The FBI's Seattle Division is seeking to identify potential victims installing Steam games embedded with malware. The FBI believes the threat actor primarily targeted users between the timeframe of May 2024 and January 2026.
Coruna is powerful and sophisticated in both purpose and design. But it is not effective against the latest versions of iOS. The easiest defense is to ensure your iPhone is running iOS 17.3 or newer. In instances where an update is not possible, it is recommended that Lockdown Mode be enabled for enhanced security.
ShinyHunters leaked 1 million Odido records for the second day in a row. According to Have I Been Pwned, which is ingesting the data from each day's leaks, the first million contained 317,000 unique email addresses, while the second round consisted of 371,000. Details associated with those accounts include bank account numbers, other basic personal information, passport numbers, driving licenses, and customer service comments.
At least 14 boys aged 14 to 17 were allegedly lured into Meyers' scheme to send him nude photos and sex videos, which he used to blackmail the minors. Meyers was charged with trafficking in minors, sexual extortion, unlawful contact with a minor, distribution of child sexual abuse material, criminal use of a communication facility, and more following his arrest.
SLH is diversifying its social engineering pool by specifically recruiting women to conduct vishing attacks, likely to increase the success rate of help desk impersonation. The group is said to be offering anywhere between $500 and $1,000 upfront per call, in addition to providing them with the necessary pre-written scripts to carry out the attack.
A 47-year-old man arrested by police in Poland for allegedly being involved in cybercriminal activities has been linked to the Phobos ransomware operation. According to Poland's Central Cybercrime Bureau, officers found hacking tools, credentials, payment card numbers, and server IP addresses on the unnamed suspect's devices during a search. They also discovered that the suspect had exchanged messages with the Phobos ransomware group.
In furtherance of the scheme, prosecutors said the five defendants created fraudulent customer accounts and driver accounts on DoorDash's platform and used the fictitious customer accounts to place orders for delivery. Using insider access to DoorDash's computer systems, the defendants assigned those orders to fraudulent driver accounts, then manipulated DoorDash's computer systems to cause DoorDash to pay the fraudulent driver accounts as if individual orders had been delivered hundreds of times.
Entering the cyber world is stepping into a warzone. Cyber is considered a war zone, and what happens there is described as cyberwar. But it's not that simple. War is conducted by nations (political), not undertaken by criminals (financial). Both are increasing in this war zone we call cyber, but the political threat is growing fast. Cyberwar is a complex subject, and a formal definition is difficult.
Any industry that revolves around AI in some way has seen a boost in the stock market, and cybersecurity may be one of the most promising opportunities. As AI efforts expand, companies will have more data that they must safeguard from hackers. Cybersecurity stocks have been long-term winners thanks to their annual recurring revenue models and how valuable they are for companies. The value of cybersecurity firms should continue to rise as AI makes their services more essential.
The court heard how the defendant helped orchestrate the intrusion of a port operator's computer systems by having a terminal employee insert a USB stick containing malware into a workstation. That single physical act opened the door to months of remote access. Investigators found a backdoor installed in September 2020 that stayed put into the following year, while chats show the defendant exploring the network and hunting for admin access.
Notably, for the seven years since her arrest, Ms. Mangi has complied with her conditions of release. She is 70 years old and has lived at the same address for the past 28 years,
Once again threat actors kept cyber pros on their toes in 2025 in a never-ending cat-and-mouse game. But amid the noise, there were some notable stories and incidents affecting household names in the UK - the likes of Marks & Spencer, Co-op, and Jaguar Land Rover - meaning that 2025 will undoubtedly live long in the memory. Here are Computer Weekly's top cyber crime stories of 2025
Ransomware hacks, data theft, crypto scams and sextortion cover a broad range of cybercrimes carried out by an equally varied list of assailants. But there is also an English-speaking criminal ecosystem carrying out these activities that defies conventional categorisation. Nonetheless, it does have a name: the Com. Short for community, the Com is a loose affiliation of cyber-criminals, largely native English language speakers typically aged from 16 to 25.
That's the conclusion we'd like to believe any sane person would likely draw, reading this week's absurd report from South Korea, where four people were arrested after allegedly hacking an astounding 120,000 separate commercial home video cameras stationed in houses and businesses. As if that level of breach isn't inherently icky enough, several of the suspects then reportedly used the hacked material to make and then sell sexually explicit exploitation videos of strangers to foreign-based web networks that illegally distribute hacked, pornographic camera footage.
Young threat actors may be rebels without a cause. These cybercriminals typically grow out of their offending ways by the time they turn 20, according to data published by the Dutch government. In a report examining the social cost of adolescent crime, the Dutch House of Representatives cited various research papers to show that teenagers tend to explore their criminal tendencies at similar ages, regardless of the type of crime.
Are you a wizard with words? Do you like money without caring how you get it? You could be in luck now that a new role in cybercrime appears to have opened up - poetic LLM jailbreaking. A research team in Italy published a paper this week, with one of its members saying that the "findings are honestly wilder than we expected."
On Christmas Day 2024, a Russian-linked laundering network bought itself a very special present: a controlling stake in a Kyrgyzstan bank, later used to wash cybercrime profits and funnel money into Moscow's war machine, according to the UK's National Crime Agency (NCA). The network, exposed through the NCA's long-running Operation Destabilise, has been sucking up dirty cash across at least 28 UK towns and cities, converting it into cryptocurrency, and using that crypto to move funds through a bank it quietly acquired in Kyrgyzstan.
