"European and North American #cybercrime investigators say they have dismantled the heart of a #malware operation directed by #russian criminals after a global operation involving #British, #Canadian, #Danish, #Dutch, #French, #German and #US police."

"International arrest warrants have been issued for 20 suspects, most of them living in #russia, by European investigators while indictments were unsealed in the US against 16 individuals."

#ArmUkraineToWIN #EU #UK #NATO

https://www.theguardian.com/technology/2025/may/23/russian-led-cybercrime-network-dismantled-in-global-operation

russian-led #cybercrime network dismantled in global operation

Arrest warrants issued for ringleaders after investigation by police in Europe and North America

https://www.theguardian.com/technology/2025/may/23/russian-led-cybercrime-network-dismantled-in-global-operation

Operation Endgame 2.0: 20 Haftbefehle, Hunderte Server außer Gefecht gesetzt

Das BKA, Europol und weitere internationale Ermittlungsbehörden gehen weiter gegen Malware vor. Gegen mehr als 20 Akteure ergingen Haftbefehle und Anklagen.

https://www.heise.de/news/Operation-Endgame-2-0-20-Haftbefehle-Hunderte-Server-ausser-Gefecht-gesetzt-10394215.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

Fast 400.000 PCs infiziert: Microsoft und Europol zerschlagen Lumma-Malware

Tausende Domains, Steam-Profile und Telegram-Kanäle nutzten die Malware-Betreiber – das ist vorerst vorbei. Europol lobt die Zusammenarbeit mit Microsoft.

https://www.heise.de/news/Fast-400-000-PCs-infiziert-Microsoft-und-Europol-zerschlagen-Lumma-Malware-10393145.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

DATE: May 22, 2025 at 08:32AM
SOURCE: HEALTHCARE INFO SECURITY

Direct article link at end of text block below.

Which #cybercrime gang is behind the #cyberattack on #KetteringHealth? https://t.co/JVUrKdCmlu

Here are any URLs found in the article text:

https://t.co/JVUrKdCmlu

Articles can be found by scrolling down the page at https://www.healthcareinfosecurity.com/ under the title "Latest"

-------------------------------------------------

Private, vetted email list for mental health professionals: https://www.clinicians-exchange.org

Healthcare security & privacy posts not related to IT or infosec are at @HIPAABot . Even so, they mix in some infosec with the legal & regulatory information.

-------------------------------------------------

#security #healthcare #doctors #itsecurity #hacking #doxxing #psychotherapy #securitynews #psychotherapist #mentalhealth #psychiatry #hospital #socialwork #datasecurity #webbeacons #cookies #HIPAA #privacy #datanalytics #healthcaresecurity #healthitsecurity #patientrecords @infosec #telehealth #netneutrality #socialengineering

#Cybercrime #Hacking #Crime #Criminals #MarksandSpencer #ransomware #fraud #Shopping #UK #DataTheft #CyberFraud
In an ideal world, the public will become sick of personal data theft, and companies will tire of profit losses due to cyber crime. A pipe dream I know… but it might inspire people to use the high street again.

https://www.bbc.co.uk/news/articles/c93llkg4n51o

Trojanische Version von KeePass in Umlauf!

Als FOSS (Open-Source) sollte der Passwort-Manager KeePass über jeden Zweifel erhaben sein, oder? Radio Eriwan antwortet: Im Prinzip ja, aber nur, wenn man es aus offiziellen Quellen bezieht (z.B. direkt von der Quelle oder von f-droid oder droid-ify).

https://www.pc-fluesterer.info/wordpress/2025/05/21/trojanische-version-von-keepass-in-umlauf/

Out of the blue, a new entry for my "dear mailer-daemon" collection https://nxdomain.no/~peter/dear-mailer-daemon/ arrived just now.

Reminds me I *should* make an effort to dig out older ones to preserve.

#mailer-daemon #spam #phishing #morons #cybercrime

#Coinbase saved on payroll by underpaying for work outsourced to India so that its customers could get defrauded of at least a few hundred million dollars *already*. They (the customers) will no doubt now be stalked for years by cybercriminals who have their passport, home address, and bank information.

#ThatsSoCrypto, but also this is why Coinbase donated so much money to get Donald Trump elected so #DOGE could, in Elon's immortal turn of phrase, "delete #CFPB" (meaning destroy the Consumer Financial Protection Bureau who were helping customers deal with their complaints about Coinbase).

Reminder of a problem that should not exist, last night the #wankstortion archive https://nxdomain.no/~peter/wankstortion/ got a full message from a new campaign, showing what swelled the number of trapped hosts over the last few days.

Expect more silliness along the lines of "The Despicable, No Good, Blackmail Campaign Targeting ... Imaginary Friends?" to hit your users again and again. https://nxdomain.no/~peter/despicable_no_good_blackmail.html #cybercrime #sextortion #scams #cryptocurrency #cryptotulips #bitcoin #bitcon

From the archives, to ease your boredom:

"RFC7505 Means Yes, Your Domain Can Refuse to Handle Mail. Please Leave Us a TXT If You Do." (from 2021) https://nxdomain.no/~peter/rfc7505_means_yes_you_can_refuse_to_handle_mail.html #email #spam #antispam #rfc7505 #smtp #dns #cybercrime

More details emerge on the Coinbase breach. The crypto exchange has disclosed that hackers paid off support agents — both employees and contractors located outside the U.S. — who had access to company systems to provide customer data and then demanded a $20 million ransom not to leak the information. Via @LifeHacker. #Coinbase #Cybercrime #Cybersecurity #Cryptocurrency #Tech #Technology https://flip.it/9uPoOq

Largest US crypto exchange hit by cyber-attack with costs expected of up to $400m https://www.theguardian.com/us-news/2025/may/15/coinbase-cyber-attack-crytocurrency #Cryptocurrencies #Cybercrime #Technology #UScrime #USnews

BBC: Co-op narrowly avoided an even worse cyber attack.

M&S admitted personal customer data was stolen in the hack, which could include telephone numbers, home addresses and dates of birth.

It added the data theft did not include useable payment or card details, or any account passwords

#news #cyberCrime #hackers #theft

https://www.bbc.co.uk/news/articles/cwy382w9eglo

Angeblicher Steam-Hack: Datenleck enthält SMS-Sendeprotokolle

89 Millionen Datensätze aus dem Bestand der Gaming-Plattform kündigte der Verkäufer im Darknet an. Sie enthalten Telefonnummern und Einmalcodes.

https://www.heise.de/news/Angeblicher-Steam-Hack-Datenleck-enthaelt-SMS-Sendeprotokolle-10383892.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

An $8.4 Billion Chinese Hub for Crypto Crime Is Incorporated in Colorado

Before a crackdown by Telegram, Xinbi Guarantee grew into one of the internet’s biggest markets for Chinese-speaking crypto scammers and money laundering. And all registered to a US address

https://www.wired.com/story/xinbi-guarantee-crypto-scam-hub/

"After WIRED asked Telegram about it, Telegram banned thousands of accounts."

Psychologists may be able to explain what happened here:

May 13 14:04:14 skapet sshd-session[88955]: Failed password for invalid user FAKESSH from 213.178.90.84 port 41918 ssh2

(meh, https://nxdomain.no/~peter/hailmary_lessons_learned.html and links therein *might* be relevant) #passwordgropers #ssh #passwordguessing #cybercrime #security

#Germany takes down #eXch #cryptocurrency exchange, seizes servers

https://www.bleepingcomputer.com/news/security/germany-takes-down-exch-cryptocurrency-exchange-seizes-servers/

Ransomware: Unbekannte Angreifer leaken LockBit-Datenbank – dank PHP-Exploit?

Tausende Bitcoin-Adressen, Chatnachrichten und weitere brisante Details des Ransomware-Anbieters kursieren nun im Web. Der LockBit-Support relativiert.

https://www.heise.de/news/Ransomware-Unbekannte-Angreifer-leaken-LockBit-Datenbank-dank-PHP-Exploit-10375825.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

the fact that it's called "The Karen National Army" is just the icing on the cake

https://home.treasury.gov/news/press-releases/sb0129