Have you heard of the ransomware strain, BlackSuit? Previously branded as Royal Ransomware, operators of this attack have secured as much as $500 million in demands in ransoms to date. This has raised the threat level and awareness of BlackSuit: the U.S. Cybersecurity and Infrastructure Security Agency and the FBI…
In the time we have been publishing MyIDMatters, it is unlikely that we have encountered a story as strange as this one. The Justice Department (DOJ) has recently unsealed documents related to an IT workers scheme perpetrated by the Democratic People’s Republic of Korea. These workers reportedly infiltrated more than…
Last year, Americans lost $12.5 billion to internet crime, which represented a near-25% increase from the year prior. As cybercrime grows increasingly sophisticated, financial institutions loom as targets ripe for attacks—and even more so as bad actors become more adept with AI attacks. There are several concerns facing banks and…
After months of being inactive, the malware loader Bumblebee is back. First found in March 2022, Bumblebee attacks users who unknowingly download it. It is believed to be made by the TrickBot cybercrime group. It was thought to be retired, but now it’s back and more dangerous than ever. Traditionally, Bumblebee…
Imagine the following scenario: you receive an email from an old acquaintance that you did not expect. Your friend has attached a document they want you to examine; however, what you do not realize is that your friend’s email has been compromised. Shortly after receiving and opening the email, you…
Recently, the Department of Justice announced that a “December 2023 court-authorized operation disrupted a botnet of hundreds of U.S.-based small office/home office (SOHO) routers hijacked by People’s Republic of China (PRC) state-sponsored hackers.” This operation required the DOJ to delete the botnet coding from the routers in question and block…
When discussing the goings-on of the cybercriminal world, our goal is to give you a larger sense of the threats out there. However, until this article we have yet to address a certain contradiction that exists among many cybercriminal networks. It is not unusual for talented cyberespionage teams to also…
One of the goals of the MyIDMatters quarterly issue is to keep you abreast of new threats in the crimeware space. This way, you not only defend yourself against bad actors, but you also have a better understanding of how they work. In a recent crimeware report, Kaspersky identified new…
By this point, most everyone is at least casually familiar with the AI software ChatGPT, which allows users to input a variety of requests and parameters to produce original pieces of writing. This has resulted in a previously user-generated activity now being automated en masse, altering the way we engage…
With the preponderance of articles and think-pieces dedicated to crimeware-as-a-service (CaaS) this year (some of them covered here on MyIDMatters), we might do well to call 2023 “The Year of CaaS.” Unfortunately, however, the rise of CaaS has not led to a rise in awareness of the ways in which…