Cybercrime

Hire me! To drop malware on your computer

FIN6 moves from point-of-sale compromise to phishing recruiters

Cyber-crime11 Jun 2025 | 3

CISO who helped unmask Badbox warns: Version 3 is coming

The botnet’s still alive and evolving

Cyber-crime11 Jun 2025 |

Trump guts digital ID rules, claims they help 'illegal aliens' commit fraud

Also axes secure software mandates - optional is the new secure, apparently

Security10 Jun 2025 | 66

M&S online ordering system operational 46 days after cyber shutdown

A milestone in cyberattack recovery – but deliveries will take a while and normal service not yet back

Cyber-crime10 Jun 2025 | 18

Let them eat junk food: Major organic supplier to Whole Foods, Walmart, hit by cyberattack

United Natural Foods shut down some of its systems on June 5 after spotting network intruders

Cyber-crime09 Jun 2025 | 5

Chinese spy crew appears to be preparing for conflict by backdooring 75+ critical orgs

SentinelOne discovered the campaign when they tried to hit the security vendor's own servers

Research09 Jun 2025 | 17

ChatGPT used for evil: Fake IT worker resumes, misinfo, and cyber-op assist

OpenAI boots accounts linked to 10 malicious campaigns

Research06 Jun 2025 | 23

Uncle Sam moves to seize $7.7M laundered by North Korean IT worker ring

The cash has been frozen for more than two years

Security06 Jun 2025 | 3

Your ransomware nightmare just came true – now what?

Feature Don't negotiate unless you must, and if so, drag it out as long as you can

CSO06 Jun 2025 | 40

Uncle Sam puts $10M bounty on RedLine dev and Russia-backed cronies

Any info on Maxim Rudometov and his associates? There's $$$ in it for you

Cyber-crime05 Jun 2025 | 3

AT&T not sure if new customer data dump is déjà vu

Re-selling info from an earlier breach? Probably. But which one?

Cyber-crime05 Jun 2025 | 1

BidenCash busted as Feds nuke stolen credit card bazaar

Dark web crime platform raked in $17M+ over three years of operation

Cyber-crime05 Jun 2025 | 3

More than a hundred backdoored malware repos traced to single GitHub user

Someone went to great lengths to prey on the next generation of cybercrooks

Cyber-crime05 Jun 2025 | 12

HMRC: Crooks broke into 100k accounts, stole £43M from British taxpayer in late 2024

It’s definitely not a cyberattack though! Really!

Public Sector05 Jun 2025 | 29

Play ransomware crims exploit SimpleHelp flaw in double-extortion schemes

Recompiled binaries and phone threats used to boost the pressure

Cyber-crime04 Jun 2025 | 1

Ransomware scum leak patient data after disrupting chemo treatments at Kettering

Literally adding insult to injury

Cyber-crime04 Jun 2025 | 11

Fake IT support calls hit 20 orgs, end in stolen Salesforce data and extortion, Google warns

Victims include hospitality, retail and education sectors

Cyber-crime04 Jun 2025 | 24

Crims stole 40,000 people's data from our network, admits publisher Lee Enterprises

Did somebody say ransomware? Not the newspaper group, not even to deny it

Cyber-crime04 Jun 2025 | 2

‘Deliberate attack’ deletes shopping app’s AWS and GitHub resources

CEO of India's KiranaPro, which brings convenience stores online, vows to name the perp

Cyber-crime04 Jun 2025 | 22

You say Cozy Bear, I say Midnight Blizzard, Voodoo Bear, APT29 …

Opinion Microsoft, CrowdStrike, and pals promise clarity on cybercrew naming, deliver alias salad instead

Cyber-crime03 Jun 2025 | 14

Crooks fleece The North Face accounts with recycled logins

Outdoorsy brand blames credential stuffing

Cyber-crime03 Jun 2025 | 7

Illicit crypto-miners pouncing on lazy DevOps configs that leave clouds vulnerable

To stop the JINX-0132 gang behind these attacks, pay attention to HashiCorp, Docker, and Gitea security settings

Security03 Jun 2025 | 6

Bling slinger Cartier tells customers to be wary of phishing attacks after intrusion

Nothing terribly valuable taken in data heist, though privacy a little tarnished

Cyber-crime03 Jun 2025 | 6

US community bank says thieves drained customer data through third party hole

Disclosure at MainStreet Bancshares comes as American finance orgs beg for looser reporting requirements

Cyber-crime02 Jun 2025 | 13

Mysterious leaker GangExposed outs Conti kingpins in massive ransomware data dump

exclusive 'It's a high-stakes intelligence war,' analyst explains

Cyber-crime31 May 2025 | 30

ConnectWise customers get mysterious warning about 'sophisticated' nation-state hack

Pen tester on ScreenConnect bug: This one ‘terrifies’ me

Cyber-crime30 May 2025 | 5

US medical org pays $50M+ to settle case after crims raided data and threatened to swat cancer patients

Cash splashed on damages, infrastructure improvements, and fraud monitoring

Cyber-crime30 May 2025 | 2

Crims defeat human intelligence with fake AI installers they poison with ransomware

Take care when downloading AI freebies, researcher tells The Register

Cyber-crime30 May 2025 | 7

8,000+ Asus routers popped in 'advanced' mystery botnet plot

No formal attribution made but two separate probes hint at the same suspect

Research29 May 2025 | 10

Attack on LexisNexis Risk Solutions exposes data on 300k +

Data analytics and risk management biz says software dev platform breached, not itself

Cyber-crime28 May 2025 | 2

Russian IT pro sentenced to 14 years forced labor for sharing medical data with Ukraine

The latest in a long line of techies to face Putin’s wrath

Security28 May 2025 | 47

DragonForce double-whammy: First hit an MSP, then use RMM software to push ransomware

Updated SimpleHelp was the vector for the attack

Security28 May 2025 |

Don't click on that Facebook ad for a text-to-AI-video tool

Millions may fall for it - and end up with malware instead

Cyber-crime27 May 2025 | 7

New Russian cyber-spy crew Laundry Bear joins the email-stealing pack

Dutch intel services, Microsoft go big-game hunting

Cyber-crime27 May 2025 | 11

Adidas confirms criminals stole data from customer service provider

Hackers take personal data bytes from the brand with three stripes

Cyber-crime27 May 2025 | 2

Ransomware scum leaked Nova Scotia Power customers' info

Bank accounts, personal details all hoovered up in the attack

Cyber-crime23 May 2025 | 9

Grandpa-conning crook jailed over sugar-coated drug scam

Callous fraudster tricked elderly gents into smuggling meth hidden in chocolate truffles

Offbeat23 May 2025 | 13

Ivanti makes dedicated fans of Chinese spies who just can't resist attacking its buggy kit

If it ain't broke?

Datacenter Networking Nexus23 May 2025 | 1

Feds finger Russian 'behind Qakbot malware' that hit 700K computers

Agents thought they shut this all down in 2023, but the duck quacked again

Cyber-crime22 May 2025 | 2

Chinese snoops tried to break into US city utilities, says Talos

Intrusions began weeks before Trimble patched the Cityworks hole

Cyber-crime22 May 2025 | 6

Russia's Fancy Bear swipes a paw at logistics, transport orgs' email servers

Their connection? Aiding Ukraine, duh

Security21 May 2025 | 10

FBI, Microsoft, international cops bust Lumma infostealer service

Credit card theft losses in 2023 alone totaled $36.5M

Cyber-crime21 May 2025 |

Coinbase confirms insiders handed over data of 70K users

Bribed support staff identified, fired

Cyber-crime21 May 2025 | 17

M&S warns of £300M dent in profits from cyberattack

Downtime stings retailer, with technical recovery costs coming at a later date

Cyber-crime21 May 2025 | 42

Scattered Spider snared financial orgs before targeting shops in Britain, America

interview Crew ain't done hopping sectors, Unit 42 threat hunter warns

Cyber-crime21 May 2025 | 4

'Ongoing' Ivanti hijack bug exploitation reaches clouds

Nothing like insecure code in security suites

CSO21 May 2025 | 4

Ransomware attack on food distributor spells more pain for UK supermarkets

Peter Green Chilled supplies all the major UK chains

Cyber-crime20 May 2025 | 64

SEC SIM-swapper who Googled 'signs that the FBI is after you' put behind bars

Proving yet again that crims are bad at search hygiene

Cyber-crime19 May 2025 | 29

Millions at risk after attackers steal UK legal aid data dating back 15 years

Cybercriminals lifted info including addresses, ID numbers, and financial records from agency systems

Cyber-crime19 May 2025 | 49

Ex-NSA bad-guy hunter listened to Scattered Spider's fake help-desk calls: 'Those guys are good'

INTERVIEW Plus, Co-op tells The Reg: 'we took early and decisive action' to block the crooks

CSO18 May 2025 | 66

Fired US govt workers, Uncle Xi wants you! – to apply for this fake consulting gig

Phony LinkedIn recruitment ads? Groundbreaking

Public Sector16 May 2025 | 27

DoorDash scam used fake drivers, phantom deliveries to bilk $2.59M

Entire process took less than five minutes, prosecutors say

Cyber-crime15 May 2025 | 18

Cyber fiends battering UK retailers now turn to US stores

Interview DragonForce-riding ransomware ring also has 'shiny object syndrome' so will likely move on to another sector soon

Cyber-crime15 May 2025 | 6

Coinbase extorted for $20M. Support staff bribed. Customers scammed. One hell of a SNAFU

Expert tells us: 'It is the most unique breach disclosure I've ever seen'

Cyber-crime15 May 2025 | 14

Here's what we know about the DragonForce ransomware that hit Marks & Spencer

Would you believe it, this RaaS cartel says Russia is off limits

Cyber-crime15 May 2025 | 23

Ransomware scum have put a target on the no man's land between IT and operations

Defenses are weaker, and victims are more likely to pay, SANS warns

CSO14 May 2025 | 17