Cybercrime

JPMorgan Chase sues scammers following viral 'infinite money glitch'

ATMs paid customers thousands ... and now the bank wants its money back

Security28 Oct 2024 | 47

Feds investigate China's Salt Typhoon amid campaign phone hacks

'They're taunting us,' investigator says and it looks like it's working

Security28 Oct 2024 | 5

Brazen crims selling stolen credit cards on Meta's Threads

Exclusive The platform 'continues to take action' against illegal posts, we're told

Cyber-crime28 Oct 2024 | 20

Dutch cops pwn the Redline and Meta infostealers, leak 'VIP' aliases

Legal proceedings underway with more details to follow

Cybersecurity Month28 Oct 2024 | 5

Senator accuses sloppy domain registrars of aiding Russian disinfo campaigns

in brief Also, Change Healthcare sets a record, cybercrime cop suspect indicted, a new Mallox decryptor, and more

Security27 Oct 2024 | 35

Ransomware's ripple effect felt across ERs as patient care suffers

389 US healthcare orgs infected this year alone

Cybersecurity Month24 Oct 2024 | 1

Perfctl malware strikes again as crypto-crooks target Docker Remote API servers

Attacks on unprotected servers reach 'critical level'

Cybersecurity Month24 Oct 2024 | 1

Samsung phone users under attack, Google warns

Don't ignore this nasty zero day exploit says TAG

Cyber-crime24 Oct 2024 | 10

Akira ransomware is encrypting victims again following pure extortion fling

Crooks revert to old ways for greater efficiency

Cybersecurity Month22 Oct 2024 | 2

Pixel perfect Ghostpulse malware loader hides inside PNG image files

Miscreants combine it with an equally tricky piece of social engineering

Cybersecurity Month22 Oct 2024 | 34

Alleged Bitcoin crook faces 5 years after SEC's X account pwned

SIM swappers strike again, warping cryptocurrency prices

Cybersecurity Month18 Oct 2024 | 14

ESET denies it was compromised as Israeli orgs targeted with 'ESET-branded' wipers

Says 'limited' incident isolated to 'partner company'

Cybersecurity Month18 Oct 2024 | 3

Biz hired, and fired, a fake North Korean IT worker – then the ransom demands began

'My webcam isn't working today' is the new 'The dog ate my network'

Cybersecurity Month18 Oct 2024 | 41

Healthcare Services Group discloses 'cybersecurity incident' in SEC filing

Laundry and dining provider still investigating cause and scope

Cybersecurity Month18 Oct 2024 | 5

Uncle Sam puts $10M bounty on Russian troll farm Rybar

Propaganda op focuses on anti-West narratives to meddle with elections

Security18 Oct 2024 | 9

Brazilian police claim they've cuffed serial cybercrook behind FBI and Airbus attacks

Early stage opsec failures lead to landmark arrest of suspected serial data thief

Cybersecurity Month17 Oct 2024 | 3

US contractor pays $300K to settle accusation it didn't properly look after Medicare users' data

Resolves allegations it improperly stored screenshots containing PII that were later snaffled

Cybersecurity Month16 Oct 2024 | 7

Critical hardcoded SolarWinds credential now exploited in the wild

Another blow for IT software house and its customers

Security16 Oct 2024 | 23

Cisco confirms 'ongoing investigation' after crims brag about selling tons of data

UPDATED Networking giant says 'no evidence' of impact on its systems but will tell customers if their info has been stolen

Cyber-crime15 Oct 2024 | 7

Microsoft says more ransomware stopped before reaching encryption

Volume of attacks still surging though, according to Digital Defense Report

Cyber-crime15 Oct 2024 | 6

Microsoft says tougher punishments needed for state-sponsored cybercriminals

Although it also reaffirmed commitment to secure-by-design initiatives

Cloud Infrastructure Month15 Oct 2024 | 17

China again claims Volt Typhoon cyber-attack crew was invented by the US to discredit it

Enough with the racist-sounding 'dragons' and 'pandas', Beijing complains – then points the finger at koalas

Cybersecurity Month15 Oct 2024 | 17

US healthcare org admits up to 400,000 people's personal info was snatched

It waited till just before Columbus Day weekend to make mandated filing, but don't worry, we saw it

Cybersecurity Month14 Oct 2024 | 3

Would banning ransomware insurance stop the scourge?

White House official makes case for ending extortion reimbursements

Cybersecurity Month14 Oct 2024 | 87

Thousands of Fortinet instances vulnerable to actively exploited flaw

No excuses for not patching this nine-month-old issue

Cybersecurity Month14 Oct 2024 | 8

INC ransomware rebrands to Lynx – same code, new name, still up to no good

Researchers point to evidence that scumbags visited the strategy boutique

Cybersecurity Month11 Oct 2024 | 10

US lawmakers seek answers on alleged Salt Typhoon breach of telecom giants

Cyberspies abusing a backdoor? Groundbreaking

Cyber-crime11 Oct 2024 | 10

Ukraine cyber cops collar man who allegedly hooked citizens up to Russian internet

'Self-taught hacker' facing a possible 15 years in the slammer

Cybersecurity Month11 Oct 2024 | 10

FBI created a cryptocurrency so it could watch it being abused

It worked – alleged pump and dump schemers arrested in UK, US and Portugal this week

Cybersecurity Month11 Oct 2024 | 54

Crooks stole personal info of 77k Fidelity Investments customers

But hey, no worries, the firm claims no evidence of data misuse

Cyber-crime10 Oct 2024 | 3

CISA adds fresh Ivanti vuln, critical Fortinet bug to hall of shame

Usual three-week window to address significant risks to federal agencies applies

Cybersecurity Month10 Oct 2024 |

Dutch cops reveal takedown of 'world's largest dark web market'

Two arrested after allegedly trying to make off with their ill-gotten gains

Cybersecurity Month10 Oct 2024 | 15

Moscow-adjacent GoldenJackal gang strikes air-gapped systems with custom malware

USB sticks help, but it's unclear how tools that suck malware from them are delivered

Cybersecurity Month09 Oct 2024 | 24

Ransomware gang Trinity joins pile of scumbags targeting healthcare

As if hospitals and clinics didn't have enough to worry about

Cybersecurity Month09 Oct 2024 | 6

Happy birthday, Putin – you've been pwned

Pro-Ukraine hackers claim credit for Russian state broadcasting shutdown

Security08 Oct 2024 | 82

Feds reach for sliver of crypto-cash nicked by North Korea's notorious Lazarus Group

A couple million will do for a start … but Kim's crews are suspected of stealing much more

Cybersecurity Month08 Oct 2024 | 2

About a quarter million Comcast subscribers had their data stolen from debt collector

Cable giant says ransomware involved, FBCS keeps schtum

Cybersecurity Month04 Oct 2024 | 6

Big brands among thousands infected by payment-card-stealing CosmicSting crooks

Updated Gangs hit 5% of all Adobe Commerce, Magento-powered stores, Sansec says

Cybersecurity Month04 Oct 2024 | 6

Scammers in the slammer for years after ripping off Apple with fake iPhone returns

Duo must also cough up $1.5M for pulling off multi-million-dollar exchange swindle

Bootnotes03 Oct 2024 | 14

Sensitive data on 61K+ patients accessed in Alabama hospital cyberattack

Intruder pored over medical records, insurance details, Social Security numbers in some cases

Cybersecurity Month03 Oct 2024 |

DOJ, Microsoft seize 107 domains used in Russia's Star Blizzard phishing attacks

Winter is coming

Cybersecurity Month03 Oct 2024 | 7

Two British-Nigerian men sentenced over multimillion-dollar business email scam

Fraudsters targeted local government, colleges, and construction firms in Texas and North Carolina

Cybersecurity Month03 Oct 2024 | 13

Ransomware crew infects 100+ orgs monthly with new MedusaLocker variant

Exclusive Crooks 'like a sysadmin, with a malicious slant'

Cybersecurity Month03 Oct 2024 | 3

'Patch yesterday': Zimbra mail servers under siege through RCE vuln

Attacks began the day after public disclosure

Cybersecurity Month02 Oct 2024 | 5

Singapore tires of Big Tech's slow and half-hearted help for abused users

PM promises agency to handle complaints as he outlines new digital nation plan

Public Sector02 Oct 2024 | 3

Euro cops arrest 4 including suspected LockBit dev chilling on holiday

And what looks like proof stolen data was never deleted even after ransom paid

Cybersecurity Month01 Oct 2024 | 15

Evil Corp's deep ties with Russia and NATO member attacks exposed

Ransomware criminals believed to have taken orders from intel services

Cyber-crime01 Oct 2024 | 9

NCA unmasks man it suspects is both 'Evil Corp kingpin' and LockBit affiliate

Aleksandr Ryzhenkov alleged to have extorted around $100M from victims, built 60 LockBit attacks

Cybersecurity Month01 Oct 2024 |

Australian e-tailer digiDirect customers' info allegedly stolen and dumped online

Full names, contact details, and company info – all the fixings for a phishing holiday

Cybersecurity Month01 Oct 2024 | 1

Rackspace internal monitoring web servers hit by zero-day

Exclusive Intruders accessed machines via tool bundled with ScienceLogic, 'limited' info taken, customers told not to worry

Cybersecurity Month30 Sep 2024 | 10

If you're holding important data, Iran is probably trying spearphish it

It's election year for more than 50 countries and the Islamic Republic threatens a bunch of them

Cyber-crime30 Sep 2024 | 6

Feds charge 3 Iranians with 'hack-and-leak' of Trump 2024 campaign

Snoops allegedly camped out in inboxes well into September

Cyber-crime27 Sep 2024 | 12

Ransomware gang using stolen Microsoft Entra ID creds to bust into the cloud

Defenders beware: Data theft, extortion, and backdoors on Storm-0501's agenda

Research27 Sep 2024 | 6

Victims lose $70K to one single wallet-draining app on Google's Play Store

Attackers got 10K people to download 'trusted' web3 brand cheat before Mountain View intervened

Cyber-crime26 Sep 2024 | 22

Public Wi-Fi operator investigating cyberattack at UK's busiest train stations

Updated See it, say it… not sorted just yet as network access remains offline

Cyber-crime26 Sep 2024 | 62

China's Salt Typhoon cyber spies are deep inside US ISPs

Updated Expecting a longer storm season this year?

Networks25 Sep 2024 | 4