Author: RecordedFuture

“Crazy Evil” Cryptoscam Gang: Unmasking a Global Threat in 2024
The “Crazy Evil” cryptoscam gang has become a leading threat in the cybercriminal landscape since 2021, focusing on cryptocurrency theft and identity fraud through sophisticated phishing and malware tactics. The group operates through six subteams, employing advanced tools and social engineering to target specific victim profiles, particularly in the cryptocurrency sector.…
Read More
“Crazy Evil” Cryptoscam Gang: Unmasking a Global Threat in 2024
The 2024 Payment Fraud Intelligence Report from Recorded Future reveals a significant rise in fraud activities, particularly in stolen card data and e-skimmer infections. Key trends indicate that fraudsters are increasingly exploiting modern payment technologies and social engineering tactics. Predictions for 2025 suggest a continuation of these trends, emphasizing the need for enhanced security measures among financial institutions and merchants.…
Read More
‘Surveillance pricing’ means higher costs for consumers, preliminary FTC report says
Summary: The FTC’s preliminary report reveals that businesses utilize consumer data to implement surveillance pricing, adjusting prices based on individual characteristics such as demographics and shopping habits. Six companies, including Mastercard and McKinsey & Co., provided insights into their pricing tools, which allow retailers to algorithmically target prices.…
Read More
Homeland Security nominee Kristi Noem bashes CISA, says agency must be ‘smaller, more nimble’
Summary: South Dakota Governor Kristi Noem criticized the Cybersecurity and Infrastructure Security Agency (CISA) during her confirmation hearing for Secretary of Homeland Security, arguing that its focus on disinformation campaigns strays from its primary mission. She emphasized the need for CISA to collaborate more effectively with other intelligence agencies to address threats, while also reflecting on her own controversial decisions regarding cybersecurity funding in South Dakota.…
Read More
Costa Rica refinery cyberattack was first deployment for new US response program, ambassador says
Summary: A significant ransomware attack on Costa Rica’s largest oil refinery tested the U.S. State Department’s new rapid response tool, FALCON, designed to assist allies in cybersecurity crises. The U.S. provided swift support, deploying a team to help restore systems and investigate the attack, attributed to the RansomHub group.…
Read More
US sanctions hacker and company allegedly behind Treasury and telecom breaches
Summary: The U.S. government has sanctioned China-based hackers and a cybersecurity firm linked to significant breaches of the Treasury Department and telecommunications companies. The sanctions target Yin Kecheng and Sichuan Juxinhe Network Technology, both associated with the Salt Typhoon cyber group, which has compromised sensitive data and systems.…
Read More
Jailing negligent management boards? EU’s aggressive financial sector regulation goes into force
Summary: The Digital Operational Resilience Act (DORA) has come into effect in the European Union, mandating financial entities and their third-party suppliers to report significant IT incidents to national regulators. This legislation aims to enhance cybersecurity practices and accountability within the financial sector, imposing strict penalties for noncompliance, including potential criminal liability for board members.…
Read More
Canadian IT company added to Moscow’s list of ‘undesirable’ organizations
Summary: Russian authorities have declared the Canadian IT company OpenText Corporation as an “undesirable” organization, marking it as the second Western cyber firm to receive this designation. The accusations include collaboration with U.S. law enforcement and providing software to the Pentagon, as well as aiding Ukrainian law enforcement against Russian military targets.…
Read More
Russian Star Blizzard hackers exploit WhatsApp accounts to spy on nonprofits aiding Ukraine
Summary: The Russian state-backed hacking group Star Blizzard has attempted to compromise the WhatsApp accounts of nonprofits supporting Ukraine using new phishing tactics. This campaign involved impersonating U.S. government officials to lure victims into a malicious WhatsApp group, allowing attackers to access and exfiltrate sensitive information.…
Read More
CISA warns of exploited Fortinet bugs as Microsoft issues its biggest Patch Tuesday in years
Summary: A zero-day vulnerability in FortiGate firewalls is actively being exploited by hackers, prompting urgent action from the federal government and cybersecurity firms. The Cybersecurity and Infrastructure Security Agency (CISA) has mandated that federal agencies patch this vulnerability by January 21, highlighting its critical nature. Additionally, concerns have been raised about an older vulnerability that has recently led to the leak of configurations for thousands of FortiGate devices.…
Read More
FTC updates closely watched children’s online privacy rule
Summary: The Federal Trade Commission (FTC) has announced updated online privacy protections for children, requiring parental opt-in consent for targeted advertising and limiting data retention. These changes aim to modernize the Children’s Online Privacy Protection rule (COPPA) for the first time in over a decade, addressing concerns about the monetization of children’s data.…
Read More
US issues sanctions against companies in Laos, China tied to North Korean IT worker scheme
Summary: The U.S. has imposed sanctions on two North Korean nationals and several companies in Laos and China for facilitating a scheme that deceived American firms into hiring North Korean IT workers, whose earnings fund the DPRK’s weapons programs. The Treasury Department highlighted the extensive network of North Korean IT workers operating globally, often using stolen identities to conceal their activities.…
Read More
Biotech firm settles class action lawsuit over ransomware attack for .5 million
Summary: Enzo Biochem, a large biotech company, has settled a class action lawsuit for $7.5 million following a ransomware attack that compromised the personal data of approximately 2.5 million individuals. The attack revealed sensitive information, including names and Social Security numbers, and highlighted significant cybersecurity vulnerabilities within the company.…
Read More
German defense and foreign ministries suspend activity on Elon Musk’s platform
Summary: Germany’s armed forces and ministries have suspended their accounts on Elon Musk’s platform, X, citing challenges in maintaining fact-based discussions. The defense ministry plans to use Meta’s WhatsApp for communications, while the foreign ministry will transition to Bluesky. This decision follows concerns over Musk’s endorsement of the far-right AfD party and his controversial remarks about German politicians.…
Read More
UK’s porn age checks to arrive in July, raising fears over security and privacy
Summary: The UK’s communications regulator Ofcom has mandated that online pornography sites must verify users’ ages by July to prevent minors from accessing adult content. Concerns have been raised by civil liberties groups about the potential cybersecurity risks associated with age verification methods. Non-compliance could lead to severe penalties, including fines and website blocking by internet service providers.…
Read More
Ransomware sanctions, software security among key points in new Biden executive order
Summary: President Joe Biden’s executive order focuses on enhancing federal cybersecurity, addressing cybercrime, and securing commercial software. It aims to make it more difficult and costly for foreign adversaries and ransomware criminals to execute cyberattacks against the U.S. The order outlines nine key initiatives to strengthen America’s digital infrastructure and improve the security of both government and private sector systems.…
Read More
OneBlood reports data breach to state regulators after ransomware attack
Summary: OneBlood, a nonprofit blood donation organization, suffered a ransomware attack that resulted in the theft of names and Social Security numbers. The incident, which was reported to regulators, forced the organization to operate at reduced capacity, impacting blood supply to hospitals across several states. OneBlood is offering victims credit monitoring services but has not disclosed the total number of individuals affected.…
Read More