Articles about Cybercrime

Malaysia-based credit card fraud ring broken, 105 arrested

A total of 105 credit card fraud suspects have been arrested in Asia and Europe following a complex months-long investigation across two continents. The investigation targeted a gang led from Malaysia whose tentacles spread into 14 European countries (including the UK and Germany) and specialised in using counterfeit credit …
John Leyden, 08 Jul 2016

Infosec bods NCC walk away from the domain services biz

UK-based infosec consultancy NCC Group is withdrawing from the domain services biz while retaining domain security capability. The tactical switch was announced as NCC reported revenues up 56 per cent to £209.1m in the 12 months to 31 May 2016, compared to £133.7m in its previous financial year. NCC’s adjusted pre-tax profits …
John Leyden, 07 Jul 2016
Illustration of a "bitcoin" dissolving into numbers. Photo by SHutterstock

Bitcoin child abuse image pervs will be hunted down by the IWF

Blockchain forensics are being harnessed in an effort to clamp down on the trade in images of child sex abuse on the dark web. The Internet Watch Foundation (IWF) is teaming up with Elliptic, a UK blockchain intelligence start-up, in a bid to track individuals who use Bitcoin to pay for images of child sex abuse. The IWF is …
John Leyden, 06 Jul 2016
Users with laptop, mobile, tablet have tea in a coffee house. Pic via shutterstock

Theft of twenty-somethings' IDs surges

Last year saw a surge in identity fraud against young UK adults, according to official figures published today. Cifas' data reveals identity fraud victims aged 30 and under rose 52 per cent in 2015. Just under 24,000 (23,959) people aged 30 and under were victims of identity fraud, according to figures from the UK’s leading …
John Leyden, 05 Jul 2016

Second celebgate hacker pleads guilty to phishing

A second US man has pleaded guilty to stealing intimate pictures of celebrities using a phishing scam. Edward Majerczyk, 28, who resides in Chicago and Orland Park, Illinois, was charged with hacking into the Apple iCloud and Gmail accounts of more than 300 people, including Hollywood celbrities. In a plea bargaining deal, …
John Leyden, 05 Jul 2016
Plymouth Hoe, Devon. Pic: Shutterstock

Plymouth 'animal rights' teen admits Florida SeaWorld cyber attack

A British teenager has admitted taking part in cyber-attacks against Florida's SeaWorld theme park and Devon and Cornwall Police. However, the 16 year-old from Plymouth, Devon – who can’t be named for legal reasons – denied sending threatening messages to airlines. During a hearing at Plymouth’s youth court the youngster …
John Leyden, 29 Jun 2016

SWIFT hackers nick $10m from Ukraine bank

Hackers stole $10m from a Ukrainian bank by – yup, you guessed it – invading its computers and using the inter-bank transfer system SWIFT to shift their loot. The theft from an unnamed Ukrainian bank follows news of cyber-heists at other banks worldwide, most notoriously the lifting of $81m from an account held in New York …
John Leyden, 28 Jun 2016

Eat my reports! Bart ransomware slips into PCs via .zip'd JavaScript

The cybercrooks behind ransomware Dridex and Locky have started distributing a new file-scrambling software nasty dubbed Bart. Bart has a payment screen just like Locky's, and encrypts documents without first connecting to a remote command-and-control server to receive its orders. Bart may therefore be able to encipher Windows …
John Leyden, 28 Jun 2016

Crooks abusing Facebook to offer credit card samples

Crooks are using social networks like Facebook to offer free samples of stolen credit cards. Facebook is “not proactive enough” in dealing with the threat, according to Daniel Cohen, head of anti-fraud service for RSA in Israel. A simple search of “cvv2” inside Facebook turns up several stolen credit card freebie sample …
John Leyden, 27 Jun 2016

No watershed: China hacker groups in decline before Xi-Obama deal

The US-China pledge to put an end to state-backed intellectual property theft was made when Middle Kingdom hacking groups had been receding for more than a year, researchers say. Presidents Barack Obama and Xi Jinping agreed September to not "conduct or knowingly support cyber-enabled theft of intellectual property" in a move …
Darren Pauli, 21 Jun 2016
Handcuffs

NSW cops seek cyber-crooks over bank fraud

NSW Police has published photographs of nine men and three women wanted for questioning over Internet banking fraud. The group recruits mules to open bank accounts, and link them to accounts the scamsters have taken control of. While the police haven't detailed the technique for getting control over victims' bank accounts, …
 Can't See You... by https://www.flickr.com/photos/12023825@N04/  cc 2.0 attribution sharealike generic https://creativecommons.org/licenses/by-sa/2.0/

Half of Brit small biz hit by cyber crime. 10% spend zilch on infosec

Almost half (48 per cent) of Britain's small businesses were hit by cyber-crime in the last year, with 10 per cent targeted many times. Despite this only one in five see cybersecurity as a business priority, and just 15 per cent are confident that they have adequate measures in place to prevent cybercrime, according to a …
John Leyden, 14 Jun 2016

Tell us, evil phisherfolk: What's wrong with Angler Exploit Kit?

Crooks behind exploit kits have switched from using the Angler to favouring Neutrino in recent attacks. “Angler EK has almost completely disappeared,” according to Malwarebytes, a net security firm that has made a name for itself in closely tracking malicious advertising (malvertising) attacks. “We see Neutrino EK take centre …
John Leyden, 13 Jun 2016
Ireland map, photo via Shutterstock

Over Ireland? Bothered by Brexit? Find that new home for your cloud

As we all know, the cloud isn't an amorphous, non-geographical blob of computing. Which is a good thing, because there are plenty of legal implications around where your data lives and where it moves both to and from. The point is, of course, that as the cloud isn't just a cloud, your choice of provider is largely dependent on …
Dave Cartwright, 13 Jun 2016
hacker

Did you know there's a mega cybercrime backlog in Ireland? Now you do

As part of its new five year plan, the Garda Síochána will up its efforts to tackle cyber crime after “a lack of investment in technology and resources has led to a widely reported back-log of cases”. “[T]o ensure Ireland can protect itself from cyber attack from rogue States and individual criminal elements an holistic all-of …

TeamViewer: So sorry we blamed you after your PC was hacked

Beleaguered remote support tool maker TeamViewer has apologized for blaming its customers for the recent spree of PC and Mac hijackings. While TeamViewer maintains there was "no hack" on its end, public relations head Axel Schmidt told El Reg that the software house was sorry it used the term "careless" to describe folks who …
Shaun Nichols, 06 Jun 2016

100 million credentials from 'Russia's Facebook' go on sale

Russian social networking site VK.com appears to have been breached with hackers selling some 100 million records for a mere US$580 in Bitcoins. The breach has been reported by LeakedSource which received portions of the breached database. At least 100 million accounts are said to have had names, user logins, and phone …
Team Register, 06 Jun 2016
Open barn door

TeamViewer beefs up account security after rash of PC, Mac hijacks

TeamViewer is whacking anti-hacker protections into its remote-desktop tool – as its customers continue to report having their PCs and Macs remotely hijacked by criminals. Two new security checks in TeamViewer will warn users when a new device or location attempts to log into their TeamViewer account and remotely manage any …
Shaun Nichols, 03 Jun 2016
Taylor Swift

SWIFT threatens to give insecure banks a slap if they don't shape up

The SWIFT global payments system has announced it plans to suspend banks with weaker cyber defences until they improve their security. The threatened sanction follows a run of attacks on international banks over recent weeks, including the $81m mega-heist at the Bangladeshi Central Bank. These cyber-heists1 relied on hackers …
John Leyden, 03 Jun 2016
Mobile banking, image via Shutterstock

Flash. Bang. Wallet: Marcher crooks target UK Android users

Miscreants behind the Marcher mobile malware have begun targeting UK banking customers. The trojan - which already targets banks in other countries, including Germany, Austria, France, Australia and Turkey - has added nine major UK bank brands onto its roster, IBM's X-Force security research team warns. Marcher is an Android- …
John Leyden, 02 Jun 2016

Recycled malware code 'links' SWIFT bank heist to Sony ransackers

Five additional pieces of malware suggest there is a stronger tie between North Korea's Lazarus Group of hackers and last month's run of cyber-attacks on banks. A study by Anomali Labs' senior security researcher Aaron Shelmire expands upon Symantec's earlier findings. According to Symantec, two pieces of malware were used to …
John Leyden, 02 Jun 2016
Group of young people yawning/looking bored. Photo by shutterstock

65 million millennial blog bores' Tumblr logins ... for! sale! on! darknet!

More than 65 million sets of login credentials for users of Yahoo-owned Tumblr have appeared up for sale through the darknet. The illicit sale stems from a leak that dates back to February 2013, one which was only disclosed by Tumblr earlier this month. "Peace", the same black hat behind the sale of 117 million leaked …
John Leyden, 31 May 2016
Ben Mezrich, Once Upon a Time in Russia: The Rise of the Oligarchs and the Greatest Wealth in History

FOURTH bank hit by SWIFT hackers

A fourth bank, this time in the Philippines, has been attacked by hackers targeting the SWIFT inter-bank transfer system. Security researchers at Symantec reckon the same group blamed for the infamous $81m Bangladesh central bank mega-heist back in February also mounted an earlier assault in the Philippines last year, itself …
John Leyden, 27 May 2016

Victims stranded as ID thieves raid Aussie driver licences

AusCERT One in five Australian identity theft victims reporting to a government-backed crime monitor ID-Care have had drivers licences stolen, according to Dr David Lacey of national ID theft support service ID Care. ID Care was founded in 2014 with a budget of AUD$800,000 (£515,402, US$575,452) and receives cybercrime victim …
Darren Pauli, 27 May 2016
Night scene of bank station in central london

Bank in the UK? Plans afoot to make YOU liable for bank fraud

Bank customers may be obliged to bear the bill for fraud against their accounts, under proposed changes mulled by banks, the UK government and GCHQ. Under the plans, individuals or companies with poor online security could be “frozen out of banking services or even excluded from the system whereby banks compensate customers …
John Leyden, 26 May 2016

Blighty's National Cyber Security Centre cyber-reveals cyber-blueprints

The UK government has released the prospectus for its National Cyber Security Centre (NCSC), ahead of the launch of the facility this Autumn. The blueprint [PDF] outlines that the NCSC will act as a hub for sharing best practices in security between public and private sectors, and will tackle cyber incident response. As …
John Leyden, 26 May 2016
Image by gyn9037 http://www.shutterstock.com/gallery-691846p1.html

You've patched that Flash hole, but have the users? Phone's ringing. It's for you

Security researchers are warning of a new wave of malvertising that harnesses the latest Flash exploit. The attack features tainted ads from websites including dailymotion.com, vodlocker.com, answers.com and legacy.com. Fraudulent advertisers are posing as legitimate retail or legal businesses in order distribute "conditional …
John Leyden, 25 May 2016

Password reuse bot steals creds from weak sites, logs in to banks

The perils of password re-use have been laid bare with the discovery of a botnet dedicated to finding account credentials on websites and testing the logins it finds on banks. The work is clever since it avoids tripping botnet detection and brute force rate limiters in place at most security-savvy banks, but absent across the …
Darren Pauli, 24 May 2016

Surrey teen charged over Mumsnet hack attack

A Surrey man has been charged with hacking offences related to the attack on the Mumsnet website last year. David Gerrard Buchanan, 18, of Haslemere, Surrey, was charged on Saturday with three offences under the Computer Misuse Act following an investigation by the Met’s Cyber Crime Unit (MPCCU). Two of the alleged offences …
John Leyden, 23 May 2016
Dounreay shaft explosion copyright Dounrea Site Restoration Ltd and Nuclear Decommissioning Authority

Going Nuclear: Inside the world's second worst exploit toolkit

Security researchers have lifted the lid on the Nuclear exploit kit, rated the second largest malware-as-a-service toolkit in the world. Nuclear has generated 1.8 million attacks worth $12m in revenue in one month alone, chiefly through slinging the infamous Locky ransomware. The estimated monthly revenue for the developers of …
John Nicholson, 19 May 2016
Prince philip Thames barrier old control room photo Environment Agency

Landmark computer hacking archive deposited at TNMOC

An archive that tells the story of how the 1980s hack of Prince Philip’s mailbox led to UK anti-hacking legislation has been deposited at The National Museum of Computing (TNMOC). Robert Schifreen, the "white hat" at the centre of the 1980s controversy, compiled the archive, which details Schifreen’s two-year-long legal …
John Leyden, 18 May 2016

First ATM malware is back and badder than ever

Cybercriminals have retrofitted a strain of ATM malware first discovered in 2009 to create an even more potent threat. Skimer was the first malicious program to target ATMs*. Seven years later, Russian cybercriminals are reusing the malware – but both the crooks and the program have evolved, to pose an even more potent threat …
John Leyden, 17 May 2016

It's all very well hacking ISIS, Barry, but what about your ISA?

Credit card fraud is in decline while ad fraud is poised for growth, according to a new study on the business of cybercrime out Tuesday. Hewlett Packard Enterprise’s (HPE) study provides a detailed look into the inner workings of cybercriminal organisations, their business functions, motivations, and more. The IT giant posits …
John Leyden, 17 May 2016
Taylor Swift

Inter-bank system SWIFT on security? User manual needs 'revamp’

Updated Inter-banking messaging systems SWIFT’s security guidelines are "outdated and incomplete". The criticism from security vendor Skyport Systems comes days after SWIFT revealed that a second bank had fallen victim to credential theft fraud, creating yet further concern already fuelled by February’s $81m Bangladesh reserve bank …
John Leyden, 16 May 2016

YouTube skiddie busted for hacking Country Liberal Party

A man from the Australian state of Victoria has been charged after stealing, using, and publishing credit cards of political party members using basic tricks he learned from YouTube. Aaron Warren Camm, 20, of Kangaroo Flat, learnt how to use the skiddie tool Havij to launch SQL injection attacks and applied the lessons in …
Darren Pauli, 16 May 2016
2001: A Space Odyssey

Lie back and think of cybersecurity: IBM lets students loose on Watson

IBM is teaming up with eight North American universities to further tune its cognitive system to tackle cybersecurity problems. Watson for Cyber Security, a platform already in pre-beta, will be further trained in “learning the nuances of security research findings and discovering patterns and evidence of hidden cyber attacks …
John Leyden, 12 May 2016
Giant burger

Burger-slinger Wendy’s admits: Cash-till data breach hit 1 in 20 outlets

Wendy’s confirmed on Wednesday that malicious software affected PoS (point-of-sale) devices in around 300 of the burger chain’s 5,500 franchised stores, or about five per cent of all its restaurants in North America. The update on Wednesday quantifies the extent of a previously announced breach and came as Wendy’s announced …
John Leyden, 12 May 2016
Blackmail

Ransomware grifters offer to donate proceeds of crime to charity

Ransomware crooks are offering to donate ransom fees to a children's charity. Security experts dismiss the promise as “psychological manipulation” from unscrupulous crooks. The offer comes from the “kind hearted” slingers of "CryptMix", one of a growing number of crypto-ransomware strains menacing Windows users worldwide. …
John Leyden, 06 May 2016
Baby looks taken aback/shocked/affronted. Photo by Shutterstock

Suck on this: White hats replace Locky malware payload with dummy

Pranksters have infiltrated the control system behind the infamous Locky ransomware and replaced the malware’s main payload with a dummy file. Locky normally spreads using malicious and disguised JavaScript inside email attachments supposedly containing an invoice or similar. Malicious messages are sent to prospective marks in …
John Leyden, 05 May 2016

Jaku botnet runs targeted attack behind sandstorm of routine malfeasance

Security researchers have spotted an on-going global botnet campaign seemingly linked to North Korea. The Jaku botnet has an unusual split personality. On the surface it’s spreading en masse through pirated software (warez) or poisoned BitTorrent trackers to notch up around 17,000 victims at any one time. However, a six month …
John Leyden, 05 May 2016

US telly stations fling malware-tipped web ads at unsuspecting surfers

A rogue advertiser abused the Taggify self-serve ad platform to inject malware-installing code into browsers visiting the websites of two US TV stations. It was a textbook malvertising attack: to infect victims' PCs, the dodgy ads used the Angler Exploit Kit, which is a grab bag of code that exploits weaknesses in Adobe Flash …
John Leyden, 04 May 2016
Type arms of an old typewriter

Mega mail breach fears

Webmail passwords of millions of users are allegedly for sale. Hundreds of millions of usernames and passwords - purportedly for Mail.ru, GMail, Yahoo Mail and Microsoft email accounts - are on sale through Russian cybercrime bazaars, according to security expert Alex Holden. Most of the stolen data refers to mail.ru accounts …
John Leyden, 04 May 2016
A man talks angrily into his mobile. Photo via Shutterstock

Did your UK biz just pay £1,500 to stop a DDoS? You've been had

What kind of a grifter pretends he's going to DDoS you? The kind that easily makes off with a lot of cash, it seems. "Hackers" who have been making empty DDoS threats while posing as the Armada Collective appear to have have moved on. No, they didn't stop scamming people, they just changed their modus operandi: they're now …
John Leyden, 04 May 2016

Gozi trojan mastermind sentenced by US court to time served

The self-confessed creator of the infamous Gozi trojan was sentenced to time served and ordered to pay $6.9m in restitution by a New York court on Monday. Nikita Kuzmin, a 28-year-old Russian citizen, pleaded guilty to computer hacking and fraud charges in May 2011. He was released after 37 months served on remand, as part of …
John Leyden, 04 May 2016

UK.gov wasted £20m telling you to 'be safe online, mmkay'

The UK wasted £20m on raising awareness about cybercrime, a study has shown, as the public still knows almost nothing about protecting itself online. Research published by YouGov and CSID has shown that in spite of the National Audit Office reporting that £20m had been allocated by government in financial year 2014/15 "to …

Paying a PoS*, USA? Your chip-and-PIN means your money's safer...

The value of online fraudulent transactions is expected to reach $25.6bn by 2020, up from $10.7bn last year, according to a new study from industry analysts Juniper Research. The researchers predict that by the end of the decade, $4 in every $1,000 of online payments will be fraudulent. Juniper’s study, Online Payment Fraud: …
John Leyden, 03 May 2016
Hacker with face obscured, wearing a hoodie,  works in front of a bank of monitors. photo by Shutterstock

Finance bods SWIFT to update after Bangladesh hack

Security vendors are pushing for a more comprehensive revamp of the SWIFT international inter-bank financial transaction messaging system beyond a update prompted by an $81m hack against Bangladesh's central bank. The loss of $81m (part of an attempted $950m heist) in February’s Bangladesh cyber-heist – reckoned to be the …
John Leyden, 29 Apr 2016

Hackers so far ahead of defenders it's not even a game

Cybercriminals are way ahead of the game against defenders without having to try anything new, according to the latest edition of Verizon's benchmark survey of security breaches. The study shows that miscreants have no need to switch up, because the same old tactics are still working fine. Security defenders are still …
John Leyden, 26 Apr 2016

Cybercrooks turn away from banks. Your health records are far juicier

Cybercrooks are switching up targets moving away from retail and financial services onto healthcare and government last year, according to figures from IBM’s security business. Retail drops out of top five most attacked sector while financial targets dropped from #1 to #3 in IBM X-Force’s 2016 Cyber Security Intelligence Index …
John Leyden, 20 Apr 2016
Monty Python sketch: Nobody expects the Spanish Inquisition

All-Python malware nasty bites Windows victims in Poland

Malware authors have put together a strain of malicious code written entirely in Python, in what may turn out to be an experiment in creating a new type of cross-platform nasty. PWOBot is written entirely in Python, and compiled via PyInstaller to generate a Microsoft Windows executable. The malware has already infected a …
John Leyden, 19 Apr 2016