Security News

The Identity Theft Resource Center has published a report that looks at the identity crimes committed against individuals as reported by the victims of those crimes. In 2021, the ITRC received the highest number of contacts in its history about identity crimes and requests for assistance to prevent identity misuse.

A Minnesota computer store suing its crime insurance provider has had its case dismissed, with the courts saying it was a clear instance of social engineering, a crime for which the insurer was only liable to cover a fraction of total losses. Travelers, which filed a motion to dismiss, said SJ's policy clearly delineated between computer fraud and social engineering fraud.

In this Help Net Security video, Charl van der Walt, Head of Security Research, Orange Cyberdefense, discusses whether criminalizing ransomware payments could quell the current crime wave by...

According to the US state's Department of Financial Services on Monday, Robinhood Crypto didn't hire sufficient staff and didn't invest in other resources for its anti-money-laundering and cybersecurity compliance programs. "As its business grew, Robinhood Crypto failed to invest the proper resources and attention to develop and maintain a culture of compliance - a failure that resulted in significant violations of the Department's anti-money laundering and cybersecurity regulations," New York's Superintendent of Financial Services Adrienne Harris said.

An ambitious project spearheaded by the World Economic Forum is working to develop a map of the cybercrime ecosystem using open source information. Instead of only looking at highly technical indicators of compromise, the researchers are also relying on publicly available sources of information: social media accounts, which can reveal who in the criminal world is "Friends" with whom, as well as public information including indictments and other court documents as well as published blogs and analysis of various crime rings.

Due to SaaS, in 2021 the number of cybercriminals in one scam gang increased 10 times compared to 2020 and now reaches 100. In 2021, scams were the most common type of cybercrime.

Interpol has announced the arrest of three Nigerian men in Lagos, who are suspected of using remote access trojans to reroute financial transactions and steal account credentials. Interpol did not disclose how much money the gang was able to steal from the victimized organizations.

Interpol and cops in Africa have arrested a Nigerian man suspected of running a multi-continent cybercrime ring that specialized in phishing emails targeting businesses. Interpol's African Joint Operation against Cybercrime referred the intelligence to Nigerian police, who were supported by law enforcement in Australia, Canada, and the US. Ultimately Nigerian cops arrested the suspect at Murtala Mohammed International Airport in Lagos.

That's according to Arkose Labs, which claimed in its latest State of Fraud and Account Security report that one in four online accounts created in Q1 2022 were fake and used for fraud, scams, and the like. In total, 93 percent of all attacks against Arkose Labs' customers were bot-driven, it's claimed; data scraping increased by 250 percent while four percent of all logins in Q1 were credential-stuffing attempts.

Another member of notorious cybercrime ring FIN7 is headed to jail after the gang breached major companies' networks across the US and stole more than $1 billion from these businesses' customers. Ukrainian-born Denys Iarmak, 32, who worked as a penetration tester for the criminal group, was sentenced to five years in prison for his affiliation with FIN7.