Cybercrime | SC Media

Cybercrime

Viborot ransomware comes with a botnet

By

Researchers discovered a ransomware with Botnet capabilities representing threat actors diversifying attack methods to raise the ante. Trend Micro researchers spotted the ransomware dubbed “Viborot” targeting users in the United States that once infected, the machine would become part of a spam email botnet that sought out new ransomware victims, according to a Sept. 21…

Leahy bill would end bulk data collection, introduce reforms

Romanian woman pleads guilty to ransomware attack on D.C. police cameras before Trump Inauguration

By

A Romanian citizen pleaded guilty to federal charges stemming from her role in a ransomware attack which involved hacking Washington, D.C., police cameras days before the 2017 Presidential Inauguration. Eveline Cismaru, 28, pleaded guilty to one count of conspiracy to commit wire fraud and one count of conspiracy to commit computer fraud in charges stemming…

Report: Hackers used data mining tool, network sniffer to steal Click2Gov information

By

The malicious actor behind a year-old campaign targeting the web payment portal Click2Gov appears to have been using a malicious webshell, data mining utility program and network sniffer to steal information from users, according to a new report from FireEye researchers. The researchers note that while the perpetrator’s tools and techniques are “generally consistent with other financially…

RussiaHack

Russian MagBo black market offers access to 3000 breached sites

By

Flashpoint researchers discovered a Russian speaking underground market place named “Magbo” selling access to approximately 3,000 breached sites for as little as 50 cents. The site allowed cybercriminals to purchase the exact breach they need depending on the website value with prices as low as 50 cents per access to $1,000 per access, depending on…

Newegg Magecart data breach possibly avoidable

By

The cyber gang Magecart added another notch to its keyboard managing to infiltrate online electronics retailer Newegg with payment card skimming malware, according to two reports, with industry experts weighing in that such attacks can be avoided through higher levels of vigilance by corporate cybersecurity teams. Magecart, which was tagged as responsible for the British…

Mirai creators sentenced to probation after assisting FBI with cyber investigations

By

Three young men who developed and deployed the original Mirai IoT botnet malware were sentenced on Tuesday in an Alaskan federal court to five years probation – a lenient punishment earned through extensive cooperation with FBI on other cyber investigations. Paras Jha, 22, of Fanwood, N.J.; Josiah White, 21, of Washington, Penn.; and Dalton Norman,…

Cryptocurrency

Thieves nab $60 million in latest heist targeting Japanese cryptocurrency exchange

By

Another Japanese cryptocurrency exchange was hit as thieves made off with roughly $60 million worth of Bitcoin, Monacoin and Bitcoin Cash. The attack targeted Tech Bureau’s Zaif exchange and took place over a two-hour period on Sept. 14 however, the firm detected server problems on Sept. 17 and didn’t confirm the attack until the following…

Report: Cryptomining malware detections up more than 459 percent since 2017

By

Detections of cryptomining malware has increased by 459 percent since last year, according to a new report released today by the Cyber Threat Alliance (CTA), citing statistics collected from several of its member companies. Titled “The Illicit Cryptocurrency Cyber Threat,” the report warns that this dramatic year-over-year rise is no fluke, noting that illegal mining activity will likely…

Phishing finance apps make way back into Google Play

By

Malicious phishing apps have once again made their way into the Google Play Store, this time imitating six online banks and a cryptocurrency exchange. ESET researchers spotted fake finance apps impersonating banks from New Zealand, Australia, the U.K., Switzerland and Poland, and the Austrian cryptocurrency exchange Bitpanda, according to a Sept. 19 blog post. JPMorgan…

Quirky Fbot IoT botnet kills rival, communicates via blockchain-based DNS

By

There’s an odd new addition to the extended family of Mirai-inspired IoT botnets, and so far its only obvious victim is a competing botnet whose malware is targeted for removal from any infected devices. Dubbed Fbot, the malware is also unusual because rather than using standard DNS to communicate with the command-and-control server, it instead…

Next post in Cybercrime