15 May 2020

Law firm hackers double ransom and claim to have material on President Trump

The cybercrime group REvil has doubled the extortion ransom against compromised law firm Grubman, Shire, Meiselas and Sacks.  The law firm represents clients such as Lady Gaga, Drake, Elton John, Madonna, Robert De Niro, LeBron James, The Weeknd, and Priyanka Chopra. Despite the fact that President Trump was not a

Read More
31 Oct 2019

Hackers who extorted Uber and LinkedIn plead guilty

In 2016, one American citizen and one Canadian national teamed up to compromise the systems of Uber and LinkedIn in order to steal user information, which they subsequently used in order to extort the two companies, the two admitted in court this week. The threat actors used a custom tool

Read More
25 Oct 2019

A DDoS gang is extorting businesses posing as Russian government hackers

Threat actors are impersonating the notorious state-backed Russian hacking group Fancy Bear (aka Sofacy, APT28 and Sednit) as part of a distributed denial-of-service (DDoS) extortion campaign targeting organizations in the financial sector. According to Daniel Smith of Radware, the threat actors launch “large scale, multi-vector demo DDoS attacks” against a

Read More
05 Aug 2019

Ransom Note Replaces 2.1M Customer Records on Open MongoDB

Threat actors are holding 1.2 million sensitive files belonging to Mexican bookseller Librería Porrúa for ransom. On July 15, a security researcher discovered the records in an unprotected MongoDB database. Three days later, threat actors also stumbled upon the unsecured server and proceeded to replace all records in it with

Read More
12 Jun 2019

Radiohead Defies Hackers, Releases Trove of Stolen Music

English rock band Radiohead was recently targeted by cyber extortionists who had stolen 18 hours of private recordings from the group’s 1997 album “OK Computer” after breaking into a digital archive belonging to frontman Thom Yorke. The hackers threatened to release the music unless the band paid a ransom of

Read More
21 Mar 2019

Latest tactics used by cybercriminals to bypass traditional email security

New research by Barracuda sheds light on the evolving strategies used by cybercriminals in email-based spear-phishing attacks. The report distinguishes between three types of spear phishing: brand impersonation attacks, business email compromise (BEC) and extortion. Brand impersonation is the most popular strategy by far, accounting for 83% of attacks. Extortion

Read More
22 Feb 2019

Criminal groups promising salaries averaging $360,000 per year to accomplices

Researchers with Digital Shadows estimate that cyber extortionists are ready to pay yearly salaries averaging $360,000 per year to aspiring crooks that can assist them in extorting high-value targets such as business executives, lawyers and medical experts. Accomplices with special IT related skills such as coding, network administration and penetration

Read More