Security Awareness Training Blog

Cybercrime Blog

We report on the latest trends in cybercrime to help you stay informed and aware of what the current threat landscape looks like.

View Topics

Cybercriminals Are Growing More Organized

Jul 28, 2021 9:03:29 AM By Stu Sjouwerman
The cybercriminal underground is becoming increasingly organized, according to researchers at HP. The criminal underground functions like a regular economy, with people selling goods and ...
Continue Reading

U.S. State Department Issues a Reward for Information on Foreign Cybercriminals Targeting Critical Infrastructure

Jul 23, 2021 8:24:29 AM By Stu Sjouwerman
In the wake of cyberattacks targeting U.S. infrastructure organizations, the U.S. government is stepping up measures to identify foreign threat actors and bring them to justice.
Continue Reading

Mint Mobile, Porting Numbers, and Identity Theft

Jul 21, 2021 8:47:55 AM By Stu Sjouwerman
US telecommunications company Mint Mobile warned some users that their phone numbers had temporarily been ported to another carrier by an unauthorized individual, which allowed the ...
Continue Reading

The Cost and Impact of Cybercrime Can Now Be Measured in a Single Minute

Jul 20, 2021 9:57:55 AM By Stu Sjouwerman
With the number of threat actors growing rapidly, along with an increased frequency of attacks, RiskIQ has put together a sobering perspective of how cybercrime impacts us in just 60 ...
Continue Reading

[Eye Opener] The Biggest Bitcoin Heist Ever: A Whopping 3.6 Billion Dollars!

Jun 29, 2021 10:28:11 AM By Stu Sjouwerman
I'm not sure why this is not all over the press. Bloomberg picked up on this though. A pair of South African brothers have vanished, along with Bitcoin worth $3.6 billion from their ...
Continue Reading

Use of TLS to Obfuscate Malicious C2 Communications Doubles in the Last Year

Jun 2, 2021 4:57:30 PM By Stu Sjouwerman
With 98% of all web traffic going over HTTPS, the malicious use of TLS (transport layer security) helps the cybercriminal conceal their activity specifics while also potentially doing so ...
Continue Reading

Strange Chinese APT Interest in Buying Batches of AV Products

May 6, 2021 9:40:50 AM By Stu Sjouwerman
The Chinese military unit was recently accused of carrying out a years-long cyber espionage. The accusation from Japanese authorities was due to China's People Liberation Army buying ...
Continue Reading

Genesis Market: a Study in the C2C Economy

May 5, 2021 8:55:19 AM By Stu Sjouwerman
Researchers at Digital Shadows describe Genesis Market, a criminal-to-criminal marketplace that aggregates and sells digital fingerprints to facilitate cyberattacks. The researchers say ...
Continue Reading

FBI's Newly Release Internet Crime Report Shows Cybercrime has Ramped Up in 2020

Mar 31, 2021 4:17:38 PM By Stu Sjouwerman
The FBI's Internet Crime Complaint Center (IC3) released their annual report, and the number of complaints have skyrocketed in 2020.
Continue Reading

Not Your Father's Tech Support Scam

Mar 22, 2021 10:43:45 AM By Eric Howes
Over the past month or so customers using the Phish Alert Button (PAB) have been reporting a curious wave of what initially appeared to be run-of-the-mill tech support scam emails. As it ...
Continue Reading

Cybercrime Officially Has Its Own Global Ecosystem

Mar 17, 2021 2:06:43 PM By Stu Sjouwerman
From Services, to Distribution, to Monetization, cybercriminals are getting so organized, cybersecurity experts are now beginning to see how vast the relationships and connections really ...
Continue Reading

[THIS IS UGLY] A Hacker Got All My Texts for $16

Mar 16, 2021 10:50:55 AM By Stu Sjouwerman
VICE just revealed a 2FA hole you can drive a truck through. A gaping flaw in SMS lets hackers take over phone numbers in minutes by simply paying a company to reroute text messages. This ...
Continue Reading

The Evolving Cybercriminal Market Has Given Birth to Impersonation-as-a-Service as Attackers Seek to Impersonate at Scale

Mar 15, 2021 8:00:00 AM By Stu Sjouwerman
New research documents Impersonation-as-a-Service (IMPaaS) as an emerging threat where profiles of victim users are available to be used in campaigns where impersonation is critical.
Continue Reading

Microsoft Exchange Server hacks ‘doubling’ every two hours | ZDNet

Mar 12, 2021 9:18:55 AM By Stu Sjouwerman
Cyberattackers are taking full advantage of slow patch or mitigation processes on Microsoft Exchange Server with attack rates doubling every few hours.   According to Check Point ...
Continue Reading

Someone Hacked The Four Top Russian Cybercrime Forums In One Month

Mar 5, 2021 10:52:44 AM By Stu Sjouwerman
Intrepid investigative cyber security reporter Brian Krebs has some interesting news. He said: "Over the past few weeks, three of the longest running and most venerated Russian-language ...
Continue Reading

Dutch Intelligence Agencies Warn About Chinese and Russian Cyber Espionage

Feb 12, 2021 1:39:00 PM By Stu Sjouwerman
Chinese and Russian state hackers threaten the Dutch economy. Three Dutch intelligence agencies jointly sound the alarm about digital espionage in financial newspaper Het Financieele ...
Continue Reading

Why Small Businesses Often Say ‘Why Bother?’ When Dealing With Cybercrime

Jan 4, 2021 4:32:44 PM By Erich Kron
Well, it happened again. As a security professional, I hear a lot of things being said that are exaggerated or just plain untrue. I’ve become used to that, however, there is one phrase ...
Continue Reading

Ransomware Gangs Are Now Cold-Calling Victims If They Restore From Backups Without Paying

Dec 5, 2020 10:16:20 AM By Stu Sjouwerman
Catalin Cimpanu at ZDNet reported on another evil escalation in ransomware extortion tactics.  In attempts to put pressure on victims, some ransomware gangs are now cold-calling victims ...
Continue Reading

Conman in the Secret World

Nov 3, 2020 8:31:57 AM By Stu Sjouwerman
Last week, Garrison Courtney, a former spokesman for the US Drug Enforcement Administration, was sentenced to seven years in prison for running a massive Ponzi scheme involving dozens of ...
Continue Reading

An Autopsy of a $15 Million Heist

Oct 8, 2020 11:33:12 AM By Stu Sjouwerman
A company in the US lost $15 million in a two-month-long business email compromise scam, BleepingComputer reports. Researchers at Mitiga who investigated the attack told BleepingComputer ...
Continue Reading
Subscribe

Search Our Blog


Ransomware Hostage Rescue Manual

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews