Cybercrime News, Articles and Updates

Report: Multiple groups likely collaborating on Shamoon malware campaign

Analysis of the 2016-2017 Shamoon malware attacks against Saudi organizations suggests that multiple hacker groups may be collaborating on this effort on behalf of a nation-state actor, according to a new report.

Mailmen and Mole-men: Spammers impersonated USPS, delivered Mole ransomware in evolving campaign

A malicious spam campaign found impersonating the U.S. Postal Service and delivering an apparent Cryptomix ransomware variant called Mole has already changed its tactics multiple times since its discovery earlier this month.

Paid in the USA: Americans more likely to pony up when infected with ransomware

The U.S. suffered 34 percent of global ransomware infections last year - and it's no wonder why, with 64 percent of Americans willing to pay to retrieve their encrypted files, compared to 34 percent of victims worldwide, according to Symantec.

JavaScript spam campaigns on the loose

More than 10,000 instances of malicious JavaScript payloads have been detected in the past two weeks by the Zscaler ThreatLabz team.

Oversight Committee says Flynn likely broke law, White House rejects request for more info

The committee also asked the White House for additional documents on Flynn's dealings with foreign governments but was rebuffed in a letter from Legislative Director Marc Short.

Met Police officer buys malware that monitors messages, calls and more

A London police officer has purchased malware for mobile phones and computers that can intercept calls, emails and more.

UK's Alan Mudd sentenced to two years for creating Titanium Stresser DDoS malware

Alan Mudd was sentenced to two years in a young offender's institution by a UK court for creating, selling and using Distributed Denial of Service malware.

City of Newark reportedly hit in ransomware attack

A ransomware attack has hit some municipal computers in New Jersey's most populous city, Newark, TAPInto Newark reported on Monday, citing the city's CIO Seth Wainer and a document obtained by the media outlet.

Locky ransomware is back, this time via Necurs

After fading from the spotlight, the notorious Locky ransomware is again flooding into email inboxes owing to new campaigns spread via the Necurs botnet.

Asian Interpol operation finds nearly 9,000 CnC servers

Investigators from seven Southeast Asian nations collaborated on a joint Interpol operation that identified approximately 8,800 C2 servers in eight countries and nearly 270 compromised websites, including government portals.

20K notified of data breach at healthcare network Lifespan

Lifespan, a Rhode Island-based healthcare network, informed 20,000 patients that an employee laptop containing patient data was stolen.

(ISC)² delivers recommendations to President Trump

As the 100th day of the Trump Administration arrives next week, (ISC)2 offered a series of recommendations to President Trump to advocate for the cybersecurity workforce.

Fake Super Mario Run App Steals Credit Card Information

Dozens of malicious Android apps claiming to be the mobile game Super Mario Run have been detected by researchers at Trend Micro.

Kenya set to pass cybercrime bill as east Africa seeks legal harmony

Amid calls for regional harmonisation of cyber-crime laws, the government of Kenya is proceeding with the passage of a bill to address the growing problem of cyber-crime.

Binary Options malvertising scheme delivers Gozi-like banking trojan

A recently discovered malvertising campaign called Binary Options is redirecting Internet users to a fake trading company webpage, before infecting some of these victims with a banking trojan via the RIG exploit kit.

Cybercriminals reap the benefits of cross-community collaboration

Cybercriminals across multiple regions have evolved their communication strategies to become more collaborative than their victims.

Justice Department may charge WikiLeaks' Assange: Report

WikiLeaks founder Julian Assange may soon find himself facing charges from the Justice Department for releasing classified information, according to a CNN report.

SMSVova spyware downloaded millions of times from Google Play store since 2014

A spyware program disguised as an app that dispenses Android updates was downloaded between 1 and 5 million times before being pulled from Google's official U.S. Play Store, according to researchers at Zscaler.

Australian businesses hit with email scam

An elaborate email scam is unfolding in Australia that is infecting computers with malware.

New York men plead guilty to ATM theft scheme using skimmers and hidden cameras

Three New York-area men have separately pleaded guilty in federal court to one count of conspiracy to commit bank fraud, in relation to the theft of at least $428,581 in funds from various New Jersey banking locations.

Texas 10th grader hacks school network to change grades

A Texas high school sophomore was arrested on March 31 and charged with a felony for hacking into the Spring Branch Independent School District computer system in order to change student's grades.

Femme fatale: Karmen ransomware seduces novice cybercriminals with affordability, ease of use

A Russian-speaking cybercriminal was discovered last March selling a new ransomware program named Karmen on the dark web, although infections could date back as early as December 2016 in the U.S. and Germany.

2015 Neiman Marcus data breach more damaging than first reported

Neiman Marcus is not having a good month as far as public relations are concerned.

Details on 1.7M Snapchat users allegedly posted in India

Snapchat CEO Evan Spiegel might want to tone down his comments while discussing the target demographic for his app.

Spike in jRAT attacks

Researchers at Zscaler reported on a spike in Java-based remote access trojan variants, or jRATs.