u.s. department of justice – PossibleThreat Articles

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown

October 17, 2024 0 Comments A Little Sunshine, ahmed salah yousif omer, alaa salah yusuuf omer, amazon, anonsudan, anonymous sudan, DDoS-for-hire, FBI, godzilla botnet, infrashutdown, Ne'er-Do-Well News, skynet, u.s. department of justice, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 17 Oct 2024 14:17:07 +0000

The U.S. government on Wednesday announced the arrest and charging of two Sudanese brothers accused of running Anonymous Sudan (a.k.a. AnonSudan), a cybercrime business known for launching powerful distributed denial-of-service (DDoS) attacks against a range of targets, including dozens of hospitals, news websites and cloud providers. One of the brothers is facing life in prison for allegedly seeking to kill people with his attacks.

Independent Krebs Security

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

September 26, 2024 0 Comments A Little Sunshine, alex holden, arpa plus, briansclub, chainanlysis, cryptex, cs proxy solutions cy, dark angels, financial crimes enforcement network, Hold Security, home depot breach, Joker's stash, liberty reserve, mazafaka, Ne'er-Do-Well News, novaya gazeta, orbest investments lp, organized crime and corruption project, perfect money, pinpays, pm2btc, progate solutions, rich sanders, rm everton ltd, sergey sergeevich ivanov, sergey sergeevich omelnitskii, taleon, target breach, The Coming Storm, the laundromat, timur kamilevich shakhmametov, u.s. department of justice, uaps, universal anonymous payment system, unlimited cashouts, v1pee, vega, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 26 Sep 2024 14:54:07 +0000

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash, a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. The government also indicted a top Russian cybercriminal known as Taleon, whose cryptocurrency exchange Cryptex has evolved into one of Russia’s most active money laundering networks.

Independent Krebs Security

The Dark Nexus Between Harm Groups and ‘The Com’

September 13, 2024 0 Comments 2992, 303, 404, 545, 555, 6996, 7997, 8884, advance auto parts, ali winston, alphv, aspertaine, AT&T, beige group, black cat, bloomberg, breachforums, Breadcrumbs, chumlul, court, CrowdStrike, cultist, cvlt, der spiegel, discord, doxbin, ea games, h3ll, harm nation, james thomas andrew mccarty, judische, kalana limkin, kaskar, kayte, kingbob, kt, kya christian nelson, leak society, lending tree, mandiant, mark rasch, mgm resorts, Microsoft, minecraft, Ne'er-Do-Well News, neiman marcus, nicholas "convict" ceraolo, nmk, noah michael urban, NVIDIA, okta, owen david flowers, pompompurin, rcmp, recorder, roblox, royal canadian mounted police, sagar "weep" singh, Samsung, santander bank, scattered spider, SIM swapping, slit town, snowflake, sosa, star chat, steam, SWATting, T-Mobile, telegram, the com, the washington post, Ticketmaster, twitch, u.s. department of justice, u.s. drug enforcement agency, unc5537, unit 221b, vile, violence-as-a-service, vsphere, waifu, Web Fraud 2.0, wired

Credit to Author: BrianKrebs| Date: Fri, 13 Sep 2024 12:16:45 +0000

A cyberattack that shut down some of the top casinos in Las Vegas last year quickly became one of the most riveting security stories of 2023: It was the first known case of native English-speaking hackers in the United States and Britain teaming up with ransomware gangs based in Russia. But that made-for-Hollywood narrative has eclipsed a far more hideous trend: Many of these young, Western cybercriminals are also members of fast-growing online groups that exist solely to bully, stalk, harass and extort vulnerable teens into physically harming themselves and others.

Independent Krebs Security

New 0-Day Attacks Linked to China’s ‘Volt Typhoon’

August 27, 2024 0 Comments A Little Sunshine, black lotus labs, bronze silhouette, christopher wray, cve-2024-39717, cybersecurity & infrastructure security agency, federal bureau of investigation, insidious taurus, internet of things (iot), kv-botnet, Latest Warnings, lumen technologies, michael horka, National Security Agency, ryan english, The Coming Storm, u.s. department of justice, versa director 22.1.4, volt typhoon

Credit to Author: BrianKrebs| Date: Tue, 27 Aug 2024 14:26:41 +0000

Malicious hackers are exploiting a zero-day vulnerability in Versa Director, a software product used by many Internet and IT service providers. Researchers believe the activity is linked to Volt Typhoon, a Chinese cyber espionage group focused on infiltrating critical U.S. networks and laying the groundwork for the ability to disrupt communications between the United States and Asia during any future armed conflict with China.

Independent Krebs Security

The Not-So-Secret Network Access Broker x999xx

July 3, 2024 0 Comments Breadcrumbs, cobalt strike, cobaltforce, constella intelligence, dashin2008@yahoo.com, flashpoint, intel 471, kirtsov@telecom.ozersk.ru, lockbit, maksim georgievich kirtsov, maksya@icloud.com, maxnmalias-1@yahoo.com, mikhail matveev, Ne'er-Do-Well News, operation endgame, osint.industries, ozersk technological institute national research nuclear university, recorded future, u.s. department of justice, wazawaka, x999xx, Кирцов Максим Георгиевич

Credit to Author: BrianKrebs| Date: Wed, 03 Jul 2024 16:41:34 +0000

Most accomplished cybercriminals go out of their way to separate their real names from their hacker handles. But among certain old-school Russian hackers it is not uncommon to find major players who have done little to prevent people from figuring out who they are in real life. A case study in this phenomenon is “x999xx,” the nickname chosen by a venerated Russian hacker who specializes in providing the initial network access to various ransomware groups.

Independent Krebs Security

U.S. Charges Russian Man as Boss of LockBit Ransomware Group

May 7, 2024 0 Comments A Little Sunshine, dmitry yuryevich khoroshev, lockbitsupp, Ne'er-Do-Well News, russia's war on ukraine, u.s. attorney philip r. sellinger, u.s. department of justice, Дмитрий Юрьевич Хорошев

Credit to Author: BrianKrebs| Date: Tue, 07 May 2024 17:36:14 +0000

The United States joined the United Kingdom and Australia today in sanctioning 31-year-old Russian national Dmitry Yuryevich Khoroshev as the alleged leader of the infamous ransomware group LockBit. The U.S. Department of Justice also indicted Khoroshev as the gang’s leader “LockbitSupp,” and charged him with using Lockbit to attack more than 2,000 victims and extort at least $100 million in ransomware payments.

Independent Krebs Security

A Close Up Look at the Consumer Data Broker Radaris

March 8, 2024 0 Comments affiliate.ru, american russian media inc., arrestfacts.com, atlas data privacy corp., bitseller expert ltd, bizstanding.com, Breadcrumbs, centeda.com, channel one, clubset.com, consumer reporting agencies, daniel's law, dating factory, difive.com, dmitry lybarsky, epop@comby.com, fact magazine, fair credit reporting act, gary nard, gary norden, gary@barksy.com, gary1@eprofit.com, homeflock.com, homemetry.com, igor lybarsky, instantcheckmate.com, kworld.com, newenglandfacts.com, ntv, persontrust.com, projectlab.com, pub360.com, publicreports.com, radaris.com, radaris.ru, rehold.com, rosconcert.com, trustoria.com, truthfinder, u.s. department of justice, u.s. federal communications commission, u.s. federal trade commission, unipoint technology inc., virtory.com

Credit to Author: BrianKrebs| Date: Fri, 08 Mar 2024 13:02:48 +0000

If you live in the United States, the data broker Radaris likely knows a great deal about you, and they are happy to sell what they know to anyone. But how much do we know about Radaris? Publicly available data indicates that in addition to running a dizzying array of people-search websites, the co-founders of Radaris operate multiple Russian-language dating services and affiliate programs. It also appears many of their businesses have ties to a California marketing firm that works with a Russian state-run media conglomerate currently sanctioned by the U.S. government.

Independent Krebs Security

New Leak Shows Business Side of China’s APT Menace

February 28, 2024 0 Comments A Little Sunshine, citizen lab, dakota cary, Data Breaches, i-soon, mei danowski, Ne'er-Do-Well News, poison carp, sentinelone, u.s. department of justice, will thomas, wu haibo

Credit to Author: BrianKrebs| Date: Thu, 22 Feb 2024 13:27:47 +0000

A new data leak that appears to have come from one of China’s top private cybersecurity firms provides a rare glimpse into the commercial side of China’s many state-sponsored hacking groups. Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage campaigns to the nation’s burgeoning and highly competitive cybersecurity industry.

Independent Krebs Security

BlackCat Ransomware Raises Ante After FBI Disruption

January 13, 2024 0 Comments alphv ransomware, blackcat ransomware, deputy attorney general lisa o. monaco, FBI, lawrence abrams, other, u.s. department of justice

Credit to Author: BrianKrebs| Date: Tue, 19 Dec 2023 22:49:43 +0000

The U.S. Federal Bureau of Investigation (FBI) disclosed today that it infiltrated the world’s second most prolific ransomware gang, a Russia-based criminal group known as ALPHV and BlackCat. The FBI said it seized the gang’s darknet website, and released a decryption tool that hundreds of victim companies can use to recover systems. Meanwhile, BlackCat responded by briefly “unseizing” its darknet site with a message promising 90 percent commissions for affiliates who continue to work with the crime group, and open season on everything from hospitals to nuclear power plants.

Independent Krebs Security

U.S. Hacks QakBot, Quietly Removes Botnet Infections

August 29, 2023 0 Comments doj, don alway, FBI, federal bureau of investigation, Latest Warnings, martin estrada, qakbot, Qbot, Ransomware, The Coming Storm, u.s. department of justice

Credit to Author: BrianKrebs| Date: Tue, 29 Aug 2023 18:35:25 +0000

The U.S. government today announced a coordinated crackdown against QakBot, a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. The international law enforcement operation involved seizing control over the botnet’s online infrastructure, and quietly removing the Qakbot malware from tens of thousands of infected Microsoft Windows computer systems.

← Previous