Tag: cybercrime
-
BianLian and RansomExx Exploit SAP NetWeaver Flaw to Deploy PipeMagic Trojan
At least two different cybercrime groups BianLian and RansomExx are said to have exploited a recently disclosed security flaw in SAP NetWeaver, indicating that multiple threat actors are taking advantage of the bug.Cybersecurity firm ReliaQuest, in a new update published today, said it uncovered evidence suggesting involvement from the BianLian data extortion crew and the…
-
“Dance of the Hillary” and the Expanding Use of Malware in Regional Cyber Conflict
A recent advisory from the Punjab Police’s cybercrime wing warns of a new wave of malware attacks potentially originating from Pakistan, with a tool known as “Dance of the Hillary” at the center of the campaign. Targeting users through phishing links and malicious attachments, this strain of malware is designed to steal sensitive data and…
-
Kosovo extradites BlackDB admin to face US cybercrime charges
A Kosovo national has been extradited to the United States to face charges of running an online cybercrime marketplace active since 2018. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/kosovo-extradites-blackdb-admin-to-face-us-cybercrime-charges/
-
Cybercrime & Kryptowährungen Teil 1 – So erkennen IT-Security-Experten Krypto-Risiken rechtzeitig
First seen on security-insider.de Jump to article: www.security-insider.de/cyberkriminalitaet-krypto-boersen-risiken-erkennen-a-ab884215956d0c34c9248509ddf611f3/
-
First-Party-Fraud übertrifft Scams und wird zur häufigsten Form globaler Angriffe
Inflation und steigende Lebenshaltungskosten tragen voraussichtlich zu einer Zunahme opportunistischer Betrugsfälle in den Bereichen Finanzdienstleistungen, E-Commerce und anderen Branchen bei. KI-gestützter Betrug wird voraussichtlich im Jahr 2025 zunehmen. LexisNexis Risk Solutions veröffentlicht seinen jährlichen Cybercrime-Report, eine Analyse von über 104 Milliarden globalen Transaktionen auf der »LexisNexis Digital Identity Network Plattform« im Jahr 2024 [1]…. First…
-
Ransomware spreads faster, not smarter
The fall of two of the most dominant ransomware syndicates, LockBit and AlphV, triggered a power vacuum across the cybercriminal landscape, acccording to a Black Kite survey. … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/05/14/ransomware-landscape-shift-2025/
-
LexisNexis® Risk Solutions Cybercrime Report 2025: Ruhe vor dem Sturm
First seen on datensicherheit.de Jump to article: www.datensicherheit.de/lexisnexis-risk-solutions-cybercrime-report-2025-ruhe-vor-dem-sturm
-
Federal prosecutors extradite alleged leader of BlackBD.cc cybercrime marketplace
Authorities arrested Kosovo citizen Liridon Masurica in late 2024. He faces six charges that could keep him behind bars for 55 years. First seen on cyberscoop.com Jump to article: cyberscoop.com/blackdb-administrator-liridon-masurica-extradited-charged/
-
Ransomware Attacks Surge by 123% Amid Evolving Tactics and Strategies
The 2025 Third-Party Breach Report from Black Kite highlights a staggering 123% surge in ransomware attacks during 2024, driven largely by sophisticated exploitation of third-party vendor ecosystems. As cybercriminals refine their tactics, third-party vendors have emerged as the predominant entry point for some of the most catastrophic breaches in recent history. The report underscores how…
-
Moldovan Police arrested a 45-year-old foreign man participating in ransomware attacks on Dutch companies
A 45-year-old foreign man has been arrested in Moldova for allegedly participating in ransomware attacks on Dutch companies in 2021. Moldovan police arrested a 45-year-old foreign man as a result of a joint international operation involving Moldovan and Dutch authorities. He is internationally wanted for multiple cybercrime, including ransomware attacks, blackmail, and money laundering, targeting…
-
Four Hackers Caught Exploiting Old Routers as Proxy Servers
U.S. authorities unsealed charges against four foreign nationals accused of operating a global cybercrime scheme that hijacked outdated wireless routers to create malicious proxy networks. Russian nationals Alexey Viktorovich Chertkov (37), Kirill Vladimirovich Morozov (41), Aleksandr Aleksandrovich Shishkin (36), and Kazakhstani Dmitriy Rubtsov (38) face conspiracy and computer crime charges for allegedly profiting from botnets…
-
Hackers Abuse PyInstaller to Deploy Stealthy macOS Infostealer
Jamf Threat Labs has identified a novel macOS infostealer that exploits PyInstaller, a legitimate open-source tool used to bundle Python scripts into standalone Mach-O executables. This marks the first documented instance of PyInstaller being weaponized to deploy infostealers on macOS, highlighting a sophisticated evolution in the tactics of cybercriminals targeting Apple’s ecosystem. Discovered in April…
-
First-Party-Fraud steigt weltweit zur häufigsten Betrugsform auf
Der Bericht basiert auf der Auswertung von über 104 Milliarden Transaktionen, die zwischen Januar und Dezember 2024 über das LexisNexis® Digital Identity Network® abgewickelt wurden. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/first-party-fraud-steigt-zur-weltweit-fuehrenden-betrugsform-auf/a40757/
-
Moldovan Police Arrest Suspect in Euro4.5M Ransomware Attack on Dutch Research Agency
Moldovan law enforcement authorities have arrested a 45-year-old foreign man suspected of involvement in a series of ransomware attacks targeting Dutch companies in 2021.”He is wanted internationally for committing several cybercrimes (ransomware attacks, blackmail, and money laundering) against companies based in the Netherlands,” officials said in a statement Monday.In conjunction with the First seen on…
-
ADN Microsoft CSP Security Week: KI gegen Cyberkriminalität
ADN und Microsoft vermitteln während der ADN Microsoft CSP Security Week von 23. bis 27. Juni 2025 in insgesamt 16 Sessions das notwendige Knowhow, mit dem Partner ihre Kunden gegen Cyber-Risiken absichern können. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/adn-microsoft-csp-security-week-ki-gegen-cyberkriminalitaet/a40735/
-
Moldova arrests suspect in ransomware attacks targeting Dutch firms
A 45-year-old man arrested in Moldova is charged with a string of cybercrimes against Dutch entities in 2021. First seen on therecord.media Jump to article: therecord.media/moldova-arrest-suspect-ransomware-attacks-netherlands
-
âš¡ Weekly Recap: Zero-Day Exploits, Developer Malware, IoT Botnets, and AI-Powered Scams
What do a source code editor, a smart billboard, and a web server have in common? They’ve all become launchpads for attacks”, because cybercriminals are rethinking what counts as “infrastructure.” Instead of chasing high-value targets directly, threat actors are now quietly taking over the overlooked: outdated software, unpatched IoT devices, and open-source packages. It’s not…
-
Cybercriminals Hide Undetectable Ransomware Inside JPG Images
A chilling new ransomware attack method has emerged, with hackers exploiting innocuous JPEG image files to deliverfully undetectable (FUD) ransomware, according to a recent disclosure by cybersecurity researchers. This technique, which bypasses traditional antivirus systems, highlights an alarming evolution in cybercrime tactics. The exploit involves embedding malicious code within standard JPG images. When a victim…
-
Hackers Abuse Copilot AI in SharePoint to Steal Passwords and Sensitive Data
Microsoft’s Copilot for SharePoint, designed to streamline enterprise collaboration through generative AI, has become an unexpected weapon for cybercriminals targeting organizational secrets. Recent findings from cybersecurity researchers reveal that attackers are exploiting AI agents embedded in SharePoint sites to bypass traditional security controls, extract passwords, and access restricted files-all while evading detection. This novel attack…
-
Operation Moonlander dismantled the botnet behind Anyproxy and 5socks cybercriminals services
Law enforcement dismantled a 20-year botnet behind Anyproxy and 5socks cybercriminals services and arrested four suspects. Authorities dismantled a 20-year-old botnet tied to Anyproxy and 5socks as part of an international operation codenamed >>Operation Moonlander
-
After Pahalgam Attack, Hacktivists Unite Under #OpIndia
Cybercriminals are flocking to take part in the newly inflamed fight between India and Pakistan. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/pahalgam-attack-hacktivists-unite-opindia
-
Cyberattackers Targeting IT Help Desks for Initial Breach
Cybercriminals are increasingly impersonating IT support personnel and trusted authorities to manipulate victims into granting access to critical systems, according to recent analyses by cybersecurity experts. This tactic exploits inherent human tendencies to defer to perceived authority figures, enabling attackers to bypass technical defenses by leveraging psychological vulnerabilities. The shift underscores the growing sophistication of…
-
Threat Actors Target Job Seekers with Three New Unique Adversaries
Netcraft has uncovered a sharp rise in recruitment scams in 2024, driven by three distinct threat actors employing unique and highly technical strategies to exploit vulnerabilities in the job market. As economic pressures like wage stagnation, the cost-of-living crisis, and the gig economy’s growth create fertile ground for cybercriminals, these scams have already resulted in…
-
Germany takes down eXch cryptocurrency exchange, seizes servers
The Federal police in Germany (BKA) seized the server infrastructure and shut down the ‘eXch’ cryptocurrency exchange platform for alleged money laundering cybercrime proceeds. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/germany-takes-down-exch-cryptocurrency-exchange-seizes-servers/
-
Hackers Target IT Admins by Poisoning SEO to Push Malware to Top Search Results
Cybercriminals are increasingly targeting IT administrators through sophisticated Search Engine Optimization (SEO) poisoning techniques. By leveraging SEO tactics typically used for legitimate online marketing, attackers manipulate search engine rankings to push malicious websites to the top of results on platforms like Google. Disguised as trusted tools, these malicious payloads trick even seasoned admins into downloading…
-
Cybercriminal services target endlife routers, FBI warns
The FBI warns that attackers are using end-of-life routers to deploy malware and turn them into proxies sold on 5Socks and Anyproxy networks. The FBI released a FLASH alert warning about 5Socks and Anyproxy malicious services targeting end-of-life (EOL) routers. Attackers target EoL devices to deploy malware by exploiting vulnerabilities and create botnets for attacks…
-
FBI Sounds Alarm on Rogue Cybercrime Services Targeting Obsolete Routers
The FBI has detected indicators of malware targeting end-of-life routers associated with Anyproxy and 5Socks proxy services First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/fbi-cybercrime-obsolete-routers/
-
Europol Dismantles DDoSHire Network and Arrests Four Administrators
Tags: attack, cyber, cyberattack, cybercrime, ddos, government, infrastructure, international, jobs, network, serviceSignificant blow to cybercriminal infrastructure, Europol has coordinated an international operation resulting in the arrest of four individuals in Poland who allegedly operated six DDoS-for-hire platforms. These platforms, which allowed paying customers to launch devastating cyberattacks for as little as Euro10, were responsible for thousands of attacks against schools, government services, businesses, and gaming platforms…
-
Play Ransomware Deployed in the Wild Exploiting Windows 0-Day Vulnerability
Patched Windows zero-day vulnerability (CVE-2025-29824) in the Common Log File System (CLFS) driver was exploited in attacks linked to the Play ransomware operation prior to its disclosure on April 8, 2025. The flaw, which enabled privilege escalation via a use-after-free condition in the clfs.sys kernel driver, was weaponized by Balloonfly, the cybercrime group behind Play…
-
SonicWall Unveils New Firewalls and Comprehensive Managed Cybersecurity Service
SonicWall has unveiled a new line of advanced firewalls and a comprehensive managed cybersecurity service designed to combat the evolving threat landscape, with particular emphasis on attacks targeting non-standard ports. The announcement comes on the heels of concerning findings in SonicWall’s 2019 Cyber Threat Report, which highlighted a growing trend of cybercriminals exploiting vulnerabilities across…