European law enforcement agencies collaborated to take down a multimillion dollar cryptocurrency fraud group, making multiple arrests last week. The operation was coordinated by Europol and targeted individuals associated with a large scale cryptocurrency investment fraud scheme. Those arrested include 14 individuals in Serbia and one in Germany, as well
Personal identifiable information may have been leaked in a recent ransomware attack targeting Southampton County in the state of Virginia. The county recently warned individuals that their information may have been stolen after cybercriminals were able to gain access to a single server and encrypted it. Southampton County stated that
The US Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) have issued a joint alert. The alert pertains to a new cybercrime group called Daixin Team that targets organizations in the healthcare sector. The threat actor has
In Brazil, federal police arrested a suspected member of the notorious hacking group Lapsus$. The arrest occurred earlier this week and was a result of an investigation dubbed Operation Dark Cloud launched by Brazilian authorities this summer that aimed to crack down on the cybercrime collective. The individual was arrested
American and Portuguese authorities have reportedly taken down a notorious cybercrime marketplace on which sellers posted troves of stolen personal information that amassed millions of dollars over the years it was active. According to the US Department of Justice, the platform was one of the largest of its kind and
The United Nations (UN) General Assembly has agreed to enter a three-year engagement to develop a treaty on international cybercrime. The proposed schedule includes at least six sessions to alternate between New York and Vienna. The ad hoc committee includes delegates, as well as non-government, academic, and IT companies. This effort comes at a time when cybercrime is increasing worldwide, as gangs become more sophisticated and professionalized in their operations. Cyber crime’s evolution and its increasingly more diverse and organized ecosystem contributes to its success and popularity. Estimates have placed cybercrime profits at USD 6 trillion in 2021 with an expected increase to USD 10.5 trillion in 2025. One thing is certain: cyber criminals continue to remain one step ahead of defenders that desperately try to anticipate the next evolution of their activities.
Russian cybercriminal Aleksei Burkov, responsible for operating two of Russia’s most exclusive underground hacking forums, was released by American authorities after serving just a fraction of his sentence. Burkov was arrested in 2015 by Israeli authorities, and his subsequent extradition to the US was fought by Russia for four years.
A cyberattack against tire and rubber giant Bridgestone Americas came to light in late February. Bridgestone disconnected many of its manufacturing and retreading facilities from its network at the time, causing some plant operations to be shut down. A cybercrime gang that has been using LockBit 2.0 ransomware took credit
More Details Emerge: REvil Gang Arrestee Tied to 2021 Colonial Pipeline Attack; Ukrainian Data Wiping Attack a False Flag Operation
A month ago, we provided an analyst of two incidents in the Ukrainian conflict that occurred on the same day (Friday, January 14th): the Russian Federal Security Service (FSB) takedown of the REvil Ransomware Gang and a major cyberattack on Ukrainian government websites. At the time, these events felt neither coincidental nor unrelated. The following is an update on both events as tensions rise in Eastern Europe. Only time will tell if they are confirmed pieces of the larger information war waged by Putin.
Initial Access Brokers (IAB) are poised to become a force in 2022, due to a unique skill set that positions them as a valuable commodity for the deployment of hostile cybercrime activity. IABs serve as middlemen, specializing in the exploitation of victims and gaining initial entry. Once achieved and sustained, these actors sell these unique accesses to interested customers on dark web forums and markets. In this capacity, they execute the first phase of a cyber-attack chain, performing the necessary research prior to conducting an operation. Emilio Iaisiello explores the implications of the growth of IABs.