Cybecrime News, Articles and Updates

US-CERT issues malware analysis on KEYMARBLE RAT, attributes threat to North Korea

Through its US-CERT division, the U.S. Department of Homeland Security yesterday issued a new analysis report on a remote access trojan called KEYMARBLE that the agency says has been attributed to Hidden Cobra, a suspected North Korean APT actor.

Malicious Windows executable files hidden in Google Play Apps

Palo Alto Unit 42 researchers identified several Google Play apps infected with malicious Window's Executable Files.

Alaska city, borough under attack by CryptoLocker

The Alaskan borough of Matanuska-Susitna (Mat-Su) and City of Valdez were respectively hit with ransomware attacks which knocked both networks offline.

Fortnite click-fraud scammers set to earn $1 million

Imperva researchers estimate Fortnite Scammers are earning nearly $1 million annual through pay per click advertising by exploiting users eager to get free in-game currency.

Career and Technology Education Centers of Licking County acknowledge possible breach

Career and Technology Education Centers (C-TEC) of Licking County in Newark, Ohio suffered a possible data breach earlier this year that could have exposed individuals' names and Social Security numbers, according to local reports.

Bitcoin scammers posing as Elon Musk exploit Thai Cave rescue efforts

Crypto scammers looking to profit off Thai Cave rescue mission posed as Elon Musk in order to steal Bitcoin from unsuspecting users.

Malware at nine B&B Hospitality Group restaurants in New York targeted payment info

The breach occurred between March 1, 2017 and May 8, 2018, and hackers may have walked away with card numbers, names, expiration dates, internal verification codes and other payment data.

539 percent uptick in attacks targeting consumer-grade routers since, study

The first quarter of 2018 saw a dramatic increase in the number of cyberattacks targeting consumer-grade routers.

Crook gets 20 years for literal domain hijacking at gunpoint

A man was sentenced to 20 years in prison after giving a new meaning to the term domain-hijacking when attempting to forcibly steal a domain name from someone at gunpoint.

U.S. counterspy warns World Cup travelers to leave electronics stateside

American's traveling to Russia for the World Cup games have been advised to leave their personal electronic devices stateside.

South Korean cryptocurrency exchange hit, sparking drop in bitcoin prices; Ethereum heist nets $20M

Over the weekend, threat actors made off with about 30 percent of the coins traded on the Conrail exchange, although the firm didn't quantify the value of the heist.

Trickbot and IcedID team up to boost revenues from victims

The botnet operators behind IcedID and Trickbot are collaborating with each other and possibly sharing their ill-gotten gains, according to security researchers.

New Confucius malware campaign has links to Patchwork cybergang

New tools and techniques used by the Confucius cybergangs suggest further connections between the group and the Patchwork cybergang.

Pen testers break down bank security flaws

While banks have built effective barriers for external attacks, researchers warn they have not done nearly as much work to fight threats on their internal networks.

Sun Team's RedDawn campaign targets North Korean defectors and journalist

The second campaign from the "Sun Team" hacking group managed to sneak its way into the Google Play Store that actively targeted North Korean defectors.

Third-party software vulnerability results in Mexican bank heist scoring millions

Mexican authorities are investigating suspect a bank hack that siphoned hundreds of millions of pesos out of at least five banks.

Mia Khalifa themed malware targets Android and Windows devices

Cybercriminals were spotted using the likes of a former adult film star to spread a multiplatform spyware disguised as an adult game.

Cybercrime losses exceed $1.4B in 2017

Two of the top three crimes, non-payment/non-delivery, and personal data breaches were also in the top spot in 2016 while phishing beat out 419/overpayment scams which dropped to fourth place in 2017, affecting only 23,135 victims compared to the 25,716 victims in 2016.

SynAck ransomware implements Doppelgänging evasion technique

SynAck targeted ransomware was seen in the wild using the Doppelgänging technique which was first presented as a proof of concept in December 2017.

ZooPark cyberespionage campaign targets Androids in the Middle East

A cyberespionage operation targeting Android users in the Middle East has been exfiltrating the data of unsuspecting users since June 2015.

HPE iLO 4 remote management interfaces targeted with ransomware

Threat actors are targeting internet accessible HPE Integrated Lights-Out 4 (HPE iLO 4) remote management interfaces with ransomware or a decoy wiper.

Financial services industry most targeted with malware for second year straight

For the second year in a row, the financial services industry tops the charts as the most targeted industry with the highest volume of security incidents and the third highest volume of cyber-attacks.

Celebgate hacker who stole Jennifer Lawrence nudes pleads guilty of breaking into nearly 240 iCloud accounts

A Connecticut man admitted to hacking into the iCloud accounts of prominent females celebrities including "Red Sparrow" actress Jennifer Lawrence and more than 200 others.

Remotely hosted objects used to spread Formbook malware

Cybercriminals are once again abusing trusted applications, such as Microsoft Office, to launch multi-stage attacks inside malicious documents to deliver Formbook malware

Magento sites brute forced by cryptominers

Brute force attacks are being used to compromise Magento sites to scrape payment card data and deliver cryptomining malware.

Leaked Documents claim Cambridge Analytica Affiliate Gave Facebook Data to John Bolton

A whistleblower has released documents bolstering claims the U.K. company at the center of the Facebook-Cambridge Analytical scandal didn't destroy user data.

Fancy Bear suspected in United Kingdom's Anti-Doping Agency cyberattack

Fancy Bear hackers are suspected of launching a foiled cyber-attack on the United Kingdom's Anti-Doping Agency.

Vanderbilt University researcher claims breaches linked to patient deaths

A Vanderbilt University researcher is claiming more than 2,100 patient deaths are linked to hospital data breaches each year.