Monthly Archives: January 2017

Cybersecurity Threat: 5 Cyber Criminals Arrested for $2.6M ATM Heist Using Malware

Suspected of a massive cybersecurity breach, five members of an international cyber criminal gang have been arrested and charged with stealing cash amounting to $2.6 million using malware attacks on ATMs.

The Taiwanese Criminal Investigation Bureau had already arrested three of the suspects. One has been arrested by the Romanian National Police, while the other was apprehended by the Belarusian Central Office of the Investigative Committee.

According to Europol, the European-based cyber crime gang stole a total of $2.6 million from ATMs using various hacking techniques and malware to force the ATMs belonging to the First Bank to dispense cash.

Their modus operandi was to target email IDs of bank employees with spear-phishing emails with malicious attachments and get into the bank’s internal system that way, after which they would find and hack specific ATMs from inside the network, forcing the ATMs to spit out cash. They were even careful enough to infect

Read more at:

Millions of XBox and PSP gamers details stolen by hackers

More than 2.5 million gamers have had their details stolen (Picture:  Kiyoshi Ota/Bloomberg via Getty Images)

The XBOX360 ISO and PlayStation’s PSP ISO forum, both unofficial sites where players share links to download free and pirated versions of games, were reportedly stolen in September 2015.

It is thought that email addresses and passwords were compromised in the hack and shared publicly online, according to monitoring sire

Security experts are urging consumers to change passwords and review their security settings.

Robert Capps from NuData Security warned internet users this was the latest reminder to use unique passwords across online accounts to keep data out of the hands of cyber criminals.

PARIS, FRANCE - OCTOBER 27: A gamer plays a video game on Microsoft Xbox console during the Paris Games Weekon October 27, 2016 in Paris, France. Paris Games<p data-recalc-dims=Read more at:

Insider Trading Growing on Dark Web: Security Firms Red Owl …

Unscrupulous workers who sell their employers’ secrets are nothing new. But a rise in websites dedicated to white collar crime is making the practice easier than ever—and leading more insiders to peddle confidential information.

According to a new report from the security firms RedOwl and Intsights, the activity of company insiders on so-called “dark web” sites has doubled in the last year, posing a threat to both consumers and investors.

The sites, which can only be accessed via a tool called the Tor browser, amount to online criminal syndicates where members buy and sell information about corporate earnings and other sensitive business data. Some of

Read more at:

Data breach costs exceed 20% of revenue

Digitisation danger

Changes in the technology landscape, led by digitisation, are creating opportunities for cyber criminals, the report said. Nearly a third of employee-introduced, third-party cloud applications that were intended to open up new business opportunities and increase efficiencies were categorised as high risk and created significant security concerns.

And while attackers continue to use time-tested techniques, they are also employing new approaches that mirror the “middle management” structure of their corporate targets. Old-fashioned adware ‑ software that downloads advertising without user permission – continued to prove successful, infecting 75% of organisations investigated.

Although there was a drop in the use of large exploit kits such as Angler, Nuclear and Neutrino that were target by law enforcement in 2016, the report said smaller players rushed in to fill the gap.

The report revealed that just 56% of security alerts are investigated and less than half of legitimate alerts remediated, noting that while defenders

Read more at:

US Attorney: Cyber crime is a multi-billion global business

Photo by Larry Untermeyer

Vanessa Richards speaks to the Y’s Men

They’re after you on the internet — mischief makers, scammers, identity thieves, crooks and criminals. Cyber crime. It’s a big dollar business, it’s getting bigger, and it depends on your carelessness to keep it growing.

Last Thursday US Attorney Vanessa Richards told Y’s Men what cyber crime is, she identified a few of the more common types, and told the group “how you can avoid becoming a victim.”

Ms. Richards serves as Assistant U.S. Attorney in the District of Connecticut and Computer Hacking and Intellectual Property (CHIP) Coordinator for the Office. She prosecutes national security crimes including those involving computer intrusions and she oversees a federal inter-agency cyber working group for Connecticut.

Richards was joined by US Postal Service Inspector Jeremy Tendler, a specialist in cyber-enabled and identity theft crimes. He is the identity theft and cyber enabled crimes co-ordinator for the New England

Read more at:

Remove zXz Ransomware

I wrote this article to help you remove zXz Ransomware. This zXz Ransomware removal guide works for all Windows versions.

zXz ransomware is a Trojan ransomware virus. The infection is also known as Wagcrypt, since the Trojan carrying it is called Win32/Wagcrypt.A. zXz ransomware works in a similar manner to other win-lockers. It encrypts a certain range of files and asks for a ransom to decrypt them. Victims need to pay to access their own data on their own computer. Blocking the accessibility to your machine is a cyber crime. When dealing with fraudsters, you need to keep in mind that there is a security risk to paying. There is no guarantee that the clandestine program will restore your files after you pay up. You should wait until zXz ransomware has been cracked. When a new virus appears, security experts start working on a custom decrypter. Depending on the complexity

Read more at:

Cyber criminal from Cottenham jailed for offences that included voyeurism and possession of indecent images of a child

12:46 31 January 2017

Shaun Turner – Cyber criminal who used malware to spy on unknowing victims


A cyber criminal who used malware to spy on unknowing victims has been jailed for three years for offences that included voyeurism and possession of indecent images of a child.

Shaun Turner accessed

Read more at:

Cyber criminal who spied on victims through webcams jailed for three years at Peterborough Crown Court

A cyber criminal who used malware to spy on unknowing victims via their personal webcams has been jailed for a series of offences following an investigation by the Eastern Region Special Operations Unit (ERSOU).

ERSOU’s Regional Cyber Crime Unit were alerted to the illegal online activities of Shaun Turner, 29, of Race Course View, Cottenham, relating to his use of a malware system known as a Remote Access Trojan or ‘RAT’.

The RATs used by Turner enabled him to download all files held on his victims’ computers – including personal pictures, videos and identity documents. In addition, he deployed software to victims’ computers that streamed live images taken by their webcam to his own computer to view.

A number of victims were identified, who Turner had never met. Records were discovered that showed Turner has also acted as a ‘salesman’ for the distribution of malware, and offered technical assistance to aspiring

Read more at:

Get ready for the cyber war in 2017: know your enemy

Nick Ismail
Nick Ismail

The past few months have summed up the current state of the cyber security industry.

In a matter of days at the end of November the European Commission was brought offline by a distributed denial-of-service (DDoS) attack, San Francisco’s Municipal Railway was held to ransom by ransomware in a system-wide attack and it was revealed that in September the Japanese Defence Ministry and Self-Defence Forces were hacked, which may have compromised Japan’s internal military network.

It seems almost farcical, and from these recent examples it is evident that critical infrastructure is totally unprepared for an attack and will continue to be severely vulnerable at the beginning of 2017.

It is not just the public sector that is suffering, with private organisations facing daily hacking attacks despite serious investment in cyber security strategies.

The problem is inherently twofold. The first is that

Read more at:

Fake rail tickets in the age of the dark web and ‘smart’ payments

Late last year, a team at the BBC bought a first class ticket from Hastings to Manchester and a monthly ticket for the Gatwick Airport to London route; nothing remarkable about that, at first glance.

However, these tickets were not purchased through a website, via an app, or in person at a ticket office. Rather, they were sourced on the dark web – the shadowy part of the internet that flourishes with illegal trade of weapons, drugs and stolen credit cards, among other things.

These ‘passes’ were used up to 12 times by the BBC, although due to differences in the magnetic stripe they were unable to pass through the ticket barriers and had to ask station staff to let them through.

After this revelation, the group selling the tickets said in a statement: “The train companies keep stuffing their pockets with public subsidies while treating the operation of rail services as

Read more at: