Tag: fraud
-
PCPJack Worm Targets Docker, Kubernetes, Redis, and MongoDB Credentials
Tags: breach, cloud, container, credentials, cyber, data-breach, docker, extortion, framework, fraud, infrastructure, kubernetes, malware, spam, threat, wormA newly identified malware framework dubbed PCPJack is targeting exposed cloud and container infrastructure to steal credentials at scale while actively removing artifacts linked to the TeamPCP threat actor. Unlike typical cloud-focused campaigns, PCPJack skips cryptomining entirely and instead appears optimized for fraud, spam, extortion, and resale of stolen access. TeamPCP itself drew attention earlier in 2026…
-
Scammers Exploit Disposable VoIP Numbers to Bypass Reputation Blocking
New tactics used by threat actors who embed phone numbers in scam emails as a key indicator of compromise (IOC), revealing how attackers exploit VoIP infrastructure to evade detection and scale fraud operations. Telephone-oriented attack delivery (TOAD) remains a dominant phishing technique, in which victims are lured to call attacker-controlled numbers rather than clicking malicious…
-
Sumsub erweitert Deepfake-Erkennung mit adaptivem KI-System zur Betrugsprävention
Mit einem adaptiven Deepfake-Detektor setzt Sumsub jetzt auf Echtzeit-Lernen, um KI-gestützten Betrug frühzeitig zu erkennen und Unternehmen besser zu schützen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/sumsub-erweitert-deepfake-erkennung-mit-adaptivem-ki-system-zur-betrugspraevention/a45015/
-
Darkhub HackingHire Portal Promotes Crypto Fraud and Spyware Services
A newly identified dark web platform, Darkhub, is advertising a wide range of hacking-for-hire services, including account compromise, surveillance, and financial manipulation. The service, accessible via the Tor network, presents itself as a centralized hub for offensive cyber capabilities targeting both individuals and organizations. Many similar services historically function as advance-fee scams rather than delivering…
-
Kommentar von Eugeny Malyutin, Sumsub – Autonome AI Fraud Agents läuten die nächste Ära des Identitätsbetrugs ein
First seen on security-insider.de Jump to article: www.security-insider.de/ai-fraud-agents-ki-identitaetsbetrug-2025-2026-a-c09e1a893ca174cc4bb0fee76118d558/
-
U.S. court sentences Karakurt ransomware negotiator to 8.5 years
Deniss Zolotarjovs was sentenced to 8.5 years in the U.S. after pleading guilty to money laundering and fraud tied to ransomware. Deniss Zolotarjovs, a Latvian national linked to the Karakurt ransomware gang, has been sentenced to 8.5 years in U.S. prison, marking a significant step in efforts to combat global ransomware operations. >>A Latvian national…
-
Conti, Akira ransomware affiliate given 8-year sentence
Deniss Zolotarjovs pleaded guilty in July 2025 to money laundering and wire fraud charges after being arrested in the country of Georgia. First seen on therecord.media Jump to article: therecord.media/conti-akira-ransomware-affiliate-sentenced
-
FEMITBOT Network Abuses Telegram Mini Apps for Crypto Scams and Android Malware
A massive fraud network called FEMITBOT uses Telegram Mini Apps and fake brand names like Apple, Disney, and… First seen on hackread.com Jump to article: hackread.com/femitbot-telegram-mini-apps-crypto-scam-android-malware/
-
They don’t hack, they borrow: How fraudsters target credit unions
Fraudsters aren’t hacking credit unions, they are exploiting normal business processes. Flare reveals how structured loan fraud methods use stolen identities to pass verification and secure funds. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/they-dont-hack-they-borrow-how-fraudsters-target-credit-unions/
-
Telegram Mini Apps Abused for Crypto Scams and Android Malware Delivery
What happened CTM360 researchers have uncovered a large-scale fraud operation using Telegram’s Mini App feature to run cryptocurrency scams, impersonate major brands, and distribute Android malware. The platform behind the operation, dubbed FEMITBOT based on a string found in API responses, uses Telegram bots and embedded Mini Apps to create convincing app-like experiences within the…The…
-
Cyber-Secure Philanthropy: Tech Infrastructure for Global Donations
Secure philanthropy needs hardened payments, API security, and compliance controls to protect global donations from fraud and attacks. First seen on hackread.com Jump to article: hackread.com/cyber-secure-philanthropy-tech-infrastructure-global-donations/
-
276 Arrested as Authorities Dismantle Crypto Scam Centers Targeting Americans
In an unprecedented international law enforcement operation, authorities have dismantled at least nine overseas cryptocurrency scam centers, resulting in the arrest of 276 individuals. The coordinated effort, led by the FBI, Dubai Police, and the Chinese Ministry of Public Security, targeted transnational criminal networks running sophisticated >>pig butchering<< investment fraud schemes against American citizens. Threat…
-
The fake IT worker problem CISOs can’t ignore
Tags: access, ai, breach, business, captcha, cio, ciso, compliance, computer, control, credentials, crowdstrike, data, detection, edr, endpoint, fedramp, fraud, gartner, iam, identity, jobs, linkedin, mitigation, monitoring, network, north-korea, office, phone, risk, skills, tool, training, zero-trustWhat to do if you suspect a fake IT worker: When a CIO suspects a fake IT worker, next steps are important as the issue shifts from recruitment to insider risk management.During his time at MongoDB, George Gerchow, IANS faculty advisor and Bedrock Data CSO, oversaw the investigation after the company detected it had unknowingly…
-
Global Crackdown Arrests 276, Shuts 9 Crypto Scam Centers, Seizes $701M
A coordinated international operation involving U.S. and Chinese authorities has arrested at least 276 suspects and shut down nine scam centers used for cryptocurrency investment fraud schemes targeting Americans, resulting in millions of dollars in losses.The crackdown was led by the Dubai Police, under the United Arab Emirates (UAE) Ministry of Interior, in partnership with…
-
Telegram Mini Apps abused for crypto scams, Android malware delivery
Cybersecurity researchers have uncovered a large-scale fraud operation that uses Telegram’s Mini App feature to run crypto scams, impersonate well-known brands, and distribute Android malware. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/telegram-mini-apps-abused-for-crypto-scams-android-malware-delivery/
-
ISMG Editors: North Korea’s Fake Meetings Fuel Crypto Heists
Also: Google’s $40B AI Bet, Insights From Google Next Conference. In this week’s panel, four ISMG editors discussed North Korea’s use of fake video meetings to fuel crypto fraud, Google’s $40 billion investment in Anthropic and what it signals for the AI race, and key takeaways from Google Next in Las Vegas on enterprise AI…
-
The Agentic AI Security Category Is Converging on the Wrong Answer
In Part 1 of this piece, I described what agentic AI attacks actually look like in practice; the digital factory model, where agents commit fraud, and the three properties that make agentic AI attackers categorically different from traditional bot tooling: autonomous iteration, session-to-session learning, and identity spoofing at the interaction layer. Now I want to……
-
Fake CAPTCHA Scam Uses SMS Pumping to Inflate Phone Bills
A newly uncovered cyber fraud campaign is abusing fake CAPTCHA pages to trick mobile users into sending large volumes of international SMS messages, resulting in unexpected phone bills and illicit profits for attackers. Unlike traditional malware campaigns, this operation does not require installing malicious software. Instead, it exploits telecom billing systems and affiliate revenue models…
-
Cryptohack Roundup: North Korea Steals Bulk of Crypto So Far
Also: Cartier Heir Imprisoned, Believe Founder Benjamin Pasternak Arrested. This week, North Korea hacks, Cartier heir jailed, Believe founder arrested, Cambodia scam network sanctioned. A U.S. Army soldier’s insider bet, Litecoin, sentences in laundering and romance fraud cases, France probed crypto kidnapping. Tennessee banned crypto ATMs, Kelp DAO and Alex Mashinsky. First seen on govinfosecurity.com…
-
FBI and International Agencies Shut Down Scam Centers, Arrest 276 People
The FBI and law enforcement from Dubai, Thailand, and China shut down nine scam centers and arrested 276 people in connection with crypto fraud operations that were used to target Americans and steal millions of dollars by convincing victims to invest money through seemingly legitimate but fake crypto platforms. First seen on securityboulevard.com Jump to…
-
FBI and International Agencies Shut Down Scam Centers, Arrest 276 People
The FBI and law enforcement from Dubai, Thailand, and China shut down nine scam centers and arrested 276 people in connection with crypto fraud operations that were used to target Americans and steal millions of dollars by convincing victims to invest money through seemingly legitimate but fake crypto platforms. First seen on securityboulevard.com Jump to…
-
FBI and International Agencies Shut Down Scam Centers, Arrest 276 People
The FBI and law enforcement from Dubai, Thailand, and China shut down nine scam centers and arrested 276 people in connection with crypto fraud operations that were used to target Americans and steal millions of dollars by convincing victims to invest money through seemingly legitimate but fake crypto platforms. First seen on securityboulevard.com Jump to…
-
Nutzer überschätzen eigene Fähigkeit, Deepfakes zu erkennen
Das Bundesamt für Sicherheit in der Informationstechnik (BSI) hat kürzlich einen Vorab-Bericht zum jährlichen Cybersicherheitsmonitor 2026 veröffentlicht. Das Fokusthema der am 11. Mai erscheinenden gemeinsamen Erhebung des BSI mit der Polizeilichen Kriminalprävention der Länder und des Bundes (ProPK) lautet ‘Online-Betrug und Künstliche Intelligenz”. Die bereits vorliegenden Ergebnisse zeigen vor allem im Bereich Deepfakes eine erhebliche Diskrepanz:…
-
Police dismantles 9 crypto scam centers, arrests 276 suspects
A joint international operation involving U.S. and Chinese authorities arrested at least 276 suspects and shut down nine cryptocurrency investment fraud centers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/police-dismantles-9-crypto-investment-scam-centers-arrests-276-suspects/
-
Europol Busts Albanian Scam Call Centers in Major Online Fraud Case
European police arrested 10 suspects after dismantling Albanian scam call centers linked to a Euro50m ($58m) online investment fraud operation First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/europol-albanian-scam-call-centers/
-
It’s Not the Computer, Stupid. It’s the Information in It. Two Recent Indictments Stretch the Limits of >>Theft<< of Information.
The legal system persists in framing “computer crime” through the archaic lens of tangible property”, theft and conversion”, despite the fact that information is non-rivalrous and easily duplicated without depriving the original owner of possession. Recent federal indictments, such as the Van Dyke and SPLC matters, reveal a “doctrinally aggressive” expansion where the government claims…