/04/ransomware-gang-claims-responsibility-for-kettering-health-hack/
-
LockBit Crackdown Fragmented Russian Cybercrime Groups
Onslought Also Paved Way for Rise of English-Speaking Hackers. An international law enforcement crackdown on the LockBit ransomware group caused fragmentation and distrust among Russian-speaking cybercrime groups, paving the way for English-speaking hacking groups to gain prominence, experts said Tuesday during a London conference. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/lockbit-crackdown-fragmented-russian-cybercrime-groups-a-28585
-
Threat Actors Exploit Malware Loaders to Circumvent Android 13+ Accessibility Safeguards
Threat actors have successfully adapted to Google’s stringent accessibility restrictions introduced in Android 13 and later versions. These safeguards, rolled out in May 2022, were designed to prevent malicious applications from abusing accessibility services by blocking such access for sideloaded apps. However, cybercriminals have found ways to bypass these protections, leveraging sophisticated malware loaders and…
-
FBI warns of NFT airdrop scams targeting Hedera Hashgraph wallets
The FBI is warning about a new scam where cybercriminals exploit NFT airdrops on the Hedera Hashgraph network to steal crypto from cryptocurrency wallets. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fbi-warns-of-nft-airdrop-scams-targeting-hedera-hashgraph-wallets/