Stay Ahead of Cyber Threats – Daily Security Insights, Powered by AI
Threat Actor: GhostR | GhostR Victim: World-Check | World-Check Price: Not mentioned Exfiltrated Data Type: Confidential database containing 5.3 million records
Additional Information:
World-Check is a global database used by organizations for assessing potential risks associated with individuals and entities. The database is owned by LSEG (London Stock Exchange Group).…Summary: Richard Horne has been announced as the next CEO of Britain’s National Cyber Security Centre (NCSC), becoming the agency’s third permanent chief executive and the first person with formal academic training in cybersecurity to lead the NCSC.
Threat Actor: N/A Victim: N/A
Key Point:
Richard Horne, with a PhD in mathematics and cryptography, will become the next CEO of Britain’s NCSC, bringing his experience from PwC UK’s cybersecurity practice and Barclays Bank.…Curated bookmark list categorized by area and event monitoring, person of interest search, corporate profiling, mapping, AI, intelligence analysis, reporting tools, collective tools, cryptocurrency, country specific, verification and fact-checking.
They are broken down into appropriate categories such as:
area and event monitoringperson of interest searchcorporate profilingmappingartificial intelligenceintelligence analysisreporting toolscollective toolscryptocurrencycountry specificverification and fact-checking.…In early 2024, Group-IB’s Threat Intelligence team observed a surge in phishing URLs targeting INTERAC, a Canadian payment service. Subsequently, a client operating in Canada reported an uptick in phishing attempts against their customers and shared a suspicious URL, lab-host[.]ru, prompting an investigation.
This inquiry unveiled a connection between the shared URL and INTERAC phishing pages, all originating from the LabHost Phishing-as-a-Service (PhaaS) platform.…
Victim: bankwithunited.com Country : Unknown Actor: dispossessor Source: https://dispossessor.com/blogs/154 Discovered: 2024-04-19 11:53:01.851082 Description :
Description: n/abank security, cyber attack, online fraud…
Many people make banking transactions online now. And since mobile devices are one of the most popular and convenient ways to shop and make payments, criminals are naturally drawn to this. A current example of a malware that specifically targets online banking shows how easy it is to fall for malware.…
Summary: As part of an international operation called PhishOFF and Nebulae, 37 individuals have been arrested in connection with the cybercrime service LabHost, which was used to steal personal credentials through phishing attacks targeting banks and high-profile organizations.
Threat Actor: LabHost | LabHost Victim: Multiple victims worldwide
Key Point :
LabHost, one of the largest Phishing-as-a-Service (PhaaS) providers, offered phishing pages targeting banks, high-profile organizations, and service providers primarily in Canada, the U.S.,…On April 18, 2024, the UK’s Metropolitan Police Service and others conducted an operation that succeeded in taking down the Phishing-as-a-Service provider LabHost.
LabHost takedownOn Thursday, April 18, 2024, the UK’s Metropolitan Police Service, along with fellow UK and international law enforcement, as well as several trusted private industry partners, conducted an operation that succeeded in taking down the Phishing-as-a-Service (PhaaS) provider LabHost.…
Summary: Two individuals have been arrested in Australia and the U.S. for their involvement in the development and distribution of a remote access trojan called Hive RAT. The malware allowed the attackers to gain control over victim computers and access their private communications and login credentials.…
Summary: This article discusses the threat posed by artificial intelligence (AI) tools that can compromise voice password systems used by many banks, potentially enabling fraudsters to gain unauthorized access to accounts.
Threat Actor: OpenAI | OpenAI Victim: Banks | banks
Key Point :
Voice authentication is a popular method used by banks to verify customers, but AI tools like OpenAI’s Voice Engine can generate natural-sounding speech that closely resembles the original speaker, compromising the security of voice-based authentication systems.…Summary: European police have arrested nine individuals and seized millions of euros in an operation targeting the investment fraud scheme known as “JuicyFields,” which operated as a Ponzi scheme and targeted over 550,000 Europeans.
Threat Actor: JuicyFields | JuicyFields Victim: Over 550,000 Europeans | JuicyFields investors
Key Point :
European police have arrested nine individuals and seized millions of euros in an operation targeting the investment fraud scheme known as “JuicyFields.”…Summary: The International Monetary Fund (IMF) has published a report stating that financial services firms have experienced $12 billion in losses due to cyber attacks over the past two decades, leading to a call for greater cross-border cooperation to protect the global financial system.
Threat Actor: Cybercriminals | Cybercriminals Victim: Financial services firms | Financial services firms
Key Point :
The IMF report reveals that financial services firms have suffered $12 billion in losses from cyber attacks, with the number of incidents more than doubling since the pandemic.…Anyone who has had to deal with HTML emails on a technical level has probably reached the point where they wanted to quit their job or just set fire to all the mail clients due to their inconsistent implementations. But HTML emails are not just a source of frustration, they can also be a serious security risk.…
A hacker has confessed to orchestrating his own death to evade over $100,000 in child support payments to his ex-wife. Jesse E. Kipf pleaded guilty on March 29, 2024, to aggravated identity theft and computer fraud charges.…
Summary: A recent research study has revealed the activities of a Romanian cyber threat group known as RUBYCARP, which engages in cryptocurrency mining, phishing, and the development and sale of cyber weapons.
Threat Actor: RUBYCARP | RUBYCARP Victim: Various victims, including Danish users | RUBYCARP victims
Key Points:
RUBYCARP deploys multiple cryptocurrency miners simultaneously to reduce attack time and detection likelihood.…Adversaries don’t work 9-5 and neither do we. At eSentire, our 24/7 SOCs are staffed with Elite Threat Hunters and Cyber Analysts who hunt, investigate, contain and respond to threats within minutes.
We have discovered some of the most dangerous threats and nation state attacks in our space – including the Kaseya MSP breach and the more_eggs malware.…
Threat Actor: Unknown | Unknown Victim: Volaris and Invex Mexico | Volaris and Invex Mexico Price: Not specified Exfiltrated Data Type: Credit card details (numbers, dates, CVVs, and bank transactions)
Additional Information:
The vulnerability involves obtaining the encryption password of the Invex Control app. Once the password is obtained, all requests can be made without token verification.…Summary: The U.S. Department of Health and Human Services (HHS) has warned that hackers are using social engineering tactics to target IT help desks in the Healthcare and Public Health sector, allowing them to gain access to organizations’ systems and carry out business email compromise attacks.…
The Sysdig Threat Research Team (Sysdig TRT) recently discovered a long-running botnet operated by a Romanian threat actor group, which we are calling RUBYCARP. Evidence suggests that this threat actor has been active for at least 10 years. Its primary method of operation leverages a botnet deployed using a variety of public exploits and brute force attacks.…
Summary: This article discusses the escalating threat of a fake e-shop campaign that targets banking security across various regions. The campaign has expanded from targeting Malaysian banks to financial institutions in Vietnam and Myanmar, using sophisticated tactics and Android malware with screen-sharing capabilities.
Threat Actor: Unknown | fake e-shop campaign Victim: Financial institutions in Malaysia, Vietnam, and Myanmar | Malaysian banks, Vietnam, Myanmar
Key Point :
A fake e-shop campaign has expanded its reach from Malaysian banks to financial institutions in Vietnam and Myanmar.…