Clik here to view.
Fake Malware Pop-up Example
I don't believe I've ever done a video blog, but I wanted to show you what it looks like when we look at a fake malware pop-up. While I was prepping a lecture for a class I'm teaching by looking at...
View ArticleClik here to view.
Memphis BEC Scammers Arrested and At Large
The FBI announced another round of Business Email Compromise arrests this past week. This time, a focus was in Memphis, Tennessee. According to the Western District of Tennessee Press Release, "Eight...
View ArticleClik here to view.
Dark Markets' Weakness? Cashing out the Bitcoin to USD!
Over the years there has been an on-going battle between law enforcement and those who use technology-based anonymity to perform their illegal deeds. Some of the FBI's tricks to break through the...
View ArticleClik here to view.
Chinese arrest 20 in major Crypto Currency Mining scam
According to Chinese-language publication Legal Daily police in two districts of China have arrested 20 people for their roles in a major crypto currency mining operation that earned the criminals more...
View ArticleClik here to view.
Porn Extortion Email tied to Password Breach
This weekend I received an email forwarded from a stranger. They had received a threatening email and had shared it with a former student of mine to ask advice. Fortunately, the correct advice in...
View ArticleClik here to view.
Fin7 and the Perfect Phish
For the past twenty years, one of the main pieces of advice our industry gave to people regarding their email was "don't open attachments from people you don't know." But what if your JOB is opening...
View ArticleComputer Science and Diversity
Today I saw a tweet quoting Mark Guzdial's blog saying "In last five years, little progress in increasing the fraction of American CS BS degree recipients who are African Americans." It is a problem...
View ArticleIndia's Cosmos Bank Suffers Unlimited ATM Attack
On August 10th, many American Financial Institutions received a warning from the FBI that the Bureau had found evidence that criminals were plotting an "Unlimited Operation." We've written about these...
View ArticleClik here to view.
Android Malware Intercepts SMS 2FA: We have the Logs!
A couple years ago I was doing some phishing investigations training at the Police School in Santiago, Chile. One module in my training was called "Logs Don't Lie" which pointed out that in most cases...
View ArticleIRS Call Scammers Sentenced in Texas
Back in 2016 we blogged about a major set of arrests in India and the United States related to a call center scam imitating the IRS. (See "Major Call Center Scam Revealed - 56 Indicted")This post is...
View ArticleClik here to view.
Interac: One Phish to Phish Them All
I recently had the pleasure of bumping into some of my Canadian friends at a Law Enforcement conference. So when I saw someone mention a "National Bank of Canada" phish, I thought I would pull on the...
View ArticleClik here to view.
Dangerous Invoices and Dangerous Infrastructure
One of the things I've learned in twenty-nine years investigating malware is that MOST bad guys are lazy and cheap. One of the main ways that shows up is in the reuse of infrastructure. Or as one of...
View ArticleClik here to view.
FBI's Crime Data Explorer: What the Numbers Say about Cybercrime
What do the numbers say about Cybercrime? Not much. No one is using them. There is a popular quote often mis-attributed to the hero of Total Quality Management, Edward Deming: "If you can't measure...
View ArticleClik here to view.
Project Lakhta: Putin's Chef spends $35M on social media influence
Project Lakhta is the name of a Russian project that was further documented by the Department of Justice last Friday in the form of sharing a Criminal Complaint against Elena Alekseevna Khusyaynova,...
View ArticleClik here to view.
Business Email Compromise: Putting a Wisconsin Case Under the Microscope
Clement Onuama and Orefo Okeke were arrested on November 1, 2017 in the Western District of Texas after receiving a complaint and warrant from the District of Wisconsin, that the pair were involved in...
View ArticleClik here to view.
Two Iranian Hackers charged with $6 Million in SamSam Ransomware Attacks
Today the Department of Justice announced an indictment against two Iranian men: Faramarz Shahi Savandi and Mohammad Mehdi Shah Mansouri for their roles in stealing more than $6 Million in Ransom...
View ArticleClik here to view.
Bogus Bomb Threats Demand Bitcoin Disrupt Businesses
Bogus bomb threats created a scare across the country. A quick note here that I'll dive into more deeply next week. The big question at this time -- with MANY of the IP addresses found in email headers...
View ArticleClik here to view.
126 Arrests: The Emergence of India's Cyber Crime Detectives Fighting Call...
The Times of India reports that police have raided a call center in Noida Sector 63 where hundreds of fraud calls were placed every day to Americans and Canadians resulting in the theft of $50,000 per...
View ArticleClik here to view.
Alert Traffic Patrolman Unveils Romanian Skimming Ring
Clinton, Mississippi doesn't sound like the kind of place where an international skimming operation would be operating. With a population of barely 25,000, the town in southwest Mississippi does have...
View ArticleClik here to view.
Romanians on a Skimming Crime Spree?
When I posted last month about a Romanian skimming case (see: "Alert Traffic Patrolman Unveils Romanian Skimming Ring") I got two strong reactions. One was from my Romanian Information Security...
View Article