Web Fraud 2.0 – PossibleThreat Articles

How Phished Data Turns into Apple & Google Wallets

February 28, 2025 0 Comments A Little Sunshine, All About Skimmers, andy chandler, Apple, csis security group, ford merrill, ghost tap, Google, grant smith, imessage, m3aawg, rcs, resecurity, secalliance, smishing, The Coming Storm, threatfabric, Web Fraud 2.0, znfc

Credit to Author: BrianKrebs| Date: Tue, 18 Feb 2025 18:37:26 +0000

Carding — the underground business of stealing, selling and swiping stolen payment card data — has long been the dominion of Russia-based hackers. Happily, the broad deployment of more secure chip-based payment cards in the United States has weakened the carding market. But a flurry of innovation from cybercrime groups in China is breathing new life into the carding industry, by turning phished card data into mobile wallets that can be used online and at main street stores.

Independent Krebs Security

Infrastructure Laundering: Blending in with the Cloud

January 30, 2025 0 Comments A Little Sunshine, acb group, amazon aws, anjie cdn, crowell & moring llp, fangneng cdn, funnull, infrastructure laundering, Microsoft Azure, Ne'er-Do-Well News, netscout, noname057(16), polyfill, richard hummel, silent push, suncity group, Time to Patch, u.s. department of commerce, Web Fraud 2.0, zach edwards

Credit to Author: BrianKrebs| Date: Thu, 30 Jan 2025 17:10:08 +0000

In an effort to blend in and make their malicious traffic tougher to block, hosting firms catering to cybercriminals in China and Russia increasingly are funneling their operations through major U.S. cloud providers. Research published this week on one such outfit — a sprawling network tied to Chinese organized crime gangs and aptly named “Funnull” — highlights a persistent whac-a-mole problem facing cloud services.

Independent Krebs Security

Chinese Innovations Spawn Wave of Toll Phishing Via SMS

January 16, 2025 0 Comments @chenlun, A Little Sunshine, csis security group, ezdrivema, FBI, ford merrill, IC3, imessage, Latest Warnings, lighthouse, massdot, north texas toll authority, rcs, secalliance, smishing, sms phishing, sunpass, the toll roads, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 16 Jan 2025 21:18:48 +0000

Residents across the United States are being inundated with text messages purporting to come from toll road operators like E-ZPass, warning that recipients face fines if a delinquent toll fee remains unpaid. Researchers say the surge in SMS spam coincides with new features added to a popular commercial phishing kit sold in China that makes it simple to set up convincing lures spoofing toll road operators in multiple U.S. states.

Independent Krebs Security

A Day in the Life of a Prolific Voice Phishing Crew

January 7, 2025 0 Comments 800-275-2273, A Little Sunshine, allison nixon, aristotle, autodoxers, Coinbase, crypto chameleon, discord, domaintools, Latest Warnings, lookout, mark cuban, okta, perm, shark tank, star fraud, stotle, telegram, The Coming Storm, trezor, unit 221b, voice phishing, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 07 Jan 2025 23:41:53 +0000

Besieged by scammers seeking to phish user accounts over the telephone, Apple and Google frequently caution that they will never reach out unbidden to users this way. However, new details about the internal operations of a prolific voice phishing gang show the group routinely abuses legitimate services at Apple and Google to force a variety of outbound communications to their users, including emails, automated phone calls and system-level messages sent to all signed-in devices.

Independent Krebs Security

How to Lose a Fortune with Just One Bad Click

December 18, 2024 0 Comments (650) 203-0000, A Little Sunshine, Coinbase, daniel from google, gemini ai, Google Assistant, google docs, google forms, google photos, graham cluely, junseth, Latest Warnings, minecraft, Ne'er-Do-Well News, swancoin, trezor, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Wed, 18 Dec 2024 13:17:59 +0000

Adam Griffin is still in disbelief over how quickly he was robbed of nearly $500,000 in cryptocurrencies. A scammer called using a real Google phone number to warn his Gmail account was being hacked, sent email security alerts directly from google.com, and ultimately seized control over the account by convincing him to click “yes” to a Google prompt on his mobile device.

Independent Krebs Security

How Cryptocurrency Turns to Cash in Russian Banks

December 11, 2024 0 Comments A Little Sunshine, Binance, blaven technologies, Breadcrumbs, chainalysis, CloudFlare, cryptomus, ctv news, fintrac, icon tech sro, investigative journalism foundation, mezhundarondnaya ibu sro, peter german, pq hosting, rcmp, richard sanders, russia's war on ukraine, vira krychka, Web Fraud 2.0, ws management and advisory corporation ltd, xeltox enterprises

Credit to Author: BrianKrebs| Date: Wed, 11 Dec 2024 21:38:48 +0000

A financial firm registered in Canada has emerged as the payment processor for dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services aimed at Russian-speaking customers, new research finds. Meanwhile, an investigation into the Vancouver street address used by this company shows it is home to dozens of foreign currency dealers, money transfer businesses, and cryptocurrency exchanges — none of which are physically located there.

Independent Krebs Security

FBI: Spike in Hacked Police Emails, Fake Subpoenas

November 9, 2024 0 Comments A Little Sunshine, emergency data request, fake edr, FBI, kodex, Latest Warnings, matt donahue, pwnstar, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Sat, 09 Nov 2024 19:20:26 +0000

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based technology companies.

Independent Krebs Security

Booking.com Phishers May Leave You With Reservations

November 1, 2024 0 Comments A Little Sunshine, booking.com, Latest Warnings, phishing, secureworks, spear phishing, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Fri, 01 Nov 2024 21:12:38 +0000

A number of cybercriminal innovations are making it easier for scammers to cash in on your upcoming travel plans. This story examines a recent spear-phishing campaign that ensued when a California hotel had its booking.com credentials stolen. We’ll also explore an array of cybercrime services aimed at phishers who target hotels that rely on the world’s most visited travel website.

Independent Krebs Security

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown

October 17, 2024 0 Comments A Little Sunshine, ahmed salah yousif omer, alaa salah yusuuf omer, amazon, anonsudan, anonymous sudan, DDoS-for-hire, FBI, godzilla botnet, infrashutdown, Ne'er-Do-Well News, skynet, u.s. department of justice, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 17 Oct 2024 14:17:07 +0000

The U.S. government on Wednesday announced the arrest and charging of two Sudanese brothers accused of running Anonymous Sudan (a.k.a. AnonSudan), a cybercrime business known for launching powerful distributed denial-of-service (DDoS) attacks against a range of targets, including dozens of hospitals, news websites and cloud providers. One of the brothers is facing life in prison for allegedly seeking to kill people with his attacks.

Independent Krebs Security

Lamborghini Carjackers Lured by $243M Cyberheist

October 9, 2024 0 Comments A Little Sunshine, angel "chi chi" borrero, anydesk, Breadcrumbs, gemini, jeandiel "box" serrano, malone "greavys" lam, Ne'er-Do-Well News, pantic, reynaldo "rey" diaz, SIM swapping, swag, the com, veer chetal, Web Fraud 2.0, wiz, zachxbt

Credit to Author: BrianKrebs| Date: Wed, 09 Oct 2024 17:36:27 +0000

The parents of a 19-year-old Connecticut honors student accused of taking part in a $243 million cryptocurrency heist in August were carjacked a week later, while out house-hunting in a brand new Lamborghini. Prosecutors say the couple was beaten and briefly kidnapped by six young men who traveled from Florida as part of a botched plan to hold the parents for ransom.

← Previous