October 10, 2024 at 12:05PM The Underground ransomware gang attacked Casio on October 5, disrupting services and potentially compromising personal and confidential data. The group leaked sensitive information on the dark web, including employee data and financial documents. Casio is investigating the breach but has not confirmed the claims. The group targets Windows systems since … Read more
October 10, 2024 at 09:33AM OpenAI reported disrupting over 20 malicious operations this year, targeting deceptive use of its platform, including malware and social media manipulation. Notably, cyber operations involved groups from China and Iran attempting to exploit AI for harmful activities, while emphasizing that significant breakthroughs in malware development were not evident. ### Meeting … Read more
October 9, 2024 at 01:49PM Google has partnered with the Global Anti-Scam Alliance and DNS Research Federation to launch the Global Signal Exchange, aimed at enhancing real-time insights into online scams and cybercrime. The initiative will improve abuse signal exchange, leveraging data from various sources to better protect users and disrupt fraudulent activities. ### Meeting … Read more
October 9, 2024 at 11:26AM An international law enforcement operation resulted in the arrest of one of three administrators of the dark web market ‘Bohemia/Cannabia,’ which facilitated drug sales and DDoS attack advertisements. This operation highlights ongoing efforts to combat illegal online activities. **Meeting Takeaways:** 1. An international law enforcement operation has been successfully conducted. … Read more
October 8, 2024 at 01:15PM Users searching for game cheats are lured into downloading Lua-based malware, with a focus on gaming engine supplements. The malware establishes persistence on infected systems, delivering additional payloads. Techniques include GitHub exploitation, targeting gaming communities worldwide. Researchers emphasize a shift to obfuscated Lua scripts as a means of evading detection. … Read more
October 7, 2024 at 05:17PM Mark Sokolovsky has pleaded guilty to his involvement in the Raccoon Stealer malware cybercrime. He distributed the malware under a MaaS model, allowing users to rent it for weekly or monthly fees. Sokolovsky was arrested in the Netherlands in March 2022, and the FBI dismantled the malware’s infrastructure in a … Read more
October 6, 2024 at 11:50AM Evan Frederick Light from Indiana pleaded guilty to stealing $37.7 million worth of cryptocurrency from 571 victims in a 2022 cyberattack. He stole the funds by exploiting vulnerabilities in an investment company’s servers and used various means to conceal the trace of the assets. The FBI tracked and arrested Light, … Read more
October 4, 2024 at 03:02PM Russian law enforcement detained nearly 100 suspects connected to the Cryptex cryptocurrency exchange, UAPS anonymous payment service, and other platforms for illegal payments and stolen credentials. The individuals were arrested for organizing criminal activities, illegal payment processing, and banking activities. They made over $1.1 billion in 2023 and were linked … Read more
October 4, 2024 at 10:18AM Microsoft and the U.S. DoJ announced the seizure of 107 internet domains linked to Russian state-sponsored threat actors engaged in cybercrime. The threat actor, known as COLDRIVER and affiliated with the Russian Federal Security Service, targeted U.S. government, NGOs, and think tanks through spear-phishing campaigns. Microsoft also filed a civil … Read more
October 3, 2024 at 11:49PM Numerous well-known brands’ web stores, including Ray-Ban and National Geographic, were targeted by criminals using the CosmicSting flaw in Adobe’s Commerce and Magento software. The vulnerability, CVE-2024-34102, allowed stolen shopper payment card information. At least seven cybercrime gangs exploited the flaw, despite Adobe’s patch. Multiple groups are fighting for control … Read more