November 3, 2023 at 04:13PM A Dutch cybersecurity professional, Pepijn Van der Stap, has been sentenced to four years in prison for hacking and blackmailing multiple companies both in the Netherlands and worldwide. He hacked into victims’ computers, engaged in extortion, and laundered at least 2.5 million euros in cryptocurrency. Van der Stap, along with … Read more
October 30, 2023 at 07:04PM Jordan Persad, a 20-year-old from Florida, has been sentenced to 30 months in prison for his involvement in a SIM-swapping ring that stole almost $1 million in cryptocurrency. Persad and his co-conspirators used SIM swapping to gain access to victims’ online accounts and cryptocurrency wallets. He pleaded guilty to conspiracy … Read more
October 26, 2023 at 01:57PM The Nigerian Police arrested six suspects involved in cybercrime, including scams such as business email compromise, romance scams, and investment schemes. They dismantled a cybercrime mentoring hub in Abuja and seized digital devices. The suspects confessed to participating in cybercrime activities like hacking, identity theft, and forgery. The authorities urge … Read more
October 26, 2023 at 12:05PM Nigerian police have arrested six men connected to a cybercrime recruitment and mentoring hub. The suspects, aged 19 to 27, have confessed to various cybercrimes such as identity theft, hacking, and trading of hacked Facebook accounts, among others. Intelligence reports suggest their involvement in more high-level cybercrimes. The investigation is … Read more
October 18, 2023 at 10:24AM Former US Navy IT manager, Marquis Hooper, was sentenced to five years and five months in prison after hacking into a database, stealing personally identifiable information (PII), and selling it on the dark web. Hooper and his wife, Natasha Chalk, stole the PII of over 9,000 individuals, selling it for … Read more
October 16, 2023 at 10:03AM Russian hacking groups have been exploiting a security vulnerability in the WinRAR archiving utility to launch a phishing campaign. The attack involves malicious archive files that exploit the vulnerability, allowing the attacker to gain remote access to compromised systems. The campaign also steals data from Google Chrome and Microsoft Edge … Read more
October 10, 2023 at 08:24AM Akamai’s security researchers have discovered a new Magecart web skimming campaign that incorporates three concealment techniques. One technique involves hiding malicious code in the targeted website’s ‘404’ error page. The campaign, which targets large organizations in the food and retail sectors, follows the typical Magecart pattern of exploiting vulnerabilities, injecting … Read more
October 10, 2023 at 08:24AM Natalie Silvanovich, a member of Google’s Project Zero, discusses her work in finding and fixing zero-day vulnerabilities. Project Zero aims to make zero-day vulnerabilities difficult to exploit by attackers. Silvanovich explains the team’s disclosure policy, research process, and the necessary skills for being a successful researcher. She also touches on … Read more
October 10, 2023 at 06:06AM A new Magecart campaign is using websites’ 404 error pages to conceal malicious code, according to security researcher Roman Lvovsky. The campaign targets Magento and WooCommerce websites, inserting the code directly into HTML pages and scripts. The attacks use a multi-stage process to capture and exfiltrate visitor data on checkout … Read more