July 17, 2024 at 02:54AM Cybercrime group Scattered Spider has integrated ransomware strains RansomHub and Qilin in its activities, per Microsoft. Scattered Spider employs social engineering to breach and persist in targets, with a history of targeting VMWare ESXi servers. RansomHub, a widely used ransomware, has been linked to various threat actors. Microsoft urges security … Read more
July 16, 2024 at 02:15PM The Scattered Spider cybercrime group, also known as Octo Tempest, is now utilizing RansomHub and Qilin ransomware variants in its attacks. This showcases a potential power shift among hacking groups. Microsoft has identified Scattered Spider as a sophisticated and threatening group, accounting for a significant portion of its investigations. Additionally, … Read more
July 15, 2024 at 07:24AM Vyacheslav Igorevich Penchukov, a Ukrainian national, was sentenced in a US federal court in Nebraska to nine years in prison and three years of supervised release, with an order to pay over $70 million in restitution and forfeiture funds. He was involved in the Zeus and IcedID malware operations, leading … Read more
July 12, 2024 at 08:45AM Two Russian-born Australian citizens, Kira and Igor Korolev, were arrested in Australia for espionage on behalf of Russia. Kira, an army private, allegedly instructed her husband to access sensitive information and send it to her private email while she was in Russia. The Australian Federal Police stated that espionage has … Read more
July 11, 2024 at 01:09PM A new phishing toolkit called FishXProxy is being promoted as the ultimate powerful tool for cybercriminals to launch successful email attacks. It features advanced evasion techniques like unique links and dynamic attachments to bypass security systems, as well as Cloudflare integration for enterprise-grade infrastructure. Experts stress the urgent need for … Read more
July 11, 2024 at 09:23AM Ethan Steiger, CISO of Advance Auto Parts, disclosed that 2.3 million individuals were affected by a cyber breach. The criminals, under the alias Sp1d3r, attempted to sell the stolen data for $1.5 million, falsely claiming to have taken 380 million customer profiles. Snowflake has introduced new security measures, including multifactor … Read more
July 10, 2024 at 04:41PM Online marketplace Huione Guarantee is allegedly aiding money laundering for online scams, particularly “pig butchering” investment fraud, according to researchers. They found that at least $11 billion of transactions on the platform were linked to cybercrime, including investment fraud, data sales, and money laundering. The platform’s lack of moderation and … Read more
July 10, 2024 at 06:08AM Ransomware groups are evolving beyond encrypting and demanding payments to stealing sensitive information with custom malware. Cisco Talos revealed key tactics and identified 14 prominent ransomware groups, emphasizing their unique goals and activities. These groups employ double-extortion tactics and offer bespoke malware for data exfiltration. They utilize social engineering and … Read more
July 9, 2024 at 10:04AM Evolve Bank & Trust confirmed that 7.6 million customers’ data was stolen during the LockBit break-in. The incident affected major partners including Wise and Affirm. Evolve responded promptly and offered 24 months of credit monitoring to impacted individuals. The breach occurred amid regulatory scrutiny from the US Federal Reserve, making … Read more
July 8, 2024 at 11:24AM Analysis of dark web malware logs reveals thousands of users accessing child sexual abuse material, shedding light on the potential for combating serious crimes. These info-stealers target various operating systems, harvesting sensitive data for illicit use. The information has been shared with law enforcement to aid in tracking child exploitation … Read more