Krebs on Security: RaidForums Gets Raided, Alleged Admin Arrested

Krebs on Security: RaidForums Gets Raided, Alleged Admin Arrested. “The U.S. Department of Justice (DOJ) said today it seized the website and user database for RaidForums, an extremely popular English-language cybercrime forum that sold access to more than 10 billion consumer records stolen in some of the world’s largest data breaches since 2015. The DOJ also charged the alleged administrator of RaidForums — 21-year-old Diogo Santos Coelho, of Portugal — with six criminal counts, including conspiracy, access device fraud and aggravated identity theft.”

VIDEO: Ukraine Busts Alleged Russian Bot Farm Using Thousands of SIM Cards (Motherboard)

Motherboard: VIDEO: Ukraine Busts Alleged Russian Bot Farm Using Thousands of SIM Cards. “Ukraine’s Security Service said it has shut down a troll farm in the city of Lviv. ‘The SSU cyber specialists uncovered and dismantled two bot farms in Lviv with a total capacity of 18,000 fake accounts,’ an SSU press release said.” Know how many people are needed to control two bot farms with a total capacity of 18,000 fake accounts? Three.

TechRepublic: US government orders federal agencies to patch 100s of vulnerabilities

TechRepublic: US government orders federal agencies to patch 100s of vulnerabilities. “In the latest effort to combat cybercrime and ransomware, federal agencies have been told to patch hundreds of known security vulnerabilities with due dates ranging from November 2021 to May 2022. In a directive issued on Wednesday, the Cybersecurity and Infrastructure Security Agency (CISA) ordered all federal and executive branch departments and agencies to patch a series of known exploited vulnerabilities as cataloged in a public website managed by CISA.”

Dark Web: Many cybercrime services sell for less than $500 (TechRepublic)

TechRepublic: Dark Web: Many cybercrime services sell for less than $500. “Cybercrime can be a lucrative business for those who specialize in ransomware, phishing campaigns, and other types of attacks. The profit margins are especially healthy because cybercrime products and services often sell at bargain prices on the Dark Web. A new report from VPN provider Atlas VPN looks at the going rates for everything from spearphishing attacks to ransomware kits to stolen account credentials.”

Ars Technica: Telegram emerges as new dark web for cyber criminals

Ars Technica: Telegram emerges as new dark web for cyber criminals . “Telegram has exploded as a hub for cybercriminals looking to buy, sell, and share stolen data and hacking tools, new research shows, as the messaging app emerges as an alternative to the dark web. An investigation by cyber intelligence group Cyberint, together with the Financial Times, found a ballooning network of hackers sharing data leaks on the popular messaging platform, sometimes in channels with tens of thousands of subscribers, lured by its ease of use and light-touch moderation.”

Inside Genesis: The market created by cybercriminals to make millions selling your digital identity (CBS News)

CBS News: Inside Genesis: The market created by cybercriminals to make millions selling your digital identity. “The Genesis Market is an easy-to-use online shop that sells login credentials, cookies and device fingerprints, website vulnerabilities and other sensitive data that help hackers thwart security protocols. Security researchers warn that the market, along with other criminal sites, have become an important tool for hacking organizations to carry out these attacks.”

Punch (Nigeria): ‘Yahoo Yahoo’ not sustainable way of life, Bawa warns corps members

Punch (Nigeria): ‘Yahoo Yahoo’ not sustainable way of life, Bawa warns corps members. “The Chairman of the Economic and Financial Crimes Commission, Abdulrasheed Bawa, has advised corps members against engaging in internet fraud, popularly known as Yahoo Yahoo. This is as he harped on integrity and dedication, saying that the harsh economic situation in the country is not a license for anyone to engage in crime.”

United States Department of Justice: Four Individuals Plead Guilty to RICO Conspiracy Involving “Bulletproof Hosting” for Cybercriminals

United States Department of Justice: Four Individuals Plead Guilty to RICO Conspiracy Involving “Bulletproof Hosting” for Cybercriminals. “Four Eastern European nationals have pleaded guilty to conspiring to engage in a Racketeer Influenced Corrupt Organization (RICO) arising from their providing ‘bulletproof hosting’ services between 2008 and 2015, which were used by cybercriminals to distribute malware and attack financial institutions and victims throughout the United States.”