Security News

Crypto scams more costly to the US than ransomware, feds say
2024-03-19 20:00

The FBI warned of increases in crypto scams in March last year, saying most begin with some sort of social engineering, like a romance or confidence scam, which then evolve into crypto investment fraud. The total losses from investment fraud also beat those incurred by ransomware across the country, according to the latest report [PDF] from the FBI's Internet Crime Complaint Center.

Filipino police free hundreds of slaves toiling in romance scam operation
2024-03-18 05:46

Filipino police rescued 875 "Workers" - including 504 foreigners - in a raid late last week on a firm that posed as an online gaming company but in reality operated a forced labor camp that housed romance scam operators. The "Gaming company" that ran the operation - which went by Zun Yuan Technology Incorporated - maintains a meager website that may not initially set off alarm bells and appears more targeted toward recruiting staff than clients.

FTC goes undercover to probe suspected antivirus scam, scores $26M settlement
2024-03-14 20:24

A pair of tech support businesses accused of swindling marks out of their hard-earned cash have agreed to cough up a $26 million settlement following an undercover probe by the FTC. Restoro and Reimage - both headquartered in Cyprus and, based on the the US watchdog's complaint and settlement proposal [both PDFs], two arms of the same operation - have been running a pretty typical Windows antivirus scam since at least 2018, or so the regulator alleged. "To replicate consumers' experience with defendants' marketing, FTC investigators made four undercover purchases of defendants' services," the FTC said in its complaint.

Tax-related scams escalate as filing deadline approaches
2024-03-12 05:00

As the April 15, 2024 tax filing deadline approaches in the US, some old and some new tax-related scams targeting both taxpayers and tax professionals. The IRS has warned tax professionals about a "New client" scam where cybercriminals pose as potential clients via email, seemingly seeking assistance with tax preparation.

Exit Scam: BlackCat Ransomware Group Vanishes After $22 Million Payout
2024-03-06 15:03

The threat actors behind the BlackCat ransomware have shut down their darknet website and likely pulled an exit scam after uploading a bogus law enforcement seizure banner. "ALPHV/BlackCat did not...

BlackCat ransomware shuts down in exit scam, blames the "feds"
2024-03-05 15:49

The BlackCat ransomware gang is pulling an exit scam, trying to shut down and run off with affiliates' money by pretending the FBI seized their site and infrastructure. "The ransomware gang started the exit-scam operation on Friday, when they took their Tor data leak blog offline. On Monday, they further shut down the negotiation servers, saying that they decided to turn everything off, amid complaints from an affiliate that the operators stole a $20 million Change Healthcare ransom from them."

Cybercriminals Using Novel DNS Hijacking Technique for Investment Scams
2024-03-05 10:53

A new DNS threat actor dubbed Savvy Seahorse is leveraging sophisticated techniques to entice targets into fake investment platforms and steal funds. “Savvy Seahorse is a DNS threat actor who...

Savvy Seahorse gang uses DNS CNAME records to power investor scams
2024-02-28 14:00

A threat actor named Savvy Seahorse is abusing CNAME DNS records Domain Name System to create a traffic distribution system that powers financial scam campaigns. Using DNS CNAME records as a TDS. Savvy Seahorse creatively uses Canonical Name records as a Traffic Distribution System for its operations, allowing threat actors to easily manage changes, such as performing IP rotation that enhances detection evasion.

TimbreStealer Malware Spreading via Tax-themed Phishing Scam Targets IT Users
2024-02-28 07:43

Mexican users have been targeted with tax-themed phishing lures at least since November 2023 to distribute a previously undocumented Windows malware called TimbreStealer. Cisco Talos,...

Wire fraud scams escalate in real estate deals
2024-02-22 05:00

In this Help Net Security video, Tyler Adams, CEO at CertifID, illustrates how the real estate sector needs to invest significant effort in educating consumers and implementing protective measures to safeguard real estate transactions. Recent CertifID research found that median consumer losses in real estate fraud schemes exceeded $70,000 per incident as a result of stolen buyer down payments and seller net proceeds.