Matt Burgess reports: Russian cybercriminals are almost untouchable. For years, hackers based in the country have launched devastating ransomware attacks against hospitals, critical infrastructure, and businesses, causing billions in losses. But they’re out of reach of Western law enforcement and largely ignored by the Russian authorities. When police do take the criminals’ servers and websites offline, they’re often…
Category: Phishing
International investigation disrupts phishing-as-a-service platform LabHost – EUROPOL
This week, law enforcement from 19 countries severely disrupted one of the world’s largest phishing-as-a-service platform, known as LabHost. This year-long operation, coordinated at the international level by Europol, resulted in the compromise of LabHost’s infrastructure. Between Sunday 14 April and Wednesday 17 April a total of 70 addresses were searched across the world, resulting…
Hackers target FCC, crypto firms in advanced Okta phishing attacks
Bill Toulas reports: A new phishing kit named CryptoChameleon is being used to target Federal Communications Commission (FCC) employees, using specially crafted single sign-on (SSO) pages for Okta that appear remarkably similar to the originals. The same campaign also targets users and employees of cryptocurrency platforms, such as Binance, Coinbase, Kraken, and Gemini, using phishing pages…
INTERPOL-led operation targets growing cyber threats
Some 1,300 suspicious IP addresses or URLs have been identified as part of a global INTERPOL operation targeting phishing, malware and ransomware attacks. Operation Synergia, which ran from September to November 2023, was launched in response to the clear growth, escalation and professionalisation of transnational cybercrime and the need for coordinated action against new cyber…
Hackers Stole $7.5 Million in Grant Money From US Health Department
Riley Griffin reports: Hackers stole millions of dollars in grant money from the Department of Health and Human Services last year in a series of attacks, according to two people familiar with the matter. Between late March and mid-November, the hackers gained access to an HHS system that processes civilian grant payments and withdrew about $7.5 million intended…
Four-in-ten employees sacked over email security breaches as firms tackle “truly staggering” increase in attacks
Emma Woollacott reports: Nearly half of workers responsible for email security breaches over the last year have been sacked, according to new search, as cyber leaders begin taking a tougher stance amid a surge in attacks. Research from cyber security firm Egress found that 94% of organizations globally have experienced a serious email security incident…