cybercriminal – Page 2 – Experimental News Clipping Site

Krebs on Security: Feds Tie ‘Scattered Spider’ Duo to $115M in Ransoms

Sep 24, 2025

—

by

Source URL: https://krebsonsecurity.com/2025/09/feds-tie-scattered-spider-duo-to-115m-in-ransoms/ Source: Krebs on Security Title: Feds Tie ‘Scattered Spider’ Duo to $115M in Ransoms Feedly Summary: U.S. prosecutors last week levied criminal hacking charges against 19-year-old U.K. national Thalha Jubair for allegedly being a core member of Scattered Spider, a prolific cybercrime group blamed for extorting at least $115 million in ransom…

The Register: Cybercriminals pwn 850k+ Americans healthcare data

Sep 18, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/18/850k_americans_affected_by_medical/ Source: The Register Title: Cybercriminals pwn 850k+ Americans healthcare data Feedly Summary: Three US medical centers fess up to serious breaches Cybercriminals broke in and stole nearly a million Americans’ data in the space of a week, after three digital burglaries at healthcare providers.… AI Summary and Description: Yes Summary: The text…

The Register: Microsoft blocks bait for ‘fastest-growing’ 365 phish kit, seizes 338 domains

Sep 16, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/16/microsoft_cloudflare_shut_down_raccoono365/ Source: The Register Title: Microsoft blocks bait for ‘fastest-growing’ 365 phish kit, seizes 338 domains Feedly Summary: Redmond names alleged ringleader, claims 5K+ creds stolen and $100k pocketed Microsoft has seized 338 websites associated with RaccoonO365 and identified the leader of the phishing service – Joshua Ogundipe – as part of a…

Schneier on Security: A Cyberattack Victim Notification Framework

Sep 12, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.schneier.com/blog/archives/2025/09/a-cyberattack-victim-notification-framework.html Source: Schneier on Security Title: A Cyberattack Victim Notification Framework Feedly Summary: Interesting analysis: When cyber incidents occur, victims should be notified in a timely manner so they have the opportunity to assess and remediate any harm. However, providing notifications has proven a challenge across industry. When making notifications, companies often do…

The Register: Hijacker helper VoidProxy boosts Google, Microsoft accounts on demand

Sep 11, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/11/voidproxy_phishing_service/ Source: The Register Title: Hijacker helper VoidProxy boosts Google, Microsoft accounts on demand Feedly Summary: Okta uncovers new phishing-as-a-service operation with ‘multiple entities’ falling victim Multiple attackers using a new phishing service dubbed VoidProxy to target organizations’ Microsoft and Google accounts have successfully stolen users’ credentials, multi-factor authentication codes, and session tokens…

Krebs on Security: Bulletproof Host Stark Industries Evades EU Sanctions

Sep 11, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://krebsonsecurity.com/2025/09/bulletproof-host-stark-industries-evades-eu-sanctions/ Source: Krebs on Security Title: Bulletproof Host Stark Industries Evades EU Sanctions Feedly Summary: In May 2025, the European Union levied financial sanctions on the owners of Stark Industries Solutions Ltd., a bulletproof hosting provider that materialized two weeks before Russia invaded Ukraine and quickly became a top source of Kremlin-linked cyberattacks and…

The Register: Akira ransomware crims abusing trifecta of SonicWall security holes for extortion attacks

Sep 10, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/10/akira_ransomware_abusing_sonicwall/ Source: The Register Title: Akira ransomware crims abusing trifecta of SonicWall security holes for extortion attacks Feedly Summary: Patch, turn on MFA, and restrict access to trusted networks…or else Affiliates of the Akira ransomware gang are again exploiting a critical SonicWall vulnerability abused last summer, after a suspected zero-day flaw actually turned…

Unit 42: Data Is the New Diamond: Latest Moves by Hackers and Defenders

Sep 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://unit42.paloaltonetworks.com/data-is-the-new-diamond-latest-moves-by-hackers-and-defenders/ Source: Unit 42 Title: Data Is the New Diamond: Latest Moves by Hackers and Defenders Feedly Summary: Unit 42 delves into how cybercriminals are treating stolen data like digital diamonds amid rising attacks and evolving extortion tactics. The post Data Is the New Diamond: Latest Moves by Hackers and Defenders appeared first…

The Register: More packages poisoned in npm attack, but would-be crypto thieves left pocket change

Sep 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/09/09/npm_supply_chain_attack/ Source: The Register Title: More packages poisoned in npm attack, but would-be crypto thieves left pocket change Feedly Summary: Miscreants cost victims time rather than money During the two-hour window on Monday in which hijacked npm versions were available for download, malware-laced packages reached one in 10 cloud environments, according to Wiz…

Schneier on Security: Generative AI as a Cybercrime Assistant

Sep 4, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.schneier.com/blog/archives/2025/09/generative-ai-as-a-cybercrime-assistant.html Source: Schneier on Security Title: Generative AI as a Cybercrime Assistant Feedly Summary: Anthropic reports on a Claude user: We recently disrupted a sophisticated cybercriminal that used Claude Code to commit large-scale theft and extortion of personal data. The actor targeted at least 17 distinct organizations, including in healthcare, the emergency services,…

Tag: cybercriminal