September 3, 2024 at 05:38PM A North Korean threat actor recently leveraged advanced vulnerabilities in Windows and Chromium browsers to target the cryptocurrency industry. The attacker utilized a type confusion issue in Chromium and a privilege escalation bug in Windows to execute a sophisticated campaign, deploying a rootkit and custom Trojan to compromise targeted systems … Read more
August 30, 2024 at 02:42AM Threat actors linked to North Korea are targeting developers with malware to steal cryptocurrency assets. The campaign involves publishing malicious packages to the npm registry. The attackers use various tactics, including fake job interviews and obfuscated JavaScript, to deploy malware and exfiltrate sensitive data. CrowdStrike has linked the group to … Read more
August 23, 2024 at 10:05AM The federal police in Argentina arrested a 29-year-old Russian national in Buenos Aires for money laundering charges related to cryptocurrency proceeds of the North Korean hackers’ Lazarus Group. Based on the meeting notes, it seems that the federal police in Argentina (PFA) have arrested a 29-year-old Russian national in Buenos … Read more
August 22, 2024 at 03:12PM Cthulhu Stealer is a new Apple macOS malware designed to steal cryptocurrency and gaming credentials as well as browser data. It mimics the successful Atomic Stealer and is becoming prevalent. As macOS threats are increasing, organizations with macOS devices should enhance their security measures due to the lack of expertise … Read more
August 22, 2024 at 12:48AM Cybersecurity researchers have discovered a new malware, PG_MEM, targeting PostgreSQL databases. The malware mines cryptocurrency by brute-forcing its way into the databases and exploiting weak passwords. It subsequently deploys malicious activities and a cryptocurrency miner. The attack underscores the risks of misconfigured and weakly protected internet-facing databases. Key Takeaways from … Read more
August 20, 2024 at 08:24AM Chainalysis reported an increase in ransomware payments and stolen cryptocurrency in the first half of 2024. While illegal on-chain activity decreased by 20%, ransomware payments rose by 2% to $459.8 million. The median ransom payment increased from $200,000 to $1.5 million. Stolen cryptocurrency losses reached $1.58 billion by July 2024, … Read more
August 19, 2024 at 09:15AM Cyberint Research Team discovered a new malware, UULoader, being used by threat actors to deliver Gh0st RAT and Mimikatz. It’s distributed through malicious installers targeting Korean and Chinese speakers. Additionally, threat actors are using cryptocurrency-themed lure sites for phishing attacks and leveraging popular AI platforms for malicious activities, prompting a … Read more
August 16, 2024 at 03:49PM Unicoin, a cryptocurrency associated with the reality TV show Unicorn Hunters, suffered a security breach that locked staff out of their G-Suite accounts. Investigations are ongoing to determine the extent of the data compromise. Unicoin assures no loss of assets but acknowledges the significant impact on business operations during the … Read more
August 6, 2024 at 12:12PM INTERPOL introduced a “global stop-payment mechanism,” aiding recovery of funds in the largest-ever business email compromise (BEC) scam. A Singaporean firm lost $42.3 million to a fraudulent supplier but through INTERPOL’s mechanism and arrests, $39 million was recovered. Additionally, a cryptocurrency exchange, Cryptonator, and its founder face indictments for alleged … Read more
August 2, 2024 at 01:32PM U.S. and German law enforcement seized the domain of Cryptonator, a crypto wallet platform used for illicit activities, and indicted its operator, Roman Boss, on charges of money laundering and running an unlicensed money service business. Cryptonator failed to implement anti-money laundering controls, enabling illicit transactions totaling over $235 million. … Read more