Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider, a cybercrime group suspected of hacking into Twilio, LastPass, DoorDash, Mailchimp, and nearly 130 other organizations over the past two years. Continue reading Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Ransomware statistics that reveal alarming rate of cyber extortion

In this article, you will find excerpts from various reports that offer statistics and insights about the current ransomware landscape. Global ransomware crisis worsens NTT Security Holdings | 2024 Global Threat Intelligence Report | May 2024… Continue reading Ransomware statistics that reveal alarming rate of cyber extortion

25 cybersecurity AI stats you should know

In this article, you will find excerpts from reports we recently covered, which offer stats and insights into the challenges and cybersecurity issues arising from the expansion of AI. Security pros are cautiously optimistic about AI Cloud Security Alli… Continue reading 25 cybersecurity AI stats you should know

Cybercriminals harness AI for new era of malware development

The alliance between ransomware groups and initial access brokers (IABs) is still the powerful engine for cybercriminal industry, as evidenced by the 74% year-on-year increase in the number of companies that had their data uploaded on dedicated leak si… Continue reading Cybercriminals harness AI for new era of malware development

iOS users beware: GoldPickaxe trojan steals your facial data

Group-IB uncovered a new iOS trojan designed to steal users’ facial recognition data, identity documents, and intercept SMS. The trojan, dubbed GoldPickaxe.iOS by Group-IB’s Threat Intelligence unit, has been attributed to a Chinese-speaking threat act… Continue reading iOS users beware: GoldPickaxe trojan steals your facial data

ResumeLooters target job search sites in extensive data heist

Group-IB identified a large-scale malicious campaign primarily targeting job search and retail websites of companies in the Asia-Pacific region. The group, dubbed ResumeLooters, successfully infected at least 65 websites between November and December 2… Continue reading ResumeLooters target job search sites in extensive data heist

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

On Jan. 9, 2024, U.S. authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. technology companies during the summer of 2022. Continue reading Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Researchers identify high-grade phishing kits attacking nearly 60,000 Microsoft 365 accounts

Hackers compromised roughly 8,000 of those accounts with tools that a cybercrime group known as W3LL sold through its underground marketplace.

The post Researchers identify high-grade phishing kits attacking nearly 60,000 Microsoft 365 accounts appeared first on CyberScoop.

Continue reading Researchers identify high-grade phishing kits attacking nearly 60,000 Microsoft 365 accounts

Attackers exploited WinRAR zero-day for months to steal money from brokers (CVE-2023-38831)

Financially-motivated attackers have exploited a zero-day vulnerability in WinRAR (CVE-2023-38831) to trick traders into installing malware that would allow them to steal money from broker accounts. “This vulnerability has been exploited since Ap… Continue reading Attackers exploited WinRAR zero-day for months to steal money from brokers (CVE-2023-38831)

Two dozen arrested, hundreds of malicious IPs taken down in African cybercrime operation

The cybercrime and fraud operations, including fraudulent art sales, were linked to financial losses of more than $40 million.

The post Two dozen arrested, hundreds of malicious IPs taken down in African cybercrime operation appeared first on CyberScoop.

Continue reading Two dozen arrested, hundreds of malicious IPs taken down in African cybercrime operation