August 27, 2024 at 04:34PM The U.S. Marshals Service denies being breached by the Hunters International ransomware gang, despite being listed as a new victim on the group’s leak site. Based on the meeting notes, it appears that the U.S. Marshals Service has denied any breach of its systems by the Hunters International ransomware gang. … Read more
August 26, 2024 at 12:48PM AMD’s internal communications have been breached by digital data thieves who are offering the stolen goods for sale on the dark web. The criminal groups IntelBroker and EnergyWeaponUser claimed responsibility for the break-in, offering compromised comms from various sources and sensitive information. AMD has not responded to inquiries about the … Read more
August 23, 2024 at 10:05AM Greasy Opal, a long-time developer, supplies a tool for cybercrime-as-a-service, allowing bot-led CAPTCHA solving at scale. Tailoring its software to customers’ needs, it serves various threat actors including Storm-1152. The developer markets its CAPTCHA bypass tool, generating substantial revenue and paying taxes, despite its awareness of illegal use. Its tools … Read more
August 23, 2024 at 06:36AM Summary: A recent Qilin ransomware attack involved stealing credentials from Google Chrome browsers, using compromised VPN portal credentials, then editing the default domain policy to harvest credentials and erase evidence after exfiltrating them. Ransomware groups continue to evolve tactics, with Russian-speaking groups earning over $500 million from ransomware proceeds and … Read more
August 23, 2024 at 05:51AM Deniss Zolotarjovs, a 33-year-old Russian national, has been charged in the US for his role in the cybercrime gang Karakurt, known for data theft and extortion. Zolotarjovs was arrested in Georgia in December 2023, extradited to the US, and appeared in a US District Court in Cincinnati to face charges … Read more
August 23, 2024 at 01:36AM Deniss Zolotarjovs, a Latvian residing in Moscow, has been charged in the U.S. for allegedly engaging in cybercrimes, including data theft, extortion, and money laundering. Zolotarjovs is linked to a cybercriminal organization involved in ransomware attacks and is the first member of the group to be extradited to the U.S. … Read more
August 22, 2024 at 03:12PM Cthulhu Stealer is a new Apple macOS malware designed to steal cryptocurrency and gaming credentials as well as browser data. It mimics the successful Atomic Stealer and is becoming prevalent. As macOS threats are increasing, organizations with macOS devices should enhance their security measures due to the lack of expertise … Read more
August 22, 2024 at 09:09AM Deniss Zolotarjovs, a member of the Russian Karakurt ransomware group, has been charged in the U.S. for money laundering, wire fraud, and extortion crimes. As a key negotiator for the group, he was involved in multiple cases of extortion impacting American organizations. If convicted, he could face a maximum of … Read more
August 22, 2024 at 02:36AM Cisco has expressed strong concerns about the United Nations’ first-ever cyber crime convention, calling it dangerously flawed and overly broad. According to Cisco, the convention, driven by Russia, could pose risks to basic human rights and the rule of law, and is not aligned with the values of free speech … Read more
August 19, 2024 at 09:15AM Cybersecurity experts have discovered a surge in malware infections driven by malvertising campaigns distributing a loader called FakeBat. The attacks target users seeking popular business software, utilizing trojanized MSIX installers and executing PowerShell scripts to download secondary payloads. FakeBat is associated with threat actor Eugenfest and is used to distribute … Read more