Tag: fraud
-
FBI Flags Philippines Tech Company Behind Crypto Scam Infrastructure
The FBI provided details of Funnull’s malicious activities, selling infrastructure to criminal groups to facilitate cryptocurrency fraud in the US First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/fbi-philippines-crypto-scam/
-
U.S. Sanctions Funnull for $200M Romance Baiting Scams Tied to Crypto Fraud
The U.S. Department of Treasury’s Office of Foreign Assets Control (OFAC) has levied sanctions against a Philippines-based company named Funnull Technology Inc. and its administrator Liu Lizhi for providing infrastructure to conduct romance baiting scams that led to massive cryptocurrency losses.The Treasury accused the Taguig-headquartered company of enabling thousands of websites involved in First seen…
-
How CISOs can regain ground in the AI fraud war
Fraudsters are winning the AI arms race, first-party fraud is rising, and siloed systems are holding back defenses, according to DataVisor. Their 2025 Fraud AML … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/05/29/ciso-ai-fraud-war/
-
Cybercriminals Are Turning Ordinary Citizens Into Money Mules in a New ‘RentBank-Account’ Scam
Cybercriminals are exploiting vulnerable individuals by transforming them into unwitting money mules through a sophisticated fraud known as the ‘rent-a-bank-account’ scam. This scam involves fraudsters enticing people, often those in financial distress, with promises of quick cash in exchange for temporarily “lending” their bank accounts for transactions. Luring Victims with Promises of Easy Money A…
-
Apple Blocked 2 million Malicious App $9 Billion in Fraudulent Transactions
Apple has strengthened the App Store as a bulwark of confidence, a remarkable testament to its commitment to customer safety. According to the company’s annual fraud analysis, over the past five years, Apple has thwarted more than $9 billion in fraudulent transactions, with a staggering $2 billion prevented in 2024 alone. This achievement underscores Apple’s…
-
App Store Security: Apple stops $2B in fraud in 2024 alone, $9B over 5 years
Apple blocked over $9B in fraud in 5 years, including $2B in 2024, stopping scams from deceptive apps to fake payment schemes on the App Store. In the past five years alone, Apple says it has blocked over $9 billion in fraudulent transactions, more than $2 billion of that in 2024, highlighting its ongoing efforts…
-
Remote purchase fraud surges 14%, says banking industry
Brits lost over £1bn to payment fraud in its many forms last year, according to the latest banking industry numbers First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366624880/Remote-purchase-fraud-surges-14-says-banking-industry
-
Robinhood Ransomware Operator Arrested for Attacks on Government and Private Networks
Tags: attack, computer, cyber, fraud, government, healthcare, international, iran, network, ransomwareOn May 27, 2025, Iranian national Sina Gholinejad, 37, pleaded guilty in a North Carolina federal court to charges of computer fraud and conspiracy to commit wire fraud, admitting his central role in the international Robbinhood ransomware campaign that targeted U.S. cities, corporations, and healthcare organizations. The attacks, spanning from January 2019 to March 2024,…
-
Apple blocked over $9 billion in App Store fraud in five years
Apple says it blocked over $9 billion in fraudulent App Store transactions over the last five years, with over $2 billion in potentially fraudulent sanctions prevented in 2024 alone. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/apple/apple-blocked-over-9-billion-in-apap-store-fraud-since-2020/
-
Iranian Man pleaded guilty to role in Robbinhood Ransomware attacks
Iranian man pleads guilty to role in Baltimore ransomware attack tied to Robbinhood, admitting to computer and wire fraud conspiracy. Iranian national Sina Gholinejad pleaded guilty to his role in a Robbinhood ransomware scheme that hit U.S. cities, including Baltimore and Greenville. The attacks caused major disruptions and over $19 million in damages to Baltimore…
-
Apple Stops 1.9M Risky Apps, Terminates 146K Fraud Accounts in 2024
Apple, in its latest App Store fraud analysis, revealed that the company prevented more than $2 billion in potentially fraudulent transactions in 2024 alone. This contributes to a staggering total of $9 billion in fraudulent activities thwarted since 2019. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/apple-app-store-fraud-prevention/
-
Apple Blocks $9 Billion in Fraud Over 5 Years Amid Rising App Store Threats
Apple on Tuesday revealed that it prevented over $9 billion in fraudulent transactions in the last five years, including more than $2 billion in 2024 alone.The company said the App Store is confronted by a wide range of threats that seek to defraud users in various ways, ranging from “deceptive apps designed to steal personal…
-
eSkimming Security Driving Bottom Line Results through Fraud Reduction and Revenue Maximization
by Source Defense Even with the PCI DSS 4.0 deadline now behind us, many organizations are still exposed to costly eSkimming threats and compliance gaps. Source Defense recently hosted a webinar to explore how compliance actually drives better business outcomes as seen through the lens of the positive bottom line impacts of implementing PCI First…
-
US makes fresh indictments over DanaBot, Qakbot malwares
US charges the operators of two malwares, DanaBot and Qakbot, whose actions led to millions of dollars worth of cyber theft and fraud First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366625033/US-makes-fresh-indictments-over-DanaBot-Qakbot-malwares
-
Apple says it blocked $2 billion in App Store fraud last year
The threats ranged from deceptive apps designed to steal personal information to fraudulent payment schemes. First seen on therecord.media Jump to article: therecord.media/apple-billions-app-store-fraud
-
Operation Endgame 2.0: DanaBusted
Tags: access, attack, backup, banking, breach, business, cloud, communications, control, crypto, cybercrime, data, defense, detection, email, espionage, firewall, fraud, government, group, Hardware, infection, intelligence, international, law, malicious, malware, middle-east, network, programming, ransomware, russia, service, supply-chain, switch, threat, tool, ukraine, update, windowsIntroductionOn May 22, 2025, international law enforcement agencies released information about additional actions that were taken in conjunction with Operation Endgame, an ongoing, coordinated effort to dismantle and prosecute cybercriminal organizations, including those behind DanaBot. This action mirrors the original Operation Endgame, launched in May 2024, which disrupted SmokeLoader, IcedID, SystemBC, Pikabot, and Bumblebee. Zscaler…
-
Digital trust is cracking under the pressure of deepfakes, cybercrime
69% of global respondents to a Jumio survey say AI-powered fraud now poses a greater threat to personal security than traditional forms of identity theft. This number rises to … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/05/23/ai-powered-fraud-threat/
-
DOJ charges 12 more in $263 million crypto fraud takedown where money was hidden in squishmallow stuffed animals
Crypto fraud meets cuddly toys! First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/doj-charges-12-263-million-crypto-fraud-takedown-where-money-hidden-squishmallow-stuffed-animals
-
Securing Open Banking: How Fintechs Can Defend Against Automated Fraud API Abuse
Open Banking is accelerating innovation, and fraud”, with API abuse, credential stuffing, and fake account creation now among the top threats fintechs must defend against in real time. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/securing-open-banking-how-fintechs-can-defend-against-automated-fraud-api-abuse/
-
Ohio Health System Responding to Cyberattack, Fraud Scams
Experts Pointing a Finger at Interlock Ransomware Gang for Kettering Health Attack. Ohio-based Kettering Health is in its second day responding to a cyberattack that’s disrupted patient care services and downed its IT systems, including its patient portal and phones. Some cybersecurity insiders say Interlock ransomware is responsible. First seen on govinfosecurity.com Jump to article:…
-
Credit Washing and Synthetic ID Fraud Hit All-Time High
Auto Lending Sector Is Hardest Hit by Scammers Using Synthetic Identities. Synthetic identity and credit washing fraud have hit another record high and are showing no signs of slowing down, according to a new report by TransUnion. Unscrupulous credit repair companies are adding to the problem by convincing people in debt to create new identities.…
-
Hackers Masquerade as Organizations to Steal Payroll Logins and Redirect Payments from Employees
ReliaQuest, hackers have deployed a cunning search engine optimization (SEO) poisoning scheme to orchestrate payroll fraud against a manufacturing sector customer. This deceptive strategy involves crafting fake authentication portals that mirror legitimate organizational login pages, manipulating search engine results to rank these malicious sites at the top. Unsuspecting employees, searching for payroll portals on mobile…
-
BEC- und FTF-Angriffe haben letztes Jahr den meisten Schaden angerichtet
Kürzlich hat der Cyberversicherungsanbieter Coalition seinen neuesten jährlichen Cyber-Claims-Report vorgelegt. Dessen Kernaussage: Die Mehrheit der Cyberversicherungsansprüche des Jahres 2024 resultierte aus der Kompromittierung von Geschäfts-E-Mail-Betrug und Überweisungsbetrug. 60 Prozent der Cyberversicherungsansprüche, so der Report, entfielen auf Business-E-Mail Compromise (BEC)-Angriffe. 29 Prozent hatten einen Funds-Transfer-Fraud (FTF)-Angriff zur Folge. Unternehmen rät der Report, das Sicherheitsbewusstsein ihrer Mitarbeiter…
-
EBetrug bleibt größte Cybergefahr – BEC- und FTF-Angriffe am erfolgreichsten
Technologie schützt aber Menschen entscheiden. Wer in seine Belegschaft investiert, senkt nicht nur das Risiko für kostspielige Cyberangriffe, sondern macht seine Mitarbeitenden zur stärksten Verteidigungslinie gegen digitale Bedrohungen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/e-mail-betrug-bleibt-groesste-cybergefahr-bec-und-ftf-angriffe-am-erfolgreichsten/a40877/
-
Threat intelligence platform buyer’s guide: Top vendors, selection advice
Tags: ai, attack, automation, breach, cloud, computing, credentials, crowdstrike, cyber, cybersecurity, dark-web, data, data-breach, deep-fake, detection, dns, edr, email, endpoint, exploit, finance, firewall, fraud, gartner, google, group, guide, identity, incident response, infrastructure, intelligence, kubernetes, law, malicious, malware, microsoft, mitigation, monitoring, network, open-source, phishing, privacy, risk, service, siem, soar, soc, sophos, sql, supply-chain, technology, threat, tool, vpn, vulnerability, zero-dayThe Cybersecurity and Infrastructure Security Agency (CISA) found that since 2023 the majority of exploits were zero days, meaning exploiting heretofore unknown methods. And according to the latest Verizon Data Breach Investigations report (DBIR), the percentage of AI-assisted malicious emails doubled to 10% of the totals they observed over the past two years, making staying…
-
Judge Lets Delta Lawsuit Over CrowdStrike Outage Proceed
Georgia Court Allows Claims of Fraud, Trespass Over Falcon Software Update. Delta can proceed with its lawsuit against CrowdStrike over a July 2024 update that allegedly bypassed Microsoft safeguards and crashed thousands of systems. The judge found that Delta sufficiently alleged fraud, computer trespass and gross negligence, allowing key claims to move forward. First seen…
-
Account Takeover Scams Are Bypassing Fraud Defenses
FIs Must Invest in AI-Fueled Behavioral Biometrics to Go Beyond Static Credentials. Scammers are increasingly turning to account takeover fraud, as financial institutions ramp up their defenses. Instead of luring victims into making authorized transactions, cybercriminals are bypassing them altogether, hijacking their digital identities and draining accounts from within. First seen on govinfosecurity.com Jump to…
-
Wenn der Kundenservice zur Falle wird Xfinity-Betrug zeigt Schwachstellen bei der Identitätsprüfung auf
Eine aktuelle Betrugsmasche, bei der sich die Angreifer als der Telekommunikationsanbieter Xfinity ausgeben, hat aufgezeigt, wie leicht Angreifer Kundenservicesysteme ausnutzen können, um ahnungslose Opfer zu täuschen. Mit überzeugenden Kenntnissen über Rechnungs- und Kontodaten locken die Betrüger Nutzer in Prepaid-Geschenkkartenfallen und agieren dabei oberflächlich betrachtet völlig legitim. Die größere Sorge geht jedoch über diesen konkreten […]…