Intel 471 – Page 2 – Computer Security Articles

FBI Seizes Bot Shop ‘Genesis Market’ Amid Arrests Targeting Operators, Suppliers

April 4, 2023 admin A Little Sunshine, FBI, Flashpoint, genesis market, genesis security, Intel 471, u.s. district court for the eastern district of wisconsin

Credit to Author: BrianKrebs| Date: Tue, 04 Apr 2023 21:04:11 +0000

Several domain names tied to Genesis Market, a bustling cybercrime store that sold access to passwords and other data stolen from millions of computers infected with malicious software, were seized by the Federal Bureau of Investigation (FBI) today. Sources tell KrebsOnsecurity the domain seizures coincided with “dozens” of arrests in the United States and abroad targeting those who allegedly operated the service, as well as suppliers who continuously fed Genesis Market with freshly-stolen data.

Independent Krebs

Who’s Behind the Botnet-Based Service BHProxies?

February 24, 2023 admin A Little Sunshine, abdala tawfik, abdalla khafagy, bhproxies, bitsight, constella intelligence, hassan_isabad_subar, Intel 471, lewklabs, minerva labs, mylobot, Ne'er-Do-Well News, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Fri, 24 Feb 2023 19:51:23 +0000

A security firm has discovered that a five-year-old crafty botnet known as Mylobot appears to be powering a residential proxy service called BHProxies, which offers paying customers the ability to route their web traffic anonymously through compromised computers. Here’s a closer look at Mylobot, and a deep dive into who may be responsible for operating the BHProxies service.

Independent Krebs

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

February 9, 2023 admin A Little Sunshine, adam meyers, christina svechinskaya, CrowdStrike, dyre, Group-IB, ilya sachkov, Intel 471, kaspersky lab, michael debolt, Ne'er-Do-Well News, ransomware, Ruslan Stoyanov, Sergey Mikhaylov, trickbot, u.s. department of treasury, vitaly "bentley" kovalev, wizard spider

Credit to Author: BrianKrebs| Date: Thu, 09 Feb 2023 20:23:58 +0000

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “Trickbot,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. The U.S. Department of the Treasury says the Trickbot group is associated with Russian intelligence services, and that this alliance led to the targeting of many U.S. companies and government entities.

Independent Krebs

Breach Exposes Users of Microleaves Proxy Service

July 28, 2022 admin A Little Sunshine, abhishek gupta, acidut, alexandru florea, alexandru iulian florea, blackhatworld, Breadcrumbs, constella intelligence, cpaelites, Hackforums, Intel 471, microleaves, Ne'er-Do-Well News, nevo.julian, online.io, residential proxy, reverseproxies, shifter.io, socks proxy

Credit to Author: BrianKrebs| Date: Thu, 28 Jul 2022 18:52:28 +0000

Microleaves, a ten-year-old proxy service that lets customers route their web traffic through millions of Microsoft Windows computers, exposed their entire user database and the location of tens of millions of PCs running the proxy software. Microleaves claims its proxy software is installed with user consent. But research suggests Microleaves has a lengthy history of being supplied with new proxies by affiliates incentivized to install the software any which way they can — such as by secretly bundling it with other software.

Independent Krebs

A Retrospective on the 2015 Ashley Madison Breach

July 26, 2022 admin A Little Sunshine, ashley madison breach, avid life media, Flashpoint, impact team, Intel 471, noel biderman, per thorsheim, robert graham, wired.com

Credit to Author: BrianKrebs| Date: Wed, 27 Jul 2022 01:04:51 +0000

It’s been seven years since the online cheating site AshleyMadison.com was hacked and highly sensitive data about its users posted online. The leak led to the public shaming and extortion of many AshleyMadison users, and to at least two suicides. To date, little is publicly known about the perpetrators or the true motivation for the attack. But a recent review of AshleyMadison mentions across Russian cybercrime forums and far-right underground websites in the months leading up to the hack revealed some previously unreported details that may deserve further scrutiny.

Independent Krebs

Meet the World’s Biggest ‘Bulletproof’ Hoster

July 16, 2019 admin AbdAllah, Alexander Alexandrovich Volosovik, Alexander Volosovyk, Breadcrumbs, bulletproof hosting providers, chronopay, Delft University of Technology, Downlow, Dutch National High-Tech Crimes Unit, Intel 471, Jason Passwaters, King Saud University, MaxiDed, Mikhail Rytikov, Ne'er-Do-Well News, New York University, sosweet, stas_vl@mail.ru, Web Fraud 2.0, Yalishanda

Credit to Author: BrianKrebs| Date: Tue, 16 Jul 2019 15:34:31 +0000

For at least the past decade, a computer crook variously known as “Yalishanda,” “Downlow” and “Stas_vl” has run one of the most popular “bulletproof” Web hosting services catering to a vast array of phishing sites, cybercrime forums and malware download servers. What follows are a series of clues that point to the likely real-life identity of a Russian man who appears responsible for enabling a ridiculous amount of cybercriminal activity on the Internet today.