Feeds

Articles about Cybercrime

PayPal inStore app in action

Credit card of PayPal PRESIDENT cloned by UK crooks

PayPal president's credit card got hacked on a UK visit, the victim revealed on Twitter. David Marcus said that an unidentified criminal used a skimming device and his credit card was cloned before "tons" of fraudulent transaction were made. The senior executive of the eBay-owned payment processing firm made sure to score a …
John Leyden, 12 Feb 2014

Feds charge three in brain-ache $15m Pentagon payroll pillage plot

Three men have been indicted in the US for trying to steal at least $15m by hacking into the Department of Defence's payroll service and customer accounts at 14 different financial institutions. The US Attorney's office in New Jersey has charged two men from Kiev in Ukraine, Oleksiy Sharapka and Leonid Yanovitsky, and a third …

Feds cuff five more suspects in $45m bank mega-cyber-heist

US Federal authorities have arrested five people accused of aiding a massive electronic bank heist in New York earlier this year. The US District Attorney's office for Eastern New York said that the five were detained following the discovery of photographic evidence that allegedly links the men to a $45m cash-swindling operation …
Shaun Nichols, 19 Nov 2013
The Register breaking news

European conference sets agenda for cybercrime fight

The Council of Europe has called for a worldwide implementation of its Convention on Cybercrime to fight the growing problem of economic crime on the web. During the fifth annual CoE conference on cybrecrime in Strasburg this week, participants spoke in favour of greater international cooperation in sharing existing tools, …
John Leyden, 26 Mar 2010
The Register breaking news

EU crackdown will see tougher sentences for stupid cyber-badhats

The European Parliament has agreed to toughen criminal penalties across the EU for cyber attacks, especially any that threaten national infrastructure or are deemed to be aimed at stealing sensitive data. The new directive forces the 28 member states to impose national maximum sentences of at least two years in prison for trying …
The Register breaking news

UK biz bled dry by cybercrime

The average UK business is losing £10,000 a year thanks to cyber espionage, extortion and other forms of online fraud. In total the UK economy is losing £27bn a year and British businesses soak up £21bn of this loss. Given there are 2.1 million UK firms registered for VAT this gives a loss per firm of £10,000. The numbers, …
John Oates, 17 Feb 2011
The Register breaking news

Former White House advisor wants cybercrime haven crackdown

A former White House security advisor has urged a crackdown on rogue states that serve as a "safe haven" for cybercrime, along with a fundamental rethink of internet architectures. Richard Clarke, who served as special advisor to the President George W Bush on cybersecurity, told delegates to the RSA Conference in London that …
John Leyden, 14 Oct 2010

Time-rich hacking crew scrawls web graffiti all over poor old .ME

Hackers have defaced more than 3,000 .me websites in a web graffiti attack carried out on Sunday. Pakistani defacement crew TeaM MaDLeeTs pulled off the attack after breaking into the systems of domain.ME, the organisation responsible for the registration of Montenegro (.me) domain names. Surfers visiting any one of 3,110 …
John Leyden, 16 Jan 2014

Microsoft hardens EMET security tool: OK, it's not invulnerable, but it's free

Microsoft has beefed up its Enhanced Mitigation Experience Toolkit (EMET), adding features designed to block more exploits. The release of the technical review (beta) version of the tool, EMET 5.0, follows the discovery of new attacks against earlier versions of the technology. EMET 5.0 beta comes with a feature called Attack …
John Leyden, 26 Feb 2014

Biz bods, politicos, beware: 'BOTS are on the loose, and they're coming for YOU

Businesses and governments in the US, UK, Canada, and India are under assault from a malware-based cybercrime campaign using the Tor anonymizing relay network to hide its authors, say infosec researchers. A strain of malware called Mevade, previously blamed for a massive Tor traffic spike is being used to compromise systems at …
John Leyden, 25 Oct 2013
Resident Evil zombie takeover

ZOMBIE iPAD PERIL? Cyberbadness slinger touts tool for iOS

A Swiss Army knife-like piece of malware has been ported to Apple's iOS from Windows and Linux, a security research team has claimed. We're told Zorenium is a low-profile, cross-platform, remote-controllable bot with advanced features including the ability to empty victims' online bank accounts, contribute to distributed denial- …
John Leyden, 21 Mar 2014
Prison window

Prison Locker: A load of überhyped malware FUD over... internet chatter

An underground advert seeking help in developing a file-encrypting ransomware kit that might be sold for just $100 a go sparked something of a panic on the interwebs this week. But security watchers are yet to see any samples of the so-called Prison Locker ransomware, leading at least two security firms to characterise the …
John Leyden, 10 Jan 2014
The Register breaking news

Crimelords: Stolen credit cards... keep 'em. It's all about banking logins now

Stolen bank login information attracts an even higher price than credit card numbers on underground cybercrime bazaars, and EU logins are worth more than American ones, according to research by McAfee. The Intel-owned security division's Cybercrime Exposed paper highlights trends in the thriving digital underground, including …
John Leyden, 02 Jul 2013
The Register breaking news

REVEALED: Cyberthug tool that BREAKS HSBC's anti-Trojan tech

Cybercrooks on an underground forum have developed a technique to bypass anti-Trojan technology from Trusteer used by financial institutions worldwide – including HSBC and Paypal – to protect depositors from cybersnoopers. Trusteer has downplayed the vulnerability and said it's in the process of rolling out beefed-up protection …
John Leyden, 06 Aug 2013
Resident Evil zombie takeover

Multi-platform Java bot marshals ZOMBIE FORCE against spammers

Miscreants have brewed a multi-platform strain of malware capable of infecting Windows, Mac OS and Linux PCs. The evil bot, which surfaced in early January, was written entirely in Java and designed to take advantage of the CVE-2013-2465 vulnerability (a Java flaw patched by Oracle last June) to infect victims. The malware - …
John Leyden, 30 Jan 2014
The Register breaking news

Police charge 11 over Zeus cybercrime scam

UK police investigating a suspected Zeus Trojan e-banking fraud ring have charged 11 people with a variety of fraud and money laundering offences. The accused, all east European nationals resident in Essex, allegedly participated in a series of frauds targeting customers of UK banks over the last three months that resulted in …
John Leyden, 30 Sep 2010
The Register breaking news

Internet evildoers stitch together vile ransomware-survey scam chimaera

Internet Igors have fused genomes from two of the web's most noxious scam strains to create a repulsive chimaera. The new ransomware doing the rounds locks up victims' PCs before forcing their users to complete a survey in order to receive an unlock code. Traditional ransomware scams typically involving locking up systems …
John Leyden, 15 Jul 2013

Android nasty sends your texts to CHINA

Security researchers have discovered an Android botnet that masquerades as a benign settings app for carrying out administrative tasks on mobile devices. Once authorised by the user, the malicious app surreptitiously steals SMS messages from the infected device and emails them to a command-and-control (C&C) infrastructure hosted …
John Leyden, 17 Dec 2013
The Register breaking news

UN split on cybercrime conventions

A United Nations committee on international crime prevention is split on how to deal with cybercrime. Some countries want the existing European convention to be adopted worldwide, while others want a completely new agreement to be created. At the UN Congress on Crime Prevention and Criminal Justice in Brazil last week nations …
OUT-LAW.COM, 19 Apr 2010
Licensed under creative commons (Kafa4Prez) http://creativecommons.org/licenses/by-sa/2.0/deed.en

'Hand of Thief' banking Trojan reaches for Linux – for only $2K

Cybercrooks have created a banking Trojan that targets Linux users, which is been touted for sale on underground cybercrime forums for just $2,000 a pop. The "Hand of Thief" malware is a rare example of malicious code written especially to target the open-source operating system. The digital nasty includes form-grabbers for HTTP …
John Leyden, 08 Aug 2013

You can play Flappy Bird on a POINT OF SALE TERMINAL

Mobile Point of Sale (MPOS) devices can be easily hacked and leave banks and retailers wide open to fraud, warn infosec researchers. Security researchers from MWR InfoSecurity, the same security firm that researched serious vulnerabilities in chip-and-PIN devices back in 2012, demonstrated at last week's SyScan security …
John Leyden, 08 Apr 2014
The Register breaking news

Russian cops lack kit to fight cybercrooks, says Brit security buff

A shift in perspectives in Russia over the last 18 months means the country has ceased to be a safe haven for cybercrime. Crackdowns on e-crime have taken place in the past, most notably the successful prosecution of the extortionists who were behind denial-of-service attacks against online bookmakers. However, the perception …
John Leyden, 06 Jun 2013

Cops cuff 4 in £1m banking fraud malware case

Four people have been arrested and £80,000 in cash seized as part of a Met Police investigation into the theft of an estimated £1m from UK banks using malware. Two men, both aged 31, and two women aged 24 and 27, were arrested on suspicion of conspiracy to defraud and conspiracy to launder money during raids on properties in …
John Leyden, 12 Dec 2013
balaclava_thief_burglar

British Pregnancy Advice Service fined £200k for Anon hack, data protection breaches

The British Pregnancy Advice Service (BPAS) has been fined £200,000 after a serious breach exposed thousands of people’s personal details to a malicious hacker. The hacker (a self-identified member of Anonymous) threatened to publish the names of people who sought advice on abortion, pregnancy and contraception. The miscreant …
John Leyden, 07 Mar 2014

Bank-raid ZeuS malware waltzes around web with 'valid app signature'

A variant of the bank-account-raiding ZeuS Trojan is masquerading as a legit Windows app using a valid digital signature – and packs a rootkit to burrow deep into victims' PCs. It appears miscreants have somehow gained access to the private signing key belonging to a Microsoft-registered third-party developer in Switzerland, and …
John Leyden, 05 Apr 2014
The Register breaking news

May promises £63m for cybercrime fight

Home Secretary Theresa May has announced a £63m boost to police budgets for combatting cyber crime. The money will come from the £650m being spent on beefing up the UK's national cyber defences announced last year. The move to a proactive, and attacking, form of cyber defence was explained to the Reg by "senior Whitehall …
John Oates, 15 Feb 2011
The Register breaking news

Raid millions of bank accounts. New easy-to-use tool. Yours for $5,000

Cybercrooks have put on sale a new professional-grade Trojan toolkit called KINS that will pose plenty of problems for banks and their customers in the months and years ahead. KINS promises the ease of use of bank-account-raiding software nasty ZeuS combined with the technical support offered by the team behind Citadel (which …
John Leyden, 25 Jul 2013
balaclava_thief_burglar

Slovenian jailed for creating code behind 12 MILLION strong 'Mariposa' botnet army

A Slovenian virus writer who created an infamous strain of malware used to infect an estimated 12 million computers worldwide has been jailed for almost five years. Matjaž Škorjanc (who operated under the handle Iserdo) was sentenced by a Slovenian court for writing the code used to create the infamous Mariposa botnet. The …
John Leyden, 03 Jan 2014
Russia

Did Russians frame Ukrainian hacktivists for alleged leak of 7 million credit, debit cards?

Self-styled Ukrainian hackers are bragging they dumped millions of stolen credit card numbers online – but the claims may simply be a political smear job amid tensions between Russia and the West. A group calling itself "Anonymous Ukraine" boasted this week that it is in possession of 800 million credit and debit card details. …
John Leyden, 27 Mar 2014
The Register breaking news

Ukrainian cybercrime-friendly ISP hit by fire after clean-up

A Ukrainian ISP hit by fire over the weekend was in the process of cleaning up its act after earlier being labelled as a leading haven for cybercrime, PC World reports. Odessa-based Hosting.ua was hit by a fire on March 27 that resulted in severe damage to its infrastructure and took it offline. HostExploit.com, which tracks the …
John Leyden, 01 Apr 2010
balaclava_thief_burglar

Stolen CREDIT CARD details? Nah... crooks desire your PRIVATES

Prices on underground cybercrime marketplaces are dropping, with credit card details now in less demand than the personal data of individuals, according to a new study. And even personal details and bank account credentials are getting cheaper to buy on underground hacker markets, according to a study by Dell SecureWorks’ …
John Leyden, 22 Nov 2013
The Register breaking news

UK police chiefs mull regional cybercrime squads

British police chiefs are drawing up plans to set up regional "cybercrime" squads along the lines of existing teams tasked to handle anti-terror operations. The idea - still in its formative stages - is the brainchild of the Association of Chief Police Officers, and reflects concern that existing efforts are not enough to keep …
John Leyden, 24 Jun 2009
Wi-Fi 802.11n

Euro cops on free Wi-Fi not-so-hotspots: For pity's sake, don't use them for email

Using free Wi-Fi hotspots poses a data risk to users, the boss of European police agency Europol warns. Troels Oerting, head of Europol's cybercrime centre, told BBC Click that growing number of attacks are being carried out via public Wi-Fi and that people should send personal data only across trusted networks. "We have seen …
John Leyden, 10 Mar 2014
The Register breaking news

Reality star Pratt shuns showbiz to be cybercrime superhero

A star from the The Hills reality show has announced his supposed intention to take a break from his lucrative TV career in order to fight cybercrime. Spencer Pratt, who recently appeared with drastically-enhanced wife and Hills co-star Heidi Montag in the US version of I'm a Celebrity, Get Me Out of Here!, reportedly hopes to …
John Leyden, 16 Mar 2010
The Register breaking news

Need an army of killer zombies? Yours for just $25 per 1,000 PCs

As little as $25 will buy you access to a thousand malware-infected PCs, neatly packaged as a botnet army to control or spy on. That's according to a security researcher studying underground souks of zombie computers. But the prices increase steeply for the more discerning crook who only wants to use compromised machines in …
John Leyden, 04 Mar 2013
balaclava_thief_burglar

Prez Bush email hacker Guccifer is BACK: A-list celebs' inboxes 'raided'

A webmail hacker called Guccifer – most famous for raiding the email inboxes of former US president George H W Bush's family – has been exceptional busy of late. Crime news website The Smoking Gun reports that Guccifer has handed over a cache of documents – which, we're told, reveal that he broke into the private email accounts …
John Leyden, 08 Jan 2014
Pledging fealty

We're making TOO MUCH CASH, say CryptoLocker scum in ransom price cut

The soaring price of BitCoin has prompted the cybercrooks behind the infamous CryptoLocker malware to reduce the levy they impose on victims from 2 BTC to 0.5 BTC. The reduced price scam was spotted in variants of the malware, which encrypts personal files on infected Windows PCs, spotted earlier this week by security firm F- …
John Leyden, 25 Nov 2013
The Register breaking news

Cybercrime losses almost double

US net crime loss complaints almost doubled in value from $265m in 2008 to reach $560m last year, according to official figures. An annual report of the FBI-backed Internet Crime Complaint Center (IC3), published on Friday, reports that the unit handled 336,655 complaints in 2009, a 22.3 percent increase on 2008. Around 16 per …
John Leyden, 15 Mar 2010
The Register breaking news

Max Vision pleads guilty to running cybercrime bazaar

Notorious hacker Max Vision faces a lengthy prison sentence after pleading guilty to two counts of wire fraud involving the trafficking of around 1.8 million credit card numbers and running a clearing house for cybercrime. Vision (aka Iceman), 36, ran an underground forum called Carders Market where carders and hackers traded in …
John Leyden, 30 Jun 2009

Fiendish CryptoLocker ransomware survives hacktivists' takedown

An attempt by security researchers to take down command and control nodes associated with the infamous CryptoLocker malware appears to have been unsuccessful in its ultimate aim of putting the Bitcoin-hungry crooks behind the scam out of business. Activists from the group Malware Must Die put together a list of scores of domains …
John Leyden, 06 Dec 2013

Your browser may be up to date: But what about the PLUGINS?

Two in five (39 per cent) of computers submitted for testing to a free browser security test from Qualys were affected by critical vulnerabilities, mostly related to browser plug-ins. The findings, based on 1.4 million BrowserCheck computer scans, paint a picture of e-commerce buyers left wide open to attacks by cybercriminals …
John Leyden, 02 Dec 2013
The Register breaking news

UK cybercrime unit to meet IT leaders

The newly-established Police Central e-crime unit (PCeU) has scheduled a meeting with UK business later this month. Around 150 members of The Corporate IT Forum will get a chance to quiz cybercops on the role and strategy of the PCeU at a meeting in Reading set for 24 February. Based in Scotland Yard, the cybercrime unit has …
John Leyden, 10 Feb 2009
 Dummy hand grenades are used by the Marines from the 3rd Low Altitude Air Defense Battalion, for practice before throwing the M-67 Fragment Grenades at the firing range.jpg

Hacker cracks Vodafone Germany, steals data of 2 million customers

A hack on a Vodafone Germany server has exposed the personal details – including banking information – of two million of its customers. Hackers accessed names, addresses, bank account numbers and dates of birth. Phone numbers, credit card details and passwords are thought to be safe, but the leaked information is still pretty …
John Leyden, 12 Sep 2013
The Register breaking news

Lights, camera, infection: HACKERS get Bollywood makeover

Bollywood producers have announced plans to make a malware-themed movie. The comedy-thriller titled Mickey Virus is set in Delhi and the plot revolves around hackers and computer virus infections. The film, due out later this year, will reportedly star local TV anchorman Manish Paul in his big screen debut. It's unclear how the …
John Leyden, 04 Jan 2013
blackmail

Hackers attempt to BLACKMAIL plastic surgeons

Cybercrooks attempted to extort a chain of cosmetic surgeons after hacking into its systems and stealing an estimated 480,000 files stuffed with info about prospective nip-'n'-tuck customers. Computer systems at Harley Medical Group, which has 21 clinics across the UK, were pillaged to loot personal details from nearly half a …
John Leyden, 16 Apr 2014
arrow pointing up

Russian trade body aims to fight cybercrime

Russia is not a safe haven for criminals or spammers, according to a Russian trade association campaigning to tighten up the admitted shortcomings of local cybercrime laws and build international cooperation. The Russian Association of Electronic Communications was established in 2006 to speed Russia’s integration into the …
John Leyden, 12 Apr 2010
The Register breaking news

Frenchie bean-counters sweet-talked into slipping on Trojans

Crooks hoping to empty company bank accounts are calling up the firms' bean-counters to chase invoices packed with hidden malware. Finance staff are tricked into opening the booby-trapped messages in phone calls from con men, who claim to have emailed in legit paperwork that needs urgent attention. The documents instead include …
John Leyden, 14 May 2013
The Register breaking news

'World's BIGGEST online fraud': Suspect's phone had 'location' switched on

Two Russians arrested over their suspected involvement in the largest online fraud in US history were tracked down by analysing photos they posted to social media sites and tracking the location of one suspect's mobile phone, Reuters reports. Four Russians and a Ukrainian national were named as suspects in a credit card hacking …
John Leyden, 29 Jul 2013

When ZOMBIES go shopping: 40m Target customer breach? That's NOTHING!

Malware linked to fraud in the retail sector may be a bigger problem than even the recent revelation about the compromise of systems US retailer Target suggests. Shopping giant Target and luxury retailer Neiman Marcus both announced significant data breaches during the 2013 holiday shopping season. The Target breach at least …
John Leyden, 23 Jan 2014
The Register breaking news

Alleged SpyEye big fish hauled in for US trial

Alleged SpyEye kingpin Hamza Bendelladj now faces a 23-count computer hacking and fraud indictment following his extradition from Thailand to the US last week. Bendelladj, a 24-year-old Algerian national, is suspected by the FBI of making millions from selling the SpyEye banking Trojan toolkit to cybercrooks through various …
John Leyden, 09 May 2013