U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ #Scams – Krebs on #Security
#funnull #pigbutchering #philippines #privacy

https://krebsonsecurity.com/2025/05/u-s-sanctions-cloud-provider-funnull-as-top-source-of-pig-butchering-scams/

U.S. Sanctions Cloud Provider 'Funnull' as Top Source of 'Pig Butchering' Scams

https://krebsonsecurity.com/2025/05/u-s-sanctions-cloud-provider-funnull-as-top-source-of-pig-butchering-scams/

#HackerNews #U.S. #Sanctions #Funnull #Pig #Butchering #Scams #Cybersecurity

U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams

https://krebsonsecurity.com/2025/05/u-s-sanctions-cloud-provider-funnull-as-top-source-of-pig-butchering-scams/

#StarkIndustriresSolutionsLtd #infrastructurelaundering #Ne'er-Do-WellNews #ALittleSunshine #IvanNeculiti #LazarusGroup #SuncityGroup #YuriNeculiti #WebFraud2.0 #ZachEdwards #SilentPush #microsoft #Funnull #Amazon

Infrastructure Laundering: Blending in with the Cloud

https://krebsonsecurity.com/2025/01/infrastructure-laundering-blending-in-with-the-cloud/

#infrastructurelaundering #U.S.DepartmentofCommerce #Ne'er-Do-WellNews #Crowell&MoringLLP #ALittleSunshine #MicrosoftAzure #NoName057(16) #RichardHummel #SuncityGroup #TimetoPatch #WebFraud2.0 #FangnengCDN #ZachEdwards #SilentPush #AmazonAWS #ACBGroup #AnjieCDN #NETSCOUT #polyfill #Funnull

🚨 New Cybercrime Tactic Alert: Infrastructure Laundering: Cybercriminals are exploiting cloud services like AWS & Azure to fuel phishing, scams, & money laundering. The #FUNNULL CDN is abusing IP rentals for large-scale fraud.

Read: https://hackread.com/funnull-aws-azure-abused-global-cybercrime-operations/

#CyberSecurity #CyberCrime #AWS #Azure #Fraud

> #China-based company #Funnull acquired the domain and the GitHub account that hosted the #JavaScript code. On June 25, researchers from #security firm Sansec reported that code hosted on the polyfill domain had been changed to redirect users to adult- and gambling-themed websites. The code was deliberately designed to mask the redirections by performing them only at certain times of the day and only against visitors who met specific criteria.

https://arstechnica.com/security/2024/07/384000-sites-link-to-code-library-caught-performing-supply-chain-attack/

#polyfillio #supplyChain

https://go.theregister.com/feed/www.theregister.com/2024/06/28/polyfillio_cloudflare_malware/

Trustworthy business: „[…] #Funnull claims to be based in Slovenia while also "made in the USA," its various office addresses around the world on its website don't exist, and its WhatsApp and WeChat contact number is in the Philippines. The site's underlying language and Telegram profile is in Mandarin […]. The #Polyfill Twitter account meanwhile says it's based in the UK.“