Collecting Cyber-News from over 60 sources

Tag: fraud

Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps

May 19, 2026 8:00 PM

Tags: android, control, cybersecurity, fraud, infrastructure, intelligence, malicious, malware, threat

Cybersecurity researchers have disclosed details of a new ad fraud and malvertising operation dubbed Trapdoor targeting Android device users.The activity, per HUMAN’s Satori Threat Intelligence and Research Team, encompassed 455 malicious Android apps and 183 threat actor-owned command-and-control (C2) domains, turning the infrastructure into a pipeline for multi-stage fraud.”Users First seen on thehackernews.com Jump to…
201 arrested in INTERPOL disruption of phishing and fraud networks

May 18, 2026 12:00 PM

Tags: cyber, cybercrime, fraud, interpol, malware, network, phishing, scam

Operation Ramz, a cybercrime initiative coordinated by INTERPOL across the MENA region, focused on disrupting phishing campaigns, malware activity, and cyber scams that caused … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/18/interpol-mena-cybercrime-operation-ramz-201-arrests/
KI-Betrug im Netz – Nur ein Fünftel überprüft die Quelle

May 18, 2026 10:00 AM

Tags: ai, fraud

First seen on security-insider.de Jump to article: www.security-insider.de/ki-online-betrug-bsi-deepfakes-cybertrading-fraud-a-5f370238de4a10b13279ea5f6d1e1a49/
Crime increasingly a ‘serious barrier’ to UK growth, say business leaders

May 18, 2026 12:02 AM

Tags: attack, business, country, crime, cyber, fraud, government, theft

British Chambers of Commerce survey shows firms ‘are dealing with rising levels of theft, fraud and cyber-attacks’UK business leaders have warned that crime is becoming an increasingly “serious barrier” to growing Britain’s economy amid a rise in shoplifting, fraud and cyber-attacks against companies.The British Chambers of Commerce (BCC), which represents tens of thousands of businesses…
ISMG Editors: Should We Trust Ransomware Gangs?

May 15, 2026 10:00 PM

Tags: ai, attack, fraud, ransomware, threat

Ransomware Payouts, AI-Driven Threats and Reshaping Payment Fraud. In this week’s panel, four ISMG editors discussed a ransomware case that once again raises questions about paying extortionists, why security leaders fear AI is accelerating attacks faster than humans can respond and how the rise of instant payments is reshaping fraud programs at banks. First seen…
Understanding the Hidden Cost of Faster Payments

May 14, 2026 4:00 PM

Tags: control, finance, fraud

As Regulators Tighten Liability Rules, Banks Face Pressure to Justify Fraud Losses. So far, banks have managed to strike a balance between fraud prevention and customer convenience, often accepting a certain level of loss rather than introducing controls that could slow payments, increase false declines or drive customers to competitors. First seen on govinfosecurity.com Jump…
FIFA WM 2026: So erkennen Fans Ticket-Betrug, Fake-Visas und Phishing-Fallen

May 12, 2026 4:20 PM

Tags: fraud, phishing

Wer ein Angebot entdeckt, das zu gut klingt, um wahr zu sein, sollte einen eigenen ‘VAR-Check” durchführen: Quelle prüfen, URL kontrollieren, niemals unter Druck handeln. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/fifa-wm-2026-so-erkennen-fans-ticket-betrug-fake-visas-und-phishing-fallen/a45100/
CISOs step into the AI spotlight

May 12, 2026 12:19 PM

Tags: ai, api, attack, automation, awareness, business, ciso, control, cyber, cybersecurity, data, defense, detection, exploit, finance, fraud, governance, identity, infrastructure, jobs, least-privilege, military, phishing, risk, service, social-engineering, software, technology, threat, tool, training, update, vulnerability, vulnerability-management

Move fast, keep risk at bay: Like Hensley, Jeff Trudeau, CSO of Chime, says the role is fundamentally shifting from a control function to a strategic partner in how the business adopts AI responsibly. At Chime, that means being embedded early in how AI is built and deployed, not reviewing it after the fact, Trudeau…
CISOs step into the AI spotlight

May 12, 2026 12:19 PM

Tags: ai, api, attack, automation, awareness, business, ciso, control, cyber, cybersecurity, data, defense, detection, exploit, finance, fraud, governance, identity, infrastructure, jobs, least-privilege, military, phishing, risk, service, social-engineering, software, technology, threat, tool, training, update, vulnerability, vulnerability-management

Move fast, keep risk at bay: Like Hensley, Jeff Trudeau, CSO of Chime, says the role is fundamentally shifting from a control function to a strategic partner in how the business adopts AI responsibly. At Chime, that means being embedded early in how AI is built and deployed, not reviewing it after the fact, Trudeau…
CallPhantomBetrug im Play Store: Millionen Nutzern erfundene Anrufdaten kostenpflichtig angeboten

May 11, 2026 5:20 PM

Tags: fraud

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/callphantom-app-betrug-play-store-millionen-nutzer-anrufdaten
Romanian Man Faces Up to 30 Years in US Prison Over Vishing Scams

May 11, 2026 5:20 PM

Tags: fraud, scam, voip

Romanian national Gavril Sandu faces up to 30 years in a US prison after extradition over a VOIP vishing and fake debit card fraud scheme. First seen on hackread.com Jump to article: hackread.com/romanian-man-30-years-us-prison-vishing-scams/
PCPJack Worm Targets Docker, Kubernetes, Redis, and MongoDB Credentials

May 8, 2026 8:49 AM

Tags: breach, cloud, container, credentials, cyber, data-breach, docker, extortion, framework, fraud, infrastructure, kubernetes, malware, spam, threat, worm

A newly identified malware framework dubbed PCPJack is targeting exposed cloud and container infrastructure to steal credentials at scale while actively removing artifacts linked to the TeamPCP threat actor. Unlike typical cloud-focused campaigns, PCPJack skips cryptomining entirely and instead appears optimized for fraud, spam, extortion, and resale of stolen access. TeamPCP itself drew attention earlier in 2026…
Scammers Exploit Disposable VoIP Numbers to Bypass Reputation Blocking

May 7, 2026 12:48 PM

Tags: attack, cyber, detection, email, exploit, fraud, infrastructure, malicious, phishing, phone, scam, tactics, threat, voip

New tactics used by threat actors who embed phone numbers in scam emails as a key indicator of compromise (IOC), revealing how attackers exploit VoIP infrastructure to evade detection and scale fraud operations. Telephone-oriented attack delivery (TOAD) remains a dominant phishing technique, in which victims are lured to call attacker-controlled numbers rather than clicking malicious…
Sumsub erweitert Deepfake-Erkennung mit adaptivem KI-System zur Betrugsprävention

May 6, 2026 6:48 PM

Tags: ai, deep-fake, fraud

Mit einem adaptiven Deepfake-Detektor setzt Sumsub jetzt auf Echtzeit-Lernen, um KI-gestützten Betrug frühzeitig zu erkennen und Unternehmen besser zu schützen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/sumsub-erweitert-deepfake-erkennung-mit-adaptivem-ki-system-zur-betrugspraevention/a45015/
FEMITBOT Network Exploits Telegram Mini Apps to Spread Crypto Scams and Android Malware

May 6, 2026 3:47 PM

Tags: android, credentials, crypto, cyber, exploit, fraud, login, malware, network, scam, social-engineering, tool

A large-scale fraud and malware operation called FEMITBOT that abuses Telegram Mini Apps to steal cryptocurrency and infect Android devices. The campaign shows how trusted in-app web experiences can be turned into powerful tools for social engineering and credential theft. Telegram Mini Apps are lightweight web applications that run inside Telegram, offering seamless login, payments,…
Darkhub HackingHire Portal Promotes Crypto Fraud and Spyware Services

May 6, 2026 3:47 PM

Tags: crypto, cyber, dark-web, finance, fraud, hacking, jobs, network, scam, service, spyware

A newly identified dark web platform, Darkhub, is advertising a wide range of hacking-for-hire services, including account compromise, surveillance, and financial manipulation. The service, accessible via the Tor network, presents itself as a centralized hub for offensive cyber capabilities targeting both individuals and organizations. Many similar services historically function as advance-fee scams rather than delivering…
Kommentar von Eugeny Malyutin, Sumsub – Autonome AI Fraud Agents läuten die nächste Ära des Identitätsbetrugs ein

May 6, 2026 12:48 PM

Tags: ai, fraud

First seen on security-insider.de Jump to article: www.security-insider.de/ai-fraud-agents-ki-identitaetsbetrug-2025-2026-a-c09e1a893ca174cc4bb0fee76118d558/
U.S. court sentences Karakurt ransomware negotiator to 8.5 years

May 5, 2026 11:47 PM

Tags: fraud, ransomware

Deniss Zolotarjovs was sentenced to 8.5 years in the U.S. after pleading guilty to money laundering and fraud tied to ransomware. Deniss Zolotarjovs, a Latvian national linked to the Karakurt ransomware gang, has been sentenced to 8.5 years in U.S. prison, marking a significant step in efforts to combat global ransomware operations. >>A Latvian national…
Conti, Akira ransomware affiliate given 8-year sentence

May 5, 2026 8:48 PM

Tags: country, fraud, ransomware

Deniss Zolotarjovs pleaded guilty in July 2025 to money laundering and wire fraud charges after being arrested in the country of Georgia. First seen on therecord.media Jump to article: therecord.media/conti-akira-ransomware-affiliate-sentenced
Coreview warnt vor Microsoft-Helpdesk-Betrug

May 5, 2026 1:48 PM

Tags: access, fraud, microsoft, social-engineering

Cyberkriminelle nutzen immer häufiger Microsoft-Teams für ihre Zwecke. In jüngster Zeit häufen sich dabei vor allem Vorfälle, in denen sie sich als Mitarbeitende des IT-Supports ausgeben. Hierfür richten sie spezielle Chats mit vermeintlichen IT-Supportanfragen ein, um mittels Echtzeit-Social-Engineering Zugriff auf die Unternehmenssysteme zu erhalten. In aller Regel beginnt eine solche Attacke mit dem Missbrauch externer…
FEMITBOT Network Abuses Telegram Mini Apps for Crypto Scams and Android Malware

May 5, 2026 1:48 PM

Tags: android, apple, crypto, fraud, malware, network, scam

A massive fraud network called FEMITBOT uses Telegram Mini Apps and fake brand names like Apple, Disney, and… First seen on hackread.com Jump to article: hackread.com/femitbot-telegram-mini-apps-crypto-scam-android-malware/
They don’t hack, they borrow: How fraudsters target credit unions

May 4, 2026 4:49 PM

Tags: breach, business, exploit, fraud, hacking

Fraudsters aren’t hacking credit unions, they are exploiting normal business processes. Flare reveals how structured loan fraud methods use stolen identities to pass verification and secure funds. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/they-dont-hack-they-borrow-how-fraudsters-target-credit-unions/
Telegram Mini Apps Abused for Crypto Scams and Android Malware Delivery

May 4, 2026 2:49 PM

Tags: android, api, crypto, fraud, malware, scam

What happened CTM360 researchers have uncovered a large-scale fraud operation using Telegram’s Mini App feature to run cryptocurrency scams, impersonate major brands, and distribute Android malware. The platform behind the operation, dubbed FEMITBOT based on a string found in API responses, uses Telegram bots and embedded Mini Apps to create convincing app-like experiences within the…The…
Cyber-Secure Philanthropy: Tech Infrastructure for Global Donations

May 4, 2026 1:48 PM

Tags: api, compliance, control, cyber, fraud, infrastructure

Secure philanthropy needs hardened payments, API security, and compliance controls to protect global donations from fraud and attacks. First seen on hackread.com Jump to article: hackread.com/cyber-secure-philanthropy-tech-infrastructure-global-donations/
276 Arrested as Authorities Dismantle Crypto Scam Centers Targeting Americans

May 4, 2026 1:48 PM

Tags: china, crypto, cyber, fraud, international, law, network, scam, threat

In an unprecedented international law enforcement operation, authorities have dismantled at least nine overseas cryptocurrency scam centers, resulting in the arrest of 276 individuals. The coordinated effort, led by the FBI, Dubai Police, and the Chinese Ministry of Public Security, targeted transnational criminal networks running sophisticated >>pig butchering<< investment fraud schemes against American citizens. Threat…
The fake IT worker problem CISOs can’t ignore

May 4, 2026 11:48 AM

Tags: access, ai, breach, business, captcha, cio, ciso, compliance, computer, control, credentials, crowdstrike, data, detection, edr, endpoint, fedramp, fraud, gartner, iam, identity, jobs, linkedin, mitigation, monitoring, network, north-korea, office, phone, risk, skills, tool, training, zero-trust

What to do if you suspect a fake IT worker: When a CIO suspects a fake IT worker, next steps are important as the issue shifts from recruitment to insider risk management.During his time at MongoDB, George Gerchow, IANS faculty advisor and Bedrock Data CSO, oversaw the investigation after the company detected it had unknowingly…
Global Crackdown Arrests 276, Shuts 9 Crypto Scam Centers, Seizes $701M

May 4, 2026 8:49 AM

Tags: china, crypto, fraud, international, scam

A coordinated international operation involving U.S. and Chinese authorities has arrested at least 276 suspects and shut down nine scam centers used for cryptocurrency investment fraud schemes targeting Americans, resulting in millions of dollars in losses.The crackdown was led by the Dubai Police, under the United Arab Emirates (UAE) Ministry of Interior, in partnership with…
Telegram Mini Apps abused for crypto scams, Android malware delivery

May 3, 2026 4:47 PM

Tags: android, crypto, cybersecurity, fraud, malware, scam

Cybersecurity researchers have uncovered a large-scale fraud operation that uses Telegram’s Mini App feature to run crypto scams, impersonate well-known brands, and distribute Android malware. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/telegram-mini-apps-abused-for-crypto-scams-android-malware-delivery/
ISMG Editors: North Korea’s Fake Meetings Fuel Crypto Heists

May 3, 2026 10:50 AM

Tags: ai, crypto, fraud, google, korea, north-korea

Also: Google’s $40B AI Bet, Insights From Google Next Conference. In this week’s panel, four ISMG editors discussed North Korea’s use of fake video meetings to fuel crypto fraud, Google’s $40 billion investment in Anthropic and what it signals for the AI race, and key takeaways from Google Next in Las Vegas on enterprise AI…
The Agentic AI Security Category Is Converging on the Wrong Answer

May 1, 2026 8:39 PM

Tags: ai, attack, fraud, identity

In Part 1 of this piece, I described what agentic AI attacks actually look like in practice; the digital factory model, where agents commit fraud, and the three properties that make agentic AI attackers categorically different from traditional bot tooling: autonomous iteration, session-to-session learning, and identity spoofing at the interaction layer. Now I want to……