Lazarus Group Exploits Chrome Zero-Day in Latest Campaign

October 23, 2024 at 05:20PM The Lazarus Group is targeting cryptocurrency users with a sophisticated scam involving a fake game website, exploiting a Chrome zero-day bug, and utilizing professional social media accounts. Researchers from Kaspersky warn this campaign, launched in February, highlights Lazarus’s evolving tactics and focus on generating revenue for North Korea’s missile program. … Read more

LEGO’s website hacked to push cryptocurrency scam

October 7, 2024 at 05:54PM LEGO website was briefly hacked by cryptocurrency scammers on Friday. The breach lasted 75 minutes, promoting a fake LEGO token purchasable with Ethereum. The scam linked visitors to Uniswap to buy the token. LEGO confirmed the breach, assuring no compromised user accounts and implementing measures to prevent future breaches. The … Read more

Fake WalletConnect app on Google Play steals Android users’ crypto

September 26, 2024 at 09:15AM A fraudulent app named WallConnect, posing as the legitimate ‘WalletConnect’, garnered over 10,000 downloads on Google Play over five months. It deceived users by leading them to a malicious website, resulting in the loss of digital assets worth over $70,000. Due to potential manipulations, the download count may have been … Read more

Predator spyware updated withn dangerous new features, also now harder to track

September 8, 2024 at 10:07PM Summarized Text: The Predator commercial spyware kit has resurfaced with new infrastructure in countries like the Democratic Republic of the Congo and Angola, evading US sanctions. Its latest updates enhance anonymity, making it harder to track. Recommendations include adhering to cyber security best practices. Additionally, other cybersecurity news includes a … Read more

UK Royal Family, Prime Minister Deepfakes Make Rounds on Meta

August 14, 2024 at 01:54PM Deepfake videos of UK’s Prime Minister Keir Starmer and Prince William are being used to promote the fraudulent cryptocurrency platform “Immediate Edge” on Meta platforms. The AI-generated videos falsely endorse the platform, deceiving viewers into thinking they will receive money. Researchers found that these ads have reached over 891,834 people, … Read more

Hacked Ethereum Foundation Account Used to Send 35,000 Phishing Emails

July 8, 2024 at 11:48AM A threat actor hacked into Ethereum Foundation’s account on a mailing list platform, using it to send phishing emails to over 35,794 addresses. The emails, appearing to be from a legitimate source, promoted a Lido scam and contained a link to a malicious site. The Foundation took immediate action to … Read more

Chinese Nationals Arrested for Laundering $73 Million in Pig Butchering Crypto Scam

May 19, 2024 at 06:30AM Two Chinese nationals, Daren Li and Yicheng Zhang, have been charged by the U.S. Department of Justice for allegedly orchestrating a $73 million pig butchering scam involving cryptocurrency investment fraud. They face charges of money laundering and could be sentenced to 20 years in prison for each count if convicted. … Read more

Mandiant’s X (Twitter) Account Hacked to Promote Crypto Scam

January 4, 2024 at 12:22PM Google’s cybersecurity firm Mandiant regained control of its Twitter account after falling victim to a cryptocurrency scam hack. This incident came amidst growing concerns over security on the platform, echoing past high-profile account takeovers. The security of high-profile accounts on Twitter remains an ongoing concern as the platform is targeted … Read more

Hacked Mandiant X Account Abused for Cryptocurrency Theft

January 4, 2024 at 06:42AM Mandiant’s social media account was hacked and used to promote a fraudulent cryptocurrency website. The hacker temporarily renamed the account and spurred users to visit the deceptive site. Despite recovery attempts, the hijacker briefly regained control. Major web browsers have flagged the fraudulent site, coinciding with a report on dark … Read more

Mandiant’s Twitter Account Restored After Six-Hour Crypto Scam Hack

January 4, 2024 at 01:48AM Mandiant, a Google Cloud subsidiary, had its Twitter account compromised for over six hours by an unknown attacker to promote a cryptocurrency scam. The account has been restored. The breach involved an impersonation of a crypto wallet service and scam posts about an airdrop. The details of the breach remain … Read more