Cybercrime

TOR-based cryptojacking attack spreads through misconfigured Docker APIs

Cybersecurity experts have recently uncovered an evolved form of a cryptojacking campaign that leverages the TOR network to target misconfigured Docker APIs. Akamai, which identified this activity in August 2025, reported that the attackers attempt to lock down exposed Docker APIs to prevent other threat actors from gaining access. This development expands on Trend Micro’s […]

TOR-based cryptojacking attack spreads through misconfigured Docker APIs Read More »

add a heading (9)

New Malware Exploits TASPEN to Target Indonesian Senior Citizens

A new and highly coordinated malware campaign has surfaced in Indonesia, specifically preying on senior citizens who depend on the nation’s official pension system. The attackers are exploiting the credibility of PT Dana Tabungan dan Asuransi Pegawai Negeri (TASPEN), the state-owned pension fund that manages more than $15.9 billion in assets for millions of retired

New Malware Exploits TASPEN to Target Indonesian Senior Citizens Read More »

add a heading (8)

Underground Ransomware Gang Reveals New Global Attack Tactics

Over the past year, the Underground ransomware group has risen as a major threat to organizations worldwide, spanning multiple industries and countries. Initially spotted in July 2023, the gang reappeared in May 2024 with a Dedicated Leak Site (DLS), signaling a shift toward more advanced and strategic operations. Their attacks now reach from the United

Underground Ransomware Gang Reveals New Global Attack Tactics Read More »

add a heading

Chinese Hacker Sentenced for Using Kill Switch on Ohio Company’s Global Network

A 55-year-old Chinese national, Davis Lu, has been sentenced to four years in federal prison for executing a destructive insider cyberattack on the global IT infrastructure of his former employer in Beachwood, Ohio. Lu exploited his privileged role as a software developer to implant advanced malware that disrupted thousands of users across multiple countries. The

Chinese Hacker Sentenced for Using Kill Switch on Ohio Company’s Global Network Read More »

add a heading (12)

GeoServer Exploits and Emerging Groups Expanding Cybercrime Beyond Botnets

Growing Cybercrime Campaigns Targeting Servers and IoT Devices Cybersecurity experts are highlighting multiple ongoing campaigns where attackers exploit known security flaws, particularly in Redis servers, to conduct malicious activities. These include building IoT botnets, setting up residential proxies, and creating cryptocurrency mining infrastructures. One major focus is CVE-2024-36401 (CVSS 9.8), a critical remote code execution

GeoServer Exploits and Emerging Groups Expanding Cybercrime Beyond Botnets Read More »

add a heading (24)

Scattered Spider Hacker Sentenced to 10 Years for $13M SIM Swapping Crypto Theft

A 20-year-old member of the cybercrime gang Scattered Spider has been sentenced to 10 years in U.S. federal prison for his involvement in a series of major hacking campaigns and cryptocurrency theft operations. Sentencing Details Noah Michael Urban pleaded guilty in April 2025 to charges of wire fraud and aggravated identity theft, according to reports from Bloomberg and

Scattered Spider Hacker Sentenced to 10 Years for $13M SIM Swapping Crypto Theft Read More »

ClickTok Campaign Uses 10,000+ Malicious Domains to Target TikTok Shop Users

A new large-scale cybercrime operation known as ClickTok has surfaced, aiming at TikTok Shop users through a complex mix of phishing and malware distribution. Security researchers have discovered over 10,000 malicious domains involved in stealing login credentials and deploying spyware. The campaign marks a significant rise in e-commerce cyberattacks, leveraging the popularity of TikTok’s in-app

ClickTok Campaign Uses 10,000+ Malicious Domains to Target TikTok Shop Users Read More »