• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Dozens of Russian Groups Steal 50 Million User Passwords

You are here: Home / General Cyber Security News / Dozens of Russian Groups Steal 50 Million User Passwords
November 23, 2022

Security scientists have warned of a password-theft epidemic immediately after revealing that Russian groups are using off-the-shelf facts-thieving malware to devastating outcome.

Group-IB mentioned its analysis uncovered 34 Telegram teams made use of by risk actors to arrange their attempts, and that they’d infected about 890,000 person products and stolen above 50 million passwords in the 1st 7 months of 2022 on your own.

The security vendor mentioned each of these teams has as lots of as 200 lively associates. Several are perfectly arranged, and are used to participate in automatic fraud-as-a-support campaigns concentrating on marketplaces recognized as “Classiscam.”

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


In these campaigns, directors give get the job done to reduced rank “workers” in exchange for a minimize of the revenue. These staff in change push website traffic to fraud sites masquerading as properly-recognised companies and test to trick victims into downloading destructive information.

They do so by embedding inbound links for downloading facts-stealers into movie testimonials of well-known video games on YouTube, through mining software package or NFT documents on specialized message boards, as effectively as fortunate draws and lotteries on social media, Group-IB said.

As the title suggests, info-thieving malware collects facts saved in browsers and sends it to the malware operator. This could include things like qualifications to gaming accounts, email products and services and social media, as very well as lender card aspects and crypto-wallet details.

The danger actors noticed by Team-IB typically used two or a few distinctive malware variants at the similar time. The most well-liked ended up RedLine, applied by 23 out of 34 gangs, and Racoon, employed by 8. These can apparently be rented from the dark web for as small as $150-200 for every month.

So far in 2022, PayPal (16%) and Amazon (13%) passwords account for the most significant share of malicious action, while attacks focusing on gaming providers like Steam, EpicGames and Roblox have increased pretty much 5-fold, Group-IB explained.

The range of stolen passwords increased by 80% from the intervals March–December 2021 to January–July 2022. Having said that, the teams also go following cookie files (up 74%), crypto wallets (216%) and payment playing cards (81%).

The worth of stolen knowledge to date is nearly $6m, Group-IB believed.

“The influx of a large variety of staff into the common rip-off Classiscam led to criminals competing for resources and wanting for new techniques to make gains,” read a assertion from Group-IB’s Electronic Risk Safety workforce.

“The attractiveness of schemes involving stealers can be stated by the lower entry barrier. Rookies do not have to have to have advanced specialized expertise as the procedure is absolutely automatic and the worker’s only process is to produce a file with a stealer in the Telegram bot and push visitors to it. For victims whose computers turn out to be infected with a stealer, nevertheless, the effects can be disastrous.”


Some areas of this post are sourced from:
www.infosecurity-magazine.com

Previous Post: «hackers exploiting abandoned boa web servers to target critical industries Hackers Exploiting Abandoned Boa Web Servers to Target Critical Industries
Next Post: UK Privacy Tsar Defends Controversial Enforcement Strategy Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Qilin Ransomware Adds “Call Lawyer” Feature to Pressure Victims for Larger Ransoms
  • Iran’s State TV Hijacked Mid-Broadcast Amid Geopolitical Tensions; $90M Stolen in Crypto Heist
  • 6 Steps to 24/7 In-House SOC Success
  • Massive 7.3 Tbps DDoS Attack Delivers 37.4 TB in 45 Seconds, Targeting Hosting Provider
  • 67 Trojanized GitHub Repositories Found in Campaign Targeting Gamers and Developers
  • New Android Malware Surge Hits Devices via Overlays, Virtualization Fraud and NFC Theft
  • BlueNoroff Deepfake Zoom Scam Hits Crypto Employee with MacOS Backdoor Malware
  • Secure Vibe Coding: The Complete New Guide
  • Uncover LOTS Attacks Hiding in Trusted Tools — Learn How in This Free Expert Session
  • Russian APT29 Exploits Gmail App Passwords to Bypass 2FA in Targeted Phishing Campaign

Copyright © TheCyberSecurity.News, All Rights Reserved.