April 24, 2024 at 09:45AM The U.S. Treasury Department sanctioned two firms and four individuals for cyber activities on behalf of the Iranian IRGC-CEC. The DoJ unsealed an indictment against the individuals for cyber attacks targeting the U.S. government and private entities. A reward of up to $10 million was announced for information leading to … Read more
April 22, 2024 at 07:06AM This text summarizes a report on Cyber Extortion and Ransomware threat landscape, focusing on re-victimization and the impact of law enforcement efforts. It discusses the increase in cybercrime, challenges in monitoring victimization, and the role of affiliates in facilitating cyber-attacks. The report also highlights the unpredictability and complexity of the … Read more
April 19, 2024 at 07:42AM The World-Check database, containing information on individuals involved in various illicit activities, has been breached by cybercriminals. The London Stock Exchange Group confirmed the breach and emphasized it was not a breach of their own systems. They are working with the affected third party to protect data, as concerns arise … Read more
April 18, 2024 at 10:12AM FIN7, a notorious cybercrime group, targeted the U.S. automotive industry through a spear-phishing campaign, deploying the Carbanak backdoor. The group has a history of financially motivated cybercrime and has evolved to conducting ransomware operations. The attack involved a sophisticated multi-stage process, but the infected system was removed early. Organizations are … Read more
April 18, 2024 at 07:45AM LabHost, a major phishing-as-a-service platform, was dismantled by law enforcement, led by the UK’s Metropolitan Police and Europol. This resulted in the shutdown of numerous websites and the arrest of 37 individuals. The platform targeted financial, postal, and telecommunication services, amassing over 40,000 phishing domains and compromising a large number … Read more
April 18, 2024 at 05:57AM A global law enforcement operation disrupted the LabHost phishing platform, leading to the arrest of 37 suspects, including the original developer. LabHost, launched in 2021, offered phishing tools and infrastructure, with a popular feature called LabRat. The operation involved 19 countries and private sector partners and resulted in the seizure … Read more
April 17, 2024 at 03:00PM Alexander Lefterov, also known as Alipako, Uptime, and Alipatime, has been charged by the U.S. Justice Department for operating a significant botnet that infected thousands of computers in the United States. The indictment revealed that he and his associates stole credentials, accessed financial accounts, and provided access to the botnet … Read more
April 17, 2024 at 07:12AM Threat actors exploit an unpatched Atlassian server vulnerability (CVE-2023-22518) to deploy Linux Cerber ransomware. This creates a critical security risk, leading to loss of system control. Ransomware payloads are executed using a web shell, encrypting files and dropping ransom notes. The use of C++ payloads is noted, and new ransomware … Read more
April 16, 2024 at 02:27PM FBI arrested Edmond Chakhmakhchyan on federal charges for attempting to market and sell malware, providing unauthorized control over a victim’s device. Pleading not guilty, he’s due to stand trial on June 4. Chakhmakhchyan had struck a deal with the malware’s creator to advertise the Hive remote access Trojan (RAT) and … Read more
April 16, 2024 at 12:39PM A Nebraska man will appear in court today, accused of defrauding cloud service providers of $3.5 million in a cryptojacking scheme. Charles O. Parks III allegedly used high-powered resources to mine nearly $1 million in cryptocurrency. Parks faces up to 20 years in prison for wire fraud and money laundering, … Read more