Tag: marketplace
-
Data-stealing VS Code extensions removed from official Marketplace
Developers who specialize in writing smart (primarily Ethereum) contracts using the Solidity programming language have been targeted via malicious VS Code extensions that … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/05/21/data-stealing-vs-code-extensions-removed-from-official-marketplace/
-
W3LL Phishing Kit Launches Active Campaign to Steal Outlook Login Credentials
Cybersecurity researchers have recently uncovered a sophisticated phishing campaign leveraging the notorious W3LL Phishing Kit. Originally identified by Group-IB in 2022, W3LL differentiates itself in the criminal ecosystem as a phishing-as-a-service (PaaS) tool, supported by a unique marketplace known as the W3LL Store. This marketplace allows threat actors to selectively purchase functionalities and components needed…
-
Record-Breaking $27 Billion Black Market ‘Haowang Guarantee’ Deals Conducted Behind Closed Doors
Major victory against online crime, two of the world’s largest illicit marketplaces-Huione Guarantee (also known as “Haowang Guarantee”) and Xinbi Guarantee-were forced offline on May 13, 2025. These platforms collectively enabled over $35 billion in transactions, mostly in the stablecoin Tether (USDT), for a range of illegal goods and services including money laundering, stolen data,…
-
Xinbi Telegram Market Tied to $8.4B in Crypto Crime, Romance Scams, North Korea Laundering
Tags: blockchain, china, crime, crypto, data, data-breach, korea, marketplace, north-korea, scam, technologyA Chinese-language, Telegram-based marketplace called Xinbi Guarantee has facilitated no less than $8.4 billion in transactions since 2022, making it the second major black market to be exposed after HuiOne Guarantee.According to a report published by blockchain analytics firm Elliptic, merchants on the marketplace have been found to peddle technology, personal data, and money laundering…
-
Kosovo extradites BlackDB admin to face US cybercrime charges
A Kosovo national has been extradited to the United States to face charges of running an online cybercrime marketplace active since 2018. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/kosovo-extradites-blackdb-admin-to-face-us-cybercrime-charges/
-
Kosovar Man in Tampa Jail for Running Online Illicit Bazaar
Tags: marketplaceProsecutors Say Liridon Masurica Ran BlackDB.cc. A Kosovar man is being held in a Tampa jail after being extradited on charges that he was the main administrator of an online illicit marketplace in operation since 2018. Prosecutors accused Liridon Masurica, 33, of being the force behind BlackDB.cc. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/kosovar-man-in-tampa-jail-for-running-online-illicit-bazaar-a-28389
-
Federal prosecutors extradite alleged leader of BlackBD.cc cybercrime marketplace
Authorities arrested Kosovo citizen Liridon Masurica in late 2024. He faces six charges that could keep him behind bars for 55 years. First seen on cyberscoop.com Jump to article: cyberscoop.com/blackdb-administrator-liridon-masurica-extradited-charged/
-
US extradites Kosovo national charged in operating illegal online marketplace
Tags: marketplaceA 33-year-old Kosovo citizen, Liridon Masurica, has been extradited to the U.S. to face charges related to his alleged role in operating an illegal online marketplace. First seen on therecord.media Jump to article: therecord.media/us-extradites-kosovo-national-online-marketplace
-
How Security Has Changed the Hacker Marketplace
Your ultimate goal shouldn’t be security perfection, it should be making exploitation of your organization unprofitable. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/how-security-changed-hacker-marketplace
-
Sectigo Brings Certificate Lifecycle Management to Pax8 Marketplace for MSPs
First seen on scworld.com Jump to article: www.scworld.com/news/sectigo-brings-certificate-lifecycle-management-to-pax8-marketplace-for-msps
-
Digitate Makes ignio AIOps Platform Available on AWS Marketplace
Tags: marketplaceFirst seen on scworld.com Jump to article: www.scworld.com/news/digitate-makes-ignio-aiops-platform-available-on-aws-marketplace
-
US Readies Huione Group Ban Over Cybercrime Links
Huione Group Helped Criminals Launder Over $4 Billion Worth of Cybercrime Proceeds. The U.S. Department of Treasury set in motion a process to ban a Cambodian company’s access to the dollar financial system for running a vast illicit marketplace for cybercrime tools and laundering billions of dollars on behalf of North Korean and other cybercrime…
-
6 Essential Frameworks to Find the Right Customer Problems Standing Out in a Crowded Software Marketplace
Innovation is never a straight path. Every successful SaaS product or software starts with identifying the right customer problems and differentiating in a competitive landscape….Read More First seen on securityboulevard.com Jump to article: https://securityboulevard.com/2025/05/6-essential-frameworks-to-find-the-right-customer-problems-standing-out-in-a-crowded-software-marketplace/
-
Desired Effect Marketplace: Researchers Get Their Due, Defenders Get Realtime Info on Zero Days
Desired Effect, if it operates as billed, opens up a world of cutting-edge research to defenders, including zero-day vulnerability data and tailored exploit products. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/desired-effect-marketplace-researchers-get-their-due-defenders-get-realtime-info-on-zero-days/
-
The Turmoil Following BreachForums Shutdown: Confusion, Risks, and a New Beginning
BreachForums, a major data leak marketplace, shut down on April 15 after a MyBB 0-day exploit allowed law enforcement infiltration. On April 15, BreachForums, one of the top marketplaces for stolen data, abruptly shut down, fueling widespread speculation. Rumors ranged from FBI raids and the arrest of the administrator. In the aftermath, several alternative forums…
-
Sherweb Brings DefensX Secure Browser Tools to its MSP Marketplace
First seen on scworld.com Jump to article: www.scworld.com/news/sherweb-brings-defensx-secure-browser-tools-to-its-msp-marketplace
-
‘SessionShark’ A New Toolkit Bypasses Microsoft Office 365 MFA Security
Tags: 2fa, authentication, cyber, cybercrime, marketplace, mfa, microsoft, office, phishing, service, threatSecurity researchers have uncovered a new and sophisticated threat to Microsoft Office 365 users: a phishing-as-a-service toolkit dubbed “SessionShark O365 2FA/MFA.” Promoted through cybercriminal marketplaces, SessionShark is designed to bypass Microsoft’s multi-factor authentication (MFA) protections”, an alarming escalation in the ongoing battle between defenders and cyber attackers. A Toolkit Purpose-Built to Evade 2FA and MFA…
-
From PyPI to the Dark Marketplace: How a Malicious Package Fuels the Sale of Telegram Identities
Introduction In today’s digital era, security breaches can occur in the blink of an eye. Telegram Desktop is renowned for its secure, user-friendly messaging interface, but what if the data used to provide seamless experience could also be your greatest problem? Our investigation into three seemingly harmless PyPI color packages revealed a hidden background functionality……
-
Channel Brief: Sherweb Adds DefensX to Marketplace for Browser Security
Tags: marketplaceFirst seen on scworld.com Jump to article: www.scworld.com/news/channel-brief-sherweb-adds-defensx-to-marketplace-for-browser-security
-
Harmony-SaaS im Google-Cloud-Marketplace verfügbar
Check Point Software Technologies stellt Harmony-SaaS, die hauseigene Lösung zur Absicherung von SaaS-Umgebungen, ab sofort im Google-Cloud-Marketplace zur Verfügung. Google-Cloud-Kunden können Check Points KI-Lösung einsetzen, um innerhalb ihres SaaS-Ökosystems den Überblick zu behalten, Aktivitäten zu verstehen, alles sofort abzusichern und auf schnellstem Wege zu SaaS-Sicherheit auf Unternehmensniveau gelangen. Die Bereitstellung adressiert das in vielen Unternehmen…
-
Unlock Total API Visibility and Control, Cost-Effectively
Tags: api, attack, business, cloud, compliance, control, data, detection, governance, marketplace, risk, threat, vulnerabilityIn the current economic environment, IT and security leaders face significant challenges. Budget optimization and prioritizing initiatives that provide real business value are crucial, particularly amidst a growingly complex and threatening threat landscape. This pressure is especially pronounced when it comes to securing the APIs essential for modern applications and linking vital data. APIs serve…
-
Westcon-Comstor and Vectra AI Drive MSSP and AWS Marketplace Growth for Channel Partners
First seen on scworld.com Jump to article: www.scworld.com/news/westcon-comstor-and-vectra-ai-drive-mssp-and-aws-marketplace-growth-for-channel-partners
-
Malicious VSCode extensions infect Windows with cryptominers
Nine VSCode extensions on Microsoft’s Visual Studio Code Marketplace pose as legitimate development tools while infecting users with the XMRig cryptominer to mine Ethereum and Monero. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/malicious-vscode-extensions-infect-windows-with-cryptominers/
-
U.S. Secures Extradition of Rydox Cybercrime Marketplace Admins from Kosovo in Major International Operation
The United States has successfully extradited two Kosovo nationals, Ardit Kutleshi, 26, and Jetmir Kutleshi, 28, from Kosovo to face charges in the Western District of Pennsylvania for their alleged roles as administrators of the Rydox cybercrime marketplace. The Rydox cybercrime marketplace was an illicit online platform that operated as a hub for cybercriminals, facilitating…
-
Alles über Account-Übernahmen
Über einen Marktplatz im Darknet kann ein Bedrohungsakteur unbeabsichtigt offengelegte Anmeldedaten für das E-Mail-Konto einer Führungskraft in einem Unternehmen erwerben. Die Anmeldedaten sind gültig und nachdem er sich Zugang verschafft hat, sendet der Bedrohungsakteur, der sich als Besitzer des Kontos ausgibt, E-Mails an verschiedene Geschäftspartner und bittet um Geldmittel, durchsucht alte E-Mails nach Anhängen, die…
-
Check Point Breach ‘Very Pinpointed Event’
Hackers Claim on BreachForums to Have Stolen ‘Highly Sensitive’ Data. Israeli cybersecurity firm Check Point rejected Monday a hackers’ assertion that he stole highly sensitive information offered for sale on an online marketplace for illicit data. The incident doesn’t pose and risk or has any security implications to our customers or employees. First seen on…
-
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 39
Tags: android, detection, framework, Hardware, international, malware, marketplace, microsoft, ransomware, serviceSecurity Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Microsoft Trusted Signing service abused to code-sign malware Shedding light on the ABYSSWORKER driver VSCode Marketplace Removes Two Extensions Deploying Early-Stage Ransomware New Android Malware Campaigns Evading Detection Using Cross-Platform Framework .NET MAUI Raspberry Robin: Copy…
-
Classiscam Operators Use Automated Malicious Sites to Steal Financial Data
Classiscam, an automated scam-as-a-service operation, has been identified as a significant threat in Central Asia, leveraging sophisticated techniques to defraud users of online marketplaces and e-commerce platforms. This fraudulent scheme, highlighted in the High-Tech Crime Trends Report 2025, utilizes Telegram bots to generate fake websites that mimic legitimate services, effectively deceiving victims into sharing their…
-
B1ack’s Stash Marketplace Actors Set to Release 4 Million Stolen Credit Card Records for Free
In a significant escalation of illicit activities, B1ack’s Stash, a notorious dark web carding marketplace, has announced plans to release an additional 4 million stolen credit card records for free. This move is part of a broader strategy to attract cybercriminals and establish credibility within the underground economy. The marketplace first gained attention in April…