How Did Authorities Identify the Alleged Lockbit Boss?

Credit to Author: BrianKrebs| Date: Mon, 13 May 2024 11:26:27 +0000

Last week, the United States joined the U.K. and Australia in sanctioning and charging a Russian man named Dmitry Yuryevich Khoroshev as the leader of the infamous LockBit ransomware group. LockBit’s leader “LockBitSupp” claims the feds named the wrong guy, saying the charges don’t explain how they connected him to Khoroshev. This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years.

Read more

Who Stole 3.6M Tax Records from South Carolina?

Credit to Author: BrianKrebs| Date: Tue, 16 Apr 2024 11:26:55 +0000

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 million people. The answer may no longer be a mystery: KrebsOnSecurity found compelling clues suggesting the intrusion was carried out by the same Russian hacking crew that stole of millions of payment card records from big box retailers like Home Depot and Target in the years that followed.

Read more

Who’s Behind the SWAT USA Reshipping Service?

Credit to Author: BrianKrebs| Date: Mon, 06 Nov 2023 13:51:31 +0000

Last week, KrebsOnSecurity broke the news that one of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. In today’s Part II, we’ll examine clues about the real-life identity left behind by “Fearless,” the nickname chosen by the proprietor of the SWAT USA Drops service.

Read more

AI generated Pentagon explosion photograph goes viral on Twitter

Categories: News

Categories: Personal

Tags: AI

Tags: twitter

Tags: misinformation

Tags: disinformation

Tags: fake

Tags: viral

Tags: hoax

Tags: news

Tags: verified

Tags: checkmark

Tags: debunk

We take a look at a viral hoax on Twitter which used AI generated imagery to claim an explosion had occurred close to the Pentagon.

(Read more…)

The post AI generated Pentagon explosion photograph goes viral on Twitter appeared first on Malwarebytes Labs.

Read more

Sponsored Twitter post uses fake BBC News site to boost slippery oil trading app

Categories: News

Categories: Personal

Tags: forex

Tags: BBC

Tags: fake

Tags: trading

Tags: digital

Tags: reviews

Tags: website

Tags: AI

Tags: app

Tags: phone

Tags: twitter

Tags: sponsored

Tags: ad

Tags: advert

Tags: blue check

Tags: verified

We take a look at a daisy chain of links and clicks leading from a sponsored Twitter ad to a fake BBC website offering up an AI trading app.

(Read more…)

The post Sponsored Twitter post uses fake BBC News site to boost slippery oil trading app appeared first on Malwarebytes Labs.

Read more

Big changes to Twitter verification: How to spot a verified account

Categories: News

Tags: twitter

Tags: blue

Tags: verified

Tags: verification

Tags: fake

Tags: fraud

Tags: phish

Tags: phishing

Tags: scam

Tags: imposter

Significant changes to Twitter’s verification identifiers mean new rules for ensuring whether an account is real.

(Read more…)

The post Big changes to Twitter verification: How to spot a verified account appeared first on Malwarebytes Labs.

Read more

Phishers use verified status as bait for Instagram users

Categories: News

Categories: Scams

Tags: phish

Tags: phishing

Tags: instagram

Tags: facebook

Tags: verified

Tags: email

We take a look at a phishing campaign targeting users of Instagram with the promise of verified status.

(Read more…)

The post Phishers use verified status as bait for Instagram users appeared first on Malwarebytes Labs.

Read more

Meet the Administrators of the RSOCKS Proxy Botnet

Credit to Author: BrianKrebs| Date: Wed, 22 Jun 2022 13:06:34 +0000

Authorities in the United States, Germany, the Netherlands and the U.K. last week said they dismantled the “RSOCKS” botnet, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. While the coordinated action did not name the Russian hackers allegedly behind RSOCKS, KrebsOnSecurity has identified its owner as a Russian man living abroad who also runs the world’s top Russian spamming forum.

Read more