cybercrime Archives

Safe Mode

Phosphorus’ Sonu Shankar on IoT Vulnerabilities and Salt Typhoon Tactics

Sonu Shankar, President at Phosphorus

5 days ago By CyberScoop Staff

The npm incident frightened everyone, but ended up being nothing to fret about

Disaster was averted after widely used open-source packages were compromised via social engineering.

6 days ago By Matt Kapko

A seal reading “Department of Justice Federal Bureau of Investigation” is displayed on the J. Edgar Hoover FBI building in Washington, DC, o August 9, 2022. (Photo by STEFANI REYNOLDS/AFP via Getty Images)

U.S. indicts Ukrainian national for hundreds of ransomware attacks using multiple variants

The Department of Justice unsealed an indictment against a Ukrainian national alleged to be central to a ransomware campaign affecting hundreds of companies worldwide. Volodymyr Viktorovych Tymoshchuk,…

Sep 9, 2025 By Greg Otto

The sun flares over the headquarters of the U.S. Treasury on Jan. 3, 2024, in Washington, D.C. (Photo by J. David Ake/Getty Images)

Treasury Department targets Southeast Asia scam hubs with sanctions

Cybercrime hubs in Southeast Asia scammed Americans out of at least $10 billion last year, a 66% increase from 2023, officials said.

Sep 8, 2025 By Matt Kapko

Salesloft confirmed the impact is much more severe and widespread. (imageBROKER/Timon Schneider/Alamy)

Salesloft Drift security incident started with undetected GitHub access

The company said a threat actor accessed and snooped around its account for months, then stole OAuth tokens for Drift integrations from its cloud environment.

Sep 8, 2025 By Matt Kapko

Safe Mode

Halcyon’s Cynthia Kaiser on the state of ransomware

Cynthia Kaiser Sr. Vice President of Halcyon’s Ransomware Research Center

Sep 4, 2025 By CyberScoop Staff

Sitecore zero-day vulnerability springs up from exposed machine key

The actively exploited defect, triggered by an attacker’s use of a publicly available sample machine key, underscores the vendor and customers’ poor configuration practices.

Sep 4, 2025 By Matt Kapko

Egyptian police confiscated three laptops, four smartphones and Visa cards during an coordinated law enforcement action to shut down Streameast (Egyptian Police via ACE)

Streameast, world’s largest pirated live sports network, shut down by Egyptian authorities

An antipiracy coalition of entertainment companies applauded the takedown. The network’s two operators were arrested at their residences in Egypt.

Sep 3, 2025 By Matt Kapko

Salesloft Drift attacks hit Cloudflare, Palo Alto Networks, Zscaler

Salesloft said the AI chat agent for sales and leads will be taken offline, as investigations into the attack spree widen and reveal more victims.

Sep 2, 2025 By Matt Kapko

Prolific Russian ransomware operator living in California enjoys rare leniency awaiting trial

Ianis Aleksandrovich Antropenko allegedly committed ransomware attacks from 2018 to 2022. He’s been out on bond since his arrest almost a year ago, despite multiple run-ins with…

Sep 2, 2025 By Matt Kapko