July 5, 2024 at 01:16PM Europol announced the arrest of 54 individuals involved in a vishing scam targeting elderly Spanish citizens, using social engineering and physical threats. The criminals impersonated bank employees, extracted personal information, then physically targeted victims for payment and personal possessions. The unique approach of physically visiting victims adds complexity and danger … Read more
July 5, 2024 at 11:57AM A new ransomware-as-a-service (RaaS) called Eldorado has emerged, targeting both Windows and Linux platforms. The ransomware aims to encrypt files and extort victims. Group-IB researchers have noted the malware’s capabilities and provided defense recommendations, including implementing multi-factor authentication, utilizing endpoint detection, taking regular backups, educating employees, and refraining from paying … Read more
July 4, 2024 at 04:36AM Europol led Operation Morpheus to tackle nearly 600 illegal IP addresses associated with Cobalt Strike. The disruptive action targeted criminal activity, involving partners in 27 countries. Notable support was provided by private sector partners and Europol’s Malware Information Sharing Platform. The operation sent a strong message to cybercriminals globally. However, … Read more
July 3, 2024 at 11:52AM Recorded Future’s Insikt Group identified thousands of pedophiles accessing child sexual abuse material (CSAM) using stolen credentials. By leveraging data from information-stealing malware, they tracked unique accounts to usernames on various platforms and shared the gathered information with law enforcement to unmask and arrest the individuals. This innovative use of … Read more
July 3, 2024 at 10:51AM Europol’s Operation Morpheus led to the takedown of nearly 600 Cobalt Strike servers used by cybercriminals to infiltrate networks. Coordinated across multiple countries, the operation involved identifying and targeting criminal infrastructure. The software, originally intended for security testing, has become a primary tool in ransomware and cyberespionage attacks, used by … Read more
July 2, 2024 at 12:49AM An Australian man has been charged with creating fake Wi-Fi access points during a domestic flight to steal user data. The suspect impersonated legitimate networks, prompting victims to enter personal information. He faces multiple charges and potentially 23 years in prison if convicted. Authorities advise using reputable VPNs for public … Read more
July 1, 2024 at 02:32PM An Australian man has been charged by Australia’s Federal Police for conducting “evil twin” WiFi attacks on domestic flights and airports in Perth, Melbourne, and Adelaide. The man set up fake WiFi networks to steal people’s email and social media credentials, exposing them to potential data theft and other cybercrimes. … Read more
July 1, 2024 at 01:52AM Australian Federal Police charged a man for running fake Wi-Fi networks on flights, harvesting credentials for email and social media. The man was found with devices creating Wi-Fi hotspots, including similar to in-flight access networks. The charges allege unauthorized access and possession of data with intent to commit a serious … Read more
June 28, 2024 at 01:06PM Lurie Children’s Hospital in Chicago has been hit by a cyberattack, compromising personal information of 791,000 patients. Cybercriminals disrupted the hospital’s systems, affecting patient portal, medical records, and communications. The investigation is ongoing, and the hospital is offering identity protection services to affected individuals for 24 months. From the meeting … Read more
June 28, 2024 at 09:01AM Geisinger, a leading Pennsylvania healthcare system, reported a data breach involving a former Nuance employee. The breach exposed patient information, prompting immediate action by both Geisinger and Nuance. The compromised data includes personal details and medical information, excluding financial data. Impacted individuals are advised to monitor their records, while legal … Read more