Menu

Blog

Archive for the ‘cybercrime/malcode’ category

Dec 21, 2024

Hacker breaks into crypto wallet and recovers $2,000,000 in ‘high-stakes’ hack

Posted by in categories: bitcoin, cryptocurrencies, cybercrime/malcode

One hacker has managed to recover over $2,000,000 for a man who forgot the password to his crypto wallet by breaking into the physical device in a ‘high-stakes’ hacking attempt.

Even in its infancy cryptocurrency was worth a lot of money, and it’s surprisingly easy to lose it all with one simple mistake.

Horror stories of people accidentally throwing away hard drives with hundreds of millions of dollars worth of Bitcoin are more than enough to scare anyone away, and this particular video shows how close of a call it can be to recover otherwise simple information.

Dec 21, 2024

LockBit Developer Rostislav Panev Charged for Billions in Global Ransomware Damages

Posted by in category: cybercrime/malcode

LockBit’s developer charged for enabling global ransomware attacks netting $500M; U.S. leads extradition effort.

Dec 21, 2024

Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware

Posted by in category: cybercrime/malcode

Lazarus Group’s CookiePlus malware targets nuclear engineers, showcasing DPRK’s evolving arsenal and $1.34B in 2024 crypto thefts.

Dec 19, 2024

BadBox malware botnet infects 192,000 Android devices despite disruption

Posted by in categories: cybercrime/malcode, mobile phones

The BadBox Android malware botnet has grown to over 192,000 infected devices worldwide despite a recent sinkhole operation that attempted to disrupt the operation in Germany.

Researchers from BitSight warn that the malware appears to have expanded its targeting scope beyond no-name Chinese Android devices, now infecting more well-known and trusted brands like Yandex TVs and Hisense smartphones.

Dec 16, 2024

Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole Action

Posted by in category: cybercrime/malcode

Germany’s BSI disrupts BADBOX malware targeting 30,000 devices, halting ad fraud, data theft, and proxy misuse.

Dec 16, 2024

390,000 WordPress accounts stolen from hackers in supply chain attack

Posted by in category: cybercrime/malcode

A threat actor tracked as MUT-1244 has stolen over 390,000 WordPress credentials in a large-scale, year-long campaign targeting other threat actors using a trojanized WordPress credentials checker.

Researchers at Datadog Security Labs, who spotted the attacks, say that SSH private keys and AWS access keys were also stolen from the compromised systems of hundreds of other victims, believed to include red teamers, penetration testers, security researchers, as well as malicious actors.

The victims were infected using the same second-stage payload pushed via dozens of trojanized GitHub repositories delivering malicious proof-of-concept (PoC) exploits that targeted known security flaws, along with a phishing campaign prompting targets to install a fake kernel upgrade camouflaged as a CPU microcode update.

Dec 14, 2024

Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms

Posted by in category: cybercrime/malcode

Iranian-linked IOCONTROL malware targets IoT, OT, and SCADA systems with advanced evasion tactics.

Dec 14, 2024

Spain busts voice phishing ring for defrauding 10,000 bank customers

Posted by in categories: cybercrime/malcode, mobile phones

The Spanish police, working with colleagues in Peru, conducted a simultaneous crackdown on a large-scale voice phishing (vishing) scam ring in the two countries, arresting 83 individuals.

Thirty-five of the arrested people were located across Spain, including in Madrid, Barcelona, Mallorca, Salamanca, and Vigo, and another 48 were arrested in Peru.

Continue reading “Spain busts voice phishing ring for defrauding 10,000 bank customers” »

Dec 12, 2024

AI Agents: Easier To Build, Harder To Get Right

Posted by in categories: business, cybercrime/malcode, finance, robotics/AI

Today, AI agents have evolved to become more modular and sophisticated. Agents like ChatGPT can engage in conversations and assist in a wide range of workflows, including customer service and financial decision-making.

Technologies such as retrieval-augmented generation (RAG) allow AI systems to combine different data sources dynamically, making them more adaptive and helpful in real-world applications. As AI’s influence expands into industries such as finance, healthcare and cybersecurity, it is becoming clear that AI agents are critical components of modern business operations.

Despite the remarkable progress in AI, deploying these systems presents several challenges. One of the primary concerns is the risk of bias embedded in the datasets used to train AI agents. AI systems learn from historical data, which can contain patterns of discrimination that, if unchecked, lead to biased decisions, such as favoring particular groups over others in hiring or lending scenarios.

Dec 12, 2024

Europol Dismantles 27 DDoS Attack Platforms Across 15 Nations; Admins Arrested

Posted by in category: cybercrime/malcode

PowerOFF dismantles 27 DDoS stresser services, arrests administrators, and exposes CDN/WAF misconfiguration risks.

Page 1 of 22312345678Last