Mastodawn

Apparent data leak at Ferienwohnungen.de

The cyber gang Safepay claims to have broken into the Ferienwohnungen.de booking portal. Data has now surfaced on the darknet.

https://www.heise.de/en/news/Apparent-data-leak-at-Ferienwohnungen-de-10624518.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Cybercrime #Darknet #Datenleck #IT #Ransomware #Security #news

Apparent data leak at Ferienwohnungen.de

The cyber gang Safepay claims to have broken into the Ferienwohnungen.de booking portal. Data has now surfaced on the darknet.

heise online

The DefendOps Diaries 1h ago

AI is shaking up the cybercrime scene. Find out how Claude AI is transforming tech-savvy ransomware into a one-click threat, forcing us to rethink cybersecurity like never before.

https://thedefendopsdiaries.com/the-role-of-claude-ai-in-modern-cyber-threats/

#claudeai
#ransomware
#cybersecurity
#raas
#cybercrime

The Role of Claude AI in Modern Cyber Threats

Explore how Claude AI is reshaping cyber threats with advanced ransomware and RaaS, highlighting the need for new cybersecurity strategies.

The DefendOps Diaries

The DefendOps Diaries 2h ago

A fake ID for just $9? VerifTools used cutting-edge AI to churn out near-perfect forgeries, challenging law enforcement worldwide. How deep does the digital underworld really go?

https://thedefendopsdiaries.com/the-digital-underworld-veriftools-and-the-evolution-of-fake-id-marketplaces/

#fakeid
#cybercrime
#identitytheft
#lawenforcement
#digitalunderworld

The Digital Underworld: VerifTools and the Evolution of Fake ID Marketplaces

Explore VerifTools' role in the fake ID market, its tech advancements, and law enforcement's efforts to dismantle it.

The DefendOps Diaries

Erik Jonker 4h ago

So AI works, at least for cybercrime...
https://www.bbc.com/news/articles/crr24eqnnq9o
#ai #cybercrime #cybersecurity

Hackers used Anthropic AI to 'to commit large-scale theft' - BBC News

A report from the makers of Claude said the AI tool had been used to commit cyber-attacks and fraud.

BBC News

Infoblox Threat Intel 5h ago

Yet another round of shipping-themed smishing texts have been popping up over the last couple of days. This threat actor is impersonating missed FedEx delivery notifications (switching from a UPS theme used a few weeks ago) to entice users into entering their credit card information. The FedEx phishing pages are only accessible via phones or tablets using the URLs provided in the smishing texts. The attackers attempt to evade detection from search engines and users accessing the pages via desktops by routing them to legitimate pages for Amazon, Yahoo News/Finance, Whole Foods, or Ring.

The domains we've seen follow a distinct RDGA pattern, use CloudFlare hosting, and are distributed via email domains sharing the same mail server IP.

Sample domains: gjvuy[.]xyz,mhecm[.]pro,xvqxa[.]pro,bqcue[.]ink,zlulp[.]ink,zbhqu[.]ink,fjnrp[.]ink,wkdvb[.]ink,sfjfa[.]ink,zbhqu[.]ink,fjnrp[.]ink,wkdvb[.]ink,sfjfa[.]ink

#Infoblox #dns #smishing #phishing #InfobloxThreatIntel #threatintelligence #cybercrime #cybersecurity #infosec

OTX Bot 5h ago

Malicious Appsuite PDF Editor Spreads Tamperedchef Malware

A large cybercrime campaign has been observed involving multiple fraudulent websites promoted through Google advertising. The campaign aims to trick users into downloading and installing a trojanized PDF editor containing the TamperedChef information-stealing malware. The malware harvests sensitive data, including credentials and web cookies. The campaign began on June 26, 2025, with the PDF editor initially appearing harmless but later activating malicious capabilities. The threat actor used Google advertising to promote the PDF editor, with at least 5 different campaign IDs observed. The malware's activation occurred 56 days after the campaign's start, coinciding with a typical Google ad campaign duration. The threat actor has a history of distributing malicious code disguised as free utility tools, and this campaign has successfully affected several European organizations.

Pulse ID: 68b05ada69e45706752086fa
Pulse Link: https://otx.alienvault.com/pulse/68b05ada69e45706752086fa
Pulse Author: AlienVault
Created: 2025-08-28 13:34:18

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Cookies #CyberCrime #CyberSecurity #Europe #Google #InfoSec #Malware #OTX #OpenThreatExchange #PDF #RAT #Trojan #bot #AlienVault

LevelBlue - Open Threat Exchange

Learn about the latest cyber threats. Research, collaborate, and share threat intelligence in real time. Protect yourself and the community against today's emerging threats.

LevelBlue Open Threat Exchange

Prof. Dr. Dennis-Kenji Kipker 5h ago

Ist die nationale #Telekommunikationsinfrastruktur erst einmal kompromittiert, bieten sich vielfältige Möglichkeiten von #Spionage bis hin zur engmaschigen #Überwachung von Einzelpersonen.

Genau diese Eigenschaft de facto flächendeckend vorhandener TK-Netze und ihrer Endgeräte macht sich die mutmaßlich aus VR #China stammende #Cybercrime-Gruppierung "Salt Typhoon" schon seit mehreren Jahren in einem hochprofessionell strukturierten Ökosystem aus IT-Experten zunutze:

https://www.bsi.bund.de/DE/Service-Navi/Presse/Alle-Meldungen-News/Meldungen/Sicherheitshinweis_SALT-TYPHOON_250527.html

eicker.news ᳇ tech news 6h ago

#Anthropic’s #ThreatIntelligence report highlights the #misuse of #AI, specifically #Claude, for #cybercrime. Examples include #vibehacking for extortion, aiding North Korean workers in obtaining US jobs, and facilitating romance scams. Despite Anthropic’s safety measures, bad actors exploit AI. https://www.theverge.com/ai-artificial-intelligence/766435/anthropic-claude-threat-intelligence-report-ai-cybersecurity-hacking?eicker.news #tech #media #news

‘Vibe-hacking’ is now a top AI threat

Anthropic’s new Threat Intelligence report, out today, details the wide range of cases in which Claude — and likely many other leading AI agents and chatbots — are being abused.

The Verge