Cybercrime Archives

T-Mobile reports bad actor accessed 37M customer records

Cybercrime, Data Breach, Data Privacy / By Frank Crast / January 21, 2023 / API, Data Breach, PCI, Privacy, SEC, T-Mobile

In a new 8-K report submitted to the SEC, T-Mobile acknowledged a bad actor accessed 37 million T-Mobile customer records via an API flaw without authorization checks.

Interpol operation “First Light 2022” leads to thousands of arrests of social engineering scammers worldwide

Cybercrime, Fraud, Phishing, Social Engineering / By Frank Crast / June 17, 2022 / Cybercrime, Cybersecurity Threat Center, First Light 2022, Interpol, phishing, Ponzi, scammer, social engineering

Interpol has arrested thousands and seized millions of US dollars from social engineering scammers worldwide involved in telecommunication fraud, business mail compromise (BEC) and associated money laundering.

IsaacWiper: another disk wiping malware targets Ukraine systems

Cybercrime, Cybersecurity Attacks, Malware / By Frank Crast / March 2, 2022 / HermeticWiper, IsaacWiper, malware, WhisperGate

Following on the footsteps of other destructive disk-wiping malware attacks, ESET researchers have also discovered a second wiper malware dubbed IsaacWiper targeting governmental networks in Ukraine.

SockDetour backdoor targets U.S. defense contractors

Cybercrime, Cybersecurity Attacks, Malware / By Frank Crast / February 26, 2022 / CVE-2020-36195, CVE-2021-28799, eCh0raix, FTP, Qlocker, QNAP, SockDetour, SOHO, TiltedTemple

An advanced persistent threat (APT) campaign dubbed TiltedTemple has been using a “sophisticated tool” and malicious backdoor SockDetour to target U.S. defense contractors.

Sidewalk backdoor linked to Grayfly espionage group

Cybercrime, Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / By Frank Crast / September 13, 2021 / backdoor, C2, ESET, espionage, Exchange, Grayfly, malware, shellcode, Sidewalk

Researchers have recently discovered the Sidewalk modular backdoor has been linked to a Chinese Grayfly espionage group.

Microsoft and FireEye reveal new details on SolarWinds cyberattack

Configuration Management, Cybercrime, Cybersecurity Attacks / By Frank Crast / February 15, 2021 / FireEye, SolarWinds, UNC2452

Microsoft and FireEye have revealed new details on the infamous SolarWinds cyberattack used to spread a virus to 18,000 government and corporate computer networks.

Authorities take down ‘world’s largest’ darknet marketplace

Cybercrime, Regulations & Laws / By Frank Crast / January 18, 2021 / Cybercrime, DarkMarket, Darknet, Europol, Germany

A German-led police operation in coordination with authorities in other countries have taken down the ‘world’s largest’ darknet marketplace. The underground marketplace was used to facilitate the sale of drugs, stolen credit card data and malware.

FBI: Cyber criminals target employee credentials via voice phishing attacks

Cybercrime, Cybersecurity Attacks, Phishing / By Frank Crast / January 18, 2021 / COVID-19, DHS, FBI, phishing, vishing, VPN

The FBI issued a private industry notification of cyber criminals targeting employee credentials via voice phishing or “vishing” attacks.

Microsoft takes down TrickBot malware infrastructure

Cybercrime, Cybersecurity Attacks, Malware / By Frank Crast / October 12, 2020 / banking, Emotet, malware, Trickbot

Microsoft has worked with telecommunications providers worldwide to take down TrickBot malware infrastructure. TrickBot traces its roots back to 2016 as a modular banking trojan designed to steal information and distribute other malware to infected systems.

Microsoft takes down malicious domains used in COVID-19 related phishing campaign

Cybercrime, Cybersecurity Attacks, Messaging Security, Phishing / By Frank Crast / July 8, 2020 / COVID-19, DCU, email, Messaging, Microsoft, phishing

Microsoft has disrupted a major cybercriminal operation designed to take advantage of the COVID-19 pandemic and defraud victims in 62 countries around the world.