CRYPTO Archives - Page 3 of 48 - Cybersecurity News Everyday

Microsoft: New RAT malware used for crypto theft, reconnaissance

Summary: Microsoft has detected a new remote access trojan (RAT) named StilachiRAT that utilizes advanced techniques for avoiding detection and extracting sensitive information. Although its distribution is currently limited, Microsoft has released indicators of compromise and mitigation strategies to aid network defenders in identifying the threat.…

Threat Research

Major Cyber Attacks in Review: February 2025

March 17, 2025 SocRadar

In February 2025, multiple significant cyber incidents revealed ongoing risks across various industries worldwide. Notable attacks included the Qilin ransomware incident at Lee Enterprises, which disrupted media distribution, and a .5 billion cryptocurrency theft attributed to North Korea’s Lazarus Group. Breaches at DISA Global Solutions, Orange, and LANIT highlighted severe vulnerabilities in finance, telecom, healthcare, media, and government sectors.…

Cyber Security News

THN Weekly Recap: Router Hacks, PyPI Attacks, New Ransomware Decryptor, and More

March 17, 2025 CybersecurityNews

Summary: This week’s cybersecurity report highlights the evolving landscape of cyber threats, including advanced techniques used by threat groups and rising supply chain vulnerabilities. Law enforcement efforts against cybercriminal networks show promise, while new exploits and vulnerabilities demand prompt attention from organizations. The report includes notable incidents, emerging attack methods, and critical vulnerabilities that security teams should prioritize.…

Interesting Stuff

How to Execute the Bybit .5B ETH Heist – An Attack Path for Offensive Security Operations in AWS

March 17, 2025March 17, 2025 Infosecwriteups

On February 21st, a significant cryptocurrency theft occurred involving Bybit, where hackers from the Lazarus Group infiltrated a supplier’s system to redirect 401,000 Ethereum coins worth approximately .5 billion. The attack exemplifies a supply chain vulnerability that permitted hackers to exploit AWS services while leaving the Bybit system itself secure.…

Interesting Stuff

Decrypting Zoom Team Chat: Forensic Analysis of Encrypted Chat Databases

March 17, 2025March 17, 2025 Infosecwriteups

This article delves into the complexities of analyzing Zoom Team Chat artifacts within a digital forensic framework, highlighting the challenges posed by data encryption and the necessity for both local and server-side keys. The forensic analysis focuses on user activity tracking through various applications, culminating in the extraction of crucial communication data from Zoom Team Chat.…

Cyber Security News

Coinbase phishing email tricks users with fake wallet migration

March 15, 2025 BleepingComputer

Summary: A deceptive phishing campaign targeting Coinbase users tricks recipients into creating a new wallet by providing a recovery phrase controlled by attackers. The emails falsely present a mandatory wallet migration and bypass email security checks, making them seem legitimate. Coinbase warns users to be vigilant and never use recovery phrases provided by emails.…

Cyber Security News

Ramadan Scam Alert: Crypto Traps, Fake Giveaways Explode

March 14, 2025 CybersecurityNews

Summary: A report from CloudSEK reveals a surge in scams exploiting the charitable spirit of Ramadan, focusing on cryptocurrency fraud, fake giveaways, and e-commerce scams. Cybercriminals are leveraging the religious observance to deceive individuals and organizations, using sophisticated tactics to gain access to crypto wallets and financial information.…

Interesting Stuff

Mobile Phone Networks, RFID and TETRA: The Weakest Links?

March 13, 2025March 13, 2025 iocOne

The paper discusses vulnerabilities in various encryption standards used in telecommunications, particularly focusing on KASUMI and A5 encryption methods. Researchers found that these systems could be cracked in remarkably short periods, highlighting the need for stronger encryption practices. The use of weak keys has made many systems susceptible to attacks.…

Threat Research

HellCat Ransomware: Exposing the TTPs of a Rising Ransomware Threat in 2025

March 13, 2025 Picussecurity

HellCat Ransomware is a significant cyber extortion group that emerged in 2024, using advanced phishing techniques and exploiting vulnerabilities to target organizations. Their operations focus on data exfiltration and aggressive ransom demands, often collaborating with the Morpheus group. This article analyzes their tactics, techniques, and procedures to better understand their threat.…

Threat Research

Investigating Scam Crypto Investment Platforms Using Pyramid Schemes to Defraud Victims

March 13, 2025 Unit42

Unit 42 researchers have uncovered a widespread campaign distributing fraudulent cryptocurrency investment platforms through websites and mobile applications. The operation employs deceptive practices, impersonating well-known brands to lure victims, particularly in East Africa and Asia. By leveraging multi-level affiliate programs and unrealistic promises of high returns, the campaign closely resembles Ponzi schemes.…

Threat Research

Ramadan Scams on the Rise: Fake Giveaways, Crypto Traps & Fraudulent Donations | CloudSEK

March 13, 2025 CloudSek

This report highlights the rise of Ramadan-related cyber scams, particularly targeting charitable contributions and crypto investments. Cybercriminals are exploiting the goodwill associated with Ramadan to spread fraudulent schemes, often using social engineering tactics to deceive victims. Understanding these scams is essential for safeguarding against potential losses.…

Interesting Stuff

Redelegate – VulnLab | ForceChangePassword, GenericAll, and Constrained Delegation

March 13, 2025March 13, 2025 Infosecwriteups

In this article, the author, known as Maverick, provides a detailed walkthrough of exploiting an Active Directory machine, showcasing various techniques such as DACL abuse and constrained delegation. Maverick employs tools like Nmap to identify vulnerabilities and FTP to download sensitive files, ultimately leading to privilege escalation through clever password management and attack vectors.…

0Trash

Beware! Hacker Group Lazarus Deploys Malware Packages on npm Platform; SolarWinds Helpdesk Vulnerability Exposed: Attackers Can Decrypt Sensitive Passwords – Security Bull

March 13, 2025March 13, 2025 iocOne

A recent security report highlights multiple cyber threats, including the discovery of six malicious npm packages linked to the Lazarus hacker group, which are designed to steal sensitive credentials and deploy malware. Additionally, a serious vulnerability in SolarWinds’ web help desk has been uncovered, allowing attackers to decrypt sensitive credentials.…

Cyber Security News

Garantex crypto exchange admin arrested while on vacation

March 13, 2025 BleepingComputer

Summary: Indian authorities arrested Aleksej Besciokov, co-founder of the Russian Garantex crypto-exchange, under extradition law while he was on vacation in Varkala. Besciokov and his co-founder face charges in the U.S. for facilitating money laundering and other criminal activities through their exchange. Garantex has been implicated in significant illegal financial activities, leading to its domains seizure and the freezing of over million in funds.…

Cyber Security News

Fake Binance Wallet Email Promises TRUMP Coin, Installs Malware

March 12, 2025 Cyware

Summary: A new email scam impersonating cryptocurrency exchange Binance is deceiving users into downloading malware disguised as a desktop app claiming to provide access to “TRUMP coin.” Cybersecurity experts warn that this scam installs a remote access tool (RAT) called ConnectWise, allowing attackers to take control of victims’ computers almost immediately.…

Cyber Security News

North Korean Lazarus hackers infect hundreds via npm packages

March 12, 2025 BleepingComputer

Summary: Six malicious npm packages linked to the North Korean hacking group Lazarus have been discovered, designed to steal credentials and extract sensitive information. These packages, which have been downloaded 330 times, employ typosquatting tactics to mislead developers into installing them. Their malicious capabilities include the installation of backdoors and targeted cryptocurrency wallet thefts.…

Threat Research

CVE-2024-28989: Weak Encryption Key Management in Solar Winds Web Help Desk

March 11, 2025 Netspi

The NetSPI red team discovered a vulnerability in SolarWinds’ Web Help Desk software due to predictable encryption keys used to protect sensitive data, allowing attackers to easily decrypt stored passwords. SolarWinds has issued a patch and users are advised to upgrade and restrict access to backup files.…

0Trash

US-CERT Vulnerability Summary for the Week of March 3, 2025 – RedPacket Security

March 11, 2025March 13, 2025 iocOne

CISA has issued a Vulnerability Bulletin summarizing new security vulnerabilities from the past week. The vulnerabilities are categorized based on severity and may not have assigned CVSS scores yet. Key issues include unauthenticated remote code execution, SQL injection, and privilege escalation vulnerabilities affecting various software and systems.…

Cyber Security News

Trump Coins Used as Lure in Malware Campaign

March 11, 2025 CybersecurityNews

Summary: An email campaign spoofing Binance offers ‘up to 2000’ free TRUMP Coins to entice victims into downloading a malicious program, ConnectWise RAT, which enables attackers to remotely control their computers. The emails, which accurately incorporate Binance branding, aim to build trust through various safety warnings related to cryptocurrencies.…

Cyber Attack

THN Weekly Recap: New Attacks, Old Tricks, Bigger Impact

March 10, 2025 LeakNews

Summary: The evolving landscape of cyber threats raises critical concerns around cybersecurity resilience, particularly as state-sponsored groups and new ransomware tactics emerge. Notable events this week include charges against Chinese nationals for hacking and the dismantling of Garantex, a cryptocurrency exchange linked to money laundering. This edition explores the complexities of modern cyber threats and ongoing countermeasures by global law enforcement.…

Tag: CRYPTO