Authored by Dexter Shin
Many government agencies provide their services online for the convenience of their citizens. Also, if this service could be provided through a mobile app, it would …
Authored by Dexter Shin
Many government agencies provide their services online for the convenience of their citizens. Also, if this service could be provided through a mobile app, it would …
Threat Actor: ShinyHunters | ShinyHunters Victim: Santander Bank | Santander Price: $2M Exfiltrated Data Type: Customer data, account numbers and balances, credit card numbers, HR employee lists, consumer citizenship information…
Threat Actor: Unknown | Unknown Victim: Banco de Crédito del Perú (BCP Peru Bank) | Banco de Crédito del Perú Price: Not specified Exfiltrated Data Type: Customer information (card type, …
Threat Actor: Akira Ransomware Group | Akira Ransomware Group Victims: – Excel Security Corp | Excel Security Corp – DreamWall | DreamWall – Faultless Brands | Faultless Brands – MagicLand …
Python remains a nice language for attackers and I keep finding interesting scripts that are usually not very well detected by antivirus solutions. The one I found has a VT …
Victim: MagicLand Country : IT Actor: akira Source: Discovered: 2024-05-30 13:18:22.831000 Published: 2024-05-30 13:18:22.755187 Description : Since its creation, MagicLand has recorded about 3 million unique visitors. In 2014, with …
Key Points
The cyber threat landscape has seen a significant increase in information-stealing (infostealer) malware activity, with a 30.5% rise in marketplace listings for “stealer logs” from Q3 to Q4…Threat Actor: Ransomware attackers | Ransomware attackers Victim: ABN Amro | ABN Amro Price: N/A Exfiltrated Data Type: Unknown
Additional Information :
The data breach occurred after third-party services provider…Summary: A threat actor is advertising a new ATM malware that claims to be capable of compromising 99% of devices in Europe and approximately 60% of ATMs worldwide, posing a …
Identifier: TRR240501.
SummaryEarlier in May, our security product spotted a malicious payload, which was tentatively delivered to a computer in Brazil, via an intricate infection chain involving Python scripts …
Threat Actor: Unknown | EU ATM Malware Victim: European Banks | European Banks Price: $30,000 per ATM Exfiltrated Data Type: Not specified
Additional Information:
The “EU ATM Malware” has a…Threat Actor: BlackMaskers Team | BlackMaskers Team Victim: Jordan, Israel, and the United Arab Emirates (UAE) | Jordan, Israel, United Arab Emirates (UAE) Price: Not specified Exfiltrated Data Type: Not …
Summary: A Morocco-based cybercriminal group known as Atlas Lion or Storm-0539 is targeting large retailers to fraudulently issue gift card codes to themselves, allowing them to generate their own money.…
Summary: This article discusses the decline of traditional phishing messages and the rise of more advanced social engineering-driven attacks, such as spear-phishing and business email compromise (BEC), and emphasizes the …
Summary: Malachi Mullings, a Georgia resident, has been sentenced to 10 years in prison for laundering $4.5 million obtained through scams against healthcare providers, private companies, and individuals.
Threat Actor: …
Published On : 2024-05-23
EXECUTIVE SUMMARYAt CYFIRMA, we are committed to offering up-to-date insights into prevalent threats and tactics employed by malicious actors who target organizations and individuals. The …
Threat Actor: Unknown | Unknown Victim: Al-Rajhi Bank | Al-Rajhi Bank Price: Not specified Exfiltrated Data Type: Credit card information, sellers’ and buyers’ information, personal information, hidden product samples
Additional …
Summary: CyberArk, a cybersecurity company, is acquiring Venafi, a specialist in machine identity, for $1.54 billion in order to expand its capabilities in managing machine identities in the cloud.
Threat …
*replace .bawang with .onion (use TOR to access it)*source: https://www.breachsense.com/
Darknet Markets NameURLStatus0-DAYhttps://0-day.shopONLINEStealer credential leakshttps://whiteintel.ioONLINEDarth maul shophttps://1977.ws/ONLINE2EASYhttps://2easy.ccONLINEAlphaBay (Dark i2p)https://tnaefzkcnhryeusi7hdpqujqiqmnbtah3dmjcg3gvezohunjuxbq.b32.i2pONLINEAlphaBay (Dark Tor)http://alphabay522szl32u4ci5e3iokdsyth56ei7rwngr2wm7i5jo54j2eid.bawangONLINEArchetyphttp://4pt4axjgzmm4ibmxplfiuvopxzf775e5bqseyllafcecryfthdupjwyd.bawangONLINEAREShttp://sn2sfdqay6cxztroslaxa36covrhoowe6a5xug6wlm6ek7nmeiujgvad.bawangONLINEASEANhttp://asap2u4pvplnkzl7ecle45wajojnftja45wvovl3jrvhangeyq67ziid.bawangONLINEBIDEN CASH (Dark Tor)http://bidenjxwb7khlh3djrmi6zkkmggiuoh6cnxll7my7uk25ohe27pcfryd.bawangONLINEBIDEN CASH (free CVV – dark web)http://l5wy5mo2bqv4pm5ozschtmqool2uwju4emahlqzfxlwsdgxtppjcblad.bawangONLINEBIDEN…Indonesia / Employment Social Security / BPJS Ketenagakerjaan / 65 MillionBPJS Ketenagakerjaan is a government organization that provide worker welfare services. The Employment …
Summary: This article discusses a cyber attack on Blackbaud that affected 13,000 clients and 1.5 billion of their constituents.
Threat Actor: Unknown | Unknown Victim: Blackbaud | Blackbaud
Key Point …
Summary: Two Chinese nationals have been arrested and indicted for their alleged role in a multimillion-dollar investment fraud scheme known as “pig butchering.”
Threat Actor: Daren Li and Yicheng Zhang…
Summary: This content discusses a security flaw discovered by university students that allows anyone to avoid paying for laundry provided by over a million internet-connected laundry machines worldwide.
Threat Actor: …
No one is safe from scams. In fact, scams targeting corporations and organizations employ meticulously social-engineered attack scenarios. Unlike smishing targeting individuals or online shopping scams, such attacks design tailored …
Victim: equinoxinc.org Country : US Actor: lockbit3 Source: http://lockbit3olp7oetlc4tl5zydnoluphh7fvdt5oa6arcp2757r7xkutid.onion/post/sgZQtxDw893E4XmT6648dbe488cc6 Discovered: 2024-05-18 18:32:04.542495 Published: 2024-05-18 16:54:00.000000 Description : Equinox is a dynamic human services organization with deep roots in New York’s …
Summary: This article discusses the lack of security in open-source AI applications and the potential risks they pose to cybersecurity.
Threat Actor: N/A
Victim: N/A
Key Point:
Open-source AI applications…Threat Actor: KillSec | KillSec Victim: Agrani Bank PLC | Agrani Bank PLC Price: €5000 Exfiltrated Data Type: Confidential files from the bank’s email server
Additional Information:
Agrani Bank is…In the Team UCC’s telegram channel monitored by SOCRadar, the DDoS attack announcement is detected for Bank of India Indonesia.
Bank of Indonesia Taken Down By Team UCC
✅ Site …
Threat Actor: NoName057(16) | NoName057(16) Victim: VÚB banka, National Council of Slovakia | VÚB banka, National Council of Slovakia Price: Not specified Exfiltrated Data Type: Not specified
Additional Information:
NoName057(16)…Victim: agranibank.org Country : BD Actor: killsec Source: http://kill432ltnkqvaqntbalnsgojqqs2wz4lhnamrqjg66tq6fuvcztilyd.onion/post/NveME8GXePJWkWrK62qpN7jU4.html Discovered: 2024-05-17 02:36:58.121428 Published: 2024-05-17 02:36:58.121408 Description : Agrani Bank PLC is a state-owned commercial bank of Bangladesh established in 1972. …
Since March 2024, IBM X-Force has been tracking several large-scale phishing campaigns distributing the Grandoreiro banking trojan, which is likely operated as a Malware-as-a-Service (MaaS). Analysis of the malware revealed …
Summary: Palo Alto Networks is acquiring cloud security software assets from IBM as part of a broader partnership, which will provide Palo Alto with access to more consultants and a …
Threat Actor: Unknown | Unknown Victim: Santander | Santander Price: Not specified Exfiltrated Data Type: Customer information, employee information
Additional Information :
The data breach affected customers in Chile, Spain,…Summary: This post examines the activities of Dmitry Yuryevich Khoroshev, the alleged leader of the LockBit ransomware group, who has been charged by the United States, United Kingdom, and Australia …
Summary: The content discusses the rise of insider threats, specifically in the context of work-from-home employees and increasing financial pressures.
Threat Actor: Insider Threats | Insider Threats Victim: Various organizations …
Summary: This content discusses a phone scam where cybercriminals pose as the PayPal security team and trick victims into giving them access to their online accounts.
Threat Actor: Cybercriminals | …
Threat Actor: Embargo extortion group | Embargo extortion group Victim: Firstmac Limited | Firstmac Limited Price: Not mentioned in the article Exfiltrated Data Type: Personal information (name, contact information, date …
Affected Platforms: Microsoft WindowsImpacted Users: Microsoft WindowsImpact: The stolen information can be used for future attackSeverity Level: High
Many game makers allow users to alter a game’s appearance or behavior …
Threat Actor: Unknown | Unknown Victim: UK Ministry of Defense | UK Ministry of Defense Price: Not specified Exfiltrated Data Type: Personal data (names, bank details, addresses) of armed forces …
Summary: Finland’s Transport and Communications Agency (Traficom) has warned about an ongoing Android malware campaign that targets online bank accounts. Scammers send SMS messages instructing recipients to call a number …
Threat Actor: Unknown | Unknown Victim: China bank customers | China bank customers Price: $12,000 for the entire set of 2.3 million records Exfiltrated Data Type: Mobile numbers, full names, …
Threat Actor: Anonymous Arabia | Anonymous Arabia Victim: Alrajhi Bank | Alrajhi Bank Price: Not specified Exfiltrated Data Type: Not specified
Additional Information:
Anonymous Arabia launched a Distributed Denial of…Summary: Law enforcement agencies from multiple countries have shut down 12 locations responsible for scam calls, arresting 21 individuals and seizing assets totaling €1 million ($1.08 million).
Threat Actor: Criminal …
Threat Actor: Unknown | Unknown Victim: Spanish individuals, municipalities, private enterprises, and BMW BANK | Spanish individuals, municipalities, private enterprises, and BMW BANK Price: Not specified Exfiltrated Data Type: Bank …
Threat Actor: The Five Families | The Five Families Victim: UAE Government | UAE Government Price: Not specified Exfiltrated Data Type: Employee details (phone numbers, emails, names)
Additional Information:
The…Date Reported: 2024-04-15 Country: Germany Victim: Katholische Jugendfürsorge der Diözese Augsburg (KJF) | kjf-augsburg.de Additional Information:
The Katholische Jugendfürsorge der Diözese Augsburg (KJF) fell victim to a professional cyber attack…Threat Actor: Unknown | Unknown Victim: Spanish bank EvoBanco | EvoBanco Price: Not mentioned in the article Exfiltrated Data Type: User records, including sensitive information such as phone numbers and …
Threat Actor: netnsher | netnsher Victim: Nota by M&T Bank and TTEC | Nota by M&T Bank, TTEC Price: Not mentioned Exfiltrated Data Type: Access tokens, crucial files, account registrations, …
Summary: The Godfather mobile banking Trojan, which targets hundreds of banking apps, has become one of the most widespread malware-as-a-service offerings in cybercrime, with over 1,000 samples circulating worldwide.
Threat …
Summary: A phishing campaign targeting Nespresso’s website has been able to evade detection by using malicious nested or hidden links, taking advantage of security tools that fail to detect them.…