Security News

Qakbot Takedown Aftermath: Mitigations and Protecting Against Future Threats
2023-12-01 10:50

The U.S. Department of Justice (DOJ) and the FBI recently collaborated in a multinational operation to dismantle the notorious Qakbot malware and botnet. While the operation was successful in...

Clop ransomware now uses torrents to leak data and evade takedowns
2023-08-05 15:16

The Clop ransomware gang has once again altered extortion tactics and is now using torrents to leak data stolen in MOVEit attacks. On June 14th, the ransomware gang began extorting its victims, slowly adding names to their Tor data leak site and eventually publicly releasing the files.

EncroChat takedown led to 6,500 arrests and $979 million seized
2023-06-27 14:20

Europol announced today that the takedown of the EncroChat encrypted mobile communications platform has led to the arrest of over 6,600 people and the seizure of $979 million in illicit funds. EncroChat phones ran a special, hardened version of Android that promised users unbreakable encryption, anonymity, and no traceability.

The Genesis Market Takedown – Keep Users Credentials Secure
2023-06-05 14:05

For years, "Dark" markets have contained stolen credentials for sale. Users often reuse the same credentials across multiple services, making them vulnerable to theft.

288 arrested in multinational Monopoly Market takedown
2023-05-02 19:55

In an international operation 288 people have been arrested across the US, Europe and South America after allegedly selling opioids on the now-shuttered Monopoly Market dark web drug trafficking marketplace, according to US and European law enforcement. German authorities originally seized the cybercrime marketplace's infrastructure in December 2021, although law enforcement didn't announce the takedown at the time.

Indian government creates body with power to order social media content takedowns
2022-10-30 23:32

Asia In Brief India's government has given itself the power to compel social networks to take down content. India's minister of state for electronics and information technology, Rajeev Chandrasekhar, said the GACs are needed because India's previous attempt at regulating social media - requiring the networks to appoint a grievance officer - has not delivered.

IPFS phishing on the rise, makes campaign takedown more complicated
2022-08-03 15:28

To successfully run a phishing operation, cybercriminals do generally need to host phishing pages online. Phishing pages sitting on IPFS are trickier to take down, compared to usual phishing pages hosted on the clear web.

Interpol busts 2000 suspects in phone scamming takedown
2022-06-20 18:10

Sick of the unending stream of email and phone calls you receive from scammers claiming to represent your bank? Amazon? Microsoft? The tax office? The police? Despite the not-very-threatening outcome when Rober later releases the insects inside a scam call centre where he has access to footage from the CCTV feed, the video gives a good visual indication of just how industriously and unrelentingly these scammers operate.

Week in review: Macro-less Office documents zero-day bug, FluBot takedown, growing DDoS threats
2022-06-05 08:00

Zero-day bug exploited by attackers via macro-less Office documentsA newly numbered Windows zero-day vulnerability is being exploited in the wild via specially crafted Office documents, security researchers are warning. DDoS threats growing in sophistication, size, and frequencyCorero Network Security has published the latest edition of its annual DDoS Threat Intelligence Report that compiles the trends, observations, predictions, and recommendations based on DDoS attacks against Corero customers during 2021.

FluBot takedown: Law enforcement takes control of Android spyware’s infrastructure
2022-06-01 11:35

An international law enforcement operation involving 11 countries has disrupted the spreading of the FluBot Android malware, which spreads via SMS and MMS and steals sensitive information - passwords, online banking details, etc. The Dutch Police, who took control of the malware's infrastructure earlier in May, made the malware inactive.