Cyber Crime Archives - Page 8 of 603

Pierluigi Paganini June 09, 2025

BadBox 2.0 botnet infects millions of IoT devices worldwide, FBI warns

BadBox 2.0 malware has infected millions of IoT devices globally, creating a botnet used for cyber criminal activities, the FBI warns. The FBI published a Public Service Announcement (PSA) to warn that cybercriminals are using the BADBOX 2.0 botnet to exploit IoT devices on home networks, like streaming devices, projectors, and infotainment systems, mostly made […]

Pierluigi Paganini June 08, 2025

Over 950K weekly downloads at risk in ongoing supply chain attack on Gluestack packages

A supply chain attack hit NPM, threat actors compromised 16 popular Gluestack packages, affecting 950K+ weekly downloads. Researchers from Aikido Security discovered a new supply chain attack targeted NPM, compromising 16 popular Gluestack ‘react-native-aria’ packages with over 950K weekly downloads. The attack began on June 6 at 4:33 PM EST with a malicious update to […]

Pierluigi Paganini June 06, 2025

Attackers exploit Fortinet flaws to deploy Qilin ransomware

Qilin ransomware now exploits Fortinet vulnerabilities to achieve remote code execution on impacted devices. Threat intelligence firm PRODAFT warned that Qilin ransomware (aka Phantom Mantis) group targeted multiple organizations between May and June 2025 by exploiting multiple FortiGate vulnerabilities, including CVE-2024-21762, and CVE-2024-55591. “Phantom Mantis recently launched a coordinated intrusion campaign targeting multiple organizations between […]

Pierluigi Paganini June 06, 2025

U.S. Offers $10M bounty for info on RedLine malware creator and state hackers

The U.S. offers up to $10M for info on state hackers linked to RedLine malware and its creator, Maxim Rudometov, tied to attacks on U.S. infrastructure. The U.S. Department of State offers a reward of up to $10 million for information nation-state actors linked to the RedLine infostealer and its alleged author, Russian national Maxim […]

Pierluigi Paganini June 06, 2025

Play ransomware group hit 900 organizations since 2022

A joint advisory from the US and Australian authorities states that Play ransomware has hit approximately 900 organizations over the past three years. A joint advisory from the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) states that Play ransomware has hit […]

Pierluigi Paganini June 05, 2025

New versions of Chaos RAT target Windows and Linux systems

Acronis researchers reported that new Chaos RAT variants were employed in 2025 attacks against Linux and Windows systems. Acronis TRU researchers discovered new Chaos RAT variants targeting Linux and Windows in recent attacks. Originally seen in 2022, Chaos RAT evolved in 2024, with fresh samples emerging in 2025. TRU also discovered a critical flaw in […]

Pierluigi Paganini June 05, 2025

Law enforcement seized the carding marketplace BidenCash

U.S. and Dutch authorities took down 145 domains tied to the BidenCash cybercrime marketplace in a coordinated law enforcement operation. The US DoJ announced the seizure of approximately 145 darknet and clear web domains, and cryptocurrency funds associated with the BidenCash marketplace. “The U.S. Attorney’s Office for the Eastern District of Virginia announced today the […]

Pierluigi Paganini June 04, 2025

Cartier disclosed a data breach following a cyber attack

Luxury-goods conglomerate Cartier disclosed a data breach that exposed customer information after a cyberattack. Cartier has disclosed a data breach following a cyberattack that compromised its systems, exposing customers’ personal information. The incident comes amid a wave of cyberattacks targeting luxury fashion brands. The luxury firm states that the threat actors gained access to “limited […]

Pierluigi Paganini June 03, 2025

Android banking trojan Crocodilus rapidly evolves and goes global

A new Android banking trojan called Crocodilus is being used in a growing number of campaigns targeting users in Europe and South America. Crocodilus is a recently discovered Android banking trojan that is quickly gaining ground. What began as small test campaigns has now grown into full-blown attacks targeting users across Europe and South America. […]

Pierluigi Paganini June 03, 2025

Cryptojacking campaign relies on DevOps tools

A cryptojacking campaign is targeting exposed DevOps servers like Docker and Gitea to secretly mine cryptocurrency. Wiz researchers uncovered a cryptojacking campaign, tracked as JINX-0132, targeting exposed DevOps applications like Nomad, Consul, Docker, Gitea to secretly mine cryptocurrency. Threat actors behind the campaign are exploiting a wide range of known misconfigurations and vulnerabilities to deliver the miner. […]

Cyber Crime

BadBox 2.0 botnet infects millions of IoT devices worldwide, FBI warns

Over 950K weekly downloads at risk in ongoing supply chain attack on Gluestack packages

Attackers exploit Fortinet flaws to deploy Qilin ransomware

U.S. Offers $10M bounty for info on RedLine malware creator and state hackers

Play ransomware group hit 900 organizations since 2022

New versions of Chaos RAT target Windows and Linux systems

Law enforcement seized the carding marketplace BidenCash

Cartier disclosed a data breach following a cyber attack

Android banking trojan Crocodilus rapidly evolves and goes global

Cryptojacking campaign relies on DevOps tools

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Zero Day Quest returns: Microsoft ups the stakes with $5M bug bounty

Cisco disclosed a CRM data breach via vishing attack

Exposed Without a Breach: The Cost of Data Blindness

SonicWall investigates possible zero-day amid Akira ransomware surge

Chaining NVIDIA's Triton Server flaws exposes AI systems to remote takeover

QUICK LINKS

Cyber Crime

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!