A naukri.com initiative
Cyber Crime News
Securityaffairs
1M
82
Image Credit: Securityaffairs
Law enforcement seized the domains of HeartSender cybercrime marketplaces
- U.S. and Dutch authorities seized 39 domains and servers linked to the HeartSender cybercrime group based in Pakistan.
- The HeartSender group has sold phishing tools to criminals since 2020, causing over $3 million in U.S. losses.
- The cybercrime group offered training to its customers on how to use the hacking and fraud tools.
- The seizure of the domains aims to disrupt the operations of the HeartSender group and prevent the proliferation of these tools within the cybercriminal community.
Read Full Article
4 Likes
Securityaffairs
1M
284
Image Credit: Securityaffairs
Security Affairs newsletter Round 509 by Pierluigi Paganini – INTERNATIONAL EDITION
- A ransomware attack forced New York Blood Center to reschedule appointments
- Contec CMS8000 patient monitors contain a hidden backdoor
- Community Health Center data breach impacted over 1 million patients
- Italy’s data protection authority Garante blocked the DeepSeek AI platform
Read Full Article
17 Likes
Securityaffairs
1M
316
Image Credit: Securityaffairs
Ransomware attack hit Indian multinational Tata Technologies
- Indian multinational Tata Technologies, a Tata Motors subsidiary, suspended some IT services following a ransomware attack.
- The company confirmed that the ransomware attack has impacted a limited part of its IT infrastructure.
- Tata Technologies temporarily suspended some of its IT services as a precautionary measure.
- Client delivery services of the company were not affected by the attack.
Read Full Article
19 Likes
Securityaffairs
2M
385
Image Credit: Securityaffairs
A ransomware attack forced New York Blood Center to reschedule appointments
- The New York Blood Center faced a ransomware attack on Sunday, forcing the healthcare organization to reschedule appointments.
- NYBC and its operating divisions provide transfusion-related medical services and supply blood to approximately 200 hospitals in the Northeast United States.
- The ransomware attack was discovered on January 29, and the organization immediately took steps to mitigate and contain the attack.
- NYBC is working with cybersecurity experts to restore the impacted systems and there is no set timeline for system restoration.
Read Full Article
23 Likes
Bitcoinist
2M
18
Image Credit: Bitcoinist
Manchester Gang Convicted After Shocking Crypto Extortion Scheme Uncovered
- A Manchester Crown Court has sentenced seven gang members for orchestrating a series of kidnappings, violent assaults, and cryptocurrency extortion schemes.
- The victim was repeatedly targeted and forced to transfer substantial amounts of cryptocurrency to the gang's control.
- The gang employed escalating violence, including threats, confinement, and severe physical harm, before being stopped by authorities.
- The court handed down lengthy prison terms for charges including attempted robbery, kidnapping, and firearms possession.
Read Full Article
1 Like
TechJuice
2M
201
Image Credit: TechJuice
US-Dutch Action Targets ‘Pakistani’ Cybercrime Network
- US and Dutch authorities have dismantled a Pakistani cybercrime network known as HeartSender.
- The network operated online marketplaces for over a decade, facilitating phishing, malware distribution, and financial fraud.
- Law enforcement agencies seized 39 domains and servers used by the network, causing financial losses exceeding $3 million.
- HeartSender provided phishing kits and an advanced spam delivery system for mass phishing emails.
Read Full Article
12 Likes
Securityaffairs
2M
243
Image Credit: Securityaffairs
Community Health Center data breach impacted over 1 million patients
- Community Health Center (CHC) based in Connecticut is notifying over 1 million patients of a data breach that exposed their personal and medical data.
- Threat actors gained access to the CHC network in mid-October 2024, but the breach was discovered on January 2, 2025.
- The exposed data may include patient names, birth dates, contact info, diagnoses, treatments, test results, Social Security numbers, and health insurance details.
- CHC is taking measures to enhance security, provide identity theft protection, and there is no evidence of data misuse currently.
Read Full Article
14 Likes
Socprime
2M
330
Image Credit: Socprime
Lumma Stealer Detection: Sophisticated Campaign Using GitHub Infrastructure to Spread SectopRAT, Vidar, Cobeacon, and Other Types of Malware
- Lumma Stealer, along with other malware variants, is being distributed through the GitHub infrastructure in a sophisticated campaign.
- Lumma Stealer is a data-stealing malware that extracts credentials and files while connecting to adversary servers.
- Defenders can use SOC Prime Platform to access detection content and Sigma rules for Lumma Stealer and other associated malware.
- To mitigate threats like Lumma Stealer, organizations are advised to validate URLs and files, inspect email attachments, and enforce a zero-trust approach.
Read Full Article
19 Likes
TechCrunch
2M
13
Image Credit: TechCrunch
US nonprofit healthcare provider says hackers stole medical and personal data of 1M+ patients
- US nonprofit healthcare provider, Community Health Center (CHC), has confirmed that hackers accessed the sensitive data of more than a million patients.
- The organization detected suspicious activity on its network on 2 January and determined that a skilled criminal hacker had accessed its network.
- The compromised data may include patients' addresses, phone numbers, diagnoses, treatment details, test results, Social Security numbers, and health insurance information.
- The incident has not affected CHC's daily operations, and no major cybercriminal group has claimed responsibility yet.
Read Full Article
Like
Securityaffairs
2M
22
Image Credit: Securityaffairs
DeepSeek database exposed highly sensitive information
- Chinese AI platform DeepSeek has exposed two databases containing highly sensitive user and backend details.
- Wiz Research discovered a publicly accessible ClickHouse database belonging to DeepSeek, exposing chat history, secret keys, and backend details.
- The leak could have allowed attackers to take control of the database and escalate privileges without authentication.
- The exposed database contained a significant volume of chat history, API secrets, operational details, and log streams.
Read Full Article
1 Like
Tech Story
2M
22
Google Reports State-Backed Hackers Using Gemini AI to Boost Cyber Attacks AI: A Double-Edged Sword in Cybersecurity
- Google's Threat Intelligence Group has revealed that state-backed hackers from Iran, China, and North Korea are using AI, specifically Google's Gemini chatbot, to enhance their cyber operations.
- The hackers are utilizing Gemini for tasks such as writing malicious code, gathering intelligence, identifying network vulnerabilities, creating convincing phishing emails, and generating fake online personas.
- Iranian hackers mainly focus on phishing and reconnaissance, Chinese hackers use AI to enhance network intrusions, and North Korean hackers employ Gemini to create fake identities and infiltrate businesses.
- While current AI safeguards prevent major breakthroughs in cybercrime, experts warn that future developments in AI could change the landscape and emphasize the need for collaboration between governments, tech companies, and cybersecurity experts.
Read Full Article
1 Like
TechCrunch
2M
340
Image Credit: TechCrunch
US Justice Department says cybercrime forum allegedly affected 17 million Americans
- An international coalition of law enforcement agencies has taken down two prominent hacking forums and related cybercriminal services.
- The forums, known as Cracked and Nulled, had millions of users who traded in cybercriminal tools and stolen information.
- At least 17 million Americans were affected by the data on these cybercrime forums.
- An alleged cyberstalking case highlights the impact of these forums on individuals.
Read Full Article
20 Likes
Securityaffairs
2M
82
Image Credit: Securityaffairs
Operation Talent: An international law enforcement operation seized Cracked, Nulled and other cybercrime websites
- An international law enforcement operation, Operation Talent, targeted major cybercrime websites including Cracked, Nulled, Sellix, and StarkRDP.
- The operation led by Europol resulted in the seizure of Cracked and Nulled, two of the largest cybercrime forums with over 10 million users.
- Authorities arrested two suspects, seized servers and electronic devices, and confiscated cash and cryptocurrencies amounting to EUR 300,000.
- The operation aims to combat cybercrime-as-a-service and strengthen cross-border cooperation in fighting cybercrime.
Read Full Article
4 Likes
Insider
2M
271
Image Credit: Insider
Google says hackers from China, Iran, and North Korea are using Gemini to boost productivity
- Hackers from China, Iran, and North Korea are using Google's Gemini chatbot to boost their productivity in various hacking operations.
- The hackers have been using Gemini for tasks such as generating code, researching targets, and identifying network vulnerabilities.
- However, they have not yet achieved major breakthroughs or developed novel capabilities with the chatbot.
- Google's Threat Intelligence Group stated that the rapid advancements in large language models constantly provide hackers with new ways to utilize the technology.
Read Full Article
16 Likes
TechCrunch
2M
87
Image Credit: TechCrunch
US blood donation giant warns of disruption after ransomware attack
- New York Blood Center (NYBC) experienced a ransomware attack, causing service disruptions.
- NYBC detected suspicious activity on its IT systems on January 26 and confirmed it was a ransomware attack.
- Donation center activities and blood drives may need to be rescheduled, and processing times for blood donations may be longer than normal.
- It's unclear who was behind the attack, and it's unknown if patient data was accessed or if a ransom demand was made.
Read Full Article
5 Likes
For uninterrupted reading, download the app