Police bust accuses 37 of being cyber criminals that stole identities, credit card numbers and pin codes; seize LabHost site on Dark Web

Police bust cyber gang accused of worldwide fraud (msn.com)

Norton Password Manager accounts breached by credential-stuffing attacks in 2022

https://www.bleepingcomputer.com/news/security/nortonlifelock-warns-that-hackers-breached-password-manager-accounts/

Bleeping Computer

CISA releases an alert to warn consumers about scams to acquire money or personal data

https://www.cisa.gov/news-events/alerts/2023/03/15/beware-bank-related-scams

Bad actors taking advantage of SVB collapse for social engineering attacks as suspicious domains are being registered

https://www.bleepingcomputer.com/news/security/cybercriminals-exploit-svb-collapse-to-steal-money-and-data/

https://isc.sans.edu/diary/Incoming+Silicon+Valley+Bank+Related+Scams/29630/

Photo by Sora Shimazaki on Pexels.com

Bank failure fraud: Be wary of communications (emails, links, advertisements, SMS messages, etc.) that may be coming concerning bank failures

As with any other high profile event, bad actors are expected to prey on the fears of consumers concerning Silicon Valley Bank and Signature Bank. The most convenient will be the registration of bogus domains for data or credential theft. A whole gambit of attacks are expected to businesses and consumers. Be VERY cautious, but there is no reason to panic. Here are some things to keep in mind:

• Your bank is not going to call you. Don’t give out ANY personal information or even confirm the existence of your account with any particular bank.
• You will likely get an email from your financial institution as an FYI, but there should not be a call to action. If there is, call your bank using the number you know; not one on the email.
• Mind family members. Elderly family members may be good targets for fraud.
• Your financial institution will not text you about this. There should be no action needed via text. If you have any questions about a text you or a family member has received, call your bank using the number you know. Do not reply to the text of take call claiming to be your bank.
• Businesses may be impacted by the failures. You may have a vendor that used that bank. Contact the vendor using the contact information you know.

More information from the FDIC:

• https://www.fdic.gov/news/press-releases/2023/pr23018.html
• https://www.fdic.gov/news/press-releases/2023/pr23019.html
• https://www.fdic.gov/news/press-releases/2023/pr23017.html
• https://www.fdic.gov/news/press-releases/2023/pr23016.html

Article from ABC News (tips on how to keep your money safe)

• https://abcnews.go.com/GMA/News/after-fall-silicon-valley-bank-signature-bank-tips/story?id=97846750

Accounts for 71k Chick-fil-A customers breached over multiple months in credential stuffing attack

https://www.bleepingcomputer.com/news/security/chick-fil-a-confirms-accounts-hacked-in-months-long-automated-attack//

Binary code on a laptop by Markus Spiske is licensed under CC-CC0 1.0

ISC: Turkey and Syria earthquake devastation prompts scammers and malware

https://isc.sans.edu/diary/Earthquake+in+Turkey+and+Syria+Be+Aware+of+Possible+Donation+Scams/29518/

Watch those Black Friday emails about “big box” stores or well-known brands

https://www.bleepingcomputer.com/news/security/phishing-kit-impersonates-well-known-brands-to-target-us-shoppers/

Large concerted effort underway to steal (phish) credentials to financial institutions in India

https://www.trendmicro.com/en_us/research/22/k/massive-phishing-campaigns-target-india-banks-clients.html

Bad actors capitalizing on Twitter blue checkmark chaos

Twitter Blue Badge email scams – Don’t fall for them!