Cyber Crime Archives - Page 309 of 603

Pierluigi Paganini June 12, 2019

FIN8 Hacking Group is back with an improved version of the ShellTea Backdoor

After two years of silence, FIN8 group is back and carried out a new campaign against the hotel-entertainment industry employing the ShellTea/PunchBuggy backdoor. Two years later after the last report, FIN8 group is back and carried out a new campaign against the hotel-entertainment industry using an improved version of the ShellTea/PunchBuggy backdoor. The last time […]

Pierluigi Paganini June 11, 2019

How Ursnif Evolves to Keep Threatening Italy

For months the Italian users have been targeted by waves of malspam delivering infamous Ursnif variants, Yoroi-Cybaze ZLab detailed its evolution. Introduction For months the Italian users have been targeted by waves of malspam delivering infamous Ursnif variants. Yoroi-Cybaze ZLab closely observed these campaigns and analyzed them to track the evolution of the techniques and […]

Pierluigi Paganini June 11, 2019

CVE-2019-2725 Oracle WebLogic flaw exploited in cryptojacking campaign

The CVE-2019-2725 vulnerability in Oracle WebLogic recently, addressed by the company, is being exploited in cryptojacking attacks, Trend Micro reports. Experts at Trend Micro reported that the recently patched CVE-2019-2725 vulnerability in Oracle WebLogic is being exploited in cryptojacking attacks. The flaw is a deserialization remote command execution zero-day vulnerability that affects the Oracle WebLogic wls9_async and wls–wsat components. The […]

Pierluigi Paganini June 10, 2019

CIA sextortion campaign, analysis of a well-organized scam

Crooks are posing as CIA agents in a sextortion campaign, they are sending emails to inform the victims of an investigation into online pedophilia rings. Crooks are posing as CIA agents in a new sextortion campaign, they are sending emails to inform potential victims of an ongoing investigation into online pedophilia rings. Fraudsters are offering […]

Pierluigi Paganini June 10, 2019

Retro video game website Emuparadise suffered a data breach

Retro video game website Emuparadise revealed to have suffered a data breach that exposed 1.1 Million accounts back in April 2018. Emuparadise is a website that offers tons of roms, isos and retro video games, users can download and play them with an emulator or play them with the web browser. The security breach occurred in […]

Pierluigi Paganini June 10, 2019

Spain extradites 94 Taiwanese to China phone and online fraud charges

Spanish authorities extradited 94 Taiwanese to China to face telephone and online fraud charges, Taiwan’s Foreign Ministry expressed a strong regret. Spain extradited 94 Taiwanese to China to face telephone and online fraud charges, the indicted were transferred via plane by officials. “The suspects arrived Friday morning at Beijing airport on a chartered flight. Footage […]

Pierluigi Paganini June 10, 2019

Microsoft warns of spam campaign exploiting CVE-2017-11882 flaw

Microsoft is warning of an active spam campaign targeting European languages that leverages an exploit to infect simply by opening the attachment. Microsoft issued a warning on Friday about an ongoing spam campaign that is targeting European users. Spam messages are carrying weaponized RTF documents that could infect users with malware without any user interaction, […]

Pierluigi Paganini June 09, 2019

Security Affairs newsletter Round 217 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition Paper Copy Once again thank you! ESET analyzes Turla APTs usage of weaponized PowerShell Leicester City Football Club disclosed a card breach ProtonMail denies that it spies on users for government agencies Expert shows how […]

Pierluigi Paganini June 07, 2019

New GoldBrute Botnet is attempting to infect 1.5 Million RDP Servers

A new botnet tracked as GoldBrute is scanning the web for Windows machines with Remote Desktop Protocol (RDP) connection enabled. A new botnet tracked as GoldBrute has appeared in the threat landscape, it is scanning the web for Windows machines with Remote Desktop Protocol (RDP) connection enabled. The botnet is currently targeting over 1.5 million […]

Pierluigi Paganini June 05, 2019

BlackSquid malware uses multiple exploits to drop cryptocurrency miners

A new piece of malware appeared in the threat landscape, dubbed BlackSquid it targets web servers with several exploits to deliver cryptocurrency miners. Security experts at Trend Micro have discovered a new Monero cryptomining miner, dubbed BlackSquid, that is targeting web servers, network drives, and removable drives. The new piece of malware leverages many exploits […]

Cyber Crime

FIN8 Hacking Group is back with an improved version of the ShellTea Backdoor

How Ursnif Evolves to Keep Threatening Italy

CVE-2019-2725 Oracle WebLogic flaw exploited in cryptojacking campaign

CIA sextortion campaign, analysis of a well-organized scam

Retro video game website Emuparadise suffered a data breach

Spain extradites 94 Taiwanese to China phone and online fraud charges

Microsoft warns of spam campaign exploiting CVE-2017-11882 flaw

Security Affairs newsletter Round 217 – News of the week

New GoldBrute Botnet is attempting to infect 1.5 Million RDP Servers

BlackSquid malware uses multiple exploits to drop cryptocurrency miners

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Charon Ransomware targets Middle East with APT attack methods

Hackers leak 2.8M sensitive records from Allianz Life in Salesforce data breach

SAP fixed 26 flaws in August 2025 Update, including 4 Critical

August 2025 Patch Tuesday fixes a Windows Kerberos Zero-Day

Dutch NCSC: Citrix NetScaler zero-day breaches critical orgs

QUICK LINKS

Cyber Crime

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!