Ne’er-Do-Well News – PossibleThreat Articles

Phishers Target Aviation Execs to Scam Customers

July 25, 2025 0 Comments A Little Sunshine, association for financial professionals, BEC, Breadcrumbs, business email compromise, domaintools, financial fraud kill chain, internet crime complaint center, justy john, Ne'er-Do-Well News, palo alto networks, roomservice801@gmail.com, silverterrier, target: small businesses, unit 42

Credit to Author: BrianKrebs| Date: Thu, 24 Jul 2025 17:57:06 +0000

KrebsOnSecurity recently heard from a reader whose boss’s email account got phished and was used to trick one of the company’s customers into sending a large payment to scammers. An investigation into the attacker’s infrastructure points to a long-running Nigerian cybercrime group that is actively targeting established companies in the transportation and aviation industries.

Independent Krebs

UK Arrests Four in ‘Scattered Spider’ Ransom Group

July 25, 2025 0 Comments allison nixon, amtrak, asyntax, bo764, co-op group, doxbin, earth2star, everlynn, FBI, harrods, lapsus, marks & spencer, mgm casino, national crime agency, Ne'er-Do-Well News, operator, owen david flowers, Ransomware, scattered spider, star fraud chat, thalha jubair

Credit to Author: BrianKrebs| Date: Thu, 10 Jul 2025 17:31:10 +0000

Authorities in the United Kingdom this week arrested four alleged members of “Scattered Spider,” a prolific data theft and extortion group whose recent victims include multiple airlines and the U.K. retail chain Marks & Spencer.

Independent Krebs

Big Tech’s Mixed Response to U.S. Treasury Sanctions

July 25, 2025 0 Comments @nicelizhi, A Little Sunshine, facebook, funnull technology inc., github, gmail, hotmail, Latest Warnings, LinkedIn, liu "steve" lizhi, mark rasch, Ne'er-Do-Well News, nexamerchant, nice lizhi, Paypal, twitter, unit 221b, Web Fraud 2.0, xxl4, youtube, zach edwards

Credit to Author: BrianKrebs| Date: Thu, 03 Jul 2025 16:06:05 +0000

In May 2025, the U.S. government sanctioned a Chinese national for operating a cloud provider linked to the majority of virtual currency investment scam websites reported to the FBI. But more than a month later, the accused continues to openly operate accounts at a slew of American tech companies, including Facebook, Github, LinkedIn, PayPal and Twitter/X.

Independent Krebs

Inside a Dark Adtech Empire Fed by Fake CAPTCHAs

July 25, 2025 0 Comments A Little Sunshine, adspro, aimed global, bropush, bytecore ag, dollyway, doppelganger, godaddy, help tds, holacode, infoblox, lospollos, Ne'er-Do-Well News, partners house, qurium, renee burton, rexads, richads, skyforge digital ag, smartlinks, spamshield, tacoloco, teknology sa, vextrio, Web Fraud 2.0, Wordpress

Credit to Author: BrianKrebs| Date: Thu, 12 Jun 2025 22:14:00 +0000

Late last year, security researchers made a startling discovery: Kremlin-backed disinformation campaigns were bypassing moderation on social media platforms by leveraging the same malicious advertising technology that powers a sprawling ecosystem of online hucksters and website hackers. A new report on the fallout from that investigation finds this dark ad tech industry is far more resilient and incestuous than previously known.

Independent Krebs Security

Alleged Co-Founder of Garantex Arrested in India

March 11, 2025 0 Comments aleksandr mira serda, aleksej besciokov, elliptic, garantex, Ne'er-Do-Well News, Ransomware, u.s. department of justice, U.S. Secret Service

Credit to Author: BrianKrebs| Date: Tue, 11 Mar 2025 16:49:02 +0000

Authorities in India today arrested the alleged co-founder of Garantex, a cryptocurrency exchange sanctioned by the U.S. government in 2022 for facilitating tens of billions of dollars in money laundering by transnational criminal and cybercriminal organizations. Sources close to the investigation told KrebsOnSecurity the Lithuanian national Aleksej Besciokov, 46, was apprehended while vacationing on the coast of India with his family.

Independent Krebs Security

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

February 28, 2025 0 Comments A Little Sunshine, alfa bank, bearhost, gootloader, interisle consulting group, intrinsec, kaspersky lab, kentik, Ne'er-Do-Well News, prospero ooo, Ransomware, securehost, silent push, SocGholish, spamhaus, The Coming Storm, zach edwards

Credit to Author: BrianKrebs| Date: Fri, 28 Feb 2025 20:14:58 +0000

One of the most notorious providers of abuse-friendly “bulletproof” web hosting for cybercriminals has started routing its operations through networks run by the Russian antivirus and security firm Kaspersky Lab, KrebsOnSecurity has learned.

Independent Krebs Security

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

February 28, 2025 0 Comments AT&T, Breadcrumbs, cameron john wagenius, connor riley moucka, john erin binns, kiberphant0m, Ne'er-Do-Well News

Credit to Author: BrianKrebs| Date: Thu, 27 Feb 2025 03:39:25 +0000

A U.S. Army soldier who pleaded guilty last week to leaking phone records for high-ranking U.S. government officials searched online for non-extradition countries and for an answer to the question “can hacking be treason?” prosecutors in the case said Wednesday. The government disclosed the details in a court motion to keep the defendant in custody until he is discharged from the military.

Independent Krebs Security

Teen on Musk’s DOGE Team Graduated from ‘The Com’

February 7, 2025 0 Comments A Little Sunshine, as400495, backconnect security llc, curtis gervais, diamondcdn, director of national intelligence, doge, dstat, edward coristine, elon musk, eric taylor, marshal webb, Ne'er-Do-Well News, neuralink, packetware, path networks, president trump, rivage, tesla sexy llc, the com, The Coming Storm, tucker preston, wired

Credit to Author: BrianKrebs| Date: Sat, 08 Feb 2025 00:32:53 +0000

Wired reported this week that a 19-year-old working for Elon Musk’s so-called Department of Government Efficiency (DOGE) was given access to sensitive US government systems even though his past association with cybercrime communities should have precluded him from gaining the necessary security clearances to do so. As today’s story explores, the DOGE teen is a former denizen of ‘The Com,’ an archipelago of Discord and Telegram chat channels that function as a kind of distributed cybercriminal social network for facilitating instant collaboration.

Independent Krebs Security

FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang

January 31, 2025 0 Comments A Little Sunshine, bec fraud, Breadcrumbs, business email compromise, cracked, domaintools, dutch national police, FBI, fudco, fudpage, fudtools, heartsender, Ne'er-Do-Well News, operation talent, saim raza, sellix, the manipulaters, u.s. department of justice, wecodesolutions

Credit to Author: BrianKrebs| Date: Fri, 31 Jan 2025 18:35:32 +0000

The FBI and authorities in The Netherlands this week seized a number of servers and domains for a hugely popular spam and malware dissemination service operating out of Pakistan. The proprietors of the service, who use the collective nickname “The Manipulaters,” have been the subject of three stories published here since 2015. The FBI said the main clientele are organized crime groups that try to trick victim companies into making payments to a third party.

Independent Krebs Security

Infrastructure Laundering: Blending in with the Cloud

January 30, 2025 0 Comments A Little Sunshine, acb group, amazon aws, anjie cdn, crowell & moring llp, fangneng cdn, funnull, infrastructure laundering, Microsoft Azure, Ne'er-Do-Well News, netscout, noname057(16), polyfill, richard hummel, silent push, suncity group, Time to Patch, u.s. department of commerce, Web Fraud 2.0, zach edwards

Credit to Author: BrianKrebs| Date: Thu, 30 Jan 2025 17:10:08 +0000

In an effort to blend in and make their malicious traffic tougher to block, hosting firms catering to cybercriminals in China and Russia increasingly are funneling their operations through major U.S. cloud providers. Research published this week on one such outfit — a sprawling network tied to Chinese organized crime gangs and aptly named “Funnull” — highlights a persistent whac-a-mole problem facing cloud services.

← Previous