Articles about Cybercrime

Money laundering

Barclays bank bod in the cooler for aiding Dridex money launderers

An employee of Barclays Bank who laundered thousands of pounds on behalf of Moldovan cybercriminals was yesterday sentenced to six years and four months behind bars in Blighty. According to the Crown Prosecution Service, Jinal Pethad, 29, from Edgware, London, UK, set up more than a hundred false accounts to launder money and …
Richard Priday, 13 Dec 2017

New Ruski hacker clan exposed: They're called MoneyTaker, and they're gonna take your money

Security researchers have lifted the lid on a gang of Russian-speaking cybercrooks, dubbed MoneyTaker. The group has conducted more than 20 successful attacks on financial institutions and legal firms in the USA, UK and Russia in the last two months alone, according to Russian incident response firm Group-IB. MoneyTaker has …
John Leyden, 11 Dec 2017
Trojan horse photo via Shutterstock

New, revamped Terdot Trojan: It's so 2017, it even fake-posts to Twitter

Terdot, a banking Trojan that has been around since mid-2016, has been re-engineered with updated information and credential thievery as well as social media account monitoring functionality. Built on the Zeus framework, whose code was leaked in 2011, Terdot adds a number of novel techniques to the market, such as leveraging …
John Leyden, 16 Nov 2017
silence

Hackers tiptoe out, launch Silence trojan, quietly raid banks of meeelllions

Cybercrooks are directly attacking banks in multiple countries using a trojan dubbed Silence. At least 10 financial organisations in multiple regions including Russia, Armenia, and Malaysia have been targeted by the so-called Silence crew in a series of ongoing attacks. While stealing funds from its victims, Silence runs …
John Leyden, 2 Nov 2017

Do fear the Reaper: Huge army of webcams, routers raised from 'one million' hacked orgs

Miscreants are right now assembling a massive army of hacked Internet of Things devices – and at a far faster rate than the powerful Mirai botnet swelled its ranks last year. This new cyber-militia of compromised gadgets, dubbed IoT_reaper or Reaper by experts at Qihoo 360 Netlab, can be instructed by its masters to attack …
John Leyden, 20 Oct 2017

Hackers in Arab world collaborate more than hoodie-clad Westerners

Cybercriminals in the Arab states are some of the most cooperative in the world, according to Trend Micro this week. The infosec biz's latest study, Digital Souks: A glimpse into the Middle Eastern and North African underground, identifies the most popular kinds of hacking tools and commodities, and the most active countries …
John Leyden, 10 Oct 2017
man in suit clutches briefcase full of cash. Photo by Shutterstock

IT fraudster facing four years' bird time for $10k blackmail

An IT contractor who sabotaged a client's website and demanded $10,000 to restore it was this week convicted of wire fraud and sentenced to four years behind bars. Tavis Tso, 40, from Arizona, was also ordered by US District Judge David Campbell to pay $9,145 in restitution to the unnamed victim of his crime. Tso had …
Kat Hall, 20 Sep 2017
Shawshank Redemption

CyberRehab's mission? To clean up the internet, one ASN block at a time

A new project aims to mitigate cybercrime by making it in the economic and business interests of ISPs and telcos to clean up the internet. CyberRehab wants to prove that it can establish an IP range that hackers choose to stay away from. If miscreants try to attack, they will lose their infrastructure. The IP range will be …
John Leyden, 31 Aug 2017

Another banking trojan is trying to loot your cryptocurrency wallets

Researchers have discovered a new variant of banking trojan that targets cryptocurrency wallets instead of traditional accounts. Coinbase, the cryptocurrency exchange site targeted in part by the latest Trickbot variant, manages multiple currencies thus offering crooks a wider platform for abuse once they succeed in harvesting …
John Leyden, 30 Aug 2017

A blast from the past: Mobile trojans abusing WAP-billing services

Crooks slinging mobile trojans have reverted to old techniques by stealing users' money through WAP-billing services. The "unusual" rise in mobile trojan clickers that steal money from Android users through Wireless Application Protocol (WAP) billing has been tracked by security researchers at Kaspersky Lab. The unexpected …
John Leyden, 24 Aug 2017

Probing the online phish market reveals thriving, profitable underworld

A new study has lifted the lid on the booming ecosystems of fake websites that underpin phishing scams, revealing a wide variety of prices and products from cheap knock-ups to bespoke fraud services offering concierge-level customer support. Infosec firm Clearsky surfed popular Russian and English-speaking underground boards …
John Leyden, 24 Aug 2017
businessman shrugging - illustration via shutterstock

10% of UK's top firms would be screwed in a cyber attack – survey

Most of the UK's top businesses are underprepared for new data protection rules, while 10 per cent have no response plan for a cyber attack, according to a government survey. This year's annual cyber governance health check (PDF) asked FTSE 350 companies about both their cyber security and data protection measures – the latter …
Rebecca Hill, 21 Aug 2017
Leigh-Anne Galloway  B Sides manchester talk on ATM. screen grab from video

What weighs 800kg and runs Windows XP? How to buy an ATM for fun and profit

BSides Weighing in at 800kg secondhand, freestanding ATMs - a “safe with a computer on top” - are a logistical nightmare to own and research, security boffin Leigh-Anne Galloway warned delegates at the BSides Manchester infosec conference yesterday. b sides manchester talk on ATM. scrren grab from video Security boffin Leigh-Anne …
John Leyden, 18 Aug 2017

APT-style attack against over 4,000 infrastructure firms blamed on lone Nigerian 20-something

A seemingly state-sponsored cyberattack aimed at more than 4,000 infrastructure companies has been blamed on a lone Nigerian cybercriminal. The campaign started in April 2017, and has targeted some of the largest international organisations in the oil, gas, manufacturing, banking and construction industries. The global scale …
John Leyden, 15 Aug 2017
Marcus Hutchins

WannaCry vanquisher Marcus Hutchins pleads not guilty to flogging banking trojan Kronos

Marcus Hutchins, the WannaCry kill-switch hero, has today pleaded not guilty to charges of creating and selling malware at a hearing in Milwaukee, Wisconsin. The court took the unusual step of relaxing the the 23-year-old's bail terms, allowing him to access the internet and work again. He will also be able to live in Los …
John Leyden, 14 Aug 2017
petya

Ukrainian man, 51, cuffed on suspicion of distributing NotPetya

A middle-aged Ukrainian has been arrested on suspicion of acting as an agent in distributing the infamous NotPetya ransomware. Sergey Neverov, 51, a video blogger and computer enthusiast from Nikopol, was cuffed by Ukrainian police on August 7 (official statement in Ukrainian here). Neverov is accused of posting a video …
John Leyden, 11 Aug 2017

Strong and stable, my arse. UK wobbles when coping with ransomware

A third of businesses have suffered a ransomware attack in the last 12 months, according to a new survey sponsored by Malwarebytes. Globally, most organisations experienced some form of attack or breach during the past year, with 35 per cent suffering a ransomware attack specifically. Ransomware demands are relatively low, …
John Leyden, 27 Jul 2017
hacker

Briton admits to router hack that DDoSed Deutsche Telekom

An as yet unnamed 29-year-old pleaded guilty on Friday to charges relating to the hijacking of more than 1.25 million Deutsche Telekom routers, according to reports in the German press. German news agency DPA and others quoted a court spokesman as saying the accused, who pleaded guilty to "attempted computer sabotage", had " …
John Leyden, 24 Jul 2017

Create a news alert about Cybercrime, or find more stories about Cybercrime.

Biting the hand that feeds IT © 1998–2017